| www.googletagmanager.com/gtag/js?id=UA-158623850-1 | 142.250.74.136 | 200 OK | 73 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=UA-158623850-1 IP142.250.74.136:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hash8dfab7991a82f9d66161b521d3a62475 393b6b0bc015169374cf1ac70d1f921576b1da26 29a53741713ea63435df712e8f792203d9beb92bbf42f44452010e6f1809edee
GET /gtag/js?id=UA-158623850-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 21:01:23 GMT
expires: Fri, 26 Apr 2024 21:01:23 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73389
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| videzz.net/js/pop.js?v=1.0 | 78.142.18.54 | 200 OK | 35 B |
URL GET HTTP/2videzz.net/js/pop.js?v=1.0 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
Hashda4bf5414bf75eefb21872f9b59fe6fc e34335e0705397a4ad02c406a2e92333e6d2b0e5 d48b428c1788391a1aef29802daaa691077732dc7b821d0968831bc50b19278d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/pop.js?v=1.0 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-5llh7pij5eqz.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: application/javascript
content-length: 35
last-modified: Wed, 10 Apr 2024 07:00:40 GMT
etag: "66163918-23"
expires: Sun, 26 May 2024 20:56:45 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| videzz.net/js/ads.js?v=1.0 | 78.142.18.54 | 200 OK | 211 B |
URL GET HTTP/2videzz.net/js/ads.js?v=1.0 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
Hash09f34de71e8853387dd398fbb263af69 4ccb7007fcebcffe64eaa80f2991509fdbac55d5 6ca7e6aebc6e3eec26d39e540e255a738fd9e48e9b97bd0e2a714686377ac523
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/ads.js?v=1.0 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-5llh7pij5eqz.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: application/javascript
content-length: 211
last-modified: Wed, 10 Apr 2024 07:00:18 GMT
etag: "66163902-d3"
expires: Sun, 26 May 2024 20:56:47 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| videzz.net/images-newtheme/adb_logo.png | 78.142.18.54 | 200 OK | 8.3 kB |
URL GET HTTP/2videzz.net/images-newtheme/adb_logo.png IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typePNG image data, 178 x 178, 8-bit/color RGBA, non-interlaced Hash98fcd22c469a5aa46df8ec4e7a8eafc9 e8d95f175d3008736995a482d7304410a1da490a b1e79e219bf46ca5ef14a9619c5440e78c2ebdbc34b8f0c65f0777a8b02fc30c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images-newtheme/adb_logo.png HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-5llh7pij5eqz.html
Cookie: lang=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: image/png
content-length: 8308
last-modified: Wed, 10 Apr 2024 07:00:17 GMT
etag: "66163901-2074"
expires: Sun, 26 May 2024 20:56:54 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| videzz.net/images-newtheme/attention.png | 78.142.18.54 | 200 OK | 6.4 kB |
URL GET HTTP/2videzz.net/images-newtheme/attention.png IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typePNG image data, 263 x 231, 8-bit/color RGBA, non-interlaced Hashd28ebe1b4425fa4ab5d804792b5aa626 3183e2c59cdaed547de5fb1fc940709ed5117003 36fc8d817d7a356b2b8e8697697a5ce86bedadfea8df2a4e88f9514bb1ce02f6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images-newtheme/attention.png HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-5llh7pij5eqz.html
Cookie: lang=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: image/png
content-length: 6377
last-modified: Wed, 10 Apr 2024 07:00:40 GMT
etag: "66163918-18e9"
expires: Sun, 26 May 2024 20:57:21 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tr.7vid.net/Sb7AkA7.js | 135.181.208.216 | 200 OK | 77 kB |
IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjecta.gatwins.site Fingerprint66:D4:C4:E9:BC:6E:82:9E:D0:2F:00:69:9A:DF:C2:6D:18:04:0B:1B ValidityWed, 10 Apr 2024 10:27:11 GMT - Tue, 09 Jul 2024 10:27:10 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators Hasha6781eeb8be115c2cc64c5b4898e5b9d 76001e6e130f936956842ce1fb672ca16be2370e cb8949c4918f30d767c8a97d1b1ddb36eabccf8d93659a80f4e850caa3701da2
GET /Sb7AkA7.js HTTP/1.1
Host: tr.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: application/javascript
content-length: 76790
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
vary: Accept-Encoding
etag: "65fd69b1-12bf6"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 201
cf-ray: 8685d408ccf5d995-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| vz.7vid.net/Sb7AkA7.js | 135.181.208.216 | 200 OK | 77 kB |
IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjecta.cpbj8ddae04d.shop Fingerprint05:51:C2:15:91:D1:D4:BC:15:B2:36:C5:1A:40:61:CC:74:87:18:53 ValidityTue, 23 Apr 2024 10:27:07 GMT - Mon, 22 Jul 2024 10:27:06 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators Hasha6781eeb8be115c2cc64c5b4898e5b9d 76001e6e130f936956842ce1fb672ca16be2370e cb8949c4918f30d767c8a97d1b1ddb36eabccf8d93659a80f4e850caa3701da2
GET /Sb7AkA7.js HTTP/1.1
Host: vz.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: application/javascript
content-length: 76790
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
vary: Accept-Encoding
etag: "65fd69b1-12bf6"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 201
cf-ray: 8685d408ccf5d995-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tr.7vid.net/henYKwb.js | 135.181.208.216 | 200 OK | 88 kB |
IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjecta.gatwins.site Fingerprint66:D4:C4:E9:BC:6E:82:9E:D0:2F:00:69:9A:DF:C2:6D:18:04:0B:1B ValidityWed, 10 Apr 2024 10:27:11 GMT - Tue, 09 Jul 2024 10:27:10 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators Hash04bdb2fd7797c33d38ad8a6a0997b389 a69a0999b9106aa1e49a6728c84b3e82b899276d 3039a1d2d40fce3b96ce115bc8fb858539ed084667fb0ee69fe68e0a682d9286
GET /henYKwb.js HTTP/1.1
Host: tr.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: application/javascript
content-length: 87996
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
vary: Accept-Encoding
etag: "65fd69b1-157bc"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: EXPIRED
cf-ray: 8685cee83a6f8d55-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css | 104.17.24.14 | 200 OK | 5.6 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css IP104.17.24.14:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 958768
expires: Wed, 16 Apr 2025 21:01:23 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yvqWkv%2Bto8atOzHrGw1%2BP6QSfW7%2BSKOm1cgAvJna585LCex4zv5gM%2BfbOybCmaiU9BFXyQMN7CtVwbX1OdrUAwi8UIaA%2BrN23V%2B3HHnWt0gQo3whWezwku8nhgepTebuEl%2FjvN49"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a981fd3b12568e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-56DK3TH | 142.250.74.136 | 200 OK | 72 kB |
URL GET HTTP/3www.googletagmanager.com/gtm.js?id=GTM-56DK3TH IP142.250.74.136:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (3287) Hash03cecfe5a892210a2aa8f7b316257b8d fb3e53cac0a94270d0e7a02f30bd4886ff9b893d 2e8143460d1f46cb86a9476836114a3abf82c8dace63c297ab6ee7eb9a3dd54b
GET /gtm.js?id=GTM-56DK3TH HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 21:01:23 GMT
expires: Fri, 26 Apr 2024 21:01:23 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72224
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| s.o333o.com/adgpt.js | 85.10.205.45 | 200 OK | 820 B |
IP85.10.205.45:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerSectigo Limited Subjects.o333o.com FingerprintC1:C0:0F:C0:EF:0F:F7:7A:36:2F:00:9E:5C:55:63:54:63:A3:A6:46 ValidityMon, 12 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typeASCII text, with very long lines (2040), with no line terminators Hash55f8db8e0ec58b646f0b5425b405fdd0 0c79af1239cafc7ec4783f20b0b886a61daccc09 3ec8849ba857ec32cdc682ea93f0c1f8e8ab97980af4f1d8ec312684ed0f5237
GET /adgpt.js HTTP/1.1
Host: s.o333o.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: application/javascript
content-length: 820
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
vary: Accept-Encoding
etag: "65fd69b1-334"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
X-Firefox-Spdy: h2
|
|
| str32.vidoza.net/i/02/07552/5llh7pij5eqz.jpg?v=1714165282 | 213.152.165.117 | 200 OK | 24 kB |
URL GET HTTP/2str32.vidoza.net/i/02/07552/5llh7pij5eqz.jpg?v=1714165282 IP213.152.165.117:443 ASN#49453 Global Layer B.V.
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectvidoza.net FingerprintDD:9C:2A:D1:7E:90:60:D1:BE:1C:39:29:07:29:9C:34:6A:76:A6:C6 ValidityWed, 14 Feb 2024 01:21:54 GMT - Tue, 14 May 2024 01:21:53 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 688x480, components 3 Hash3b2c993654117d58c2e8ee05a4cdcf1f 17cc0ceae1b93ce11110791ef2a6079e51ea1dfb 644ca42ef982354e9bff4a3fc85dd24d26062b52238d55d4bfbb287a3596b8dd
GET /i/02/07552/5llh7pij5eqz.jpg?v=1714165282 HTTP/1.1
Host: str32.vidoza.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: image/jpeg
content-length: 24316
last-modified: Tue, 12 Mar 2024 16:49:31 GMT
etag: "65f0879b-5efc"
expires: Fri, 10 May 2024 21:01:24 GMT
cache-control: max-age=1209600
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| myliveforyoudreder.com/vidozza.js | 188.114.96.1 | 200 OK | 738 B |
URL GET HTTP/2myliveforyoudreder.com/vidozza.js IP188.114.96.1:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectmyliveforyoudreder.com FingerprintD6:1F:6C:5C:81:FF:C4:D3:4D:C9:A9:22:DD:0B:D4:18:59:4E:58:B7 ValidityWed, 20 Mar 2024 02:24:57 GMT - Tue, 18 Jun 2024 02:24:56 GMT
File typeJavaScript source, ASCII text, with very long lines (852), with CRLF line terminators Hashb340619418518ced51fbbc860814ea19 e2cbf47a089e8941bcdb6f24c64fad9004852348 ebbf367cc151e337e4c4d375e86682b6e1593b25224c6c733b4cea4f507c4000
GET /vidozza.js HTTP/1.1
Host: myliveforyoudreder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: application/javascript
last-modified: Mon, 24 Oct 2022 14:14:49 GMT
etag: W/"63569dd9-64f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4914
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kViT%2BZFOuDxwV6irHzN3qA%2Fz2%2FgoPgT3VxnxELjMYd40XbGcmRktuaVs%2Bn16%2F%2BYd9lQuj6jILUcKa5Bm7Lh3xd5F0TrqDMOJNz8kqRac19fJ5kMFBVl6julVGh1IVtPJhLHf%2BqXx2iuV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a982000ad356cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/td?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtm.init_consent&eid=-1&h=Ag&dl=videzz.net%2Fembed-5llh7pij5eqz.html&tdp=GTM-56DK3TH;32020053;0;0;0&rtg=32020053&rlo=21&slo=15&z=0 | 142.250.74.136 | 204 No Content | 0 B |
URL GET HTTP/3www.googletagmanager.com/td?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtm.init_consent&eid=-1&h=Ag&dl=videzz.net%2Fembed-5llh7pij5eqz.html&tdp=GTM-56DK3TH;32020053;0;0;0&rtg=32020053&rlo=21&slo=15&z=0 IP142.250.74.136:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /td?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtm.init_consent&eid=-1&h=Ag&dl=videzz.net%2Fembed-5llh7pij5eqz.html&tdp=GTM-56DK3TH;32020053;0;0;0&rtg=32020053&rlo=21&slo=15&z=0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Fri, 26 Apr 2024 21:01:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| str32.vidoza.net/nvl4fimep4feieno3utqnx5cmnpbyjlq7skbl2yqx6mmcc63qvzhfhkilbpq/v.mp4 | 213.152.165.117 | 206 Partial Content | 278 kB |
URL GET HTTP/2str32.vidoza.net/nvl4fimep4feieno3utqnx5cmnpbyjlq7skbl2yqx6mmcc63qvzhfhkilbpq/v.mp4 IP213.152.165.117:443 ASN#49453 Global Layer B.V.
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectvidoza.net FingerprintDD:9C:2A:D1:7E:90:60:D1:BE:1C:39:29:07:29:9C:34:6A:76:A6:C6 ValidityWed, 14 Feb 2024 01:21:54 GMT - Tue, 14 May 2024 01:21:53 GMT
File typeISO Media, MP4 Base Media v1 [ISO 14496-12:2003] Size278 kB (278510 bytes) Hash6a0116a14831af581c770362c2f2cbd1 62581630eff73ceb07b8fa060e8f3e56762d2913 7ecf6f5a8b25f58f2959fbfd88527548124891e7a9a23f15c69839ffecb00111
GET /nvl4fimep4feieno3utqnx5cmnpbyjlq7skbl2yqx6mmcc63qvzhfhkilbpq/v.mp4 HTTP/1.1
Host: str32.vidoza.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
server: nginx/1.20.1
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: video/mp4
content-length: 1844970
last-modified: Tue, 12 Mar 2024 16:49:29 GMT
etag: "65f08799-1c26ea"
content-range: bytes 0-1844969/1844970
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/a?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtag.config&eid=1&h=Ag&tr=1googtag.1cl.1cl.1cl.1cl.1cl.1evl&ti=2googtag.1cl.1cl.1cl.1cl.1cl.1evl&z=0 | 142.250.74.136 | 200 OK | 0 B |
URL GET HTTP/3www.googletagmanager.com/a?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtag.config&eid=1&h=Ag&tr=1googtag.1cl.1cl.1cl.1cl.1cl.1evl&ti=2googtag.1cl.1cl.1cl.1cl.1cl.1evl&z=0 IP142.250.74.136:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /a?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtag.config&eid=1&h=Ag&tr=1googtag.1cl.1cl.1cl.1cl.1cl.1evl&ti=2googtag.1cl.1cl.1cl.1cl.1cl.1evl&z=0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: text/html
server: Google Tag Manager
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/a?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtag.config&eid=2&h=Ag&z=0 | 142.250.74.136 | 200 OK | 0 B |
URL GET HTTP/3www.googletagmanager.com/a?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtag.config&eid=2&h=Ag&z=0 IP142.250.74.136:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /a?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtag.config&eid=2&h=Ag&z=0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: text/html
server: Google Tag Manager
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| videzz.net/css/embed.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 205 kB |
URL GET HTTP/2videzz.net/css/embed.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typegzip compressed data, from Unix Size205 kB (204856 bytes) Hashc650feda128835a6155478003b635070 55656e70d01fea80e6914f96d64b707ea0bd36c6 8d5f4ce1b7148cebeca8f0c00397e267efe7203b29e373d927795b27113cd197
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/embed.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-5llh7pij5eqz.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: text/css
last-modified: Wed, 10 Apr 2024 07:00:40 GMT
vary: Accept-Encoding
etag: W/"66163918-96f9f"
expires: Sun, 26 May 2024 20:55:39 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/a?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtm.dom&eid=4&h=Ag&z=0 | 142.250.74.136 | 200 OK | 0 B |
URL GET HTTP/3www.googletagmanager.com/a?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtm.dom&eid=4&h=Ag&z=0 IP142.250.74.136:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /a?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtm.dom&eid=4&h=Ag&z=0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: text/html
server: Google Tag Manager
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| videzz.net/js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 119 kB |
URL GET HTTP/2videzz.net/js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typegzip compressed data, from Unix Size119 kB (118677 bytes) Hash975840849afc105740aa4cbaaf8131f2 221d68f682dbc668c231fcc1277bb1c1d2d37174 2bac56db879d3e7aebc119798297f8550eb57772bc245f13e2188defd9d6ff5b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-5llh7pij5eqz.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:18 GMT
vary: Accept-Encoding
etag: W/"66163902-22364"
expires: Sun, 26 May 2024 20:57:25 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/load | 172.67.205.77 | 302 Found | 403 B |
URL POST HTTP/3bid.bidclickmedia.com/load IP172.67.205.77:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
Hash9e28bae5a1afe91e73b727653e02cac8 0103fad87995178c5d50b351d49c4d6070306865 c9f274fd2d429a498442fdcf4153d32e7c0f0bba8976d9f5e1c6a1c031d2d6f9
POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/Pj8pz0z
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: text/html; charset=utf-8
location: https://xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1ts%2F8PbbSW8%2FFiHCZO4rMRYRnDXnSvStTQaGeIZC69lLMmjGSviXO4mn8Xdax83XIaDD%2BI1GEYd9J8%2FZ%2BcUpde%2BelSqK0yW%2BHJdy1LobWfIVEC4pDUxP5jy2XIWYHeLE%2BCdvk4P7fIo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a98203f98a1c06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tr.7vid.net/api/settings/59845 | 135.181.208.216 | 200 OK | 1.8 MB |
URL GET HTTP/2tr.7vid.net/api/settings/59845 IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjecta.gatwins.site Fingerprint66:D4:C4:E9:BC:6E:82:9E:D0:2F:00:69:9A:DF:C2:6D:18:04:0B:1B ValidityWed, 10 Apr 2024 10:27:11 GMT - Tue, 09 Jul 2024 10:27:10 GMT
File typegzip compressed data, from Unix Size1.8 MB (1845023 bytes) Hash24396e218a4e3d330e3f48d84e5a099f 89c9681d165366d0b0b6198b6de51ce1a150e82a 90fce7f0922a20b7b6343455231b6936a92c86c399c129b2ba5048ec9b22935a
GET /api/settings/59845 HTTP/1.1
Host: tr.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-HEX1BG8H46>m=45je44o0v9104348843za200&_p=1714165283463&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=2147287730.1714165284&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=1&sid=1714165284&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-5llh7pij5eqz.html&dt=Vidoza&en=page_view&_fv=1&_nsi=1&_ss=2&tfd=1867 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-HEX1BG8H46>m=45je44o0v9104348843za200&_p=1714165283463&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=2147287730.1714165284&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=1&sid=1714165284&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-5llh7pij5eqz.html&dt=Vidoza&en=page_view&_fv=1&_nsi=1&_ss=2&tfd=1867 IP216.239.32.36:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-HEX1BG8H46>m=45je44o0v9104348843za200&_p=1714165283463&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=2147287730.1714165284&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=1&sid=1714165284&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-5llh7pij5eqz.html&dt=Vidoza&en=page_view&_fv=1&_nsi=1&_ss=2&tfd=1867 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://videzz.net
date: Fri, 26 Apr 2024 21:01:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| xml.zeusadx.com/redirect?feed=552612&auth=OEhoVk&pubid=162319 | 174.137.133.17 | 302 Found | 0 B |
URL GET HTTP/1.1xml.zeusadx.com/redirect?feed=552612&auth=OEhoVk&pubid=162319 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerSectigo Limited Subject*.zeusadx.com FingerprintAA:67:88:35:5F:BC:20:3C:44:9B:00:BD:4F:E1:C0:5F:62:D0:69:C0 ValidityMon, 23 Oct 2023 00:00:00 GMT - Wed, 23 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=552612&auth=OEhoVk&pubid=162319 HTTP/1.1
Host: xml.zeusadx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 21:01:25 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://r.mylot.com/p.aspx?u=da8d2c02-b855-47be-af2e-42e10c9d8a7f
|
|
| www.googletagmanager.com/a?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtm.load&eid=7&u=AgAAAAAAAAAAAAAI&h=Ag&z=0 | 142.250.74.136 | 200 OK | 0 B |
URL GET HTTP/3www.googletagmanager.com/a?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtm.load&eid=7&u=AgAAAAAAAAAAAAAI&h=Ag&z=0 IP142.250.74.136:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /a?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtm.load&eid=7&u=AgAAAAAAAAAAAAAI&h=Ag&z=0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:01:25 GMT
content-type: text/html
server: Google Tag Manager
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| bid.bidclickmedia.com/load | 172.67.205.77 | 302 Found | 371 B |
URL POST HTTP/3bid.bidclickmedia.com/load IP172.67.205.77:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text Hash8c6e4895da5c5b48888faceae2c20c4f 69dad1d518bcb805f58f3285c72ba648462040bf 85dd6a5b21367347155e970a54ce165d275ca4753206ca8b6b64b773f80570cd
POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 98
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/e6yMnW6
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: text/html; charset=utf-8
location: https://xml.cachegorilla.com/redirect?feed=612978&auth=7PcDFD&pubid=197570
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6KcBFqE5JIDCWYG%2B%2BcEdHg%2FQilkcZIjVy%2Fa22EMzTEfssBqCPrQ09NBCcaPETm1nYHiLmye8VgtpJht4sQUlC07b%2BYjrfl72eywCt7g4HZ8UgWStkqBZ3imN5p%2Fcbi%2FP4Jiq1AvkOCI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a98203b9671c06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bid.bidclickmedia.com/load | 172.67.205.77 | 302 Found | 361 B |
URL POST HTTP/3bid.bidclickmedia.com/load IP172.67.205.77:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text Hash0afbc42662d610b514f5be89bfd0d53a 0e5f0faddf5910a3c68deb940bb23924d244f1ff a850e0db4b9fad13d0cb77a0f6599bfaf2d068dea62db64a43c06dadb12bbc38
POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/Zj8D76R
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: text/html; charset=utf-8
location: https://xml.zeusadx.com/redirect?feed=552612&auth=OEhoVk&pubid=162319
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hd06%2BpxSnStG%2FcxgHLMG6nyRKQGLf8FOumm0LZS1dMhJH7qzcehX2yqe4KTdwurnM06uFtAMwVAbLUckJsfKzNCefHWnPbU350GMvXJ%2BW8qdN2BYceiV%2FjUi4D%2BfDGQqvFuKoEvyhyE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9820379311c06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tfosrv.com/show_std.php?id_site=13111&id_channel=60781&uf=true | 216.18.168.29 | 302 Found | 0 B |
URL GET HTTP/1.1tfosrv.com/show_std.php?id_site=13111&id_channel=60781&uf=true IP216.18.168.29:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerSectigo Limited Subject*.tfosrv.com Fingerprint17:0E:13:E0:E3:EE:17:88:09:10:8F:63:F4:7E:31:5A:D9:33:7D:80 ValidityTue, 31 Oct 2023 00:00:00 GMT - Mon, 18 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /show_std.php?id_site=13111&id_channel=60781&uf=true HTTP/1.1
Host: tfosrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
server: nginx
date: Fri, 26 Apr 2024 21:01:25 GMT
content-length: 0
location: https://tfosrv.com/impression.php?channel_id=60781&id=0947f99c-6c74-43f5-8d14-d86e25056ead%3A208f6ede-6e5a-4080-ad91-f2e62e27c35a&site_id=13111&uuid=cef1d2d9-4098-4deb-ada9-f46996ba04d9
set-cookie: sppc_uuid=b94b2597-1a52-481c-8679-2d1332da0892; max-age=31536000; path=/; secure; SameSite=None
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
|
|
| r.mylot.com/p.aspx?u=da8d2c02-b855-47be-af2e-42e10c9d8a7f | 18.233.59.62 | 200 OK | 526 B |
URL GET HTTP/2r.mylot.com/p.aspx?u=da8d2c02-b855-47be-af2e-42e10c9d8a7f IP18.233.59.62:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerAmazon Subject*.mylot.com Fingerprint81:6A:9D:DF:7B:03:C9:DC:EE:3A:40:EA:60:8A:17:66:07:6C:3E:6C ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (526), with no line terminators Hashb3b2a49c59c8264e621fbb0f110b3cd0 b6eed971dc40a6bbea4bb7a8781d1ec86b301fe1 1b538c005352d5dfea5acbd10552ee2e8583ec31923116c84fe8033108156a1b
GET /p.aspx?u=da8d2c02-b855-47be-af2e-42e10c9d8a7f HTTP/1.1
Host: r.mylot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:25 GMT
content-type: text/html; charset=utf-8
content-length: 526
cache-control: private
set-cookie: ASP.NET_SessionId=ajjpe0wjzkglr3xwd4bbndna; path=/; HttpOnly; SameSite=Lax
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/load | 172.67.205.77 | 302 Found | 361 B |
URL POST HTTP/3bid.bidclickmedia.com/load IP172.67.205.77:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text Hash4809a9602dd55d531906123e570b6d77 626fe0b9eeeda00a0ce401ee5a4e13f8256facb9 046c0a16886d7e34df54c815c1fee7740a3608671d33fd56c837dca5a1ac9c9f
POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/31pnK5n
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: text/html; charset=utf-8
location: https://xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DVz3VdJETRsE8%2FP6Ba4G9FtLHUT75H7kiNyAky3e2LJRauNQNDCGFMcYUqhLEFI%2Bjh8f9Uk6HyKfi%2B3mejcl%2F8EZSaVyLxTE5AeLWkxGKT5mM%2B3W83fGWvE3tD8KF9Ds%2BHKGPc0e53Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a98202e8ba1c06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tfosrv.com/impression.php?channel_id=60781&id=0947f99c-6c74-43f5-8d14-d86e25056ead%3A208f6ede-6e5a-4080-ad91-f2e62e27c35a&site_id=13111&uuid=cef1d2d9-4098-4deb-ada9-f46996ba04d9 | 216.18.168.29 | 302 Found | 0 B |
URL GET HTTP/1.1tfosrv.com/impression.php?channel_id=60781&id=0947f99c-6c74-43f5-8d14-d86e25056ead%3A208f6ede-6e5a-4080-ad91-f2e62e27c35a&site_id=13111&uuid=cef1d2d9-4098-4deb-ada9-f46996ba04d9 IP216.18.168.29:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerSectigo Limited Subject*.tfosrv.com Fingerprint17:0E:13:E0:E3:EE:17:88:09:10:8F:63:F4:7E:31:5A:D9:33:7D:80 ValidityTue, 31 Oct 2023 00:00:00 GMT - Mon, 18 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /impression.php?channel_id=60781&id=0947f99c-6c74-43f5-8d14-d86e25056ead%3A208f6ede-6e5a-4080-ad91-f2e62e27c35a&site_id=13111&uuid=cef1d2d9-4098-4deb-ada9-f46996ba04d9 HTTP/1.1
Host: tfosrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Cookie: sppc_uuid=b94b2597-1a52-481c-8679-2d1332da0892
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
server: nginx
date: Fri, 26 Apr 2024 21:01:25 GMT
content-length: 0
location: https://trafforsrv.com/click.php?id=0947f99c-6c74-43f5-8d14-d86e25056ead%3A208f6ede-6e5a-4080-ad91-f2e62e27c35a
set-cookie: sppc_uuid=cef1d2d9-4098-4deb-ada9-f46996ba04d9; max-age=31536000; path=/; secure; SameSite=None
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
|
|
| static.addtoany.com/menu/svg/icons/viber.js | 172.67.39.148 | 200 OK | 879 B |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/viber.js IP172.67.39.148:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (1003), with no line terminators Hashaeffbbeba6dd343b89fdc22cdf23f8c8 7be9f0a8fbd22f85cd4408ed04b69e98cbb79de7 c38246b300667ea8ab28940a729e65168f981baf8adc8d708c299e85b9e2dcee
GET /menu/svg/icons/viber.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"ab1da422605fdb35fd02440984d36475"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jdllmjIIRPRO2sHETKfzSGgQqV%2B5f6wC121kOiSfff%2FleOBxlgQKvNn%2B2DUe%2Fr5kpz9KGft%2FRsHDcGcIpGt%2F42uj0Qb%2BUMIa9aqfRrxL31k1iZW4bD4Y1%2BVj76SQGbCP3FxdALOTUrcyP3H539%2BTGVdC"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1109
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a98201e887712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| r.mylot.com/p.aspx?u=a8d68d99-7a9a-4ee0-82f3-25de7b37d3cb | 18.233.59.62 | 200 OK | 526 B |
URL GET HTTP/2r.mylot.com/p.aspx?u=a8d68d99-7a9a-4ee0-82f3-25de7b37d3cb IP18.233.59.62:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerAmazon Subject*.mylot.com Fingerprint81:6A:9D:DF:7B:03:C9:DC:EE:3A:40:EA:60:8A:17:66:07:6C:3E:6C ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (526), with no line terminators Hash484c1025148e85cfadcd70b07af0d480 9bd1d0bfe5a9d35243c6bc9179281691a69d16d3 510c6aa79238c591865c986c764218a70e42125d204768591138495b951879aa
GET /p.aspx?u=a8d68d99-7a9a-4ee0-82f3-25de7b37d3cb HTTP/1.1
Host: r.mylot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:25 GMT
content-type: text/html; charset=utf-8
content-length: 526
cache-control: private
set-cookie: ASP.NET_SessionId=z5fvlr0ouxeu04dhh0lfx5tl; path=/; HttpOnly; SameSite=Lax
X-Firefox-Spdy: h2
|
|
| trafforsrv.com/click.php?id=0947f99c-6c74-43f5-8d14-d86e25056ead%3A208f6ede-6e5a-4080-ad91-f2e62e27c35a | 216.18.168.28 | 302 Found | 0 B |
URL GET HTTP/1.1trafforsrv.com/click.php?id=0947f99c-6c74-43f5-8d14-d86e25056ead%3A208f6ede-6e5a-4080-ad91-f2e62e27c35a IP216.18.168.28:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerSectigo Limited Subject*.trafforsrv.com FingerprintC4:DD:C6:65:15:A0:54:82:7D:C9:E3:43:74:BA:ED:16:CC:DD:F5:00 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 16 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click.php?id=0947f99c-6c74-43f5-8d14-d86e25056ead%3A208f6ede-6e5a-4080-ad91-f2e62e27c35a HTTP/1.1
Host: trafforsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
server: nginx
date: Fri, 26 Apr 2024 21:01:25 GMT
content-length: 0
location: https://s.pemsrv.com/splash.php?idzone=5040978&type=8
set-cookie: sppc_uuid=73267aa6-547e-443a-99c4-eae54c4a86cd; max-age=31536000; path=/; secure; SameSite=None
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
|
|
| xml.cachegorilla.com/redirect?feed=612977&auth=kAeZgJ&pubid=197570 | 173.239.53.20 | 302 Found | 0 B |
URL GET HTTP/1.1xml.cachegorilla.com/redirect?feed=612977&auth=kAeZgJ&pubid=197570 IP173.239.53.20:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerSectigo Limited Subject*.cachegorilla.com Fingerprint29:B3:53:29:E3:6F:D3:48:F6:66:3E:78:57:05:A6:19:12:0D:2C:4A ValidityFri, 10 Nov 2023 00:00:00 GMT - Sun, 10 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=612977&auth=kAeZgJ&pubid=197570 HTTP/1.1
Host: xml.cachegorilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 21:01:25 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://becast.onionlive.workers.dev/
|
|
| xml.cachegorilla.com/redirect?feed=612978&auth=7PcDFD&pubid=197570 | 173.239.53.20 | 302 Found | 0 B |
URL GET HTTP/1.1xml.cachegorilla.com/redirect?feed=612978&auth=7PcDFD&pubid=197570 IP173.239.53.20:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerSectigo Limited Subject*.cachegorilla.com Fingerprint29:B3:53:29:E3:6F:D3:48:F6:66:3E:78:57:05:A6:19:12:0D:2C:4A ValidityFri, 10 Nov 2023 00:00:00 GMT - Sun, 10 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=612978&auth=7PcDFD&pubid=197570 HTTP/1.1
Host: xml.cachegorilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 21:01:25 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://becast.onionlive.workers.dev/
|
|
| bid.bidclickmedia.com/load | 172.67.205.77 | 302 Found | 361 B |
URL POST HTTP/3bid.bidclickmedia.com/load IP172.67.205.77:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text Hash6610c77cad5adb691fd5f9ffa06b9486 d003b0d6d8bb61e5fd17dc635c017f6393e0c24c 83695861f8ded5db81f9c1e185cdf9177d18c57bfe1196b03468f2d8ac22bc50
POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/Pj8pz0z
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: text/html; charset=utf-8
location: https://xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=61fgF2pUQx8lnbLTRphP7jX1ennohfPqWo%2FoDunxvypNLdUVYprY9nzQHTPVGGmX155N2MFT2ZKlZW2G2awCswfYxD1NvvRpM9QT6Eea0TogujC85bsvDtcVT7YQAcp0tHYgDiNSji8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a98203d9741c06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| xml.xmlking.com/redirect?feed=591363&auth=0yfQfB&pubid=195183 | 174.137.133.17 | 200 OK | 0 B |
URL GET HTTP/1.1xml.xmlking.com/redirect?feed=591363&auth=0yfQfB&pubid=195183 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerSectigo Limited Subject*.xmlking.com Fingerprint61:F0:9B:53:D2:DF:03:A0:08:09:BE:79:B1:70:10:34:65:07:7B:6D ValidityWed, 26 Jul 2023 00:00:00 GMT - Fri, 26 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=591363&auth=0yfQfB&pubid=195183 HTTP/1.1
Host: xml.xmlking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 21:01:25 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
|
|
| s.pemsrv.com/splash.php?idzone=5040978&type=8 | 95.211.229.245 | 200 OK | 478 B |
URL GET HTTP/1.1s.pemsrv.com/splash.php?idzone=5040978&type=8 IP95.211.229.245:443 ASN#60781 LeaseWeb Netherlands B.V.
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectpemsrv.com FingerprintB9:FB:69:72:AD:12:6D:F5:F8:05:0B:EE:45:B6:E0:BD:1A:B2:E5:0F ValidityTue, 27 Feb 2024 16:50:21 GMT - Mon, 27 May 2024 16:50:20 GMT
File typeHTML document, ASCII text, with very long lines (717) Hash0a0facbef164c9e58f80ef97a1a0827e 11213522b288f0683c8f640b87b1e4e246ad8030 8b9ce633f14b63226137606c6901f59c4b354efbce58f82c4def4f93e5ed9aaf
GET /splash.php?idzone=5040978&type=8 HTTP/1.1
Host: s.pemsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 21:01:25 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: X-CH-VALUES
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22662c1625bd6582.947438182986040473%22%3B%7D; expires=Sun, 26 Apr 2026 21:01:25 GMT; path=; domain=.pemsrv.com; Secure; SameSite=none
Accept-Ch: Sec-Ch-Ua,Sec-Ch-Ua-Mobile,Sec-Ch-Ua-Full-Version,Sec-Ch-Ua-Full-Version-list,Sec-Ch-Ua-Platform,Sec-Ch-Ua-Platform-Version,Sec-Ch-Ua-Bitness,Sec-Ch-Ua-Arch
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
|
| xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183 | 174.137.133.17 | 200 OK | 0 B |
URL GET HTTP/1.1xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerSectigo Limited Subject*.xmlking.com Fingerprint61:F0:9B:53:D2:DF:03:A0:08:09:BE:79:B1:70:10:34:65:07:7B:6D ValidityWed, 26 Jul 2023 00:00:00 GMT - Fri, 26 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=591364&auth=oodr9S&pubid=195183 HTTP/1.1
Host: xml.xmlking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 21:01:25 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hashb644a329384eb02aa35adb91252ac31c 8f3651e461cc701ae31dfc9c12bb03944e85ec7c 476a6819757a8d9d939ef6c4176553183e508e3e9d1593589baa715718826cd6
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 26 Apr 2024 21:01:26 GMT
Last-Modified: Fri, 26 Apr 2024 19:49:34 GMT
Server: ECAcc (ska/F7A3)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: G_auVZjabkerXbfCPNj9tVVRNntnE0fozloALSLYoT28MzCrxP5DvQ==
Age: 4312
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hashb644a329384eb02aa35adb91252ac31c 8f3651e461cc701ae31dfc9c12bb03944e85ec7c 476a6819757a8d9d939ef6c4176553183e508e3e9d1593589baa715718826cd6
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 26 Apr 2024 21:01:26 GMT
Last-Modified: Fri, 26 Apr 2024 20:30:16 GMT
Server: ECAcc (ska/F7A7)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5llm0xMl50CU7I0gXOflCQB4MUQjhiIHEIM3RA3jW2HWoKpIi4pG0w==
Age: 1870
|
|
| filter.clickmeniaads.com/filter?q=&i=HGg0S4LNNnw_0&ci=-911916373868882417&t=563077839&h=1 | 174.137.133.17 | 200 OK | 13 kB |
URL GET HTTP/1.1filter.clickmeniaads.com/filter?q=&i=HGg0S4LNNnw_0&ci=-911916373868882417&t=563077839&h=1 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectclickmeniaads.com Fingerprint9C:B4:FB:1D:5C:F2:AC:0A:E5:7E:04:E4:31:1E:A7:4A:49:8B:3B:5B ValidityFri, 05 Apr 2024 06:37:20 GMT - Thu, 04 Jul 2024 06:37:19 GMT
File typeHTML document, ASCII text, with very long lines (524) Hash2fa9b6601bcbf4f314e0de0f46dfd716 c5c17225b4b55e7239f6187ce42f770bbfccc30d f0ea0e7e194334e8ca0e6f07561d3408bf583e6d838a17132f66c75d9da7770f
GET /filter?q=&i=HGg0S4LNNnw_0&ci=-911916373868882417&t=563077839&h=1 HTTP/1.1
Host: filter.clickmeniaads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 21:01:26 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 12944
Connection: keep-alive
Referrer-Policy: unsafe-url
Cache-Control: no-store
Set-Cookie: c-1132570969=1455913469
x3328772=1455913469; Domain=.clickmeniaads.com
|
|
| s.pemsrv.com/splash.php?idzone=5040978&type=8&p=https%3A%2F%2Fbid.bidclickmedia.com%2F&tested=1&check=4982d74cc5945eb5f443cbeab8c29c8c&screen_resolution=1280x1024&container_resolution=1916x1076&iframe=1 | 95.211.229.245 | 302 Found | 0 B |
URL GET HTTP/1.1s.pemsrv.com/splash.php?idzone=5040978&type=8&p=https%3A%2F%2Fbid.bidclickmedia.com%2F&tested=1&check=4982d74cc5945eb5f443cbeab8c29c8c&screen_resolution=1280x1024&container_resolution=1916x1076&iframe=1 IP95.211.229.245:443 ASN#60781 LeaseWeb Netherlands B.V.
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectpemsrv.com FingerprintB9:FB:69:72:AD:12:6D:F5:F8:05:0B:EE:45:B6:E0:BD:1A:B2:E5:0F ValidityTue, 27 Feb 2024 16:50:21 GMT - Mon, 27 May 2024 16:50:20 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /splash.php?idzone=5040978&type=8&p=https%3A%2F%2Fbid.bidclickmedia.com%2F&tested=1&check=4982d74cc5945eb5f443cbeab8c29c8c&screen_resolution=1280x1024&container_resolution=1916x1076&iframe=1 HTTP/1.1
Host: s.pemsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s.pemsrv.com/splash.php?idzone=5040978&type=8
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22662c1625bd6582.947438182986040473%22%3B%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 21:01:26 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: X-CH-VALUES
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22662c1625bd6582.947438182986040473%22%3B%7D; expires=Sun, 26 Apr 2026 21:01:26 GMT; path=; domain=.pemsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-link%22%3A%22v4%7C%7CNOR%7C5040978%7C95887222%7C203712%7C%7C508%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C662c1625bd6582.947438182986040473%7Cc83b2609dce0c49ddeb451cf74df4f3a%7C0%7Cbid.bidclickmedia.com%7C1280x1024%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1714165286%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cfb9e7cfaac6ae448cec33e999c4a0dd4%7Cok%22%7D; expires=Thu, 25 Jul 2024 21:01:26 GMT; path=/; domain=.pemsrv.com; Secure; SameSite=none
Location: https://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyadzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrn1mrnq02rqtnjupspotmtnutrlplpsodrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTUzV1T21uc6V0rpXSuldK6V0rpXSu40u3s14zz1rz3ppt131oo3uuu1pzl22pcH2A
Accept-CH:
X-Robots-Tag: noindex, follow
|
|
| herma-tor.com/zclkvisitor/24682e94-0410-11ef-9f9b-0afff203bd9f/919af160-92fb-11ec-937b-0a3311c5e6b7?campaignid=b9792a50-4807-11ed-8e2b-128084d1ce51 | 204.236.207.139 | 302 Found | 0 B |
URL GET HTTP/2herma-tor.com/zclkvisitor/24682e94-0410-11ef-9f9b-0afff203bd9f/919af160-92fb-11ec-937b-0a3311c5e6b7?campaignid=b9792a50-4807-11ed-8e2b-128084d1ce51 IP204.236.207.139:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerAmazon Subjectherma-tor.com FingerprintAB:65:97:4C:0F:5A:C8:D3:B7:B1:FB:B5:B7:88:A4:02:B6:C5:3F:1C ValidityMon, 22 Apr 2024 00:00:00 GMT - Wed, 21 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zclkvisitor/24682e94-0410-11ef-9f9b-0afff203bd9f/919af160-92fb-11ec-937b-0a3311c5e6b7?campaignid=b9792a50-4807-11ed-8e2b-128084d1ce51 HTTP/1.1
Host: herma-tor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://r.mylot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 Apr 2024 21:01:26 GMT
content-length: 0
location: https://shopde.pricedeals.shop/go.php?market=no&zr24682e94041011ef9f9b0afff203bd9f30c8657c9f254524a217df436e58a39608169379bbbf049da0
access-control-allow-origin: *
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
cache-control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-webkit-csp: default-src 'self'; script-src 'self' 'unsafe-inline'
X-Firefox-Spdy: h2
|
|
| herma-tor.com/zclkvisitor/24632581-0410-11ef-9e3c-1218eadc6375/919af160-92fb-11ec-937b-0a3311c5e6b7?campaignid=b9792a50-4807-11ed-8e2b-128084d1ce51 | 204.236.207.139 | 302 Found | 0 B |
URL GET HTTP/2herma-tor.com/zclkvisitor/24632581-0410-11ef-9e3c-1218eadc6375/919af160-92fb-11ec-937b-0a3311c5e6b7?campaignid=b9792a50-4807-11ed-8e2b-128084d1ce51 IP204.236.207.139:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerAmazon Subjectherma-tor.com FingerprintAB:65:97:4C:0F:5A:C8:D3:B7:B1:FB:B5:B7:88:A4:02:B6:C5:3F:1C ValidityMon, 22 Apr 2024 00:00:00 GMT - Wed, 21 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zclkvisitor/24632581-0410-11ef-9e3c-1218eadc6375/919af160-92fb-11ec-937b-0a3311c5e6b7?campaignid=b9792a50-4807-11ed-8e2b-128084d1ce51 HTTP/1.1
Host: herma-tor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://r.mylot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 Apr 2024 21:01:26 GMT
content-length: 0
location: https://shopde.pricedeals.shop/go.php?market=no&zr24632581041011ef9e3c1218eadc63755291e2c3ac2c4bc4845ce2311f1b4ecc0816931d960a55ebbf
access-control-allow-origin: *
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
cache-control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-webkit-csp: default-src 'self'; script-src 'self' 'unsafe-inline'
X-Firefox-Spdy: h2
|
|
| bedrapiona.com/sftouch?userId=00804a3327094d68f5c8ff6e81141c92&z=5615727&p_rid=ca4e23e4-82ce-47bd-ba1e-9f025973f2ee&p_src=sf&branchId=0&rb=QEoOOYNB2V5OcMoIOl3MUbcSMsztr6h1BkOqZa7as5OKTq2yiJ2aCBj34BgzL12FZ6Df6uDMNsGriNC7Nl-mvCt9AoJBSM5c55rXuPjnY1BB02ICHLxoYrQwYQkPPkcuUXk4N5Pe9Pct02Znt04SkEb_34Boe5YZ5a91EmuoG2xoOrAPmWsf4R6aEOyMYyNIKxPgvdj3wKj4rzUabjmq5injveyNuXdKgeecDRTSDGImhF1_J0Avy0wJkSHHs3S2Do80lfPzPfHKgJ-4u5YZOA== | 139.45.197.234 | | 2 B |
URL bedrapiona.com/sftouch?userId=00804a3327094d68f5c8ff6e81141c92&z=5615727&p_rid=ca4e23e4-82ce-47bd-ba1e-9f025973f2ee&p_src=sf&branchId=0&rb=QEoOOYNB2V5OcMoIOl3MUbcSMsztr6h1BkOqZa7as5OKTq2yiJ2aCBj34BgzL12FZ6Df6uDMNsGriNC7Nl-mvCt9AoJBSM5c55rXuPjnY1BB02ICHLxoYrQwYQkPPkcuUXk4N5Pe9Pct02Znt04SkEb_34Boe5YZ5a91EmuoG2xoOrAPmWsf4R6aEOyMYyNIKxPgvdj3wKj4rzUabjmq5injveyNuXdKgeecDRTSDGImhF1_J0Avy0wJkSHHs3S2Do80lfPzPfHKgJ-4u5YZOA== IP139.45.197.234:0
File typeASCII text, with no line terminators Hash444bcb3a3fcf8389296c49467f27e1d6 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /sftouch?userId=00804a3327094d68f5c8ff6e81141c92&z=5615727&p_rid=ca4e23e4-82ce-47bd-ba1e-9f025973f2ee&p_src=sf&branchId=0&rb=QEoOOYNB2V5OcMoIOl3MUbcSMsztr6h1BkOqZa7as5OKTq2yiJ2aCBj34BgzL12FZ6Df6uDMNsGriNC7Nl-mvCt9AoJBSM5c55rXuPjnY1BB02ICHLxoYrQwYQkPPkcuUXk4N5Pe9Pct02Znt04SkEb_34Boe5YZ5a91EmuoG2xoOrAPmWsf4R6aEOyMYyNIKxPgvdj3wKj4rzUabjmq5injveyNuXdKgeecDRTSDGImhF1_J0Avy0wJkSHHs3S2Do80lfPzPfHKgJ-4u5YZOA== HTTP/1.1
Host: bedrapiona.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bedrapiona.com
DNT: 1
Connection: keep-alive
Referer: https://bedrapiona.com/4/5615727/
Cookie: OAID=00804a3327094d68f5c8ff6e81141c92; oaidts=1714165286
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:26 GMT
content-type: text/plain
content-length: 2
x-trace-id: 31ffd4eda8d4e01ed2b02761842e461b
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://bedrapiona.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| shopde.pricedeals.shop/go.php?market=no&zr24632581041011ef9e3c1218eadc63755291e2c3ac2c4bc4845ce2311f1b4ecc0816931d960a55ebbf | 135.181.6.240 | 200 OK | 639 B |
URL GET HTTP/1.1shopde.pricedeals.shop/go.php?market=no&zr24632581041011ef9e3c1218eadc63755291e2c3ac2c4bc4845ce2311f1b4ecc0816931d960a55ebbf IP135.181.6.240:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectshopde.pricedeals.shop Fingerprint90:0F:E8:D2:5A:53:A2:54:BD:E6:E6:02:01:DB:5D:32:91:11:0B:79 ValiditySun, 18 Feb 2024 08:55:40 GMT - Sat, 18 May 2024 08:55:39 GMT
File typeHTML document, ASCII text, with very long lines (548) Hash12f66a37f43b5cfa3ebce28f5604fcad 12ca55242283ba51f4cee58b1655f8f8b6cbf9d3 faa469f2de37d96cdde6f083fca2d20907fd284fc11d495471b5954718f622bf
GET /go.php?market=no&zr24632581041011ef9e3c1218eadc63755291e2c3ac2c4bc4845ce2311f1b4ecc0816931d960a55ebbf HTTP/1.1
Host: shopde.pricedeals.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://r.mylot.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 21:01:26 GMT
Server: Apache/2.4.56 (Debian)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 639
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| my.rtmark.net/img.gif?f=merge&userId=00804a3327094d68f5c8ff6e81141c92&z=5615727&p_rid=ca4e23e4-82ce-47bd-ba1e-9f025973f2ee&p_src=sf | 139.45.195.8 | | 43 B |
URL my.rtmark.net/img.gif?f=merge&userId=00804a3327094d68f5c8ff6e81141c92&z=5615727&p_rid=ca4e23e4-82ce-47bd-ba1e-9f025973f2ee&p_src=sf IP139.45.195.8:0
File typeGIF image data, version 89a, 1 x 1 Hashb4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=merge&userId=00804a3327094d68f5c8ff6e81141c92&z=5615727&p_rid=ca4e23e4-82ce-47bd-ba1e-9f025973f2ee&p_src=sf HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bedrapiona.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:26 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=00804a3327094d68f5c8ff6e81141c92; expires=Sat, 26 Apr 2025 21:01:26 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| bedrapiona.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=ca4e23e4-82ce-47bd-ba1e-9f025973f2ee | 139.45.197.234 | | 12 B |
URL bedrapiona.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=ca4e23e4-82ce-47bd-ba1e-9f025973f2ee IP139.45.197.234:0
Hashadb4650bfc9d2a73d4dd69583b0ceb14 1ce399d6e936232aaf2192cd7903a279c5015f22 21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=ca4e23e4-82ce-47bd-ba1e-9f025973f2ee HTTP/1.1
Host: bedrapiona.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1411
Origin: https://bedrapiona.com
DNT: 1
Connection: keep-alive
Referer: https://bedrapiona.com/4/5615727/
Cookie: OAID=00804a3327094d68f5c8ff6e81141c92; oaidts=1714165286
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:26 GMT
content-type: application/json; charset=utf-8
content-length: 12
access-control-allow-origin: https://bedrapiona.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| bedrapiona.com/?z=5615727&syncedCookie=true&rhd=false | 139.45.197.234 | 302 Found | 0 B |
URL POST HTTP/2bedrapiona.com/?z=5615727&syncedCookie=true&rhd=false IP139.45.197.234:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectbedrapiona.com FingerprintB5:D0:EF:3C:81:82:64:AB:B7:2E:5C:80:71:47:70:41:F0:36:B5:BF ValidityWed, 20 Mar 2024 19:29:11 GMT - Tue, 18 Jun 2024 19:29:10 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /?z=5615727&syncedCookie=true&rhd=false HTTP/1.1
Host: bedrapiona.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 604
Origin: https://bedrapiona.com
DNT: 1
Connection: keep-alive
Referer: https://bedrapiona.com/afu.php?zoneid=5615727&var=5615727&rid=e8DJqkaKU-A8kEnzk7U3FA%3D%3D&rhd=false&ab2r=0&sf=1
Cookie: OAID=00804a3327094d68f5c8ff6e81141c92; oaidts=1714165286
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 26 Apr 2024 21:01:26 GMT
content-length: 0
location: https://intothespirits.com/click?trvid=12632&clickid=807830363643846795&cost=0.002599&language=en&creaid=20536676&zoneid=5615727&browserversion=96&os=linux&browser=firefox®ion=03&connection.type=broadband&osversion=unspecified_linux&subzone_id=0
x-trace-id: 6b4238ec21e865d6bfa190b9e0370816
link: <https://intothespirits.com>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
referrer-policy: no-referrer
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://bedrapiona.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00804a3327094d68f5c8ff6e81141c92; expires=Sat, 26 Apr 2025 21:01:26 GMT; path=/; secure; SameSite=None
oaidts=1714165286; expires=Sat, 26 Apr 2025 21:01:26 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 03 May 2024 21:01:26 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| offmantiner.com/sftouch?userId=00804a770ffa4205f8f404a9bfe63e24&z=6120639&p_rid=3eb1cd71-4d5a-448f-aaa6-7256ca5d6273&p_src=sf&branchId=0&rb=_x7C3IYQUrAxUhmqmGDHcf5kp65qhBgSd8Ls8xlEHO4wYIGPHfkYjwC9VEo2nwPtw12Sk7BuWNzyBAj8bA74bzHkHSWBlrbJZwfvha5gMwDSVfS8lAR8rX8SGbbMFMkD84S1SAUoJLTr1HTCfTlDxAYrtf6WVnznV5Vf6Kq6fhYGOu7x6qHoVX9evfHjvCRfzPgNi3sqnCjU2aGcLqKiOkEMLXJT3-kv94X7clkJb6Rxyc7aV3cSfnwj6h7CwZzjKBhkfXOeBapJqOBuli8IYu93KZOMpwD_kvwBUg== | 139.45.197.245 | | 2 B |
URL offmantiner.com/sftouch?userId=00804a770ffa4205f8f404a9bfe63e24&z=6120639&p_rid=3eb1cd71-4d5a-448f-aaa6-7256ca5d6273&p_src=sf&branchId=0&rb=_x7C3IYQUrAxUhmqmGDHcf5kp65qhBgSd8Ls8xlEHO4wYIGPHfkYjwC9VEo2nwPtw12Sk7BuWNzyBAj8bA74bzHkHSWBlrbJZwfvha5gMwDSVfS8lAR8rX8SGbbMFMkD84S1SAUoJLTr1HTCfTlDxAYrtf6WVnznV5Vf6Kq6fhYGOu7x6qHoVX9evfHjvCRfzPgNi3sqnCjU2aGcLqKiOkEMLXJT3-kv94X7clkJb6Rxyc7aV3cSfnwj6h7CwZzjKBhkfXOeBapJqOBuli8IYu93KZOMpwD_kvwBUg== IP139.45.197.245:0
File typeASCII text, with no line terminators Hash444bcb3a3fcf8389296c49467f27e1d6 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /sftouch?userId=00804a770ffa4205f8f404a9bfe63e24&z=6120639&p_rid=3eb1cd71-4d5a-448f-aaa6-7256ca5d6273&p_src=sf&branchId=0&rb=_x7C3IYQUrAxUhmqmGDHcf5kp65qhBgSd8Ls8xlEHO4wYIGPHfkYjwC9VEo2nwPtw12Sk7BuWNzyBAj8bA74bzHkHSWBlrbJZwfvha5gMwDSVfS8lAR8rX8SGbbMFMkD84S1SAUoJLTr1HTCfTlDxAYrtf6WVnznV5Vf6Kq6fhYGOu7x6qHoVX9evfHjvCRfzPgNi3sqnCjU2aGcLqKiOkEMLXJT3-kv94X7clkJb6Rxyc7aV3cSfnwj6h7CwZzjKBhkfXOeBapJqOBuli8IYu93KZOMpwD_kvwBUg== HTTP/1.1
Host: offmantiner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://offmantiner.com
DNT: 1
Connection: keep-alive
Referer: https://offmantiner.com/4/6120639/
Cookie: OAID=00804a23e36246effcfc4e7b4dc2836c; oaidts=1714165286
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:26 GMT
content-type: text/plain
content-length: 2
x-trace-id: 08473f6bb5efafac87f6d00dabbbe8fa
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://offmantiner.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| my.rtmark.net/img.gif?f=merge&userId=00804a770ffa4205f8f404a9bfe63e24&z=6120639&p_rid=3eb1cd71-4d5a-448f-aaa6-7256ca5d6273&p_src=sf | 139.45.195.8 | | 43 B |
URL my.rtmark.net/img.gif?f=merge&userId=00804a770ffa4205f8f404a9bfe63e24&z=6120639&p_rid=3eb1cd71-4d5a-448f-aaa6-7256ca5d6273&p_src=sf IP139.45.195.8:0
File typeGIF image data, version 89a, 1 x 1 Hashb4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=merge&userId=00804a770ffa4205f8f404a9bfe63e24&z=6120639&p_rid=3eb1cd71-4d5a-448f-aaa6-7256ca5d6273&p_src=sf HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offmantiner.com/
Cookie: ID=00804a3327094d68f5c8ff6e81141c92
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:26 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=00804a3327094d68f5c8ff6e81141c92; expires=Sat, 26 Apr 2025 21:01:26 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| shopde.pricedeals.shop/go.php?market=no&zr24682e94041011ef9f9b0afff203bd9f30c8657c9f254524a217df436e58a39608169379bbbf049da0 | 135.181.6.240 | 200 OK | 646 B |
URL GET HTTP/1.1shopde.pricedeals.shop/go.php?market=no&zr24682e94041011ef9f9b0afff203bd9f30c8657c9f254524a217df436e58a39608169379bbbf049da0 IP135.181.6.240:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectshopde.pricedeals.shop Fingerprint90:0F:E8:D2:5A:53:A2:54:BD:E6:E6:02:01:DB:5D:32:91:11:0B:79 ValiditySun, 18 Feb 2024 08:55:40 GMT - Sat, 18 May 2024 08:55:39 GMT
File typeHTML document, ASCII text, with very long lines (556) Hash1ba164309dc8fa9328bb1a5d359a44e7 299a58d3a660f5b169ce5802ef82f8a61ba9f6f5 f9617cab9cc746241d7f4d0c91efecf3627f08810dc3906f9e95b043beaee2d7
GET /go.php?market=no&zr24682e94041011ef9f9b0afff203bd9f30c8657c9f254524a217df436e58a39608169379bbbf049da0 HTTP/1.1
Host: shopde.pricedeals.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://r.mylot.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 21:01:26 GMT
Server: Apache/2.4.56 (Debian)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 646
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| offmantiner.com/sftouch?userId=00804a23e36246effcfc4e7b4dc2836c&z=6120639&p_rid=5c63e693-f9e8-41af-8380-c7726a358e46&p_src=sf&branchId=0&rb=SS-H-8vMTCZrLoFZTSenRGPu0D2kUQCw6Rn3bFVeZXVVzZFzzRjj7Z-1afHJhRymeX4haA7EMfuac-Qroju9s723wZf1LlRunMta6Y2vzuuAC_nEOCJfT6Kk6xJCGQFsOU2ZDujIw3WOplvctwES4j7pKd0-sFZOcJ0Omb5y7POoqMeU31aSoO4SuqVggN6RrjJjlqjyYOGewQXRlOVs5km82nqKPTcTqWEemYUCgDOLZD1yO9feX5i6wk0PlvLXq4OqQUWDbbjmLBIA5u7K9xCjl8wJ1A2qtFw6HQ== | 139.45.197.245 | | 2 B |
URL offmantiner.com/sftouch?userId=00804a23e36246effcfc4e7b4dc2836c&z=6120639&p_rid=5c63e693-f9e8-41af-8380-c7726a358e46&p_src=sf&branchId=0&rb=SS-H-8vMTCZrLoFZTSenRGPu0D2kUQCw6Rn3bFVeZXVVzZFzzRjj7Z-1afHJhRymeX4haA7EMfuac-Qroju9s723wZf1LlRunMta6Y2vzuuAC_nEOCJfT6Kk6xJCGQFsOU2ZDujIw3WOplvctwES4j7pKd0-sFZOcJ0Omb5y7POoqMeU31aSoO4SuqVggN6RrjJjlqjyYOGewQXRlOVs5km82nqKPTcTqWEemYUCgDOLZD1yO9feX5i6wk0PlvLXq4OqQUWDbbjmLBIA5u7K9xCjl8wJ1A2qtFw6HQ== IP139.45.197.245:0
File typeASCII text, with no line terminators Hash444bcb3a3fcf8389296c49467f27e1d6 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /sftouch?userId=00804a23e36246effcfc4e7b4dc2836c&z=6120639&p_rid=5c63e693-f9e8-41af-8380-c7726a358e46&p_src=sf&branchId=0&rb=SS-H-8vMTCZrLoFZTSenRGPu0D2kUQCw6Rn3bFVeZXVVzZFzzRjj7Z-1afHJhRymeX4haA7EMfuac-Qroju9s723wZf1LlRunMta6Y2vzuuAC_nEOCJfT6Kk6xJCGQFsOU2ZDujIw3WOplvctwES4j7pKd0-sFZOcJ0Omb5y7POoqMeU31aSoO4SuqVggN6RrjJjlqjyYOGewQXRlOVs5km82nqKPTcTqWEemYUCgDOLZD1yO9feX5i6wk0PlvLXq4OqQUWDbbjmLBIA5u7K9xCjl8wJ1A2qtFw6HQ== HTTP/1.1
Host: offmantiner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://offmantiner.com
DNT: 1
Connection: keep-alive
Referer: https://offmantiner.com/4/6120639/
Cookie: OAID=00804a23e36246effcfc4e7b4dc2836c; oaidts=1714165286
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:26 GMT
content-type: text/plain
content-length: 2
x-trace-id: aa713f6a2932f8c57df326fadc1291f4
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://offmantiner.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| intothespirits.com/click?trvid=12632&clickid=807830363643846795&cost=0.002599&language=en&creaid=20536676&zoneid=5615727&browserversion=96&os=linux&browser=firefox®ion=03&connection.type=broadband&osversion=unspecified_linux&subzone_id=0 | 3.125.239.17 | 200 OK | 1.2 kB |
URL GET HTTP/2intothespirits.com/click?trvid=12632&clickid=807830363643846795&cost=0.002599&language=en&creaid=20536676&zoneid=5615727&browserversion=96&os=linux&browser=firefox®ion=03&connection.type=broadband&osversion=unspecified_linux&subzone_id=0 IP3.125.239.17:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectintothespirits.com Fingerprint42:86:B7:FB:4F:91:02:C7:75:E2:06:41:56:85:74:4B:D8:97:BE:C3 ValidityMon, 25 Mar 2024 22:01:23 GMT - Sun, 23 Jun 2024 22:01:22 GMT
File typeHTML document, ASCII text, with very long lines (389) Hashb1adfdb5649ea3e22691e7f9e8105558 482ab5fc8a134c3f3f2f2abe9a1aa9d8104699ee 6164acde716207c952236ad3b949a5c42d1cc8ab46041c31e31d814a342b7757
GET /click?trvid=12632&clickid=807830363643846795&cost=0.002599&language=en&creaid=20536676&zoneid=5615727&browserversion=96&os=linux&browser=firefox®ion=03&connection.type=broadband&osversion=unspecified_linux&subzone_id=0 HTTP/1.1
Host: intothespirits.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:26 GMT
content-type: text/html; charset=utf-8
content-length: 1226
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
expires: Thu, 01 Jan 1970 00:00:00 UTC
pragma: no-cache
set-cookie: ClickDataNG=H4sIAAAAAAAA_2RUXY_bNhD8K8Y-tYAgk5IlWwyEwPG1RYH7KHBNkIcCB5pc-djQpMAP1b4k_72gJBtu86bdGe4sl7P6CgM6r6wBBjQnOYEMwrlHYCQDH_d_Xr6FNQO6gBJYx7XHDIRW4svvEhisPu238u9-F7afHWQgeUBgdE1XtK6KTZ2B4Meeq4NJbFrUZZGB8rs_ttdazgYelB0JRV2WGbioMUUkA4dSORThAcOrlcCqDLyNTow4zUBzI5U5zOw5-ug0MIAMbNehm4Q3NIO940a8ztwRm5ivIfSeLZc-H--Vc63w1Dv0Phf2uMTly90v67fmvnzPu_Z_FxbWB2AkJ6SoU7sDmjhNrednG0eMzmq76BwacQYGH5_vIIPo1I28MsGGV_S9cipM0mM_74MblGzH4f0Vk9CYVrLdkPWmJGVd1qtys6rXTTXj1od27KlqmimluTlEfsAWzcxxyJVsC1KVdb2up-SbNahkW9W0WhfrKbd39h-PbvZK28xU61utTDz9h9R2ymFn56TDQzpByktXxqBIT50nm7V7Z7nccyMvBS8S0fgeheoUypcbDR_3qb8XJdtkVdVvpUyPBAwamjckXxU5rVa3UD35IHp02wOaAAwe7JvSmi-rnCx--kzpu8V9klicNvVLvXq3cANr6pz8vPgNxRe7LAglhBK6-HW62TKBkF66Q4duqi9xUAKv-2JTS2PV5EH_6bplkDw4DgoYzAWvxz84buRtvQcrUd8mHvkRp1hMWrDje43Lu-f7dGnfA4MPWp0Wz1bHNGc_GjSa4JLnHp_Gvg9TL49P3749eW0Xu0Q4J6YK5xsAkoUdmrBLbpsXyqmDMvf9TSo4bjwX0wZ7YCZqnYGIPtgjsK_zgsDFjZABngI6w_X4__jRwpDBQIABmvRFgcHFoykugMFszxSW6fFHYAUM9DzzoQIG3XW-Q7IBKdPXGhhcfZcSG2Dwg98S0KQz8P37vwEAAP__UiuZwiYFAAA=; Expires=Sun, 26 May 2024 21:01:26 GMT; SameSite=None; Secure
ClickDataNgFall=H4sIAAAAAAAA_2RUXY_bNhD8K8Y-tYAgk5IlWwyEwPG1RYH7KHBNkIcCB5pc-djQpMAP1b4k_72gJBtu86bdGe4sl7P6CgM6r6wBBjQnOYEMwrlHYCQDH_d_Xr6FNQO6gBJYx7XHDIRW4svvEhisPu238u9-F7afHWQgeUBgdE1XtK6KTZ2B4Meeq4NJbFrUZZGB8rs_ttdazgYelB0JRV2WGbioMUUkA4dSORThAcOrlcCqDLyNTow4zUBzI5U5zOw5-ug0MIAMbNehm4Q3NIO940a8ztwRm5ivIfSeLZc-H--Vc63w1Dv0Phf2uMTly90v67fmvnzPu_Z_FxbWB2AkJ6SoU7sDmjhNrednG0eMzmq76BwacQYGH5_vIIPo1I28MsGGV_S9cipM0mM_74MblGzH4f0Vk9CYVrLdkPWmJGVd1qtys6rXTTXj1od27KlqmimluTlEfsAWzcxxyJVsC1KVdb2up-SbNahkW9W0WhfrKbd39h-PbvZK28xU61utTDz9h9R2ymFn56TDQzpByktXxqBIT50nm7V7Z7nccyMvBS8S0fgeheoUypcbDR_3qb8XJdtkVdVvpUyPBAwamjckXxU5rVa3UD35IHp02wOaAAwe7JvSmi-rnCx--kzpu8V9klicNvVLvXq3cANr6pz8vPgNxRe7LAglhBK6-HW62TKBkF66Q4duqi9xUAKv-2JTS2PV5EH_6bplkDw4DgoYzAWvxz84buRtvQcrUd8mHvkRp1hMWrDje43Lu-f7dGnfA4MPWp0Wz1bHNGc_GjSa4JLnHp_Gvg9TL49P3749eW0Xu0Q4J6YK5xsAkoUdmrBLbpsXyqmDMvf9TSo4bjwX0wZ7YCZqnYGIPtgjsK_zgsDFjZABngI6w_X4__jRwpDBQIABmvRFgcHFoykugMFszxSW6fFHYAUM9DzzoQIG3XW-Q7IBKdPXGhhcfZcSG2Dwg98S0KQz8P37vwEAAP__UiuZwiYFAAA=; Expires=Sun, 26 May 2024 21:01:26 GMT
X-Firefox-Spdy: h2
|
|
| my.rtmark.net/img.gif?f=merge&userId=00804a23e36246effcfc4e7b4dc2836c&z=6120639&p_rid=5c63e693-f9e8-41af-8380-c7726a358e46&p_src=sf | 139.45.195.8 | | 43 B |
URL my.rtmark.net/img.gif?f=merge&userId=00804a23e36246effcfc4e7b4dc2836c&z=6120639&p_rid=5c63e693-f9e8-41af-8380-c7726a358e46&p_src=sf IP139.45.195.8:0
File typeGIF image data, version 89a, 1 x 1 Hashb4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=merge&userId=00804a23e36246effcfc4e7b4dc2836c&z=6120639&p_rid=5c63e693-f9e8-41af-8380-c7726a358e46&p_src=sf HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offmantiner.com/
Cookie: ID=00804a3327094d68f5c8ff6e81141c92
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:26 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=00804a3327094d68f5c8ff6e81141c92; expires=Sat, 26 Apr 2025 21:01:26 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| offmantiner.com/?z=6120639&syncedCookie=true&rhd=false | 139.45.197.245 | 302 Found | 0 B |
URL POST HTTP/2offmantiner.com/?z=6120639&syncedCookie=true&rhd=false IP139.45.197.245:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectoffmantiner.com FingerprintD7:99:54:4F:68:91:39:12:41:98:52:CC:F1:74:C6:3C:1F:93:F3:04 ValidityMon, 25 Mar 2024 05:10:58 GMT - Sun, 23 Jun 2024 05:10:57 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /?z=6120639&syncedCookie=true&rhd=false HTTP/1.1
Host: offmantiner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 632
Origin: https://offmantiner.com
DNT: 1
Connection: keep-alive
Referer: https://offmantiner.com/afu.php?zoneid=6120639&var=6120639&rid=IUzYL-eT4VvoQwPRHmPGTA%3D%3D&rhd=false&ab2r=0&sf=1
Cookie: OAID=00804a23e36246effcfc4e7b4dc2836c; oaidts=1714165286
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 26 Apr 2024 21:01:26 GMT
content-length: 0
location: https://adserving.unibet.com/redirect.aspx?bid=37950&pid=79982261&sref=GIG&GIG=NO_DESK_SB
x-trace-id: 55d00ae57643db035224ef4a097c11ef
link: <https://adserving.unibet.com>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
referrer-policy: no-referrer
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://offmantiner.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00804a3327094d68f5c8ff6e81141c92; expires=Sat, 26 Apr 2025 21:01:26 GMT; path=/; secure; SameSite=None
oaidts=1714165286; expires=Sat, 26 Apr 2025 21:01:26 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 03 May 2024 21:01:26 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| offmantiner.com/?z=6120639&syncedCookie=true&rhd=false | 139.45.197.245 | 302 Found | 0 B |
URL POST HTTP/2offmantiner.com/?z=6120639&syncedCookie=true&rhd=false IP139.45.197.245:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectoffmantiner.com FingerprintD7:99:54:4F:68:91:39:12:41:98:52:CC:F1:74:C6:3C:1F:93:F3:04 ValidityMon, 25 Mar 2024 05:10:58 GMT - Sun, 23 Jun 2024 05:10:57 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /?z=6120639&syncedCookie=true&rhd=false HTTP/1.1
Host: offmantiner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 632
Origin: https://offmantiner.com
DNT: 1
Connection: keep-alive
Referer: https://offmantiner.com/afu.php?zoneid=6120639&var=6120639&rid=IUzYL-eT4VvoQwPRHmPGTA%3D%3D&rhd=false&ab2r=0&sf=1
Cookie: OAID=00804a23e36246effcfc4e7b4dc2836c; oaidts=1714165286
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 26 Apr 2024 21:01:26 GMT
content-length: 0
location: https://adserving.unibet.com/redirect.aspx?bid=37950&pid=79982261&sref=GIG&GIG=NO_DESK_SB
x-trace-id: 7fc5659d997c3318ef5ed7658ecadc23
link: <https://adserving.unibet.com>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
referrer-policy: no-referrer
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://offmantiner.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00804a3327094d68f5c8ff6e81141c92; expires=Sat, 26 Apr 2025 21:01:26 GMT; path=/; secure; SameSite=None
oaidts=1714165286; expires=Sat, 26 Apr 2025 21:01:26 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 03 May 2024 21:01:26 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| intothespirits.com/double?t=2&d=eyJVUkwiOiJodHRwczovL3MuY2xpY2suYWxpZXhwcmVzcy5jb20vZS9fREU3ejlMMz9hZj00VmJBZGpwQ3RBWHIiLCJSZWRpcmVjdFdvcmRpbmciOiJZb3UgYXJlIGJlaW5nIGF1dG9tYXRpY2FsbHkgcmVkaXJlY3RlZC4iLCJSZWRpcmVjdFRpdGxlIjoiUmVkaXJlY3Rpb24uLi4iLCJSZWRpcmVjdExpbmtUZXh0IjoiT3IgY2xpY2sgaGVyZSB0byBjb250aW51ZS4iLCJJbnN0YWxsSWQiOjQxMDV9 | 3.125.239.17 | 200 OK | 693 B |
URL GET HTTP/2intothespirits.com/double?t=2&d=eyJVUkwiOiJodHRwczovL3MuY2xpY2suYWxpZXhwcmVzcy5jb20vZS9fREU3ejlMMz9hZj00VmJBZGpwQ3RBWHIiLCJSZWRpcmVjdFdvcmRpbmciOiJZb3UgYXJlIGJlaW5nIGF1dG9tYXRpY2FsbHkgcmVkaXJlY3RlZC4iLCJSZWRpcmVjdFRpdGxlIjoiUmVkaXJlY3Rpb24uLi4iLCJSZWRpcmVjdExpbmtUZXh0IjoiT3IgY2xpY2sgaGVyZSB0byBjb250aW51ZS4iLCJJbnN0YWxsSWQiOjQxMDV9 IP3.125.239.17:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectintothespirits.com Fingerprint42:86:B7:FB:4F:91:02:C7:75:E2:06:41:56:85:74:4B:D8:97:BE:C3 ValidityMon, 25 Mar 2024 22:01:23 GMT - Sun, 23 Jun 2024 22:01:22 GMT
File typeHTML document, ASCII text Hash7490a557201dab820c6c7c3df785c073 f0172599988e496f8b3c3a06ae854b5b51c945fb 0a486027a72703ec1e5dc485584ad27c70a0f9c8b24d0a7faec10766b99dcea4
GET /double?t=2&d=eyJVUkwiOiJodHRwczovL3MuY2xpY2suYWxpZXhwcmVzcy5jb20vZS9fREU3ejlMMz9hZj00VmJBZGpwQ3RBWHIiLCJSZWRpcmVjdFdvcmRpbmciOiJZb3UgYXJlIGJlaW5nIGF1dG9tYXRpY2FsbHkgcmVkaXJlY3RlZC4iLCJSZWRpcmVjdFRpdGxlIjoiUmVkaXJlY3Rpb24uLi4iLCJSZWRpcmVjdExpbmtUZXh0IjoiT3IgY2xpY2sgaGVyZSB0byBjb250aW51ZS4iLCJJbnN0YWxsSWQiOjQxMDV9 HTTP/1.1
Host: intothespirits.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ClickDataNG=H4sIAAAAAAAA_2RUXY_bNhD8K8Y-tYAgk5IlWwyEwPG1RYH7KHBNkIcCB5pc-djQpMAP1b4k_72gJBtu86bdGe4sl7P6CgM6r6wBBjQnOYEMwrlHYCQDH_d_Xr6FNQO6gBJYx7XHDIRW4svvEhisPu238u9-F7afHWQgeUBgdE1XtK6KTZ2B4Meeq4NJbFrUZZGB8rs_ttdazgYelB0JRV2WGbioMUUkA4dSORThAcOrlcCqDLyNTow4zUBzI5U5zOw5-ug0MIAMbNehm4Q3NIO940a8ztwRm5ivIfSeLZc-H--Vc63w1Dv0Phf2uMTly90v67fmvnzPu_Z_FxbWB2AkJ6SoU7sDmjhNrednG0eMzmq76BwacQYGH5_vIIPo1I28MsGGV_S9cipM0mM_74MblGzH4f0Vk9CYVrLdkPWmJGVd1qtys6rXTTXj1od27KlqmimluTlEfsAWzcxxyJVsC1KVdb2up-SbNahkW9W0WhfrKbd39h-PbvZK28xU61utTDz9h9R2ymFn56TDQzpByktXxqBIT50nm7V7Z7nccyMvBS8S0fgeheoUypcbDR_3qb8XJdtkVdVvpUyPBAwamjckXxU5rVa3UD35IHp02wOaAAwe7JvSmi-rnCx--kzpu8V9klicNvVLvXq3cANr6pz8vPgNxRe7LAglhBK6-HW62TKBkF66Q4duqi9xUAKv-2JTS2PV5EH_6bplkDw4DgoYzAWvxz84buRtvQcrUd8mHvkRp1hMWrDje43Lu-f7dGnfA4MPWp0Wz1bHNGc_GjSa4JLnHp_Gvg9TL49P3749eW0Xu0Q4J6YK5xsAkoUdmrBLbpsXyqmDMvf9TSo4bjwX0wZ7YCZqnYGIPtgjsK_zgsDFjZABngI6w_X4__jRwpDBQIABmvRFgcHFoykugMFszxSW6fFHYAUM9DzzoQIG3XW-Q7IBKdPXGhhcfZcSG2Dwg98S0KQz8P37vwEAAP__UiuZwiYFAAA=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:26 GMT
content-type: text/html; charset=utf-8
content-length: 693
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
expires: Thu, 01 Jan 1970 00:00:00 UTC
pragma: no-cache
X-Firefox-Spdy: h2
|
|
| xml-v4.clickmeniaads.com/click2?i=HGg0S4LNNnw_0&ci=-911916373868882417&j=rv%3Db%26ss%3D1280x1024%26ws%3D1916x1076%26wp%3D0x0%26ce%3D0%26ck%3Djc%26cv%3D8099%26cs%3D0%26fr%3D1%26hc%3D0%26fl%3Dnull%26jv%3Dnull%26sc%3D24%26hr%3D12%26rf%3Dbid.bidclickmedia.com%26lo%3Dfilter.clickmeniaads.com%26mb%3D0%26hb%3D1%26pl%3DLinux%2Bx86_64%26ua%3DMozilla%252F5.0%2B%28X11%253B%2BLinux%2Bx86_64%253B%2Brv%253A96.0%29%2BGecko%252F20100101%2BFirefox%252F96.0%26nd%3D1%26to%3Dnull%26wbd%3D1%26wbde%3D0%26sqm%3D0%26phj%3D0%26nmj%3D0%26sln%3D0%26es%3D0%26ln%3Den-US%252Cen%26lnl%3D2%26hsc%3D0%26frc%3D0%26dbt%3D0%26prb%3D20100101%26tz%3D0%26hid%3D0%26mq%3D1%26bch%3D%26blv%3D%26my%3D%26geo%3D%26thx%3D0%26the%3D0%26ths%3D0%26cpc%3D%26ocp%3DLinux%2Bx86_64%26hwc%3D48%26hrl%3D%26acd%3Dpmpmm%26vcd%3Dppp%26pal%3D5%26pai%3D1%26pli%3D1%26win%3D1916x1076%26wout%3D1280x1024%26wpof%3D0x0%26bcld%3D1900x19%26scrp%3D0x0%26scrad%3D1280x1024%26spd%3D24%26pxr%3D1%26sck%3D1%26ckl%3D0%26sls%3D1%26sss%3D1%26six%3D1%26sdb%3D0%26vvr%3Dnull%26vrd%3Dnull%26pnt%3Ddenied%26cnvs%3D7f7f7f80%26mmd_ao%3D0%26mmd_ai%3D0%26mmd_vi%3D0 | 174.137.133.17 | 200 OK | 0 B |
URL GET HTTP/1.1xml-v4.clickmeniaads.com/click2?i=HGg0S4LNNnw_0&ci=-911916373868882417&j=rv%3Db%26ss%3D1280x1024%26ws%3D1916x1076%26wp%3D0x0%26ce%3D0%26ck%3Djc%26cv%3D8099%26cs%3D0%26fr%3D1%26hc%3D0%26fl%3Dnull%26jv%3Dnull%26sc%3D24%26hr%3D12%26rf%3Dbid.bidclickmedia.com%26lo%3Dfilter.clickmeniaads.com%26mb%3D0%26hb%3D1%26pl%3DLinux%2Bx86_64%26ua%3DMozilla%252F5.0%2B%28X11%253B%2BLinux%2Bx86_64%253B%2Brv%253A96.0%29%2BGecko%252F20100101%2BFirefox%252F96.0%26nd%3D1%26to%3Dnull%26wbd%3D1%26wbde%3D0%26sqm%3D0%26phj%3D0%26nmj%3D0%26sln%3D0%26es%3D0%26ln%3Den-US%252Cen%26lnl%3D2%26hsc%3D0%26frc%3D0%26dbt%3D0%26prb%3D20100101%26tz%3D0%26hid%3D0%26mq%3D1%26bch%3D%26blv%3D%26my%3D%26geo%3D%26thx%3D0%26the%3D0%26ths%3D0%26cpc%3D%26ocp%3DLinux%2Bx86_64%26hwc%3D48%26hrl%3D%26acd%3Dpmpmm%26vcd%3Dppp%26pal%3D5%26pai%3D1%26pli%3D1%26win%3D1916x1076%26wout%3D1280x1024%26wpof%3D0x0%26bcld%3D1900x19%26scrp%3D0x0%26scrad%3D1280x1024%26spd%3D24%26pxr%3D1%26sck%3D1%26ckl%3D0%26sls%3D1%26sss%3D1%26six%3D1%26sdb%3D0%26vvr%3Dnull%26vrd%3Dnull%26pnt%3Ddenied%26cnvs%3D7f7f7f80%26mmd_ao%3D0%26mmd_ai%3D0%26mmd_vi%3D0 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectclickmeniaads.com Fingerprint9C:B4:FB:1D:5C:F2:AC:0A:E5:7E:04:E4:31:1E:A7:4A:49:8B:3B:5B ValidityFri, 05 Apr 2024 06:37:20 GMT - Thu, 04 Jul 2024 06:37:19 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click2?i=HGg0S4LNNnw_0&ci=-911916373868882417&j=rv%3Db%26ss%3D1280x1024%26ws%3D1916x1076%26wp%3D0x0%26ce%3D0%26ck%3Djc%26cv%3D8099%26cs%3D0%26fr%3D1%26hc%3D0%26fl%3Dnull%26jv%3Dnull%26sc%3D24%26hr%3D12%26rf%3Dbid.bidclickmedia.com%26lo%3Dfilter.clickmeniaads.com%26mb%3D0%26hb%3D1%26pl%3DLinux%2Bx86_64%26ua%3DMozilla%252F5.0%2B%28X11%253B%2BLinux%2Bx86_64%253B%2Brv%253A96.0%29%2BGecko%252F20100101%2BFirefox%252F96.0%26nd%3D1%26to%3Dnull%26wbd%3D1%26wbde%3D0%26sqm%3D0%26phj%3D0%26nmj%3D0%26sln%3D0%26es%3D0%26ln%3Den-US%252Cen%26lnl%3D2%26hsc%3D0%26frc%3D0%26dbt%3D0%26prb%3D20100101%26tz%3D0%26hid%3D0%26mq%3D1%26bch%3D%26blv%3D%26my%3D%26geo%3D%26thx%3D0%26the%3D0%26ths%3D0%26cpc%3D%26ocp%3DLinux%2Bx86_64%26hwc%3D48%26hrl%3D%26acd%3Dpmpmm%26vcd%3Dppp%26pal%3D5%26pai%3D1%26pli%3D1%26win%3D1916x1076%26wout%3D1280x1024%26wpof%3D0x0%26bcld%3D1900x19%26scrp%3D0x0%26scrad%3D1280x1024%26spd%3D24%26pxr%3D1%26sck%3D1%26ckl%3D0%26sls%3D1%26sss%3D1%26six%3D1%26sdb%3D0%26vvr%3Dnull%26vrd%3Dnull%26pnt%3Ddenied%26cnvs%3D7f7f7f80%26mmd_ao%3D0%26mmd_ai%3D0%26mmd_vi%3D0 HTTP/1.1
Host: xml-v4.clickmeniaads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://filter.clickmeniaads.com/filter?q=&i=HGg0S4LNNnw_0&ci=-911916373868882417&t=563077839&h=1
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 21:01:26 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
|
|
| adserving.unibet.com/redirect.aspx?bid=37950&pid=79982261&sref=GIG&GIG=NO_DESK_SB | 13.107.213.53 | 307 Temporary Redirect | 0 B |
URL GET HTTP/2adserving.unibet.com/redirect.aspx?bid=37950&pid=79982261&sref=GIG&GIG=NO_DESK_SB IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerTrustwave Holdings, Inc. Subjectaffiliates.kindredplc.com Fingerprint9C:1F:91:86:77:41:76:62:71:CD:11:FD:80:70:B7:83:58:47:BF:4F ValidityThu, 17 Aug 2023 06:39:43 GMT - Fri, 16 Aug 2024 06:38:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?bid=37950&pid=79982261&sref=GIG&GIG=NO_DESK_SB HTTP/1.1
Host: adserving.unibet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
date: Fri, 26 Apr 2024 21:01:27 GMT
content-type: text/html
content-length: 0
cache-control: private,no-cache, no-store
pragma: no-cache
location: https://www.unibet.com/stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=320669908_5F62A4F358B04D7EB1861C32E73E38BA&sref=GIG&GIG=NO_DESK_SB&affiliateId=1&pid=85891437&bid=37950
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a85891437%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1714165287297)%5c%2f%22%2c%22CookieTag%22%3a%223795085891437451240919C2024426211%22%7d%5d; SameSite=None;; domain=.unibet.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%2211364501184%7c1%22%7d%5d; domain=.unibet.com; expires=Sat, 26-Apr-3023 21:01:27 GMT; path=/; secure; SameSite=Strict
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
x-azure-ref: 20240426T210127Z-16c4f695cc5nsrb8h5z31gantc00000000ng000000005ckx
x-cache: CONFIG_NOCACHE
X-Firefox-Spdy: h2
|
|
| adserving.unibet.com/redirect.aspx?bid=37950&pid=79982261&sref=GIG&GIG=NO_DESK_SB | 13.107.213.53 | 307 Temporary Redirect | 0 B |
URL GET HTTP/2adserving.unibet.com/redirect.aspx?bid=37950&pid=79982261&sref=GIG&GIG=NO_DESK_SB IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerTrustwave Holdings, Inc. Subjectaffiliates.kindredplc.com Fingerprint9C:1F:91:86:77:41:76:62:71:CD:11:FD:80:70:B7:83:58:47:BF:4F ValidityThu, 17 Aug 2023 06:39:43 GMT - Fri, 16 Aug 2024 06:38:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?bid=37950&pid=79982261&sref=GIG&GIG=NO_DESK_SB HTTP/1.1
Host: adserving.unibet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
date: Fri, 26 Apr 2024 21:01:27 GMT
content-type: text/html
content-length: 0
cache-control: private,no-cache, no-store
pragma: no-cache
location: https://www.unibet.com/stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=320669908_7E90E723D854467895D654F784733C6F&sref=GIG&GIG=NO_DESK_SB&affiliateId=1&pid=85891437&bid=37950
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a85891437%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1714165287317)%5c%2f%22%2c%22CookieTag%22%3a%223795085891437451240919C2024426211%22%7d%5d; SameSite=None;; domain=.unibet.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%2211364501190%7c1%22%7d%5d; domain=.unibet.com; expires=Sat, 26-Apr-3023 21:01:27 GMT; path=/; secure; SameSite=Strict
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
x-azure-ref: 20240426T210127Z-16c4f695cc5nsrb8h5z31gantc00000000ng000000005cky
x-cache: CONFIG_NOCACHE
X-Firefox-Spdy: h2
|
|
| www.unibet.com/stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=320669908_7E90E723D854467895D654F784733C6F&sref=GIG&GIG=NO_DESK_SB&affiliateId=1&pid=85891437&bid=37950 | 85.184.96.28 | 302 Found | 138 B |
URL GET HTTP/2www.unibet.com/stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=320669908_7E90E723D854467895D654F784733C6F&sref=GIG&GIG=NO_DESK_SB&affiliateId=1&pid=85891437&bid=37950 IP85.184.96.28:443 ASN#47171 Unibet Services Limited
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectunibet.com Fingerprint2B:C6:A1:8E:D9:8C:18:0A:16:90:13:90:D9:82:2B:F0:6E:28:72:EC ValidityTue, 05 Mar 2024 00:10:07 GMT - Mon, 03 Jun 2024 00:10:06 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashaff950cab4c0265e21d401db15f1026d f03e18461817f7a6546c8bf8fa8d686d7e30aca0 753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=320669908_7E90E723D854467895D654F784733C6F&sref=GIG&GIG=NO_DESK_SB&affiliateId=1&pid=85891437&bid=37950 HTTP/1.1
Host: www.unibet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a85891437%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1714165287317)%5c%2f%22%2c%22CookieTag%22%3a%223795085891437451240919C2024426211%22%7d%5d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 Apr 2024 21:01:27 GMT
content-type: text/html
content-length: 138
location: https://www.unibet.com/browser-notification?UrlParam=/stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=320669908_7E90E723D854467895D654F784733C6F&sref=GIG&GIG=NO_DESK_SB&affiliateId=1&pid=85891437&bid=37950
server: kindred-loadbalancer
strict-transport-security: max-age=63072000; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src 'unsafe-inline' 'unsafe-eval' http: https: data: wss: blob: jockey: unibetpro: *;
x-browser-class: U
x-os-class: M
x-ooops-debug: /500-pages/www.unibet.com/index.html
set-cookie: clientId=polopoly_desktop; Domain=www.unibet.com; Path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
|
|
| www.unibet.com/stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=320669908_5F62A4F358B04D7EB1861C32E73E38BA&sref=GIG&GIG=NO_DESK_SB&affiliateId=1&pid=85891437&bid=37950 | 85.184.96.28 | 302 Found | 138 B |
URL GET HTTP/2www.unibet.com/stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=320669908_5F62A4F358B04D7EB1861C32E73E38BA&sref=GIG&GIG=NO_DESK_SB&affiliateId=1&pid=85891437&bid=37950 IP85.184.96.28:443 ASN#47171 Unibet Services Limited
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectunibet.com Fingerprint2B:C6:A1:8E:D9:8C:18:0A:16:90:13:90:D9:82:2B:F0:6E:28:72:EC ValidityTue, 05 Mar 2024 00:10:07 GMT - Mon, 03 Jun 2024 00:10:06 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashaff950cab4c0265e21d401db15f1026d f03e18461817f7a6546c8bf8fa8d686d7e30aca0 753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=320669908_5F62A4F358B04D7EB1861C32E73E38BA&sref=GIG&GIG=NO_DESK_SB&affiliateId=1&pid=85891437&bid=37950 HTTP/1.1
Host: www.unibet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a85891437%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1714165287317)%5c%2f%22%2c%22CookieTag%22%3a%223795085891437451240919C2024426211%22%7d%5d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 Apr 2024 21:01:27 GMT
content-type: text/html
content-length: 138
location: https://www.unibet.com/browser-notification?UrlParam=/stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=320669908_5F62A4F358B04D7EB1861C32E73E38BA&sref=GIG&GIG=NO_DESK_SB&affiliateId=1&pid=85891437&bid=37950
server: kindred-loadbalancer
strict-transport-security: max-age=63072000; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src 'unsafe-inline' 'unsafe-eval' http: https: data: wss: blob: jockey: unibetpro: *;
x-browser-class: U
x-os-class: M
x-ooops-debug: /500-pages/www.unibet.com/index.html
set-cookie: clientId=polopoly_desktop; Domain=www.unibet.com; Path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
|
|
| shopde.pricedeals.shop/redirect.php?u=aHR0cHM6Ly9uby1nby5rZWxrb29ncm91cC5uZXQvb2ZmZXJzZWFyY2hHbz8udHM9MTcxNDA5NzUyMDM0NCYuc2lnPVVNbE8yNDJJTDVOd2RiZDR5VkROX0NIXzU1TS0mYWZmaWxpYXRpb25JZD05Njk3OTcxNCZjb21JZD0xMDU1MTQyMyZjb3VudHJ5PW5vJm9mZmVySWQ9NWZmMzBmOTNiYTRlN2ZjYjkyM2UwNGEzYWY1ZDNmNmYmc2VydmljZT0zNyZ0b2tlbklkPTVlYjM0ZWNmLWE0MmYtNGFiMy05OGVkLWI5YjBiOGJjOTgxOCZ3YWl0PXRydWUmYWRkZWRQYXJhbXM9dHJ1ZSZjdXN0b20xPTUzJm9yaWdpblJlZmVyZXI9c2hvcHBpbmdkZWFsLm9ubGluZSZwdWJsaXNoZXJTdWJJZD0xMDAxJnB1Ymxpc2hlclRyYWZmaWNUeXBlPWRvbWFpbg | 135.181.6.240 | 200 OK | 507 B |
URL GET HTTP/1.1shopde.pricedeals.shop/redirect.php?u=aHR0cHM6Ly9uby1nby5rZWxrb29ncm91cC5uZXQvb2ZmZXJzZWFyY2hHbz8udHM9MTcxNDA5NzUyMDM0NCYuc2lnPVVNbE8yNDJJTDVOd2RiZDR5VkROX0NIXzU1TS0mYWZmaWxpYXRpb25JZD05Njk3OTcxNCZjb21JZD0xMDU1MTQyMyZjb3VudHJ5PW5vJm9mZmVySWQ9NWZmMzBmOTNiYTRlN2ZjYjkyM2UwNGEzYWY1ZDNmNmYmc2VydmljZT0zNyZ0b2tlbklkPTVlYjM0ZWNmLWE0MmYtNGFiMy05OGVkLWI5YjBiOGJjOTgxOCZ3YWl0PXRydWUmYWRkZWRQYXJhbXM9dHJ1ZSZjdXN0b20xPTUzJm9yaWdpblJlZmVyZXI9c2hvcHBpbmdkZWFsLm9ubGluZSZwdWJsaXNoZXJTdWJJZD0xMDAxJnB1Ymxpc2hlclRyYWZmaWNUeXBlPWRvbWFpbg IP135.181.6.240:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectshopde.pricedeals.shop Fingerprint90:0F:E8:D2:5A:53:A2:54:BD:E6:E6:02:01:DB:5D:32:91:11:0B:79 ValiditySun, 18 Feb 2024 08:55:40 GMT - Sat, 18 May 2024 08:55:39 GMT
File typeHTML document, ASCII text, with very long lines (436) Hash55a5e10553714a30e0b319815dc0c490 5b4b193ab4d042a3d754b95c8371fbab1fe598bc 362360d19ec40038101c83d3bf859f18b6a7772e6a6a9270eccaa10b8038fea7
GET /redirect.php?u=aHR0cHM6Ly9uby1nby5rZWxrb29ncm91cC5uZXQvb2ZmZXJzZWFyY2hHbz8udHM9MTcxNDA5NzUyMDM0NCYuc2lnPVVNbE8yNDJJTDVOd2RiZDR5VkROX0NIXzU1TS0mYWZmaWxpYXRpb25JZD05Njk3OTcxNCZjb21JZD0xMDU1MTQyMyZjb3VudHJ5PW5vJm9mZmVySWQ9NWZmMzBmOTNiYTRlN2ZjYjkyM2UwNGEzYWY1ZDNmNmYmc2VydmljZT0zNyZ0b2tlbklkPTVlYjM0ZWNmLWE0MmYtNGFiMy05OGVkLWI5YjBiOGJjOTgxOCZ3YWl0PXRydWUmYWRkZWRQYXJhbXM9dHJ1ZSZjdXN0b20xPTUzJm9yaWdpblJlZmVyZXI9c2hvcHBpbmdkZWFsLm9ubGluZSZwdWJsaXNoZXJTdWJJZD0xMDAxJnB1Ymxpc2hlclRyYWZmaWNUeXBlPWRvbWFpbg HTTP/1.1
Host: shopde.pricedeals.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopde.pricedeals.shop/go.php?market=no&zr24632581041011ef9e3c1218eadc63755291e2c3ac2c4bc4845ce2311f1b4ecc0816931d960a55ebbf
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 21:01:27 GMT
Server: Apache/2.4.56 (Debian)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 507
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| s.click.aliexpress.com/e/_DE7z9L3?af=4VbAdjpCtAXr | 104.110.21.5 | 302 Found | 0 B |
URL GET HTTP/2s.click.aliexpress.com/e/_DE7z9L3?af=4VbAdjpCtAXr IP104.110.21.5:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerDigiCert Inc Subjectae01.alicdn.com Fingerprint3B:6B:34:80:95:44:11:F7:71:DE:95:B7:C7:7C:A0:9C:BC:00:BC:AA ValidityWed, 10 Apr 2024 00:00:00 GMT - Wed, 16 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /e/_DE7z9L3?af=4VbAdjpCtAXr HTTP/1.1
Host: s.click.aliexpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-length: 0
x-application-context: global-traffic-holmes-f:7001
access-control-allow-methods: GET, POST, OPTION
access-control-allow-credentials: true
p3p: CP="CAO PSA OUR"
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=31536000 ; includeSubDomains
location: https://best.aliexpress.com/?af=4VbAdjpCtAXr&aff_fcid=2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3&tt=CPS_NORMAL&aff_fsk=_DE7z9L3&aff_platform=portals-tool&sk=_DE7z9L3&aff_trace_key=2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3&terminal_id=554ab5786c5f44779cef20384b07c6e2
content-language: en-US
server: Tengine/Aserver
eagleeye-traceid: 2103146c17141652876431395e8045
timing-allow-origin: *
date: Fri, 26 Apr 2024 21:01:27 GMT
set-cookie: xman_us_f=x_l=0&x_as_i=%7B%22aeuCID%22%3A%222327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3%22%2C%22af%22%3A%224VbAdjpCtAXr%22%2C%22affiliateKey%22%3A%22_DE7z9L3%22%2C%22channel%22%3A%22AFFILIATE%22%2C%22cv%22%3A%221%22%2C%22isCookieCache%22%3A%22N%22%2C%22ms%22%3A%221%22%2C%22pid%22%3A%224534051009%22%2C%22tagtime%22%3A1714165287650%7D&acs_rt=554ab5786c5f44779cef20384b07c6e2; Domain=.aliexpress.com; Expires=Thu, 15-May-2092 00:15:34 GMT; Path=/
acs_usuc_t=x_csrf=1egq9j1uvareh&acs_rt=554ab5786c5f44779cef20384b07c6e2; Domain=.aliexpress.com; Path=/
aeu_cid=2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3; Domain=.aliexpress.com; Expires=Thu, 15-May-2092 00:15:34 GMT; Path=/
xman_t=XGQhoRHjO2LlqmOgDLi1D8cc+LO/VUzR2oh2XTgogr6r+yW64PsldnksC8neiS6f; Domain=.aliexpress.com; Expires=Thu, 25-Jul-2024 21:01:27 GMT; Path=/; HttpOnly
xman_f=xOtm5x3oNNe3YNrUFngNmUmBLKYFH3CQ6Fm2DaJ1n3TXxX/ZOLol2wkfSInjvXDNGchnepPyjcwhWHhLP5BUvMqE8a/SV8XY1m9Hdon6agx0cxriZ9SPSA==; Domain=.aliexpress.com; Expires=Thu, 15-May-2092 00:15:34 GMT; Path=/; HttpOnly
af_ss_a=1; Path=/; Domain=.aliexpress.com; Max-Age=2147483647; Secure; SameSite=None
af_ss_b=1; Path=/; Domain=.aliexpress.com; Max-Age=2147483647; SameSite=Lax
server-timing: ak_p; desc="1714165287582_388255172_143773863_13232_1264_1_12_21";dur=1
X-Firefox-Spdy: h2
|
|
| shopde.pricedeals.shop/redirect.php?u=aHR0cHM6Ly9uby1nby5rZWxrb29ncm91cC5uZXQvb2ZmZXJzZWFyY2hHbz8udHM9MTcxNDA5NzUyMDM0NCYuc2lnPUk1UTBpNkR2SGJMZ0tjYWVNWXpKY0RFeTAyQS0mYWZmaWxpYXRpb25JZD05Njk3OTcxNCZjb21JZD0xMDU1MTQyMyZjb3VudHJ5PW5vJm9mZmVySWQ9OTVkNWJjZTIzMTU4NTQ1NjE2NWMwYmE5Yzk5M2NlOTkmc2VydmljZT0zNyZ0b2tlbklkPTVlYjM0ZWNmLWE0MmYtNGFiMy05OGVkLWI5YjBiOGJjOTgxOCZ3YWl0PXRydWUmYWRkZWRQYXJhbXM9dHJ1ZSZjdXN0b20xPTUyJm9yaWdpblJlZmVyZXI9c2hvcHBpbmdkZWFsLm9ubGluZSZwdWJsaXNoZXJTdWJJZD0xMDAzJnB1Ymxpc2hlclRyYWZmaWNUeXBlPXNlYXJjaGVuZ2luZQ | 135.181.6.240 | 200 OK | 510 B |
URL GET HTTP/1.1shopde.pricedeals.shop/redirect.php?u=aHR0cHM6Ly9uby1nby5rZWxrb29ncm91cC5uZXQvb2ZmZXJzZWFyY2hHbz8udHM9MTcxNDA5NzUyMDM0NCYuc2lnPUk1UTBpNkR2SGJMZ0tjYWVNWXpKY0RFeTAyQS0mYWZmaWxpYXRpb25JZD05Njk3OTcxNCZjb21JZD0xMDU1MTQyMyZjb3VudHJ5PW5vJm9mZmVySWQ9OTVkNWJjZTIzMTU4NTQ1NjE2NWMwYmE5Yzk5M2NlOTkmc2VydmljZT0zNyZ0b2tlbklkPTVlYjM0ZWNmLWE0MmYtNGFiMy05OGVkLWI5YjBiOGJjOTgxOCZ3YWl0PXRydWUmYWRkZWRQYXJhbXM9dHJ1ZSZjdXN0b20xPTUyJm9yaWdpblJlZmVyZXI9c2hvcHBpbmdkZWFsLm9ubGluZSZwdWJsaXNoZXJTdWJJZD0xMDAzJnB1Ymxpc2hlclRyYWZmaWNUeXBlPXNlYXJjaGVuZ2luZQ IP135.181.6.240:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectshopde.pricedeals.shop Fingerprint90:0F:E8:D2:5A:53:A2:54:BD:E6:E6:02:01:DB:5D:32:91:11:0B:79 ValiditySun, 18 Feb 2024 08:55:40 GMT - Sat, 18 May 2024 08:55:39 GMT
File typeHTML document, ASCII text, with very long lines (442) Hash271ec46b5ace34c1b2563e67674ab60c 90648b391b70007282fc24dae4b6d56f84f38f9d 46a02f33e5ee6d1ad43673e3fcf31889b3cae884294e99c67ea97b558c2a8a33
GET /redirect.php?u=aHR0cHM6Ly9uby1nby5rZWxrb29ncm91cC5uZXQvb2ZmZXJzZWFyY2hHbz8udHM9MTcxNDA5NzUyMDM0NCYuc2lnPUk1UTBpNkR2SGJMZ0tjYWVNWXpKY0RFeTAyQS0mYWZmaWxpYXRpb25JZD05Njk3OTcxNCZjb21JZD0xMDU1MTQyMyZjb3VudHJ5PW5vJm9mZmVySWQ9OTVkNWJjZTIzMTU4NTQ1NjE2NWMwYmE5Yzk5M2NlOTkmc2VydmljZT0zNyZ0b2tlbklkPTVlYjM0ZWNmLWE0MmYtNGFiMy05OGVkLWI5YjBiOGJjOTgxOCZ3YWl0PXRydWUmYWRkZWRQYXJhbXM9dHJ1ZSZjdXN0b20xPTUyJm9yaWdpblJlZmVyZXI9c2hvcHBpbmdkZWFsLm9ubGluZSZwdWJsaXNoZXJTdWJJZD0xMDAzJnB1Ymxpc2hlclRyYWZmaWNUeXBlPXNlYXJjaGVuZ2luZQ HTTP/1.1
Host: shopde.pricedeals.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopde.pricedeals.shop/go.php?market=no&zr24682e94041011ef9f9b0afff203bd9f30c8657c9f254524a217df436e58a39608169379bbbf049da0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 21:01:27 GMT
Server: Apache/2.4.56 (Debian)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 510
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| best.aliexpress.com/?af=4VbAdjpCtAXr&aff_fcid=2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3&tt=CPS_NORMAL&aff_fsk=_DE7z9L3&aff_platform=portals-tool&sk=_DE7z9L3&aff_trace_key=2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3&terminal_id=554ab5786c5f44779cef20384b07c6e2 | 104.110.21.5 | 302 Found | 519 B |
URL GET HTTP/2best.aliexpress.com/?af=4VbAdjpCtAXr&aff_fcid=2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3&tt=CPS_NORMAL&aff_fsk=_DE7z9L3&aff_platform=portals-tool&sk=_DE7z9L3&aff_trace_key=2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3&terminal_id=554ab5786c5f44779cef20384b07c6e2 IP104.110.21.5:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerDigiCert Inc Subjectae01.alicdn.com Fingerprint3B:6B:34:80:95:44:11:F7:71:DE:95:B7:C7:7C:A0:9C:BC:00:BC:AA ValidityWed, 10 Apr 2024 00:00:00 GMT - Wed, 16 Oct 2024 23:59:59 GMT
File typeASCII text, with very long lines (519), with no line terminators Hashb8c398c1ee51f25c56ad847d4498e820 d2314d7e6fc23f8f03a76d34c654b8f666a393ef bf7277a8ea5b599157b71e7a5d68ee6c00755bb49cd9fcec0e3182f27a59c1bc
GET /?af=4VbAdjpCtAXr&aff_fcid=2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3&tt=CPS_NORMAL&aff_fsk=_DE7z9L3&aff_platform=portals-tool&sk=_DE7z9L3&aff_trace_key=2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3&terminal_id=554ab5786c5f44779cef20384b07c6e2 HTTP/1.1
Host: best.aliexpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: af_ss_a=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
p3p: CP="CAO PSA OUR"
x-application-context: ae-fn-gateway-f:7001
location: https://s.click.aliexpress.com/deep_link.htm?aff_short_key=_pz9sEiR&dl_target_url=https%3A%2F%2Fbest.aliexpress.com%2F%3Faff_fcid%3D2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3%26tt%3DCPS_NORMAL%26aff_fsk%3D_DE7z9L3%26af%3D4VbAdjpCtAXr%26aff_platform%3Dportals-tool%26sk%3D_DE7z9L3%26aff_trace_key%3D2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3%26terminal_id%3D554ab5786c5f44779cef20384b07c6e2%26aff_platform%3Ddefault%26commercial_type%3DbestPage%26hc_1214_tag%3DByAffPage
server: Tengine/Aserver
eagleeye-traceid: 2103011417141652884045394ebd74
strict-transport-security: max-age=31536000
timing-allow-origin: *
content-length: 519
date: Fri, 26 Apr 2024 21:01:28 GMT
set-cookie: xman_us_f=x_locale=en_US&x_l=0&x_c_chg=1&acs_rt=2b30679beaa94b7fb4fb9a41123a1d7e; Domain=.aliexpress.com; Expires=Thu, 15-May-2092 00:15:35 GMT; Path=/
intl_common_forever=bXBro0YA8LQwdKwqkVw0R7suIlBBLZF4m+ap1Qq+soLBykz4FikUYQ==; Domain=.aliexpress.com; Expires=Thu, 15-May-2092 00:15:35 GMT; Path=/; HttpOnly
intl_locale=en_US; Domain=.aliexpress.com; Path=/
xman_f=grJ5IX9sVvL/e0aD5Th8AfPkD+XVeSlJ64ZREssMMPgXqJSVLL2HJ+OE/OuTMtE9LTgyXGNvTj98+s7eZT+CI+fPIrNlsbNmt4t+KBNq3hvDImFFGi5WVw==; Domain=.aliexpress.com; Expires=Thu, 15-May-2092 00:15:35 GMT; Path=/; HttpOnly
acs_usuc_t=x_csrf=13wq1y4y55i16&acs_rt=2b30679beaa94b7fb4fb9a41123a1d7e; Domain=.aliexpress.com; Path=/
xman_t=AlqVXjrmkEB7iHtYhO5s5ZmqnFXogF33Kl+FVHFrjbgIhpzv3eKQq5A57QUwJyO9; Domain=.aliexpress.com; Expires=Thu, 25-Jul-2024 21:01:28 GMT; Path=/; HttpOnly
aep_usuc_f=site=glo&c_tp=NOK®ion=NO&b_locale=en_US; Domain=.aliexpress.com; Expires=Thu, 15-May-2092 00:15:35 GMT; Path=/
e_id=pt20; Expires=Mon, 24 Apr 2034 21:01:28 GMT; Path=/; Domain=.aliexpress.com
server-timing: ak_p; desc="1714165288353_388255172_143773949_14708_2052_1_0_21";dur=1
X-Firefox-Spdy: h2
|
|
| s.click.aliexpress.com/deep_link.htm?aff_short_key=_pz9sEiR&dl_target_url=https%3A%2F%2Fbest.aliexpress.com%2F%3Faff_fcid%3D2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3%26tt%3DCPS_NORMAL%26aff_fsk%3D_DE7z9L3%26af%3D4VbAdjpCtAXr%26aff_platform%3Dportals-tool%26sk%3D_DE7z9L3%26aff_trace_key%3D2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3%26terminal_id%3D554ab5786c5f44779cef20384b07c6e2%26aff_platform%3Ddefault%26commercial_type%3DbestPage%26hc_1214_tag%3DByAffPage | 104.110.21.5 | 302 Found | 0 B |
URL GET HTTP/2s.click.aliexpress.com/deep_link.htm?aff_short_key=_pz9sEiR&dl_target_url=https%3A%2F%2Fbest.aliexpress.com%2F%3Faff_fcid%3D2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3%26tt%3DCPS_NORMAL%26aff_fsk%3D_DE7z9L3%26af%3D4VbAdjpCtAXr%26aff_platform%3Dportals-tool%26sk%3D_DE7z9L3%26aff_trace_key%3D2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3%26terminal_id%3D554ab5786c5f44779cef20384b07c6e2%26aff_platform%3Ddefault%26commercial_type%3DbestPage%26hc_1214_tag%3DByAffPage IP104.110.21.5:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerDigiCert Inc Subjectae01.alicdn.com Fingerprint3B:6B:34:80:95:44:11:F7:71:DE:95:B7:C7:7C:A0:9C:BC:00:BC:AA ValidityWed, 10 Apr 2024 00:00:00 GMT - Wed, 16 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /deep_link.htm?aff_short_key=_pz9sEiR&dl_target_url=https%3A%2F%2Fbest.aliexpress.com%2F%3Faff_fcid%3D2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3%26tt%3DCPS_NORMAL%26aff_fsk%3D_DE7z9L3%26af%3D4VbAdjpCtAXr%26aff_platform%3Dportals-tool%26sk%3D_DE7z9L3%26aff_trace_key%3D2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3%26terminal_id%3D554ab5786c5f44779cef20384b07c6e2%26aff_platform%3Ddefault%26commercial_type%3DbestPage%26hc_1214_tag%3DByAffPage HTTP/1.1
Host: s.click.aliexpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: af_ss_a=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-length: 0
x-application-context: global-traffic-holmes-f:7001
access-control-allow-methods: GET, POST, OPTION
access-control-allow-credentials: true
p3p: CP="CAO PSA OUR"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000 ; includeSubDomains
location: https://best.aliexpress.com/?aff_fcid=2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3&tt=CPS_NORMAL&aff_fsk=_DE7z9L3&af=4VbAdjpCtAXr&commercial_type=bestPage&hc_1214_tag=ByAffPage&aff_fcid=3011bde736c34777acfd46eada44c14f-1714165288567-04245-_pz9sEiR&aff_fsk=_pz9sEiR&aff_platform=portals-promotion&sk=_pz9sEiR&aff_trace_key=3011bde736c34777acfd46eada44c14f-1714165288567-04245-_pz9sEiR&terminal_id=df1ba613833f4bb0ba5a0db3b35ef7b4
content-language: en-US
server: Tengine/Aserver
eagleeye-traceid: 2101f01817141652885637870e9dac
timing-allow-origin: *
date: Fri, 26 Apr 2024 21:01:28 GMT
set-cookie: xman_us_f=x_l=0&x_as_i=%7B%22aeuCID%22%3A%223011bde736c34777acfd46eada44c14f-1714165288567-04245-_pz9sEiR%22%2C%22affiliateKey%22%3A%22_pz9sEiR%22%2C%22channel%22%3A%22AFFILIATE%22%2C%22cv%22%3A%222%22%2C%22isCookieCache%22%3A%22N%22%2C%22ms%22%3A%221%22%2C%22pid%22%3A%222391147471%22%2C%22tagtime%22%3A1714165288567%7D&acs_rt=df1ba613833f4bb0ba5a0db3b35ef7b4; Domain=.aliexpress.com; Expires=Thu, 15-May-2092 00:15:35 GMT; Path=/
acs_usuc_t=x_csrf=crkm6hyl3jfg&acs_rt=df1ba613833f4bb0ba5a0db3b35ef7b4; Domain=.aliexpress.com; Path=/
aeu_cid=3011bde736c34777acfd46eada44c14f-1714165288567-04245-_pz9sEiR; Domain=.aliexpress.com; Expires=Thu, 15-May-2092 00:15:35 GMT; Path=/
xman_t=IQjvbfFG5FRINBxuFgFXXl7JMNWXVDFXTLafAbodS+MdGtqsxdEDjF1XpNjI5kPt; Domain=.aliexpress.com; Expires=Thu, 25-Jul-2024 21:01:28 GMT; Path=/; HttpOnly
xman_f=CTxlFrQQ1z7stMOl20x0C7/j4L4VPCGRRSgSuTv/XVpvcsSuaguvqqY51vJeFM3bSWPjFgV1zHDxQ24Xx3GVfOXf25ibbD6ic/He/6PeEHkNXpLwJ9sMdg==; Domain=.aliexpress.com; Expires=Thu, 15-May-2092 00:15:35 GMT; Path=/; HttpOnly
server-timing: ak_p; desc="1714165288513_388255172_143773965_11054_1320_1_0_21";dur=1
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-HEX1BG8H46>m=45je44o0v9104348843z8832020053za200&_p=1714165283463&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=2147287730.1714165284&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=2&sid=1714165284&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-5llh7pij5eqz.html&dt=Vidoza&en=error_network&tfd=6876 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-HEX1BG8H46>m=45je44o0v9104348843z8832020053za200&_p=1714165283463&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=2147287730.1714165284&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=2&sid=1714165284&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-5llh7pij5eqz.html&dt=Vidoza&en=error_network&tfd=6876 IP216.239.32.36:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-HEX1BG8H46>m=45je44o0v9104348843z8832020053za200&_p=1714165283463&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=2147287730.1714165284&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=2&sid=1714165284&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-5llh7pij5eqz.html&dt=Vidoza&en=error_network&tfd=6876 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://videzz.net
date: Fri, 26 Apr 2024 21:01:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| bid.bidclickmedia.com/sub/e6yMnW6 | 172.67.205.77 | 200 OK | 239 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/e6yMnW6 IP172.67.205.77:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hash824a3f01774373d84e2c831d29c4cdc1 a90fddcc8bc46e63240496ec164cbbb651a379d0 735c9eb1ab5740ecd5f901abf9c89369e3feedd80f2ed6feb9d716aeb75a818d
GET /sub/e6yMnW6 HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Xq5EqMUE2BonpLH5a6l8YcF%2F9gz1%2BAKGYwA5RHvKzrLflEu8UT892AOH9UlhjD3Es8ATuMM83nd8UDe9Yqrviu1hX93BIBbJ4S1zXJ4V8NcejOZAVgTX%2Fcc9MMALqpnITc1aT%2FvWtL8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a981ff4b3256bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/telegram.js | 172.67.39.148 | 200 OK | 360 B |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/telegram.js IP172.67.39.148:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (370), with no line terminators Hashd455b7099e753a3680d5e481a7b56a9d 146fdec3f2e51dabdd15fc8acda6d73823b0d44d 4eb7a6d1a684e68473de0e8854499206b2f512a3815a8114068636dd38aa197a
GET /menu/svg/icons/telegram.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"fb47b4f6548b6499923a1beed7472419"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rS6p7wFnFl7fkJw7fLG2A4znYwIH3MQ0wRM8iq4hiAUKTt95h0HUv0gE1X%2BxhNFe5NpA65SxgDVKQH2MWG8Tn0P%2BjYr297yGtzRJc%2FzpKzNH1%2BOg75hSsVnjZj9iezTg3kCEOC9X8UOzN6i49HViMtne"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1109
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a98201d872712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319 | 0.0.0.0 | | 0 B |
URL GET xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319 IP0.0.0.0:0
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerSectigo Limited Subject*.zeusadx.com FingerprintAA:67:88:35:5F:BC:20:3C:44:9B:00:BD:4F:E1:C0:5F:62:D0:69:C0 ValidityMon, 23 Oct 2023 00:00:00 GMT - Wed, 23 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=531847&auth=KhbHhS&pubid=162319 HTTP/1.1
Host: xml.zeusadx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| becast.onionlive.workers.dev/ | 104.21.9.35 | 200 OK | 1.4 kB |
URL GET HTTP/2becast.onionlive.workers.dev/ IP104.21.9.35:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectonionlive.workers.dev Fingerprint15:4B:F2:93:81:D8:8E:E8:03:9A:C3:E3:2F:78:10:77:9B:80:FD:9F ValiditySun, 03 Mar 2024 23:51:41 GMT - Sat, 01 Jun 2024 23:51:40 GMT
File typeHTML document, ASCII text, with very long lines (1382), with no line terminators Hashf00afc8448987fa11d44221fa5292cae 9f4c400dce037e70bcb6db008b9419b99bdcb42e 1363ed26fa6dfa94a18ffef1fc03bf9e8be0ea9e769c641dd052bc8b77fc6891
GET / HTTP/1.1
Host: becast.onionlive.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:25 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Bx3sNmia8lVYUXGSS1qOtlPcBbYU0HvWaE8UsXLKklZsAPNBXeLf4k9ugx0FWr%2BnXmZgegIj1aetlchXlOVkG0qyLuzRaW%2BER0YT%2FcMQF9kGwADKVkvp9vRxfnnGhLyAQ5pNACKs5CaT8kYtxug9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a9820c3806568a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.animezeno.sbs/ | 188.114.96.1 | 200 OK | 1.4 kB |
IP188.114.96.1:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectanimezeno.sbs FingerprintD1:88:3B:4F:6E:24:62:91:E5:7C:D7:4B:24:7E:37:2C:B4:E6:81:07 ValidityFri, 12 Apr 2024 00:39:53 GMT - Thu, 11 Jul 2024 00:39:52 GMT
File typeHTML document, ASCII text, with very long lines (1380), with no line terminators Hashbe42cb30510e54f37a69e2c5f244a5fd 982132974a70f7fbb26f4de4f0d29f78fc960c4c ff4814e83aad096af9d3ddfb373f00d40d170c57169edff731511efa661063f9
GET / HTTP/1.1
Host: www.animezeno.sbs
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:25 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mq8AY0izNfIM0KXpv%2Fq4ZmPdrwqPadAaYeTj%2FQrMap4LRrGvpEa%2Bm8J3JLLOCKwUBKovAlFXaF9%2FQb69R1%2BOaX%2FwA%2Byq75qhZOe0wG6Wy1HjpokIXXvTmNJ7hidIoCFLTkf8og%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a98209fc621c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/locale/ru.js | 172.67.39.148 | 200 OK | 2.1 kB |
URL GET HTTP/3static.addtoany.com/menu/locale/ru.js IP172.67.39.148:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (2170), with no line terminators Hash7581051e137324f383ce692c383a90ac 7c66ac218fd109304436e9588d602c7aaab63b82 428aafe2046340df744b20fbab6f0cd4ddfb95776790e80440cfb60788dbde2c
GET /menu/locale/ru.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=86400, stale-while-revalidate=30, public
cf-bgj: minify
cf-polished: origSize=2289
etag: W/"9797b535a7dbc5ec8be5d83312871549"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SSZZPHRQHmmj7W9b8uSrlEOmUNd5EPtJjQ6dGciF28UUVd2CDtNJ%2FBwzXajDEbBux%2FcEjPyaUJyeHlp1cPBVMV3Q2eK944CTAvvX7nWPfNzysCaOl3kzBNgW%2F9nsUG4Ry0l3jQ6qpq%2Bc1bomXdrURWCn"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 9430
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a98201d86d712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 | 104.18.10.207 | 200 OK | 77 kB |
URL GET HTTP/3maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 IP104.18.10.207:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459 Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 19:08:24
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 0a41a35b44b9a221d4e11fe69e9304aa
cdn-cache: HIT
cf-cache-status: HIT
age: 2046293
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a98202ed457127-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bedrapiona.com/4/5615727/ | 139.45.197.234 | 200 OK | 34 kB |
URL GET HTTP/2bedrapiona.com/4/5615727/ IP139.45.197.234:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectbedrapiona.com FingerprintB5:D0:EF:3C:81:82:64:AB:B7:2E:5C:80:71:47:70:41:F0:36:B5:BF ValidityWed, 20 Mar 2024 19:29:11 GMT - Tue, 18 Jun 2024 19:29:10 GMT
File typeHTML document, ASCII text, with very long lines (18247) Hash7f7ad053abe929487b832f4dfdb797e0 71db5b3041942b722513c84ca6f682e66fa11f2e 7b63803e0e80b4f795869ed67a30a65a6fd2f5670209260fbc07e0338431c0f0
GET /4/5615727/ HTTP/1.1
Host: bedrapiona.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.animezeno.sbs/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:26 GMT
content-type: text/html; charset=utf8
x-trace-id: 6bf355bfa13c21f1248e43156f034ca2
link: <https://yonmewon.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00804a3327094d68f5c8ff6e81141c92; expires=Sat, 26 Apr 2025 21:01:26 GMT; path=/; secure; SameSite=None
oaidts=1714165286; expires=Sat, 26 Apr 2025 21:01:26 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| videzz.net/js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 159 kB |
URL GET HTTP/2videzz.net/js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size159 kB (158902 bytes) Hash7c33538390b466ae717449d729bb32ea 49ea1eb1dc06467f516eae28e09863a23b244a31 a2f37fa7aee9e9248856735b807b028c93be60eb6bb9916595ba123690513f02
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-5llh7pij5eqz.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:25 GMT
vary: Accept-Encoding
etag: W/"66163909-26cb6"
expires: Sun, 26 May 2024 20:54:53 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| videzz.net/sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 42 kB |
URL GET HTTP/2videzz.net/sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typeJavaScript source, ASCII text, with very long lines (42324), with no line terminators Hash764aafd976dd9cd9f33279bfafa02908 e9ad856ec00bccfdcbe17b79113681685c943b8d 2c20e295faeb1ef24dae1e26caa5089fdb2ba5a36a86a6a26780b8a515ca99aa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-5llh7pij5eqz.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:32 GMT
vary: Accept-Encoding
etag: W/"66163910-a554"
expires: Sun, 26 May 2024 20:58:13 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| tr.7vid.net/api/users/88464?v2=1&fill=0&kw=file%20upload%2Cshare%20files%2Cfree%20upload&i=1&url=https%3A%2F%2Fvidezz.net%2Fembed-5llh7pij5eqz.html&sid=0dc28d3a-9189-468a-bf8e-87b237215795 | 135.181.208.216 | 200 OK | 67 B |
URL GET HTTP/2tr.7vid.net/api/users/88464?v2=1&fill=0&kw=file%20upload%2Cshare%20files%2Cfree%20upload&i=1&url=https%3A%2F%2Fvidezz.net%2Fembed-5llh7pij5eqz.html&sid=0dc28d3a-9189-468a-bf8e-87b237215795 IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjecta.gatwins.site Fingerprint66:D4:C4:E9:BC:6E:82:9E:D0:2F:00:69:9A:DF:C2:6D:18:04:0B:1B ValidityWed, 10 Apr 2024 10:27:11 GMT - Tue, 09 Jul 2024 10:27:10 GMT
File typeXML document, ASCII text, with no line terminators Hashc3928cea84e0c684b265b8fb465a9e72 aace4c0c8b0fbb35d2932f4f27e01ef627161574 3238d03797cab82118740c0d6ddace8d6bc9caf168e94d2ade893f541c1f8a25
GET /api/users/88464?v2=1&fill=0&kw=file%20upload%2Cshare%20files%2Cfree%20upload&i=1&url=https%3A%2F%2Fvidezz.net%2Fembed-5llh7pij5eqz.html&sid=0dc28d3a-9189-468a-bf8e-87b237215795 HTTP/1.1
Host: tr.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://videzz.net
access-control-expose-headers: X-Asg-Config, X-t
set-cookie: nauid=H6Yrr5TVeyH1314Y5QET; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
x-robots-tag: noindex, nofollow
x-t: 0
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| tr.7vid.net/api/users/246356?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-5llh7pij5eqz.html&sid=0dc28d3a-9189-468a-bf8e-87b237215795&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=123521 | 135.181.208.216 | 200 OK | 915 B |
URL GET HTTP/2tr.7vid.net/api/users/246356?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-5llh7pij5eqz.html&sid=0dc28d3a-9189-468a-bf8e-87b237215795&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=123521 IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjecta.gatwins.site Fingerprint66:D4:C4:E9:BC:6E:82:9E:D0:2F:00:69:9A:DF:C2:6D:18:04:0B:1B ValidityWed, 10 Apr 2024 10:27:11 GMT - Tue, 09 Jul 2024 10:27:10 GMT
File typeASCII text, with very long lines (1022), with no line terminators Hashf835424eb235100c398a8ba602a9ac08 1e399d2b9c878d03eccbf517aa9bb9712beca256 679504299022bd6af152176e01f3229f8f1ef08528c7a315a135c0d091da5c02
GET /api/users/246356?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-5llh7pij5eqz.html&sid=0dc28d3a-9189-468a-bf8e-87b237215795&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=123521 HTTP/1.1
Host: tr.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: nauid=H6Yrr5TVeyH1314Y5QET
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/sub/0YDX8OE | 172.67.205.77 | 200 OK | 234 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/0YDX8OE IP172.67.205.77:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashaf2b6f5e906532aa6d51ed7dcbb8fed7 5ddca712e64ecb7520e561656c87079ec18e3db1 eced93383f70dca1dcfe0998bcccf8d3fe044a0f1646f0ffa670cf0b14f599f3
GET /sub/0YDX8OE HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LL9zVcgLOaEvdGQjouZMgp5Ih76VwYZydGOBnHnHz1qU1CUIA6SrkLXYo1%2BTifMrEh%2Bpbqpc9GxR3IGFIzeyfdgUAMn1MOqenHkKjlSrXkvEf1j1aHCLLV1MxjDy4NZIT%2F8RO9OigfE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a981ff5b3b56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/modules/core.BRQnzO8v.js | 172.67.39.148 | 200 OK | 72 kB |
URL GET HTTP/3static.addtoany.com/menu/modules/core.BRQnzO8v.js IP172.67.39.148:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash629401c31553d2f42a6ca46e58c2a97b 0ab6084caa72f90913c7e4119f491838726ec5c2 91b9b24f0aa59668e4d0a770ee7a294b9baa361a76a20ade8128cd0482a5d805
GET /menu/modules/core.BRQnzO8v.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
cf-bgj: minify
etag: W/"25da5432b1057724b8210f17e9b9db05"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B%2FN7klxF7wXP63HcRl%2BjCdei7MZiQdLbHTqz87Q9U8JynkbiNBMS1rbdVtmUknMMTPAEW9DWd2%2FJRR1gRNn7DGNrqap17XCipxcat6ZwNX7wMVLUN3VPJR8WgR5HpxT%2BapjjIqHt"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 2733
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a981fe8845712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bid.bidclickmedia.com/sub/31bV2Jy | 172.67.205.77 | 200 OK | 239 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/31bV2Jy IP172.67.205.77:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashd5b23342c3da61ad8cb32c85b5a9a6ca 3ca89fd68565941a5f5dec87720a2164c9b860ae 53073b03453dec44b400acecc549d6446aba803406a391777a94cc2504173bbb
GET /sub/31bV2Jy HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t7SuuFgIkHMPyedkvSSxgCCGxMFfMC%2F%2BpkfBTvTy9aTkjPqqrHnuPWNxFBElE16SDTShCaEd5VeAG9mykBpadcTYgwhCBrTH%2BzY4NYdVQ82gNJAjKbUBtYqj2Ay6Nxu97jQDyUR%2Fzeg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a981ff6b4a56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyadzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrn1mrnq02rqtnjupspotmtnutrlplpsodrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTUzV1T21uc6V0rpXSuldK6V0rpXSu40u3s14zz1rz3ppt131oo3uuu1pzl22pcH2A | 66.254.114.234 | 200 OK | 0 B |
URL GET HTTP/2tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyadzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrn1mrnq02rqtnjupspotmtnutrlplpsodrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTUzV1T21uc6V0rpXSuldK6V0rpXSu40u3s14zz1rz3ppt131oo3uuu1pzl22pcH2A IP66.254.114.234:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectbrazzersnetwork.com Fingerprint88:AB:08:D2:E9:0E:FD:34:1F:CD:0A:B3:E0:9F:DB:C8:07:2F:D4:AA ValidityWed, 10 Apr 2024 00:01:06 GMT - Tue, 09 Jul 2024 00:01:05 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyadzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrn1mrnq02rqtnjupspotmtnutrlplpsodrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTUzV1T21uc6V0rpXSuldK6V0rpXSu40u3s14zz1rz3ppt131oo3uuu1pzl22pcH2A HTTP/1.1
Host: tgp1.brazzersnetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.pemsrv.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Fri, 26 Apr 2024 21:01:28 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-trace: 2B996A7BE89E3DDC3AFE71DA9F60540E75B70701E9F3C3DDA75A8C7AE500
x-powered-by: Juan
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x_ats_page_id: N/A
x_ats_page_type: CUSTOM
x_ats_instance_id: 281681
x_ats_instance_type: tour
etag: W/"ea860-iCNbiZeYIn8RhkQB1CS/fZmqdSs"
content-encoding: br
cache-control: no-transform
set-cookie: instance_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJtaW5kZ2VlayIsImF1ZCI6Im1pbmRnZWVrIiwic3ViIjoiaW5zdGFuY2UtYXBpIiwiZXhwIjoxNzE0MjYyNDAwLCJpZCI6MjgxNjgxLCJicmFuZCI6ImJyYXp6ZXJzIiwiaG9zdG5hbWUiOiJ0Z3AxLmJyYXp6ZXJzbmV0d29yay5jb20ifQ.APaE27xlA-BVCXnITcXazNyfr0GlkcKivnXoRUYT110; Max-Age=86400; Path=/; Expires=Sat, 27 Apr 2024 21:01:28 GMT
__s=662C1626-42FE72EA01BB3D4D12-8150D;
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| videzz.net/css/videojs.5.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 170 kB |
URL GET HTTP/2videzz.net/css/videojs.5.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typeASCII text, with very long lines (50421) Size170 kB (169541 bytes) Hashbf9af199b5ef61988f82fa239ebf61da d3b9c5ef294f2ef0942a8bf1e62085b72b2e07cc e8e86d55656a068d5bb43e7b65e474162b6dff2c57f314cfc90d25f16708048d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/videojs.5.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-5llh7pij5eqz.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: text/css
last-modified: Wed, 10 Apr 2024 07:00:25 GMT
vary: Accept-Encoding
etag: W/"66163909-29645"
expires: Sun, 26 May 2024 20:55:11 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/sub/e6yMnW6 | 172.67.205.77 | 200 OK | 239 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/e6yMnW6 IP172.67.205.77:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hash824a3f01774373d84e2c831d29c4cdc1 a90fddcc8bc46e63240496ec164cbbb651a379d0 735c9eb1ab5740ecd5f901abf9c89369e3feedd80f2ed6feb9d716aeb75a818d
GET /sub/e6yMnW6 HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Df%2F0NvKjinpGwjczp8GDroWwBYqkH36I%2BUVxCRI1Vlif1Yl99SNB9fUkm3ve629VGUf6f8f1C1Fdu4hivyY80gtPr4Ale%2Bi2w1j1FNKzq9NMXIeRP%2FMVVPHeR7FjndrSznqpC6496WI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a981ff5b3d56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/a?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtm.init&eid=0&h=Ag&z=0 | 142.250.74.136 | 200 OK | 0 B |
URL GET HTTP/3www.googletagmanager.com/a?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtm.init&eid=0&h=Ag&z=0 IP142.250.74.136:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /a?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtm.init&eid=0&h=Ag&z=0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: text/html
server: Google Tag Manager
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| videzz.net/js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 4.5 kB |
URL GET HTTP/2videzz.net/js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typeJavaScript source, ASCII text, with very long lines (4724), with no line terminators Hashf3ccae55608834d0e7acfde8a7235903 16cd94840b9d0105558c5f8b26ac51845d84bb2e 8d950b465b8cb006d19d702a1d15e209cb10b861f5ead615e7f9625469605ef2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-5llh7pij5eqz.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:18 GMT
vary: Accept-Encoding
etag: W/"66163902-1183"
expires: Sun, 26 May 2024 20:58:24 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| www.unibet.com/browser-notification?UrlParam=/stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=320669908_5F62A4F358B04D7EB1861C32E73E38BA&sref=GIG&GIG=NO_DESK_SB&affiliateId=1&pid=85891437&bid=37950 | 85.184.96.28 | 200 OK | 0 B |
URL GET HTTP/2www.unibet.com/browser-notification?UrlParam=/stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=320669908_5F62A4F358B04D7EB1861C32E73E38BA&sref=GIG&GIG=NO_DESK_SB&affiliateId=1&pid=85891437&bid=37950 IP85.184.96.28:443 ASN#47171 Unibet Services Limited
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectunibet.com Fingerprint2B:C6:A1:8E:D9:8C:18:0A:16:90:13:90:D9:82:2B:F0:6E:28:72:EC ValidityTue, 05 Mar 2024 00:10:07 GMT - Mon, 03 Jun 2024 00:10:06 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /browser-notification?UrlParam=/stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=320669908_5F62A4F358B04D7EB1861C32E73E38BA&sref=GIG&GIG=NO_DESK_SB&affiliateId=1&pid=85891437&bid=37950 HTTP/1.1
Host: www.unibet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a85891437%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1714165287317)%5c%2f%22%2c%22CookieTag%22%3a%223795085891437451240919C2024426211%22%7d%5d; clientId=polopoly_desktop
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:27 GMT
content-type: text/html;charset=utf-8
set-cookie: INGRESSCOOKIE_APIGATEWAY=14f4abf15b57d3c37175b9a46ca82651|cfa05ea48f7ba1e9a8f8d10007d08d5e; Expires=Fri, 26-Apr-24 22:01:27 GMT; Max-Age=3600; Path=/; HttpOnly
cms_tomcat=e70551472e5544553aed89ca6c9ba1c2; expires=Sat, 27-Apr-24 00:01:27 GMT; max-age=10800; httponly; secure; path=/
INGRESSCOOKIE_CMS=6e5af742df23b7928eddfc092dc7e39b|52b57b1639bb8e648ac62eed802c09a2; Expires=Sat, 27-Apr-24 00:01:27 GMT; Max-Age=10800; Path=/; HttpOnly
USESSIONID=4BBA61393AB31A70021DEDEB556D4FEB; Path=/; Secure; HttpOnly
x-request-id: 55f4604af0cb0fb0a8d63e5f61f12684
x-ua-compatible: IE=Edge,chrome=1,requiresActiveX=true
cache-control: public, max-age=0, s-maxage=60
expires: Fri, 26 Apr 2024 21:02:27 GMT
vary: accept-encoding
content-encoding: gzip
server: kindred-loadbalancer
strict-transport-security: max-age=63072000; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src 'unsafe-inline' 'unsafe-eval' http: https: data: wss: blob: jockey: unibetpro: *;
x-ooops-debug: /500-pages/www.unibet.com/index.html
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/reddit.js | 172.67.39.148 | 200 OK | 893 B |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/reddit.js IP172.67.39.148:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (903), with no line terminators Hash1f5dd30051ff637ea1d19ce73aced89c bfdd1d1c07492ba397bdcf13e262edcfd8692a5e c1bf0dd12b2f71de1e7e154b309caa18d2f1c2a8dc077beba23b89432ad72a81
GET /menu/svg/icons/reddit.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"1fe5b5008de689ce6464d7bcb07e742c"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BKI8JfGHLgDLQMxgjIu6uq9y5sFahBx8LFeIv85H4LGXkFnp9HWSnK6sZVx299a1mbU%2BjomK2FHlABBJnwQDJeYe4yJMdIkipFw6Yt2WeRGl5RDOvuaLloy6P%2F%2BRZw9yvyADzctlodc7WNv6iH7eoGMR"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1109
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a98201d870712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| videzz.net/js/jquery.min.js | 78.142.18.54 | 200 OK | 96 kB |
URL GET HTTP/2videzz.net/js/jquery.min.js IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typeJavaScript source, ASCII text, with very long lines (32086) Hash8101d596b2b8fa35fe3a634ea342d7c3 d6c1f41972de07b09bfa63d2e50f9ab41ec372bd 540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/jquery.min.js HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-5llh7pij5eqz.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:18 GMT
vary: Accept-Encoding
etag: W/"66163902-1762a"
expires: Sun, 26 May 2024 20:54:51 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/sub/31pnK5n | 172.67.205.77 | 200 OK | 234 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/31pnK5n IP172.67.205.77:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashf80bebf9471a9840ef5768e8c6b26672 164896726fce06ed3a1b8cbed00ab7c0493b6d24 5367258c378438d9831e9138819e8e68c4b7e6525dde7a086fb82a083398099c
GET /sub/31pnK5n HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3wuRRaBG7iQZEj1g%2B5lot12VczdTpJaG61nABFycBXf6Qf1WcDyUMdCSSO2tKyW1Tp0ZF8RSHFoaVMi%2Fq%2FnntvjOrjFLtk91w1a00qv9cwLeAX06yn4Q%2B2mETtPtaOGGJ1IQgyoVtDI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a981ff4b3656bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/sub/Zj8D76R | 172.67.205.77 | 200 OK | 234 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/Zj8D76R IP172.67.205.77:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashaa39ce14ee4ef59a81b3b1ccc7c20cfb 4037f87db53a18212b896cbe7dc03404833bd9f4 5e96980309ab1a029fa20a02fb9aca51a5967df4e6ab8aaab5f0373d4ebd4f68
GET /sub/Zj8D76R HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RcMicslG0X66wkqIId1AwhMYcQpiuxuBfHN5lo9TB7L25ICrV5%2FPh6erixIKn0MNBeozPNH0r7%2B3YDJoUOEwRKTXvqyJtEailSsZU3To60y8QT6dKxFdnOo125%2BDm6RgK3USHLuy9YA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a981ff4b3756bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tr.7vid.net/api/users/59845?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-5llh7pij5eqz.html&sid=0dc28d3a-9189-468a-bf8e-87b237215795&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=123521 | 135.181.208.216 | 200 OK | 656 B |
URL GET HTTP/2tr.7vid.net/api/users/59845?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-5llh7pij5eqz.html&sid=0dc28d3a-9189-468a-bf8e-87b237215795&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=123521 IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjecta.gatwins.site Fingerprint66:D4:C4:E9:BC:6E:82:9E:D0:2F:00:69:9A:DF:C2:6D:18:04:0B:1B ValidityWed, 10 Apr 2024 10:27:11 GMT - Tue, 09 Jul 2024 10:27:10 GMT
File typeASCII text, with very long lines (790), with no line terminators Hashddf37e44c955b3dfeaebf7b2e69a0fde c39c7ef41f39daeeb47a74539497f2c842eba625 e5b64a1fea07b3152529598dbf9d3101a39c6bcb6f8cb8673454e2ffd1f563c3
GET /api/users/59845?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-5llh7pij5eqz.html&sid=0dc28d3a-9189-468a-bf8e-87b237215795&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=123521 HTTP/1.1
Host: tr.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: nauid=H6Yrr5TVeyH1314Y5QET
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:25 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/sub/31pnK5n | 172.67.205.77 | 200 OK | 234 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/31pnK5n IP172.67.205.77:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashf80bebf9471a9840ef5768e8c6b26672 164896726fce06ed3a1b8cbed00ab7c0493b6d24 5367258c378438d9831e9138819e8e68c4b7e6525dde7a086fb82a083398099c
GET /sub/31pnK5n HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=32R6FFKhTvkGp1AuBzc%2FV3MiEw2z3K1aoRHvkO4eLYlncMV7FSBj%2Bb%2FoaNLdsuDG0k7P8yNL1bK7L9YiFaFQnmiBDTwcdRJvyQLfn4HH1RNGLlHKGQtTJvucjwhKUmOcgkt7%2BwmoZN4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a981ff4b2b56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.o333o.com/vast-im.js | 143.204.55.120 | 200 OK | 310 kB |
IP143.204.55.120:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerSectigo Limited Subjectcdn.o333o.com Fingerprint61:0E:6A:7F:7E:40:48:40:58:0F:EF:89:DB:CF:AD:C2:FB:52:F1:AC ValidityThu, 09 Nov 2023 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT
Size310 kB (310487 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /vast-im.js HTTP/1.1
Host: cdn.o333o.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 11 Apr 2024 09:31:31 GMT
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
etag: W/"65fd69b1-4bcd7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: MyVhUXoNvkPCEys2uljdubdHuFI2FP95p_5hvMqRxltEBqHgCEDlag==
age: 1337392
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c | 142.250.74.136 | 200 OK | 271 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c IP142.250.74.136:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (7711) Size271 kB (270572 bytes) Hash689333a619076efb77f6a7541cb45f3a 8d209cf84d47628d0db5c328d15d5f9d09977268 a300b3ee2332c3b6503c4fcf84e1fa5913af094c2031392e11c1561b678d6538
GET /gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 21:01:24 GMT
expires: Fri, 26 Apr 2024 21:01:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93608
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-HEX1BG8H46&cid=2147287730.1714165284>m=45je44o0v9104348843za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&z=254402840 | 142.250.74.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-HEX1BG8H46&cid=2147287730.1714165284>m=45je44o0v9104348843za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&z=254402840 IP142.250.74.163:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subject*.google.no FingerprintDE:35:DD:F6:8A:FF:6F:9D:0E:3D:27:DD:E2:B8:DE:CE:A4:6A:C8:C9 ValidityMon, 08 Apr 2024 07:44:18 GMT - Mon, 01 Jul 2024 07:44:17 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-HEX1BG8H46&cid=2147287730.1714165284>m=45je44o0v9104348843za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&z=254402840 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 26 Apr 2024 21:01:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| no-go.kelkoogroup.net/offersearchGo?.ts=1714097520344&.sig=UMlO242IL5Nwdbd4yVDN_CH_55M-&affiliationId=96979714&comId=10551423&country=no&offerId=5ff30f93ba4e7fcb923e04a3af5d3f6f&service=37&tokenId=5eb34ecf-a42f-4ab3-98ed-b9b0b8bc9818&wait=true&addedParams=true&custom1=53&originReferer=shoppingdeal.online&publisherSubId=1001&publisherTrafficType=domain | 0.0.0.0 | | 0 B |
URL GET no-go.kelkoogroup.net/offersearchGo?.ts=1714097520344&.sig=UMlO242IL5Nwdbd4yVDN_CH_55M-&affiliationId=96979714&comId=10551423&country=no&offerId=5ff30f93ba4e7fcb923e04a3af5d3f6f&service=37&tokenId=5eb34ecf-a42f-4ab3-98ed-b9b0b8bc9818&wait=true&addedParams=true&custom1=53&originReferer=shoppingdeal.online&publisherSubId=1001&publisherTrafficType=domain IP0.0.0.0:0
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /offersearchGo?.ts=1714097520344&.sig=UMlO242IL5Nwdbd4yVDN_CH_55M-&affiliationId=96979714&comId=10551423&country=no&offerId=5ff30f93ba4e7fcb923e04a3af5d3f6f&service=37&tokenId=5eb34ecf-a42f-4ab3-98ed-b9b0b8bc9818&wait=true&addedParams=true&custom1=53&originReferer=shoppingdeal.online&publisherSubId=1001&publisherTrafficType=domain HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopde.pricedeals.shop/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| bid.bidclickmedia.com/sub/Pj8pz0z | 172.67.205.77 | 200 OK | 234 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/Pj8pz0z IP172.67.205.77:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashec45c51dfcbeb0d487d6d2ccf0cd9a23 eadd83e9b3def654d52e1b93ae5f5c13d8a69c99 3a5e0788bab23d00613d25c36fabb29d38bb3e51af54bf370854620392a249ce
GET /sub/Pj8pz0z HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8pWfkAf1iyxJig888qPEi2YaAwBj%2BBHJM8cyqyt3AJH5tf3%2BQDyqbcp67i%2Fp3qWPP%2FWdaMeKQIKWSyuq2O5l5%2BF5D5XC05tLx1RjJXXIZEI5a1UHCyRxT6ewedjAd3dpj93zoWDQfo4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a981ff5b4056bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/facebook.js | 172.67.39.148 | 200 OK | 429 B |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/facebook.js IP172.67.39.148:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (439), with no line terminators Hash874e1638740e061f9fa55eda3180724c 108a7e30fa0f7d50b961845ec970a2745f3c821f d1bf990d09417220fcb615079a569e0a403c75beef0eac536e5976b7751c0370
GET /menu/svg/icons/facebook.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"68925fa8e347041c6006837e73c518bc"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6GJdn8sjfSnuFPLDtJ%2FQfURHSV9%2BVKFPN%2BoVMIE1WLd%2FjnFWUFJ2yQt7T11BUY%2FmaD3PEQ7eEP6%2Bz96%2BX%2BOzAKq%2BjuM95%2B0V1zYfujak10jOE9EJBhjR6qVVwcABhbLdH5ABU1D%2FXBghUl5L%2FyVYWLhC"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1109
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a98201d86f712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| allvideometrika.com/f.php?sid=212515 | 188.114.97.1 | 200 OK | 0 B |
URL GET HTTP/2allvideometrika.com/f.php?sid=212515 IP188.114.97.1:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectallvideometrika.com Fingerprint0F:3F:B1:7E:F7:3C:77:24:1C:85:B2:89:15:11:43:1A:AD:64:DF:13 ValidityTue, 23 Apr 2024 13:34:13 GMT - Mon, 22 Jul 2024 13:34:12 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /f.php?sid=212515 HTTP/1.1
Host: allvideometrika.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.1.33
cache-control: no-store, no-cache, must-revalidate, max-age=0
x-robots-tag: noindex
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FcbIzH5wAMaGHwLUpii2ku2Ek%2FMbIHmPFzb1QT%2FSSu150uSYgqrs6alvLYAp529Z87QJHrW254%2FFpxPWY8UaaRZy83xTVPV3WPb32UH%2FEETTLivUzA5lNAqKRwfkOUPjx5I5Ydod"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9820288a17128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/sm.25.html | 172.67.39.148 | 200 OK | 716 B |
URL GET HTTP/3static.addtoany.com/menu/sm.25.html IP172.67.39.148:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeHTML document, ASCII text, with very long lines (744), with no line terminators Hashc3c97893ca5c74e7504aa4ec474ea41b cdccb12d7e73682e0e807107243ede7d5e14c962 b79f65e9ffe3bad9bd9cdcffed0758430f7eb1a630c368dc173eecdeb2821f00
GET /menu/sm.25.html HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5XqYdf3zT6f5djRXIIJwMp9CmOr869HlwkvaSLOezMHs8bCNXKhchHrxUkAX8VobSQtGTx9av1ds6j%2BrAMbeIHt6gjCWQ%2F0%2FDDuSz%2BYQMTMfH9cMBRVSXt9wfmQ0xD6qcBrOg5iLUMVJymypfmtsURYC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 10373
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a981fe8830712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bid.bidclickmedia.com/sub/31bV2Jy | 172.67.205.77 | 200 OK | 239 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/31bV2Jy IP172.67.205.77:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashd5b23342c3da61ad8cb32c85b5a9a6ca 3ca89fd68565941a5f5dec87720a2164c9b860ae 53073b03453dec44b400acecc549d6446aba803406a391777a94cc2504173bbb
GET /sub/31bV2Jy HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HdiZ8N8V6jgD3N0lSG7Tq4AD89Bq8%2F07jmWTcejEcLPYn9i9PXLRXQybuRj3n3AD3oi3jYvc4ev%2B%2BeHumLIPtRsMT39FsIn0rc%2FHO7%2BkqoOqGxbtAeVHSsNog%2BCj%2FFz3EoYn3H29zzg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a981ff6b4756bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| zv.7vid.net/api/spots/70101?s1=123521&v2=1&fill=0&kw=file%20upload%2Cshare%20files%2Cfree%20upload&i=1&url=https%3A%2F%2Fvidezz.net%2Fembed-5llh7pij5eqz.html&sid=0dc28d3a-9189-468a-bf8e-87b237215795 | 135.181.208.216 | 200 OK | 67 B |
URL GET HTTP/2zv.7vid.net/api/spots/70101?s1=123521&v2=1&fill=0&kw=file%20upload%2Cshare%20files%2Cfree%20upload&i=1&url=https%3A%2F%2Fvidezz.net%2Fembed-5llh7pij5eqz.html&sid=0dc28d3a-9189-468a-bf8e-87b237215795 IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subject1111.spinna.online FingerprintF3:80:AE:D8:32:E7:57:75:94:99:58:76:4C:57:59:80:E8:9A:B7:ED ValidityFri, 29 Mar 2024 23:27:07 GMT - Thu, 27 Jun 2024 23:27:06 GMT
File typeXML document, ASCII text, with no line terminators Hashc3928cea84e0c684b265b8fb465a9e72 aace4c0c8b0fbb35d2932f4f27e01ef627161574 3238d03797cab82118740c0d6ddace8d6bc9caf168e94d2ade893f541c1f8a25
GET /api/spots/70101?s1=123521&v2=1&fill=0&kw=file%20upload%2Cshare%20files%2Cfree%20upload&i=1&url=https%3A%2F%2Fvidezz.net%2Fembed-5llh7pij5eqz.html&sid=0dc28d3a-9189-468a-bf8e-87b237215795 HTTP/1.1
Host: zv.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://videzz.net
access-control-expose-headers: X-Asg-Config, X-t
set-cookie: nauid=QSTOHKIOKEGoJnEuACk0; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
x-robots-tag: noindex, nofollow
x-t: 0
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/a?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtm.init_consent&eid=-1&h=Ag&dl=videzz.net%2Fembed-5llh7pij5eqz.html&tdp=GTM-56DK3TH;32020053;0;0;0&rtg=32020053&rlo=21&slo=15&z=0 | 142.250.74.136 | 200 OK | 0 B |
URL GET HTTP/3www.googletagmanager.com/a?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtm.init_consent&eid=-1&h=Ag&dl=videzz.net%2Fembed-5llh7pij5eqz.html&tdp=GTM-56DK3TH;32020053;0;0;0&rtg=32020053&rlo=21&slo=15&z=0 IP142.250.74.136:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /a?id=GTM-56DK3TH&v=3&t=t&pid=317227291&cv=46&rv=44o0&tc=13&es=1&e=gtm.init_consent&eid=-1&h=Ag&dl=videzz.net%2Fembed-5llh7pij5eqz.html&tdp=GTM-56DK3TH;32020053;0;0;0&rtg=32020053&rlo=21&slo=15&z=0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: text/html
server: Google Tag Manager
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319 | 174.137.133.17 | 302 Found | 526 B |
URL GET HTTP/1.1xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerSectigo Limited Subject*.zeusadx.com FingerprintAA:67:88:35:5F:BC:20:3C:44:9B:00:BD:4F:E1:C0:5F:62:D0:69:C0 ValidityMon, 23 Oct 2023 00:00:00 GMT - Wed, 23 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=531847&auth=KhbHhS&pubid=162319 HTTP/1.1
Host: xml.zeusadx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 21:01:25 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://r.mylot.com/p.aspx?u=a8d68d99-7a9a-4ee0-82f3-25de7b37d3cb
|
|
| bid.bidclickmedia.com/sub/e6yMnW6 | 172.67.205.77 | 200 OK | 239 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/e6yMnW6 IP172.67.205.77:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hash824a3f01774373d84e2c831d29c4cdc1 a90fddcc8bc46e63240496ec164cbbb651a379d0 735c9eb1ab5740ecd5f901abf9c89369e3feedd80f2ed6feb9d716aeb75a818d
GET /sub/e6yMnW6 HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4co6UXKYPAjDZgqSL9qJVns2R9uXDe4VjeqyLyt3qFDx%2F5PBumoKyEM3KaMH9m795%2Fgc24ZGYaC7%2BWFLW4PoYAoOElu3eZ7FYsbqwOcC6okoGMH8CbbHnI8ZMnv4h%2FAFeIbJX4kPv%2BU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a981ff4b3056bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| videzz.net/favicon.ico?v=2 | 78.142.18.54 | 200 OK | 1.2 kB |
URL GET HTTP/2videzz.net/favicon.ico?v=2 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash07075ddac650ad1577e310576f4ac231 1c8f551262fac5a047a268b82fa932c405ab13ff c5f2d482ae4405a8e9f16a7ab09c5d04380283eb0cb0a9b237b32bc1bca47901
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico?v=2 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-5llh7pij5eqz.html
Cookie: lang=1; file_id=37761914; aff=123521; _ga_HEX1BG8H46=GS1.1.1714165284.1.0.1714165284.60.0.0; _ga=GA1.1.2147287730.1714165284; asgfp2=172e5b6362817b33a26bdcbe3d1af8ae
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: image/x-icon
last-modified: Wed, 10 Apr 2024 07:00:39 GMT
vary: Accept-Encoding
etag: W/"66163917-47e"
expires: Sun, 26 May 2024 20:55:56 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| becast.onionlive.workers.dev/ | 104.21.9.35 | 200 OK | 1.4 kB |
URL GET HTTP/2becast.onionlive.workers.dev/ IP104.21.9.35:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectonionlive.workers.dev Fingerprint15:4B:F2:93:81:D8:8E:E8:03:9A:C3:E3:2F:78:10:77:9B:80:FD:9F ValiditySun, 03 Mar 2024 23:51:41 GMT - Sat, 01 Jun 2024 23:51:40 GMT
File typeHTML document, ASCII text, with very long lines (1382), with no line terminators Hashf00afc8448987fa11d44221fa5292cae 9f4c400dce037e70bcb6db008b9419b99bdcb42e 1363ed26fa6dfa94a18ffef1fc03bf9e8be0ea9e769c641dd052bc8b77fc6891
GET / HTTP/1.1
Host: becast.onionlive.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:25 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vDn%2F24QiyXXAqKdY3KGh62yW57RqoClnlwbKBJKB6Fh%2F46f%2B%2BwULST07BDx155jxweqytMeVnDfOB%2BYd6J2TY9kxgRyIpHh%2BWf0nWDVGoYwbXTJ4sPlDm8bMi1oR7KgkQRvow5EL64nO5iLgpLU0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a9820c3803568a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.unibet.com/browser-notification?UrlParam=/stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=320669908_7E90E723D854467895D654F784733C6F&sref=GIG&GIG=NO_DESK_SB&affiliateId=1&pid=85891437&bid=37950 | 85.184.96.28 | 200 OK | 0 B |
URL GET HTTP/2www.unibet.com/browser-notification?UrlParam=/stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=320669908_7E90E723D854467895D654F784733C6F&sref=GIG&GIG=NO_DESK_SB&affiliateId=1&pid=85891437&bid=37950 IP85.184.96.28:443 ASN#47171 Unibet Services Limited
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectunibet.com Fingerprint2B:C6:A1:8E:D9:8C:18:0A:16:90:13:90:D9:82:2B:F0:6E:28:72:EC ValidityTue, 05 Mar 2024 00:10:07 GMT - Mon, 03 Jun 2024 00:10:06 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /browser-notification?UrlParam=/stan/campaign.do?cmpId=2799402&affiliateId=1&unibetTarget=/nu/pop/sportsbook/multisports/index.html&targetDomain=https://welcome.unibet.com&btag=320669908_7E90E723D854467895D654F784733C6F&sref=GIG&GIG=NO_DESK_SB&affiliateId=1&pid=85891437&bid=37950 HTTP/1.1
Host: www.unibet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a85891437%2c%22BID%22%3a37950%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1714165287317)%5c%2f%22%2c%22CookieTag%22%3a%223795085891437451240919C2024426211%22%7d%5d; clientId=polopoly_desktop
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:27 GMT
content-type: text/html;charset=utf-8
set-cookie: INGRESSCOOKIE_APIGATEWAY=14f4abf15b57d3c37175b9a46ca82651|cfa05ea48f7ba1e9a8f8d10007d08d5e; Expires=Fri, 26-Apr-24 22:01:27 GMT; Max-Age=3600; Path=/; HttpOnly
cms_tomcat=96d4a27f4cb2453b8ce0db089ea389ec; expires=Sat, 27-Apr-24 00:01:27 GMT; max-age=10800; httponly; secure; path=/
INGRESSCOOKIE_CMS=bcc85608a1046bcac4641db46d1a6ca2|52b57b1639bb8e648ac62eed802c09a2; Expires=Sat, 27-Apr-24 00:01:27 GMT; Max-Age=10800; Path=/; HttpOnly
USESSIONID=B56335433193DC53837F8DD3F39B0D8D; Path=/; Secure; HttpOnly
x-request-id: 4b8d2ac68872c363c3d3d0032f43967c
x-ua-compatible: IE=Edge,chrome=1,requiresActiveX=true
cache-control: public, max-age=0, s-maxage=60
expires: Fri, 26 Apr 2024 21:02:27 GMT
vary: accept-encoding
content-encoding: gzip
server: kindred-loadbalancer
strict-transport-security: max-age=63072000; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src 'unsafe-inline' 'unsafe-eval' http: https: data: wss: blob: jockey: unibetpro: *;
x-ooops-debug: /500-pages/www.unibet.com/index.html
X-Firefox-Spdy: h2
|
|
| videzz.net/embed-5llh7pij5eqz.html | 78.142.18.54 | 200 OK | 36 kB |
URL User Request GET HTTP/2videzz.net/embed-5llh7pij5eqz.html IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /embed-5llh7pij5eqz.html HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 21:01:22 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 25 Apr 2024 21:01:22 GMT
x-frame-options: 1
set-cookie: lang=1; domain=.videzz.net; path=/; HttpOnly
xfsts=; domain=.videzz.net; path=/; expires=Thu, 27-Apr-2023 21:01:22 GMT; HttpOnly
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| videzz.net/js/videojs.stm.5.min.js?0.552121530737914 | 78.142.18.54 | 200 OK | 7.2 kB |
URL GET HTTP/2videzz.net/js/videojs.stm.5.min.js?0.552121530737914 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typeJavaScript source, ASCII text, with very long lines (7493), with no line terminators Hash559fdbbfb2f700ef277f69b35a097d54 df1d4bf430b37e066e4e3187d621c954d581c160 d30c79b738e33d406468f33a059c11238995e485cad39bb31a721f370baa05c5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/videojs.stm.5.min.js?0.552121530737914 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-5llh7pij5eqz.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:18 GMT
vary: Accept-Encoding
etag: W/"66163902-1c25"
expires: Sun, 26 May 2024 21:01:23 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: MISS
X-Firefox-Spdy: h2
|
|
| videzz.net/js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 416 kB |
URL GET HTTP/2videzz.net/js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
Size416 kB (416358 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-5llh7pij5eqz.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:18 GMT
vary: Accept-Encoding
etag: W/"66163902-65a66"
expires: Sun, 26 May 2024 20:57:41 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/page.js | 172.67.39.148 | 200 OK | 3.0 kB |
URL GET HTTP/2static.addtoany.com/menu/page.js IP172.67.39.148:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeJavaScript source, ASCII text, with very long lines (3132), with no line terminators Hash40486591ae8ea6d1423aeb13f1fd509b f847af56588642de93c6fe0d2ce182303f312455 16a6753a1de5c5602b0ca4afe3d17b95e2cb18d6b79bf7cdccedba3a733c1138
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=86400, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"e346c2841e4abbb66ee259e9540abb61"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i2AC7bE2UDFKM7qC5jDQxDxGBrcVDlnPDaJpMnzeeMpH%2BWmJ3duBGtVLq6wxk1QIfxp7e6MatgiRO5LypYWukV0nng7cUXW9aran8y9cwM8v0JAzIBzS1YQZ9pyCABT%2BXorAHEebwrAhbk61YRrQnUdl"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 10383
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a981fb2e7e56c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/whatsapp.js | 172.67.39.148 | 200 OK | 1.1 kB |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/whatsapp.js IP172.67.39.148:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (1122), with no line terminators Hashd822c46f36a55fdbfcc5029e62e19937 c575da68fa99eeb33863f281395755cbf20004d4 062ec1f7c3acea435122961b771eb2e4d136a3e870b17d3e811413f5aa78ed3e
GET /menu/svg/icons/whatsapp.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"83af4df8173e43227812296bb8542dcf"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jWKI1OdsgbKSSTP8GoOtOhOKwQZxTKwLszgx9k%2BDMGmsGKC5miCWXMTCDxhml1%2BDIyezqjP%2F1TFlvruSrPSHWyFchgoghrBAuphUoHmG9VP4ODKiD5REkfluPD1gVIjmFYN898HTH2wMXNp45zD%2BhTqy"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1109
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a98201e889712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| offmantiner.com/4/6120639/ | 139.45.197.245 | 200 OK | 34 kB |
URL GET HTTP/2offmantiner.com/4/6120639/ IP139.45.197.245:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectoffmantiner.com FingerprintD7:99:54:4F:68:91:39:12:41:98:52:CC:F1:74:C6:3C:1F:93:F3:04 ValidityMon, 25 Mar 2024 05:10:58 GMT - Sun, 23 Jun 2024 05:10:57 GMT
File typeHTML document, ASCII text, with very long lines (18247) Hashf8fc6d5192db8ac98e533ea8c226679b 482cd0e294e3f5fb9c0c766306b622c592f81d3b 0ef908d1ba4682c7571d259cbd73c45cd5e0eb0f225bb9061560a9cb26b6ea1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /4/6120639/ HTTP/1.1
Host: offmantiner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://becast.onionlive.workers.dev/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:26 GMT
content-type: text/html; charset=utf8
x-trace-id: 18cd24818a6068e0cedc4429172c992b
link: <https://yonmewon.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00804a23e36246effcfc4e7b4dc2836c; expires=Sat, 26 Apr 2025 21:01:26 GMT; path=/; secure; SameSite=None
oaidts=1714165286; expires=Sat, 26 Apr 2025 21:01:26 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| best.aliexpress.com/?aff_fcid=2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3&tt=CPS_NORMAL&aff_fsk=_DE7z9L3&af=4VbAdjpCtAXr&commercial_type=bestPage&hc_1214_tag=ByAffPage&aff_fcid=3011bde736c34777acfd46eada44c14f-1714165288567-04245-_pz9sEiR&aff_fsk=_pz9sEiR&aff_platform=portals-promotion&sk=_pz9sEiR&aff_trace_key=3011bde736c34777acfd46eada44c14f-1714165288567-04245-_pz9sEiR&terminal_id=df1ba613833f4bb0ba5a0db3b35ef7b4 | 0.0.0.0 | | 0 B |
URL GET best.aliexpress.com/?aff_fcid=2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3&tt=CPS_NORMAL&aff_fsk=_DE7z9L3&af=4VbAdjpCtAXr&commercial_type=bestPage&hc_1214_tag=ByAffPage&aff_fcid=3011bde736c34777acfd46eada44c14f-1714165288567-04245-_pz9sEiR&aff_fsk=_pz9sEiR&aff_platform=portals-promotion&sk=_pz9sEiR&aff_trace_key=3011bde736c34777acfd46eada44c14f-1714165288567-04245-_pz9sEiR&terminal_id=df1ba613833f4bb0ba5a0db3b35ef7b4 IP0.0.0.0:0
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerDigiCert Inc Subjectae01.alicdn.com Fingerprint3B:6B:34:80:95:44:11:F7:71:DE:95:B7:C7:7C:A0:9C:BC:00:BC:AA ValidityWed, 10 Apr 2024 00:00:00 GMT - Wed, 16 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?aff_fcid=2327451b62674ac5b99df1fd1bb9a5c5-1714165287650-08207-_DE7z9L3&tt=CPS_NORMAL&aff_fsk=_DE7z9L3&af=4VbAdjpCtAXr&commercial_type=bestPage&hc_1214_tag=ByAffPage&aff_fcid=3011bde736c34777acfd46eada44c14f-1714165288567-04245-_pz9sEiR&aff_fsk=_pz9sEiR&aff_platform=portals-promotion&sk=_pz9sEiR&aff_trace_key=3011bde736c34777acfd46eada44c14f-1714165288567-04245-_pz9sEiR&terminal_id=df1ba613833f4bb0ba5a0db3b35ef7b4 HTTP/1.1
Host: best.aliexpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: af_ss_a=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 104.18.10.207 | 200 OK | 31 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP104.18.10.207:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 03/18/2024 12:28:12
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 2ab8316fdef76f530c15e660f59a896d
cdn-cache: HIT
cf-cache-status: HIT
age: 2816727
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a981fad95d56ab-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/twitter.js | 172.67.39.148 | 200 OK | 645 B |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/twitter.js IP172.67.39.148:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (655), with no line terminators Hash671b3272826b2e03f7f5ecc6846a4f83 bcd620154cd6381ddf84b4e17e53ad716f3acbea b743f6ed35f2a170860cfb010577cd000ee695dc23b850d3b3e479ef1178bb22
GET /menu/svg/icons/twitter.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:01:24 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"af2b829f9b79fabec7c0148a8b7e444b"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=no0s8wf%2B47RtY8CEer2btpxxEiQg64a2epQXM1gVeuJI2MFbat7D2FpnM2CTnrpqF8xhWPrS4hZNCEW3DGu0x8AI7gl43a8FCrFs3fa3QDBL33XfcQ%2F%2Bao27VUMmVJ9PHZZcsnwPTuha9DeAmuHyZVOg"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 1109
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a98201d873712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bid.bidclickmedia.com/sub/Pj8pz0z | 172.67.205.77 | 200 OK | 234 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/Pj8pz0z IP172.67.205.77:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashec45c51dfcbeb0d487d6d2ccf0cd9a23 eadd83e9b3def654d52e1b93ae5f5c13d8a69c99 3a5e0788bab23d00613d25c36fabb29d38bb3e51af54bf370854620392a249ce
GET /sub/Pj8pz0z HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:01:23 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gtj6%2BDAFRlH%2BV6n3%2FO%2Fpm4m9UuzrcmXJkfVe7QZXe7r%2FRONVe71kkZ6O%2BLRMMSXs8gOtBE%2B33Q7rPowHXhp4u3HQE1CUXJIgyZDcfU1AmYI%2B6itX5TRAg9HYM1k5P0jx%2BH5GCPU9jig%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a981ff5b4356bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| offmantiner.com/4/6120639/ | 139.45.197.245 | 200 OK | 34 kB |
URL GET HTTP/2offmantiner.com/4/6120639/ IP139.45.197.245:443
Requested byhttps://videzz.net/embed-5llh7pij5eqz.html CertificateIssuerLet's Encrypt Subjectoffmantiner.com FingerprintD7:99:54:4F:68:91:39:12:41:98:52:CC:F1:74:C6:3C:1F:93:F3:04 ValidityMon, 25 Mar 2024 05:10:58 GMT - Sun, 23 Jun 2024 05:10:57 GMT
File typeHTML document, ASCII text, with very long lines (18247) Hashc791ff5a7ce68f6f67580804e7dcc01c 690061ad792f7b42637537a55d2652e40ebf5090 aa659b72a267d377b189aeaba9e1cc15bd3f9e985457b42093b374e58265f3b1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /4/6120639/ HTTP/1.1
Host: offmantiner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://becast.onionlive.workers.dev/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:01:26 GMT
content-type: text/html; charset=utf8
x-trace-id: 9f4483ed712e4cae5c5f02350069c952
link: <https://yonmewon.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00804a770ffa4205f8f404a9bfe63e24; expires=Sat, 26 Apr 2025 21:01:26 GMT; path=/; secure; SameSite=None
oaidts=1714165286; expires=Sat, 26 Apr 2025 21:01:26 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|