| hdss.guru/templates/hdss/images/ic_red_play.png | 188.114.97.1 | 200 OK | 321 B |
URL GET HTTP/3hdss.guru/templates/hdss/images/ic_red_play.png IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typePNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced Hashbd230622c05a36a48ce0e4bc62bbfa2b 844e5d1e645d4dc27cbfb3fca81b378a7206daa2 6a5cba57384ee3a77cdf916069e816547b0dc1aa82dac9aa1a1122012c0a82ff
GET /templates/hdss/images/ic_red_play.png HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:29 GMT
content-type: image/png
content-length: 321
last-modified: Wed, 17 Apr 2024 09:16:29 GMT
etag: "661f936d-141"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 652658
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y7uvjUReEjhJsFxaFXK0pbsla1Fi0q8asDkmlndSRRHyKocrUme31fOLbAxeRq5mYSdu88z7eFkq4wWdVF7kcfmyn7zpBcfoSFU0389EyJo25Fsmp%2FjJiXTnkj4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf7356fec5687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/templates/hdss/images/ic_down_green.png | 188.114.97.1 | 200 OK | 429 B |
URL GET HTTP/3hdss.guru/templates/hdss/images/ic_down_green.png IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typePNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced Hashb7f79d653dbc25297eff68ddedb125d2 51b6f423187b232056e5f872093ab9ef2810bcc1 497cd1f467c0b73cc9090b3741409d42b5c62dc98ea38ec383f211d974c6f57b
GET /templates/hdss/images/ic_down_green.png HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:29 GMT
content-type: image/png
content-length: 429
last-modified: Wed, 17 Apr 2024 09:16:29 GMT
etag: "661f936d-1ad"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5e8gmal0G1U5zUihzCs%2BLgUbUjzniE3bMqble8H7xka%2FV2ry9lrTl6a%2BAITAvWAPVGY%2BGUuqQrryqGlqipzSWMIDcY1uY%2BJUsghEWNQbEcI%2BUaqfndXgXb%2BL6Gw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf7356fef5687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/templates/hdss/images/logoz1.png | 188.114.97.1 | 200 OK | 3.9 kB |
URL GET HTTP/3hdss.guru/templates/hdss/images/logoz1.png IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typePNG image data, 260 x 40, 8-bit/color RGBA, non-interlaced Hashb8af9d6939e2570b1e5cba95ab6e349e 32e72b4f27bf4e112a68a5781db98c1dc3221760 a70b929285a84a8d59175069e834f2656c8ba80dbd02059e0a481c49c3d6634b
GET /templates/hdss/images/logoz1.png HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:29 GMT
content-type: image/png
content-length: 3949
last-modified: Fri, 05 Apr 2024 09:30:11 GMT
etag: "660fc4a3-f6d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uxQpmb%2BS0U1weND47SKEtryTFzV22qutPKrw%2BulnHmVvOMhAzWbiCezRgcxN0GF2mUWrTb3j9WAcTrKotkZo6lg%2Fd5epCJ%2Fgno%2BCuw2IB4%2BNvKhFRQF50BcrugU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf7355fe25687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/engine/classes/js/jqueryui3.js?v=e6010 | 188.114.97.1 | 200 OK | 37 kB |
URL GET HTTP/3hdss.guru/engine/classes/js/jqueryui3.js?v=e6010 IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeJavaScript source, ASCII text, with very long lines (32087), with CRLF line terminators Hash6c40abe41eecff49273688ac08e99390 468737f5b71186cff279ee53198e241db25842a4 1b2cbc8913ebb41f2941e655be25ae34f7ab03967dca56d7a8561bce6047ea80
GET /engine/classes/js/jqueryui3.js?v=e6010 HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 03 Jan 2024 06:53:23 GMT
vary: Accept-Encoding
etag: W/"65950463-1f27c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 1694521
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pS1H7p6aKGcvHDDoNjXom1E9VS%2FyS00d9NWI0x0jKil0Sc911uyGrXNZLUIc71qeJps85jeCBnO%2Bv1dEZSKWF5gz9X8kSFScfOYuOzh5FtEXzo53NdcLZ525qOY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf7354fc55687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| positivelysunday.com/5e/8b/ca/5e8bca158be0bbfbe0b1ec8c5be5a6bb.json | 172.240.108.76 | 200 OK | 392 B |
URL GET HTTP/1.1positivelysunday.com/5e/8b/ca/5e8bca158be0bbfbe0b1ec8c5be5a6bb.json IP172.240.108.76:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjectpositivelysunday.com Fingerprint31:D8:6A:72:3C:07:FB:9C:6A:02:46:FE:A3:25:22:F9:4D:36:7D:8E ValidityFri, 29 Mar 2024 12:46:22 GMT - Thu, 27 Jun 2024 12:46:21 GMT
Hash7a65e61f6559a9a1b00a264caa27c455 46832f35f6e6d32e4c5e1eb1336609609edff566 f1207d0ecc5b03d97f7debbe92143d2408885565ffc13c6dc4f84e9d05c416bf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /5e/8b/ca/5e8bca158be0bbfbe0b1ec8c5be5a6bb.json HTTP/1.1
Host: positivelysunday.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hdss.guru
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:29:30 GMT
Content-Type: application/json
Content-Length: 392
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 04673ec20e2b8ee48124643e75e5c03c
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| positivelysunday.com/f9/8c/62/f98c6279d54f9619690a2401e3ea449f.js | 172.240.108.76 | 200 OK | 16 kB |
URL GET HTTP/1.1positivelysunday.com/f9/8c/62/f98c6279d54f9619690a2401e3ea449f.js IP172.240.108.76:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjectpositivelysunday.com Fingerprint31:D8:6A:72:3C:07:FB:9C:6A:02:46:FE:A3:25:22:F9:4D:36:7D:8E ValidityFri, 29 Mar 2024 12:46:22 GMT - Thu, 27 Jun 2024 12:46:21 GMT
File typeJavaScript source, ASCII text, with very long lines (44056), with no line terminators Hashdcb98a0684e91694c4923024541e90ee 0b2c42636e96db97bf0d051307882678c706a491 1876f371c9f7c6c3bd2ff111384c2a906f05fc91e98993ef8333e331cddea59b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /f9/8c/62/f98c6279d54f9619690a2401e3ea449f.js HTTP/1.1
Host: positivelysunday.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:29:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 93c14684ecfc9ce768079935ebb61bb6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| hdss.guru/stream-de/uploads/paramount.jpg | 188.114.97.1 | 200 OK | 1.0 MB |
URL GET HTTP/3hdss.guru/stream-de/uploads/paramount.jpg IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 2560x1600, components 3 Size1.0 MB (1015030 bytes) Hash37f9f185e43ab1c1a16d6271067bf743 c3dda99218c6b4029411afb01120723739342d4a cdd1d9a2995ddf87f3e71331fc417712fcac7ce3211c669df1c445e06ff29fe0
GET /stream-de/uploads/paramount.jpg HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:30 GMT
content-type: image/jpeg
content-length: 1015030
last-modified: Wed, 03 Jan 2024 06:54:36 GMT
etag: "659504ac-f7cf6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 120478
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wO6WTvYXesGbPTvNiL1ntn4iJBGHXQ47Igrx9lEjWYlOOD9%2FoVkbPcf8j%2Ff%2F0kRMBVlbOwjLnqBE9TAwEUB2CCV6N%2Fv79NQ9sF%2B%2B%2BqTEoWvSGXoMadZEHD2v1oU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf73b5d405687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/templates/hdss/fonts/MaterialIcons-Regular.woff2 | 188.114.97.1 | 200 OK | 44 kB |
URL GET HTTP/3hdss.guru/templates/hdss/fonts/MaterialIcons-Regular.woff2 IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 44300, version 1.720 Hash570eb83859dc23dd0eec423a49e147fe 09963592e8c953cc7e14e3fb0a5b05d5042e8435 a87d66c91b2e7dc5530aef76c03bd6a3d25ea5826110bf4803b561b811cc8726
GET /templates/hdss/fonts/MaterialIcons-Regular.woff2 HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/templates/hdss/css/style.css?v=24
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:30 GMT
content-type: font/woff2
content-length: 44300
last-modified: Wed, 03 Jan 2024 06:54:49 GMT
etag: "659504b9-ad0c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MpkyERJnQNM0G50PwC9%2FDFh93zqlZTo%2BY6bmaNnq4OIQdsTcZQ6YNO1pzIUKG2E4tLnyWZSyD4IycsjqQVQqZDH10CaUMUkFx1LYvoIs1OQIjOuWSqrGwNGck44%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf73b0cf65687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/templates/hdss/css/style.css?v=24 | 188.114.97.1 | 200 OK | 113 kB |
URL GET HTTP/3hdss.guru/templates/hdss/css/style.css?v=24 IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeASCII text, with very long lines (361), with CRLF line terminators Size113 kB (112902 bytes) Hash8139ffd528d29af24fe3e6d8b15849d4 4a49297699a3c6df3f4904bb01e7baf160e98315 250104b309cc8bb4906847ec1cf0af7a7bc7ba7911cbfcc40c7e698839752200
GET /templates/hdss/css/style.css?v=24 HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:29 GMT
content-type: text/css
last-modified: Tue, 09 Jan 2024 09:37:13 GMT
vary: Accept-Encoding
etag: W/"659d13c9-3882f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 1694522
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g7OpmpG42fDXhpK20M%2BapexfP3Ovhx0ArDC1H4%2BSAgOstV4aT7zUtTJFYluH5Qlzh5kiOoQzAvrzpAPvXVP2j9Jlj1RHAk56v0V9tRNor6fvEzcS6Jg%2BymLBxNg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf7354fbe5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/templates/hdss/js/circle-progress.min.js | 188.114.97.1 | 200 OK | 35 kB |
URL GET HTTP/3hdss.guru/templates/hdss/js/circle-progress.min.js IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeJavaScript source, ASCII text, with very long lines (4187), with CRLF line terminators Hash4628f273bbe92dc3be77fb92629e4e5b 1f192fdfedf744f33b2949aea24a332606ada9c0 ee7294f8f8088a17da790a5a9f44e92f208a1d3991c7e83d1cb3da1c5986b410
GET /templates/hdss/js/circle-progress.min.js HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 03 Jan 2024 06:54:50 GMT
vary: Accept-Encoding
etag: W/"659504ba-1168"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 1694521
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EK2sLH0aXogNxXCQmE1XaMCcTJie0IBBXdIbEIM91wdpQZBMf1R13mXtO%2BM97NZB8AxltZOkSZaspMH%2BQSnwgouQLMix%2BrVuuv%2F%2FjLWQhzmJtShErlwhMzl%2FEf0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf7355fd75687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 142.250.74.163 | 200 OK | 33 kB |
URL GET HTTP/2fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP142.250.74.163:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 33092, version 1.0 Hash057478083c1d55ea0c2182b24f6dd72f caf557cd276a76992084efc4c8857b66791a6b7f bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b
GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hdss.guru
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 Apr 2024 02:20:35 GMT
expires: Sun, 20 Apr 2025 02:20:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
age: 454136
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 142.250.74.163 | 200 OK | 33 kB |
URL GET HTTP/2fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP142.250.74.163:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 33092, version 1.0 Hash057478083c1d55ea0c2182b24f6dd72f caf557cd276a76992084efc4c8857b66791a6b7f bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b
GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hdss.guru
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 Apr 2024 02:20:35 GMT
expires: Sun, 20 Apr 2025 02:20:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
age: 454136
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| hdss.guru/cdn-cgi/challenge-platform/scripts/jsd/main.js | 188.114.97.1 | 302 Found | 0 B |
URL GET HTTP/3hdss.guru/cdn-cgi/challenge-platform/scripts/jsd/main.js IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1; ppu_main_5e8bca158be0bbfbe0b1ec8c5be5a6bb=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Thu, 25 Apr 2024 08:29:31 GMT
content-length: 0
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3nIbOb%2BbMrLY1RvB53ecIh7832p9eib%2BW2aPsreX1B%2FNqWYmWflmGdAOaTXDwB1BtCWN%2FwVuY7MoginK4l81NcAimQpGjRfDJBRSDbZPuK8GjFUdrhKVGzrangY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf73ddfa95687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/templates/hdss/images/btn_mkv.png | 188.114.97.1 | 200 OK | 7.5 kB |
URL GET HTTP/3hdss.guru/templates/hdss/images/btn_mkv.png IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typePNG image data, 280 x 52, 8-bit/color RGBA, non-interlaced Hash707c0929396fbb67b1c7c913313a9872 731c486bac0cf0e3158960dc15b09a684b80f298 7cefa8a49feb4514b6246edefe805aef9fe42c409ec0ba60baef0de48a066577
GET /templates/hdss/images/btn_mkv.png HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1; ppu_main_5e8bca158be0bbfbe0b1ec8c5be5a6bb=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:31 GMT
content-type: image/png
content-length: 7548
last-modified: Wed, 03 Jan 2024 06:54:49 GMT
etag: "659504b9-1d7c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 742237
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mycPcAOQrm0%2BQa5EttpyTZEvLmMKJtgBPetgZtfZyzMwlzvu7YNEop7w4Sl9hX379MNvO%2BtsX4bhIfdacN39D0ORpChvtPY1bPG6nAXB596jZLQNLyHa%2BFWEliA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf73defae5687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/templates/hdss/dleimages/marker.png | 188.114.97.1 | 200 OK | 1.1 kB |
URL GET HTTP/3hdss.guru/templates/hdss/dleimages/marker.png IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typePNG image data, 32 x 64, 8-bit colormap, non-interlaced Hash55b7dd32c2984ee7cf99297b1eba9389 8c33419e051a23147494b66070df049f0abecacb f4d00d2b1105c2e78c8ce501c375b86d495e86d5451ea08b439ad0b9270d3ab8
GET /templates/hdss/dleimages/marker.png HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/templates/hdss/css/engine.css
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1; ppu_main_5e8bca158be0bbfbe0b1ec8c5be5a6bb=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:31 GMT
content-type: image/png
content-length: 1050
last-modified: Wed, 03 Jan 2024 06:54:48 GMT
etag: "659504b8-41a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 1508889
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K4Q5plUbRoS7vdU4YkV%2Bk8EkTGk9qZCFFQ3KPA6AdEKu9kKKk%2B5tCzCATzuJl5EyLZucWgbcpkPNf2zx0pVHbnOMiVM9lXgovs2jhmEM99JzLzPPCmerd%2B7PYAM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf73defb35687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/vod/premiumvod.html?v=5 | 188.114.97.1 | 200 OK | 17 kB |
URL GET HTTP/3hdss.guru/vod/premiumvod.html?v=5 IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1129) Hashbb8375425a901e7991e6645d3c6ee9d0 579d87f7df2c1d11be8cd92d864858f777269a20 8615607f3db099af3bd60bc69de217ff9eb0bb9e655efdea4611dc522ddcc649
GET /vod/premiumvod.html?v=5 HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:30 GMT
content-type: text/html; charset=utf-8
last-modified: Wed, 17 Apr 2024 08:55:11 GMT
vary: Accept-Encoding
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vw5UkKm3Jns9ow%2FMML%2BqC9etol1bpqRKiVtAi0BbGuks5wppBfpjAP4HCwghr07Bdhbr7aLL02A19LArHgx8bdkGaLWUR8jUfSnRIev7zAen5pesmcDUxe2cDAk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf73b1cfa5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/uploads/thumb/220x330-0-80/2022-06/1654955744_ch3rhjfc61tlpbgsxbhkfz9kefn.jpg | 188.114.97.1 | 200 OK | 14 kB |
URL GET HTTP/3hdss.guru/uploads/thumb/220x330-0-80/2022-06/1654955744_ch3rhjfc61tlpbgsxbhkfz9kefn.jpg IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 220x330, components 3 Hash7a97443d76b6c97d911fb2dc4251eda4 66b0f6c9d81944917f32c3dc60181c10f6bbf4de 230164e72d27084d77e7f0f2feb53104aeb7c8d66d6ab5ab0bffcdd7ec7d07a9
GET /uploads/thumb/220x330-0-80/2022-06/1654955744_ch3rhjfc61tlpbgsxbhkfz9kefn.jpg HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1; ppu_main_5e8bca158be0bbfbe0b1ec8c5be5a6bb=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:31 GMT
content-type: image/jpeg
content-length: 13482
last-modified: Wed, 03 Jan 2024 06:59:49 GMT
etag: "659505e5-34aa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6MORov%2F%2B%2BRIjke%2FnsUYVQNj82uEuiKEiEP5xaT6RdjceTLShcKB2LHkEbxl3InCXQyUn6RzjOOj7Kh15jiATiShidpfbgl9kGRgm%2FrMhr1Q2wHkI9tq%2F2Qc7M8M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf73dffc85687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/templates/hdss/images/btn_hdr.png | 188.114.97.1 | 200 OK | 7.2 kB |
URL GET HTTP/3hdss.guru/templates/hdss/images/btn_hdr.png IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typePNG image data, 280 x 52, 8-bit/color RGBA, non-interlaced Hash7204b0525d37260f723966d86b2217a8 ae316bfea2e824312dac8a83d0c7ec60ec2caf49 539133281f4387d2b6a58f998ee524492ceab0d9219ec5d2345cf6ee0ebd174d
GET /templates/hdss/images/btn_hdr.png HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1; ppu_main_5e8bca158be0bbfbe0b1ec8c5be5a6bb=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:31 GMT
content-type: image/png
content-length: 7209
last-modified: Wed, 03 Jan 2024 06:54:49 GMT
etag: "659504b9-1c29"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UqnSYlrB0pkT9EyGM%2FeLbRipbiu7%2BaD49FRVuZY4G%2FNacosStGnkIxbBTRCTXRbfAChvJ0nlmSnfltgFu21%2F39%2FbjqZGbwYccRF%2BwS403GOpKZjOPcUk6S%2Bo4iM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf73ddfab5687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/uploads/thumb/220x330-0-80/2023-02/1675700645_aoj8mnrxz3ss9pwcygpva1jqmzx.jpg | 188.114.97.1 | 200 OK | 18 kB |
URL GET HTTP/3hdss.guru/uploads/thumb/220x330-0-80/2023-02/1675700645_aoj8mnrxz3ss9pwcygpva1jqmzx.jpg IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 220x330, components 3 Hash3e59d0a4799b2a0c8ca0b9f5ae596db4 35942c61babda30ed5d4d28d74dce0a8213dd26e 44082cd0c403d5958c23005286ef66888c9ea0445fd567160145747d5a401a4d
GET /uploads/thumb/220x330-0-80/2023-02/1675700645_aoj8mnrxz3ss9pwcygpva1jqmzx.jpg HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1; ppu_main_5e8bca158be0bbfbe0b1ec8c5be5a6bb=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:31 GMT
content-type: image/jpeg
content-length: 18244
last-modified: Wed, 03 Jan 2024 07:02:10 GMT
etag: "65950672-4744"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B4Z%2BKjMaL2BhrI5tsMH%2B7W%2FEaZRb9xl3tBFotv59wHVmSzZ2ESELJK2CTGEbveh6%2FNkzyhnIl38rsmCrxhBkcHFjcfy61vbB2wpDMj6w435jH2kTNudc%2FZYw61o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf73defbd5687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/uploads/thumb/220x330-0-80/2022-06/1656512348_ot1hd2pdwy4naa86zltcihaocxj.jpg | 188.114.97.1 | 200 OK | 16 kB |
URL GET HTTP/3hdss.guru/uploads/thumb/220x330-0-80/2022-06/1656512348_ot1hd2pdwy4naa86zltcihaocxj.jpg IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 220x330, components 3 Hashb311bb5bf80f96f1a0eb2a7b3cb4fbd0 e75614b4f608591e38a80cb267f2a7ce51123248 ef30fd33441b5246a2af349676bbb4b582391625be52ca15402948eb672e8978
GET /uploads/thumb/220x330-0-80/2022-06/1656512348_ot1hd2pdwy4naa86zltcihaocxj.jpg HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1; ppu_main_5e8bca158be0bbfbe0b1ec8c5be5a6bb=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:31 GMT
content-type: image/jpeg
content-length: 15531
last-modified: Wed, 03 Jan 2024 07:00:31 GMT
etag: "6595060f-3cab"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pj%2B6WT%2Bo9%2F3gUDDyK%2B23OGyyx2IqZFinO8KJjCTkvyCsHtUyJOKm%2F8M4rXm4KNQC3EqvuKym0EooGESQpM47Lz6sjVSNlvUOvL7RuxXdz5aOfxJHkcId0a3cLF8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf73defc45687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/uploads/thumb/220x330-0-80/2022-06/1655558859_z6mxjawxlruvn5x0qekinn5vbxk.jpg | 188.114.97.1 | 200 OK | 17 kB |
URL GET HTTP/3hdss.guru/uploads/thumb/220x330-0-80/2022-06/1655558859_z6mxjawxlruvn5x0qekinn5vbxk.jpg IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 220x330, components 3 Hasha4bbbc2568b062409b10226d1978501b dfe850dfd7531846ffe270116582e51012815d6a 5fc86d278aa6fdf4841192e9a6c318541bd660fe25df23672d2297bfeeb7bd8e
GET /uploads/thumb/220x330-0-80/2022-06/1655558859_z6mxjawxlruvn5x0qekinn5vbxk.jpg HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1; ppu_main_5e8bca158be0bbfbe0b1ec8c5be5a6bb=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:31 GMT
content-type: image/jpeg
content-length: 17055
last-modified: Wed, 03 Jan 2024 07:00:07 GMT
etag: "659505f7-429f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gSqitG1dWsh7iSLTouap2ZDZ4G0xhrIn4ts2bv6q27i0Q5jSfyXshhYMlbEuxMT%2FgS0kkd7FMhYC83uIim5oIWv2DfSxxUBqR19a4liHWZL3WMJhIcD3iVKevgc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf73defc05687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/uploads/thumb/220x330-0-80/2022-06/1655302790_jf5wttnfcatgvudfm67xoruwmv1.jpg | 188.114.97.1 | 200 OK | 19 kB |
URL GET HTTP/3hdss.guru/uploads/thumb/220x330-0-80/2022-06/1655302790_jf5wttnfcatgvudfm67xoruwmv1.jpg IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 220x330, components 3 Hash61760fad1a284081366ccee5ba8a1841 e05a50cc21fe475e3e87f9f12bacb3b007df44af 58bcf4685f33d2d7e073aa774ef56fb8930dd9eedbc3d85c98547f401e7c0b53
GET /uploads/thumb/220x330-0-80/2022-06/1655302790_jf5wttnfcatgvudfm67xoruwmv1.jpg HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1; ppu_main_5e8bca158be0bbfbe0b1ec8c5be5a6bb=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:31 GMT
content-type: image/jpeg
content-length: 18632
last-modified: Wed, 03 Jan 2024 07:00:00 GMT
etag: "659505f0-48c8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ojd%2FYq2CnEO1lgiEE1hSjbIspZFF3Y%2BDBySvq8wfy69Pwfl0aT7gOVlktCawRcT5att9ABc5YPW4nQzBnrD64cbm9T0WlEeyh3Ma7sVqs4cK4TbbSPeEL6gH%2FeU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf73dffc95687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/uploads/thumb/480x720-0-60/2024-02/1709135336_hh3j3f2zxkwpqgrfdowjwfhu40n.jpg | 188.114.97.1 | 200 OK | 29 kB |
URL GET HTTP/3hdss.guru/uploads/thumb/480x720-0-60/2024-02/1709135336_hh3j3f2zxkwpqgrfdowjwfhu40n.jpg IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 60", baseline, precision 8, 480x720, components 3 Hash5370c01689f6809bd94be9018749678a 09d1ac9e4d0e8d3cf729289e8a0f13ce2208f1f2 e44b3ada9efedcaebce9049cc061ab2c76b85949f2f685719954320f3de76cb2
GET /uploads/thumb/480x720-0-60/2024-02/1709135336_hh3j3f2zxkwpqgrfdowjwfhu40n.jpg HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1; ppu_main_5e8bca158be0bbfbe0b1ec8c5be5a6bb=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:31 GMT
content-type: image/jpeg
content-length: 29416
last-modified: Wed, 28 Feb 2024 15:55:25 GMT
etag: "65df576d-72e8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5z9nRlkZWt1VQny0EEnrwUdqt1tWu9DRIlswal4YBU%2Bf7ZvLCla2mAgoMm8l0w%2FeUnf4FXs3%2BBbzxzHXMio3u2jhN38ACpnrfrMxmpz0GvmEH6AQvjLUfu5EGJU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf73defb55687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| childishenough.com/0d/e5/f9/0de5f9688ae0da03d97a06e2c0008e2a.js | 192.243.59.12 | 200 OK | 31 kB |
URL GET HTTP/1.1childishenough.com/0d/e5/f9/0de5f9688ae0da03d97a06e2c0008e2a.js IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjectchildishenough.com Fingerprint73:00:B1:5A:CB:AB:53:72:CD:E8:9F:16:DB:35:75:AC:2B:C8:0C:28 ValidityTue, 23 Apr 2024 10:46:27 GMT - Mon, 22 Jul 2024 10:46:26 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashc4f38ef942bd3ff1fec2bf8fb30a9b48 c3a845ccbd7a2a304dd2fc4df7ef205349d379ad 794d16f186a907cb11dc31f1ba932da3ad66936fc9a13da9f904c678e9e90a3a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /0d/e5/f9/0de5f9688ae0da03d97a06e2c0008e2a.js HTTP/1.1
Host: childishenough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 25 Apr 2024 08:29:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-2931_new=0; expires=Sun, 28 Apr 2024 08:29:31 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d6e887aa0749245b6a4338ec98fecad8
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| hdss.guru/engine/classes/js/dle_js.js?v=e6010 | 188.114.97.1 | 200 OK | 42 kB |
URL GET HTTP/3hdss.guru/engine/classes/js/dle_js.js?v=e6010 IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeJavaScript source, ASCII text, with very long lines (37484), with no line terminators Hashf4c43fa64df035a300d8f9067648b999 5a1dabc3c4c5f7f5837755ef8febe103845ccaf5 8e1e8ecea28a6951814067df5ee06b270b66f8896bc0251a6efd3f49041f3114
GET /engine/classes/js/dle_js.js?v=e6010 HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 03 Jan 2024 06:53:23 GMT
vary: Accept-Encoding
etag: W/"65950463-926c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 1694521
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PHniCyzXdUuHEleO%2BWYnX%2F0RNQ7Q8BUmXBs1CdgN%2F%2BBpOXb3npuEFgpJDLXEGLR%2B2gYc9JU1%2B82UNDnAlrh%2BIzN7Bh4WuHIvh4k2fEb2R%2FNuP0KUylyCccUUhiI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf7355fcf5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/cdn-cgi/challenge-platform/h/b/jsd/r/879cf732dade5688 | 188.114.97.1 | 200 OK | 0 B |
URL POST HTTP/3hdss.guru/cdn-cgi/challenge-platform/h/b/jsd/r/879cf732dade5688 IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/b/jsd/r/879cf732dade5688 HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12163
Origin: https://hdss.guru
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1; ppu_main_5e8bca158be0bbfbe0b1ec8c5be5a6bb=1; sb_main_f98c6279d54f9619690a2401e3ea449f=1; sb_count_f98c6279d54f9619690a2401e3ea449f=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:31 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=3GlYxzt9_Z56kFioWzlhjlXbaxIBz4WHpNglE4GhhQM-1714033771-1.0.1.1-I021Ov.cGIkZ8hfzOfe9XQpe1.B9KO1u0ThjAK09psLhj6gSvkdpJS0Gp6rPZNYe0GWI_T7ndqwqLJtmfzBPOw; path=/; expires=Fri, 25-Apr-25 08:29:31 GMT; domain=.hdss.guru; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Swhwwpb9Jy2Cc7lTiH%2B207g%2B58662dXIGeIkiGyKBtXHK4h1J2g%2FrTcmW383W79%2Ftq0x6kveUvEZTDCFRbY7l2IESVhQ4yl8eGuZhZriBEyh7Bxkvdg8Ac4Cm%2F0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf73f99135687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| childishenough.com/sbar.json?key=f98c6279d54f9619690a2401e3ea449f&uuid=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1 | 172.240.253.132 | 200 OK | 8.3 kB |
URL GET HTTP/1.1childishenough.com/sbar.json?key=f98c6279d54f9619690a2401e3ea449f&uuid=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1 IP172.240.253.132:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjectchildishenough.com Fingerprint73:00:B1:5A:CB:AB:53:72:CD:E8:9F:16:DB:35:75:AC:2B:C8:0C:28 ValidityTue, 23 Apr 2024 10:46:27 GMT - Mon, 22 Jul 2024 10:46:26 GMT
Hash5e46c6b148b1a663334c2e2fac35e196 39802027cf358d2463b024bdcd21637e51dc39e2 2aaeb5cd06990a5d459e0b4295541715cb267136952dae7ceecdd72588446fc6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /sbar.json?key=f98c6279d54f9619690a2401e3ea449f&uuid=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1 HTTP/1.1
Host: childishenough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hdss.guru
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:29:31 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://hdss.guru
Access-Control-Allow-Origin: https://hdss.guru
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=22319057; expires=Fri, 26 Apr 2024 08:29:31 GMT; secure; SameSite=None
uid_id2=670914b3-b33b-4b88-b16b-f770888b38fe:3:1; expires=Thu, 02 May 2024 08:29:31 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 26 Apr 2024 08:29:31 GMT; secure; SameSite=None
uncs=1; expires=Fri, 26 Apr 2024 08:29:31 GMT; secure; SameSite=None
pdhtkv29=true; expires=Fri, 26 Apr 2024 08:29:31 GMT; secure; SameSite=None
uncs29=1; expires=Fri, 26 Apr 2024 08:29:31 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8799e06b275092e6c4bdb3f7a03b7475
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| banquetunarmedgrater.com/advertisers.js | 15.197.172.60 | 200 OK | 114 B |
URL GET HTTP/2banquetunarmedgrater.com/advertisers.js IP15.197.172.60:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoDaddy.com, Inc. Subjectbanquetunarmedgrater.com Fingerprint33:76:75:3F:2A:50:A1:64:CE:B8:0E:36:DF:DD:50:0F:73:3A:4F:6C ValidityFri, 19 Jan 2024 04:49:50 GMT - Sun, 19 Jan 2025 04:49:50 GMT
File typeHTML document, ASCII text, with no line terminators Hashe89f75f918dbdcee28604d4e09dd71d7 f9d9055e9878723a12063b47d4a1a5f58c3eb1e9 6dc9c7fc93bb488bb0520a6c780a8d3c0fb5486a4711aca49b4c53fac7393023
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 114
date: Thu, 25 Apr 2024 08:29:31 GMT
X-Firefox-Spdy: h2
|
|
| childishenough.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzuakICgBD4swBw%2BrmEn3zKRn2j0sxhgJxk3YjehNqrqqJ%2BXUdDVVXdOTnIILsjfH%2FQs63yQbfyyyexVcZLLgISBkPOVgDvofKOxZZhwcfYd679X3Cr73ffXFkbsiNTh6uf6hPpBK0ZXVql%2B58UkQ3KxsydT1K%2F1W%2BGnYuFkxvbejsOq%2FUXlfxB29UvMD3w%2F8oLIhjUh0f2UCQmaPoqAa%2BdVGrRqsNtA3%2F%2B%2Bt82CpB967Iq9A8vHiM28JMh4h7T5eF7aT6%2Byt97pO0Vwb9PjpR2kn1UWK7rxMjIckPZ1NQ9uLjafQ6cmULnTv30Emx8T7%2BSlYejojCdY7nvJkCiIF4y%2Bi6I0g1AiSjhDre5D8ggAxx%2B1tpN2Ht7Up6P4%2FKJ2gY7L4%2FC%2FIYkwWf1tC2v1%2BTcl%2B5a5WLpc6tegnJWR%2FBNkeIXNnyA8WIIszxPnnkPwXsvJ8C2n3eNsqDckvXw%2BbfhQ0WH2Z1etsucFarWUWhGw5aTb9VqvF6q1ETAWScgSZjKDEANReg7MenPTgEg8u89Dll5U4CIKmz2Pqt6I4rvOmYCH3A9pMAhr4YQsunuwwQJ4NEKsBYnOIzByiI78aE%2B%2FV32HcT7B7JSz3YHOCHi9RCILCEhSUoJAERU5Q9MoTrmzNlg%2B5so4Fs1yb5Xo51Hn7iJ7ovC1SAmoGMLw8yq7IyxMVvd0vL9ARl5UkasVhrRnx1UYShUEURj6tNfxA1AVtNKIEVpaQdgHUejiQYxKcvoBs4ix5AEbPYNUZYumButdAixJ0r8RB%2BvUet7aqaA6uS2T5IvJ970hdketTDze3n0DE57f%2BqE8DsSmRmRKfyWcEbXV%2FeEcX5PiOLix5sp3lsisP6MTfuznNxbVvPxD7hTZ8c90OvnknngCT8tGusPkWTblM25Z8tyY5F2ZDm1iQHzftx4LtOLu35kzqsq2ddzc2u5kR1kqdjkAnC%2F1pEMsxeen67vTr3vhhB9KMYFyJrjsns4DUI8TZIWw25281gVHzGZZ5KFw5NDU2v1SSQIl5T1kJ%2B5%2BezeuhoZPXVJZH9j7aZgE0v4e0W6JnSvRUCaoGsO7aMM%2FM%2Ba1fZzSYWhgyZRaOmTLqwVTmyfEYVl5WmvW6T8NoNWg2qWiyRq2VhAGntNYIa2FI68jtOHlzqfM3AAAA%2F%2F8BAAD%2F%2Fw8q%2FvqUBAAA | 192.243.59.12 | 200 OK | 7 B |
URL GET HTTP/1.1childishenough.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzuakICgBD4swBw%2BrmEn3zKRn2j0sxhgJxk3YjehNqrqqJ%2BXUdDVVXdOTnIILsjfH%2FQs63yQbfyyyexVcZLLgISBkPOVgDvofKOxZZhwcfYd679X3Cr73ffXFkbsiNTh6uf6hPpBK0ZXVql%2B58UkQ3KxsydT1K%2F1W%2BGnYuFkxvbejsOq%2FUXlfxB29UvMD3w%2F8oLIhjUh0f2UCQmaPoqAa%2BdVGrRqsNtA3%2F%2B%2Bt82CpB967Iq9A8vHiM28JMh4h7T5eF7aT6%2Byt97pO0Vwb9PjpR2kn1UWK7rxMjIckPZ1NQ9uLjafQ6cmULnTv30Emx8T7%2BSlYejojCdY7nvJkCiIF4y%2Bi6I0g1AiSjhDre5D8ggAxx%2B1tpN2Ht7Up6P4%2FKJ2gY7L4%2FC%2FIYkwWf1tC2v1%2BTcl%2B5a5WLpc6tegnJWR%2FBNkeIXNnyA8WIIszxPnnkPwXsvJ8C2n3eNsqDckvXw%2BbfhQ0WH2Z1etsucFarWUWhGw5aTb9VqvF6q1ETAWScgSZjKDEANReg7MenPTgEg8u89Dll5U4CIKmz2Pqt6I4rvOmYCH3A9pMAhr4YQsunuwwQJ4NEKsBYnOIzByiI78aE%2B%2FV32HcT7B7JSz3YHOCHi9RCILCEhSUoJAERU5Q9MoTrmzNlg%2B5so4Fs1yb5Xo51Hn7iJ7ovC1SAmoGMLw8yq7IyxMVvd0vL9ARl5UkasVhrRnx1UYShUEURj6tNfxA1AVtNKIEVpaQdgHUejiQYxKcvoBs4ix5AEbPYNUZYumButdAixJ0r8RB%2BvUet7aqaA6uS2T5IvJ970hdketTDze3n0DE57f%2BqE8DsSmRmRKfyWcEbXV%2FeEcX5PiOLix5sp3lsisP6MTfuznNxbVvPxD7hTZ8c90OvnknngCT8tGusPkWTblM25Z8tyY5F2ZDm1iQHzftx4LtOLu35kzqsq2ddzc2u5kR1kqdjkAnC%2F1pEMsxeen67vTr3vhhB9KMYFyJrjsns4DUI8TZIWw25281gVHzGZZ5KFw5NDU2v1SSQIl5T1kJ%2B5%2BezeuhoZPXVJZH9j7aZgE0v4e0W6JnSvRUCaoGsO7aMM%2FM%2Ba1fZzSYWhgyZRaOmTLqwVTmyfEYVl5WmvW6T8NoNWg2qWiyRq2VhAGntNYIa2FI68jtOHlzqfM3AAAA%2F%2F8BAAD%2F%2Fw8q%2FvqUBAAA IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjectchildishenough.com Fingerprint73:00:B1:5A:CB:AB:53:72:CD:E8:9F:16:DB:35:75:AC:2B:C8:0C:28 ValidityTue, 23 Apr 2024 10:46:27 GMT - Mon, 22 Jul 2024 10:46:26 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzuakICgBD4swBw%2BrmEn3zKRn2j0sxhgJxk3YjehNqrqqJ%2BXUdDVVXdOTnIILsjfH%2FQs63yQbfyyyexVcZLLgISBkPOVgDvofKOxZZhwcfYd679X3Cr73ffXFkbsiNTh6uf6hPpBK0ZXVql%2B58UkQ3KxsydT1K%2F1W%2BGnYuFkxvbejsOq%2FUXlfxB29UvMD3w%2F8oLIhjUh0f2UCQmaPoqAa%2BdVGrRqsNtA3%2F%2B%2Bt82CpB967Iq9A8vHiM28JMh4h7T5eF7aT6%2Byt97pO0Vwb9PjpR2kn1UWK7rxMjIckPZ1NQ9uLjafQ6cmULnTv30Emx8T7%2BSlYejojCdY7nvJkCiIF4y%2Bi6I0g1AiSjhDre5D8ggAxx%2B1tpN2Ht7Up6P4%2FKJ2gY7L4%2FC%2FIYkwWf1tC2v1%2BTcl%2B5a5WLpc6tegnJWR%2FBNkeIXNnyA8WIIszxPnnkPwXsvJ8C2n3eNsqDckvXw%2BbfhQ0WH2Z1etsucFarWUWhGw5aTb9VqvF6q1ETAWScgSZjKDEANReg7MenPTgEg8u89Dll5U4CIKmz2Pqt6I4rvOmYCH3A9pMAhr4YQsunuwwQJ4NEKsBYnOIzByiI78aE%2B%2FV32HcT7B7JSz3YHOCHi9RCILCEhSUoJAERU5Q9MoTrmzNlg%2B5so4Fs1yb5Xo51Hn7iJ7ovC1SAmoGMLw8yq7IyxMVvd0vL9ARl5UkasVhrRnx1UYShUEURj6tNfxA1AVtNKIEVpaQdgHUejiQYxKcvoBs4ix5AEbPYNUZYumButdAixJ0r8RB%2BvUet7aqaA6uS2T5IvJ970hdketTDze3n0DE57f%2BqE8DsSmRmRKfyWcEbXV%2FeEcX5PiOLix5sp3lsisP6MTfuznNxbVvPxD7hTZ8c90OvnknngCT8tGusPkWTblM25Z8tyY5F2ZDm1iQHzftx4LtOLu35kzqsq2ddzc2u5kR1kqdjkAnC%2F1pEMsxeen67vTr3vhhB9KMYFyJrjsns4DUI8TZIWw25281gVHzGZZ5KFw5NDU2v1SSQIl5T1kJ%2B5%2BezeuhoZPXVJZH9j7aZgE0v4e0W6JnSvRUCaoGsO7aMM%2FM%2Ba1fZzSYWhgyZRaOmTLqwVTmyfEYVl5WmvW6T8NoNWg2qWiyRq2VhAGntNYIa2FI68jtOHlzqfM3AAAA%2F%2F8BAAD%2F%2Fw8q%2FvqUBAAA HTTP/1.1
Host: childishenough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Cookie: u_pl=22319057; uid_id2=670914b3-b33b-4b88-b16b-f770888b38fe:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 25 Apr 2024 08:29:31 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6534efbd627be4418d7f1c87ddc4fec5
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| hdss.guru/templates/hdss/css/engine.css | 188.114.97.1 | 200 OK | 20 kB |
URL GET HTTP/3hdss.guru/templates/hdss/css/engine.css IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeassembler source, Unicode text, UTF-8 text, with very long lines (13483), with CRLF line terminators Hashb4a2a02955f1a32e04637d30e3596ed8 75e5b29240d2668380cddabfdeea788b08724495 68b9d34ed4d807d9581e13c50c3577dfd4e3ebaf95faf256403f393794cdbfc1
GET /templates/hdss/css/engine.css HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:29 GMT
content-type: text/css
last-modified: Wed, 03 Jan 2024 06:54:48 GMT
vary: Accept-Encoding
etag: W/"659504b8-c972"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 1082901
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iBSaclgZZwVvnJkOD%2FksDMfRahC9ZJr1njb9Wt9lW0oF%2BgDAMwWhPvhR0eg74C8tRRibCuQNziXl6VCE1OyipoOACgISq6snAMu68UxooQenmzX7ihvfz5b1bH4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf7354fbf5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| downstairsnegotiatebarren.com/sfp.js | 188.114.96.1 | 200 OK | 28 kB |
URL GET HTTP/3downstairsnegotiatebarren.com/sfp.js IP188.114.96.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44 ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators Hashf4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:31 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 0539f55d6b01d4dd13077b5de8490319
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Thu, 25 Apr 2024 08:29:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ffXTUrt171eXXeyNjPgnhkqEAHrsbCihljdD36lbOVHnxSiazwmqTF75L0tXL1TXUnIS6smLgSgltRHQP7tBFpXsDbK363Nt741b5juih3MpOumP4ADybQ%2BRHgCmHLJofqXqDvbRvPTPAKJ7yCjvcA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf73ffa1b569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/img/close.png | 188.114.97.1 | 200 OK | 591 B |
URL GET HTTP/2cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/img/close.png IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typePNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced Hash9fd5bcb6103d86e317bd1eb019bcbe71 6b5a52ea669dcb74946f2bed4bdd7ec985026113 0ddd3be104ac7945fb062096df62034a6a24ecc76ba92493c35c62c3c25982ae
GET /sb/ssp/vpn/classic-push/small/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:29:32 GMT
content-type: image/png
content-length: 591
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: "65aa84fe-24f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 6117865
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FFKSQHqLfamuHLyCEdL4oe11q6EHxscIN2iLc9JDRTV5E8jYhrRdTLPTmqhpoapvPIhVVhYVLEV7Nv%2BOKfcZo6fjVUByXHAYXXAyVAjhH62yiPLu4GgmvJwwdYo4UK6%2By1yeGVDs%2BM7e"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf7432aac56b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.cloudimagesb.com/si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png | 45.133.44.9 | 200 OK | 16 kB |
URL GET HTTP/2cdn.cloudimagesb.com/si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png IP45.133.44.9:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hash14cf262fabfd850855c42847d14fe775 2fafa28f167f018a0fb1f261f47380c8810803c9 972004ebada4077c3a4d03dcb45175ea467faf54da72be727a1c5c75e688b8af
GET /si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:29:32 GMT
content-type: image/png
content-length: 16093
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 01:06:35 GMT
etag: "656d261b-3edd"
expires: Sat, 27 Apr 2024 08:29:32 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/style.css | 188.114.97.1 | 200 OK | 961 B |
URL GET HTTP/2cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/style.css IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash039a6734d79ed9aa51cf81c52479c5fe 9cf29c4ea1a3880681d50c7228374f8073b7778b a15bad73fc8907795285b78a4a1a1bf5e7f68b4d39988b9bb165444819cf9eb1
GET /sb/ssp/vpn/classic-push/small/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hdss.guru
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:29:32 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-d1b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=abht1qi%2BAxZh9wjwqrJ5L%2BXqJNJA3oD8kkx2vAIkcKwyJtNI%2FEQfm5iARLN7oG9%2BbsFI%2Fj3mO%2FKEMnaj%2BwMwxgmkfXHFLjIFPg4RiyeDz6XZfZGscaCCJjpnCc%2BWRVPVpHQFvjMRkiE1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf7429a2c56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| childishenough.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=363 | 172.240.253.132 | 200 OK | 0 B |
URL GET HTTP/1.1childishenough.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=363 IP172.240.253.132:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjectchildishenough.com Fingerprint73:00:B1:5A:CB:AB:53:72:CD:E8:9F:16:DB:35:75:AC:2B:C8:0C:28 ValidityTue, 23 Apr 2024 10:46:27 GMT - Mon, 22 Jul 2024 10:46:26 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=363 HTTP/1.1
Host: childishenough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Cookie: u_pl=22319057; uid_id2=670914b3-b33b-4b88-b16b-f770888b38fe:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:29:32 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| childishenough.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=304 | 192.243.59.12 | 200 OK | 0 B |
URL GET HTTP/1.1childishenough.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=304 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjectchildishenough.com Fingerprint73:00:B1:5A:CB:AB:53:72:CD:E8:9F:16:DB:35:75:AC:2B:C8:0C:28 ValidityTue, 23 Apr 2024 10:46:27 GMT - Mon, 22 Jul 2024 10:46:26 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=304 HTTP/1.1
Host: childishenough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Cookie: u_pl=22319057; uid_id2=670914b3-b33b-4b88-b16b-f770888b38fe:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 25 Apr 2024 08:29:32 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| fonts.googleapis.com/css?family=Montserrat:300,400,700 | 142.250.74.106 | 200 OK | 13 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Montserrat:300,400,700 IP142.250.74.106:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typegzip compressed data, max compression Hashb64a2f2858e80b79a71bf3363097eb19 2e6663116ab836a2c367e656f47d8645cc5a7159 9ef84181f765c85913b0a4f81f9f1905d2efccbbd116e1a2b9658f0545f3b590
GET /css?family=Montserrat:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 08:29:29 GMT
date: Thu, 25 Apr 2024 08:29:29 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| hdss-1.disqus.com/embed.js | 199.232.196.134 | 200 OK | 26 kB |
URL GET HTTP/1.1hdss-1.disqus.com/embed.js IP199.232.196.134:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerSectigo Limited Subject*.disqus.com FingerprintD5:19:5B:31:AD:E0:FA:FE:28:DF:43:18:5C:BB:1B:17:FC:38:F6:DC ValidityTue, 16 Apr 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32060) Hashb83e736aad5b13b1b3dab3a4abf34791 b210bd4166adffde6eaf98f1e7268a03ed57afb3 949775f65fa0909d5e09477347fd5c6c2c24a3b84811a54ffc2f05724997bcf4
GET /embed.js HTTP/1.1
Host: hdss-1.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 26361
server: openresty
content-type: application/javascript; charset=utf-8
x-service: router
content-encoding: gzip
Age: 0
Date: Thu, 25 Apr 2024 08:29:32 GMT
Vary: Accept-Encoding
Cache-Control: private, max-age=60
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
|
|
| referrer.disqus.com/juggler/event.gif?imp=3n8t1ob3m0vvqp&experiment=network_default&variant=fallthrough&service=dynamic&area=top&product=embed&forum=hdss-1&zone=thread&version=515899f66d5b4919df6237c59d70b9fb&page_url=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&page_referrer=&object_type=provider&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough§ion=default&verb=call&adjective=1&forum_id=7356966 | 199.232.192.134 | 200 OK | 43 B |
URL GET HTTP/1.1referrer.disqus.com/juggler/event.gif?imp=3n8t1ob3m0vvqp&experiment=network_default&variant=fallthrough&service=dynamic&area=top&product=embed&forum=hdss-1&zone=thread&version=515899f66d5b4919df6237c59d70b9fb&page_url=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&page_referrer=&object_type=provider&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough§ion=default&verb=call&adjective=1&forum_id=7356966 IP199.232.192.134:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerSectigo Limited Subject*.disqus.com FingerprintD5:19:5B:31:AD:E0:FA:FE:28:DF:43:18:5C:BB:1B:17:FC:38:F6:DC ValidityTue, 16 Apr 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/event.gif?imp=3n8t1ob3m0vvqp&experiment=network_default&variant=fallthrough&service=dynamic&area=top&product=embed&forum=hdss-1&zone=thread&version=515899f66d5b4919df6237c59d70b9fb&page_url=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&page_referrer=&object_type=provider&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough§ion=default&verb=call&adjective=1&forum_id=7356966 HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
server: nginx
content-type: image/gif
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
Date: Thu, 25 Apr 2024 08:29:33 GMT
Cross-Origin-Resource-Policy: cross-origin
|
|
| disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default | 151.101.128.134 | | 2.8 kB |
URL disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default IP151.101.128.134:0
File typeHTML document, Unicode text, UTF-8 text, with very long lines (2802) Hasha8ef205233b9f1a5a19abb309883bccb a90f45527134f98b917516b5ddaadd524ba43c82 db340d22a8949aea206df6618fd105e47d9af6d475bb591a4497aa8a14ec686b
GET /embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 2778
Server: nginx
Content-Type: text/html; charset=utf-8
Content-Security-Policy: script-src https://*.twitter.com:* https://www.gstatic.com/recaptcha/ https://a.disquscdn.com https://c.disquscdn.com c.disquscdn.com https://*.services.disqus.com:* https://cdn.boomtrain.com/p13n/ https://com-disqus.netmng.com:* 'unsafe-inline' https://referrer.disqus.com/juggler/ https://connect.facebook.net/en_US/sdk.js https://cdn.syndication.twimg.com/tweets.json https://apis.google.com https://www.google.com/recaptcha/ https://cf.ignitionone.com:* https://disqus.com
Last-Modified: Sun, 07 Apr 2024 00:31:41 GMT
ETag: W/"lounge:view:10148801006.c3e50108beb353af192b1b80a9a3c1c9.2"
Link: <https://c.disquscdn.com>;rel=preconnect,<https://c.disquscdn.com>;rel=dns-prefetch
Cache-Control: stale-if-error=3600, s-stalewhilerevalidate=3600, stale-while-revalidate=30, no-cache, must-revalidate, public, s-maxage=5
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Referrer-Policy: no-referrer-when-downgrade
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
Age: 0
Date: Thu, 25 Apr 2024 08:29:33 GMT
Vary: Accept-Encoding
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 142.250.74.106 | 200 OK | 717 B |
URL GET HTTP/3fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP142.250.74.106:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hash5e48f11f5e65274412215f94f73f8c49 4dd35e5b5136df76bd7ff9da1f119d0ec0e57ff7 40992eb57d95a0165a6d56399cd9afd60cc2cac6f06579b8d87079ccaab91e29
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 08:29:32 GMT
date: Thu, 25 Apr 2024 08:29:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| tempest.services.disqus.com/ads-iframe/runative/?position=top&shortname=hdss-1&experiment=network_default&variant=fallthrough&service=dynamic&anchorColor=%23ffffff&colorScheme=dark&sourceUrl=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&typeface=sans-serif&canonicalUrl=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&disqus_version=current | 199.232.192.64 | 200 OK | 5.0 kB |
URL GET HTTP/1.1tempest.services.disqus.com/ads-iframe/runative/?position=top&shortname=hdss-1&experiment=network_default&variant=fallthrough&service=dynamic&anchorColor=%23ffffff&colorScheme=dark&sourceUrl=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&typeface=sans-serif&canonicalUrl=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&disqus_version=current IP199.232.192.64:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGlobalSign nv-sa Subject*.services.disqus.com Fingerprint50:A1:DE:0D:FF:87:C9:55:D3:07:CE:35:8A:C5:E9:9D:3F:9E:78:9E ValidityTue, 08 Aug 2023 17:50:10 GMT - Sun, 08 Sep 2024 17:50:09 GMT
File typeHTML document, ASCII text Hashf3d471ac4a5ffb393e3cb80de0eb3292 50c15d7b44b0a16b182c362b6165ef0c5f35a350 0a9dc12788aead6e2585615744346f34fd06fa2c053e7b8b3bcb61faf0e5f928
GET /ads-iframe/runative/?position=top&shortname=hdss-1&experiment=network_default&variant=fallthrough&service=dynamic&anchorColor=%23ffffff&colorScheme=dark&sourceUrl=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&typeface=sans-serif&canonicalUrl=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&disqus_version=current HTTP/1.1
Host: tempest.services.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hdss.guru
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 5009
server: openresty
content-type: text/html; charset=utf-8
access-control-allow-origin: *
x-service: router
content-encoding: gzip
Date: Thu, 25 Apr 2024 08:29:33 GMT
Age: 0
Vary: Accept-Encoding,
Cross-Origin-Resource-Policy: cross-origin
|
|
| childishenough.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzuakICgLHhZhDh5WMZPu%2BdnjHhbXGAnGTdiN6E3qV0%2FKqelqqrqnJzkFF2RvjvsXdL5JNv5YZPcquMhkwUNAyHjKwRz0P1DYs%2FQ4OPoO9d6r7xV87%2Fvqi8PsktSQ0Yu1D82%2B0pquNqt%2B5fonQXCjsqnibFgZhq1PW40bFTt4u9Oq%2Bm9U3pe8Z1ZrfuD7gR9U1pWVkRmuliBU8qgTVDt%2BtVGrBs0Ghvb%2Fvcs8OOpBDC7JK1BiuvzMuwrFJ4j7j9ek66Umeeu9fqZpaiwG4uSjuBebPEZ%2FUUbWQxSfzKdh3Pn6U5j4eEYXZvDvIFNT4v38FCw%2BmZMEGxzNeDINGYOJF5EPJpB6AkUn4OYelDgnABe4vYW4%2F%2FC2sTnd%2BwelJToly8%2F%2FgsqnZPm3q4j739%2FSali5a3SWKhM7DKMCajiB6k6QZKdI95eg8lPw9HMo8QtZfb6JuH%2B05bSBEhevt9p%2BJ2iw%2Bgqr19lKg4XhCgtabCVqt%2F0wDFk9jORMIKUmUNEEWo5A3RVkzkOmPGSRhyzx0BcXFR4EQdsXnPphh%2FO6aEvWEn5A21FAA78VIuPlDiOkyQhcj8DtARJ7gJ76akq8V3%2BHzX6C2y3ghAeXEgxEgVwS5I4gpwS5IshTgnxQHAvtaq54KLTLWDDPtXmuF2OTdg%2FpsUm7MiagdgQrisPkkrxcqujtfHmOnryoRJ2Qt2rtjmg2ok4r6LQ6Pq01%2FEDWJW00OhGcKqDcEqjzsK%2BmJDh5AUnpLHkARk%2Fh9Cm48kCz10DzAnS3wH789a5wrqppCmEKJOky0j3vUF%2BSazMPN7aeQPKzm3%2FUZwFuCyS2wGfqGUFX3x%2FfMTk5umNyR55sJanqq31a%2Bns3pam88u0Hci83VmysudE37%2FASKMtHO9KlmzQWKu468t0tJYS068ZySX7ccB9Ltp253VuZjbNkc%2Fvd9Y1%2BYqVzysQT0HKhPy24mpKXru3Mvu71H7ah7AQ2K9DPzsg8oMwEPDmASxb8nSGwejHDEg95VoxtjS0utSLQctFTVsD9p2eLemxp%2BZqq4tDdR9cugab3EPcLDGyBgS5A9QguuzJOE3t289c5DaaXxkzbpSOmrX4wk7k8HsOpi0rdF20mI9lmstFsRJIL1mwyn0ec1UUYcqRuGr15tfc3AAAA%2F%2F8BAAD%2F%2F4%2F%2BKxKUBAAA | 192.243.59.12 | 200 OK | 7 B |
URL GET HTTP/1.1childishenough.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzuakICgLHhZhDh5WMZPu%2BdnjHhbXGAnGTdiN6E3qV0%2FKqelqqrqnJzkFF2RvjvsXdL5JNv5YZPcquMhkwUNAyHjKwRz0P1DYs%2FQ4OPoO9d6r7xV87%2Fvqi8PsktSQ0Yu1D82%2B0pquNqt%2B5fonQXCjsqnibFgZhq1PW40bFTt4u9Oq%2Bm9U3pe8Z1ZrfuD7gR9U1pWVkRmuliBU8qgTVDt%2BtVGrBs0Ghvb%2Fvcs8OOpBDC7JK1BiuvzMuwrFJ4j7j9ek66Umeeu9fqZpaiwG4uSjuBebPEZ%2FUUbWQxSfzKdh3Pn6U5j4eEYXZvDvIFNT4v38FCw%2BmZMEGxzNeDINGYOJF5EPJpB6AkUn4OYelDgnABe4vYW4%2F%2FC2sTnd%2BwelJToly8%2F%2FgsqnZPm3q4j739%2FSali5a3SWKhM7DKMCajiB6k6QZKdI95eg8lPw9HMo8QtZfb6JuH%2B05bSBEhevt9p%2BJ2iw%2Bgqr19lKg4XhCgtabCVqt%2F0wDFk9jORMIKUmUNEEWo5A3RVkzkOmPGSRhyzx0BcXFR4EQdsXnPphh%2FO6aEvWEn5A21FAA78VIuPlDiOkyQhcj8DtARJ7gJ76akq8V3%2BHzX6C2y3ghAeXEgxEgVwS5I4gpwS5IshTgnxQHAvtaq54KLTLWDDPtXmuF2OTdg%2FpsUm7MiagdgQrisPkkrxcqujtfHmOnryoRJ2Qt2rtjmg2ok4r6LQ6Pq01%2FEDWJW00OhGcKqDcEqjzsK%2BmJDh5AUnpLHkARk%2Fh9Cm48kCz10DzAnS3wH789a5wrqppCmEKJOky0j3vUF%2BSazMPN7aeQPKzm3%2FUZwFuCyS2wGfqGUFX3x%2FfMTk5umNyR55sJanqq31a%2Bns3pam88u0Hci83VmysudE37%2FASKMtHO9KlmzQWKu468t0tJYS068ZySX7ccB9Ltp253VuZjbNkc%2Fvd9Y1%2BYqVzysQT0HKhPy24mpKXru3Mvu71H7ah7AQ2K9DPzsg8oMwEPDmASxb8nSGwejHDEg95VoxtjS0utSLQctFTVsD9p2eLemxp%2BZqq4tDdR9cugab3EPcLDGyBgS5A9QguuzJOE3t289c5DaaXxkzbpSOmrX4wk7k8HsOpi0rdF20mI9lmstFsRJIL1mwyn0ec1UUYcqRuGr15tfc3AAAA%2F%2F8BAAD%2F%2F4%2F%2BKxKUBAAA IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjectchildishenough.com Fingerprint73:00:B1:5A:CB:AB:53:72:CD:E8:9F:16:DB:35:75:AC:2B:C8:0C:28 ValidityTue, 23 Apr 2024 10:46:27 GMT - Mon, 22 Jul 2024 10:46:26 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzuakICgLHhZhDh5WMZPu%2BdnjHhbXGAnGTdiN6E3qV0%2FKqelqqrqnJzkFF2RvjvsXdL5JNv5YZPcquMhkwUNAyHjKwRz0P1DYs%2FQ4OPoO9d6r7xV87%2Fvqi8PsktSQ0Yu1D82%2B0pquNqt%2B5fonQXCjsqnibFgZhq1PW40bFTt4u9Oq%2Bm9U3pe8Z1ZrfuD7gR9U1pWVkRmuliBU8qgTVDt%2BtVGrBs0Ghvb%2Fvcs8OOpBDC7JK1BiuvzMuwrFJ4j7j9ek66Umeeu9fqZpaiwG4uSjuBebPEZ%2FUUbWQxSfzKdh3Pn6U5j4eEYXZvDvIFNT4v38FCw%2BmZMEGxzNeDINGYOJF5EPJpB6AkUn4OYelDgnABe4vYW4%2F%2FC2sTnd%2BwelJToly8%2F%2FgsqnZPm3q4j739%2FSali5a3SWKhM7DKMCajiB6k6QZKdI95eg8lPw9HMo8QtZfb6JuH%2B05bSBEhevt9p%2BJ2iw%2Bgqr19lKg4XhCgtabCVqt%2F0wDFk9jORMIKUmUNEEWo5A3RVkzkOmPGSRhyzx0BcXFR4EQdsXnPphh%2FO6aEvWEn5A21FAA78VIuPlDiOkyQhcj8DtARJ7gJ76akq8V3%2BHzX6C2y3ghAeXEgxEgVwS5I4gpwS5IshTgnxQHAvtaq54KLTLWDDPtXmuF2OTdg%2FpsUm7MiagdgQrisPkkrxcqujtfHmOnryoRJ2Qt2rtjmg2ok4r6LQ6Pq01%2FEDWJW00OhGcKqDcEqjzsK%2BmJDh5AUnpLHkARk%2Fh9Cm48kCz10DzAnS3wH789a5wrqppCmEKJOky0j3vUF%2BSazMPN7aeQPKzm3%2FUZwFuCyS2wGfqGUFX3x%2FfMTk5umNyR55sJanqq31a%2Bns3pam88u0Hci83VmysudE37%2FASKMtHO9KlmzQWKu468t0tJYS068ZySX7ccB9Ltp253VuZjbNkc%2Fvd9Y1%2BYqVzysQT0HKhPy24mpKXru3Mvu71H7ah7AQ2K9DPzsg8oMwEPDmASxb8nSGwejHDEg95VoxtjS0utSLQctFTVsD9p2eLemxp%2BZqq4tDdR9cugab3EPcLDGyBgS5A9QguuzJOE3t289c5DaaXxkzbpSOmrX4wk7k8HsOpi0rdF20mI9lmstFsRJIL1mwyn0ec1UUYcqRuGr15tfc3AAAA%2F%2F8BAAD%2F%2F4%2F%2BKxKUBAAA HTTP/1.1
Host: childishenough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Cookie: u_pl=22319057; uid_id2=670914b3-b33b-4b88-b16b-f770888b38fe:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 25 Apr 2024 08:29:33 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8e4864202d0110fd0b5b9e5e638c2039
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 142.250.74.163 | 200 OK | 16 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP142.250.74.163:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hdss.guru
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 10:46:32 GMT
expires: Wed, 23 Apr 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 164581
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.163 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.163:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hdss.guru
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:37:01 GMT
expires: Fri, 25 Apr 2025 02:37:01 GMT
cache-control: public, max-age=31536000
age: 21152
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| c.disquscdn.com/next/embed/lounge.load.515899f66d5b4919df6237c59d70b9fb.js | 143.204.55.14 | 200 OK | 495 B |
URL GET HTTP/2c.disquscdn.com/next/embed/lounge.load.515899f66d5b4919df6237c59d70b9fb.js IP143.204.55.14:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerAmazon Subjecta.disquscdn.com FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (958), with no line terminators Hash9ffff45690db83d9dfbca164cf334581 9f039c9b4807744ca31aa53ff591339d8b54ad68 ffabc78d7e61bd3dd2152ab655ca9e400cc0cc3cacca02e5f5612355467ffd81
GET /next/embed/lounge.load.515899f66d5b4919df6237c59d70b9fb.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://disqus.com
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 495
date: Tue, 23 Apr 2024 21:11:14 GMT
server: nginx
last-modified: Tue, 23 Apr 2024 21:01:54 GMT
etag: "662821c2-1ef"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 23 Apr 2025 21:11:14 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hEA2a8EoLeX2U1nadZgfelNuG9fiTcbO7mDVZPWXlGKMEA_4KJCcFw==
age: 127099
X-Firefox-Spdy: h2
|
|
| cdn.tsyndicate.com/sdk/v1/outstream.video.js | 45.133.44.71 | 200 OK | 100 kB |
URL GET HTTP/2cdn.tsyndicate.com/sdk/v1/outstream.video.js IP45.133.44.71:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjectcdn.tsyndicate.com Fingerprint27:B4:A1:69:D6:DF:AF:13:62:9C:06:AB:7A:E0:2F:B6:9B:08:43:75 ValidityTue, 09 Apr 2024 03:01:17 GMT - Mon, 08 Jul 2024 03:01:16 GMT
File typeJavaScript source, ASCII text, with very long lines (46316) Size100 kB (100339 bytes) Hashb9b1b888b5a9a21d697bcc502a62d673 94467051e8a345cbc64fbec5c775dc265eb3de11 ce6f4c41c1649a77662c87dd9d04469d0e89635643bd625c15bdc45b7e009378
GET /sdk/v1/outstream.video.js HTTP/1.1
Host: cdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:29:33 GMT
content-type: application/javascript; charset=utf-8
server: nginx
last-modified: Fri, 15 Mar 2024 13:04:29 GMT
etag: W/"65f4475d-382e"
x-robots-tag: noindex, nofollow
content-encoding: gzip
cache-control: max-age=172800
expires: Sat, 27 Apr 2024 08:29:33 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
X-Firefox-Spdy: h2
|
|
| c.disquscdn.com/next/embed/styles/lounge.72f05dc27e007c48ba81ee73c524d4ed.css | 143.204.55.14 | 200 OK | 34 kB |
URL GET HTTP/2c.disquscdn.com/next/embed/styles/lounge.72f05dc27e007c48ba81ee73c524d4ed.css IP143.204.55.14:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerAmazon Subjecta.disquscdn.com FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
File typeASCII text, with very long lines (65469) Hash05d953ed6e3a4d41efb9796ede1cd16f 18adf123f92ece66cce2062c99bae537260f1740 a9a65113d6611693dfc2b96970374d99fc727c4b5429b27387eb29f618b477cf
GET /next/embed/styles/lounge.72f05dc27e007c48ba81ee73c524d4ed.css HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-length: 33546
date: Tue, 09 Apr 2024 19:31:30 GMT
server: nginx
last-modified: Tue, 09 Apr 2024 18:43:45 GMT
etag: "66158c61-830a"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 09 Apr 2025 19:31:30 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oWQRv6p-Iy0-hOKrd9IPLcxgRlLwrww0W7r8oopaJiXeuJsrOdl8UQ==
age: 1342683
X-Firefox-Spdy: h2
|
|
| c.disquscdn.com/next/embed/lounge.bundle.a932f0de230f1d945f3274de9e901830.js | 143.204.55.14 | 200 OK | 133 kB |
URL GET HTTP/2c.disquscdn.com/next/embed/lounge.bundle.a932f0de230f1d945f3274de9e901830.js IP143.204.55.14:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerAmazon Subjecta.disquscdn.com FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32012) Size133 kB (132845 bytes) Hash73245215f953edc9237b4303aa8871d0 0b57b1ea1da36fdc6efb12496ba67020a2408f17 840e87ba27ca50087575c785446172a29b746af3c380eeda0b29f8a8ef8ecc4d
GET /next/embed/lounge.bundle.a932f0de230f1d945f3274de9e901830.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 132845
date: Tue, 23 Apr 2024 21:11:14 GMT
server: nginx
last-modified: Tue, 23 Apr 2024 21:01:54 GMT
etag: "662821c2-206ed"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 23 Apr 2025 21:11:14 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AqRNOTOQ0PRvrBrl5LwDbzxUwzS7AWeXNs0lyL7LrrySDjoVOqXFPA==
age: 127099
X-Firefox-Spdy: h2
|
|
| disqus.com/next/config.js | 151.101.128.134 | 200 OK | 20 kB |
URL GET HTTP/1.1disqus.com/next/config.js IP151.101.128.134:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerSectigo Limited Subject*.disqus.com FingerprintD5:19:5B:31:AD:E0:FA:FE:28:DF:43:18:5C:BB:1B:17:FC:38:F6:DC ValidityTue, 16 Apr 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (20067), with no line terminators Hasha18aabd9ca4678c1d9657f385ef67f1b 5627e59ccb1a434e0f536737cc8cf3aae665d516 570f2ae76be1b7d9e9f3c1b60696a33aca5e002516eded0a2cb4a0e8670cabb5
GET /next/config.js HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 20067
Server: nginx
Content-Type: application/javascript; charset=UTF-8
Cache-Control: public, stale-while-revalidate=300, s-stalewhilerevalidate=3600, max-age=60
X-Frame-Options: SAMEORIGIN
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Thu, 25 Apr 2024 08:29:33 GMT
Age: 14
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
|
|
| unseenreport.com/pxf.gif?uuid=670914b3-b33b-4b88-b16b-f770888b38fe&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=0de5f9688ae0da03d97a06e2c0008e2a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8 | 192.243.61.227 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=670914b3-b33b-4b88-b16b-f770888b38fe&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=0de5f9688ae0da03d97a06e2c0008e2a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=670914b3-b33b-4b88-b16b-f770888b38fe&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=0de5f9688ae0da03d97a06e2c0008e2a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:29:33 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b1d597e8268948367d7de979809c7839
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| c.disquscdn.com/next/current/embed/lang/fr.js | 143.204.55.14 | 200 OK | 9.6 kB |
URL GET HTTP/2c.disquscdn.com/next/current/embed/lang/fr.js IP143.204.55.14:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerAmazon Subjecta.disquscdn.com FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (27190), with no line terminators Hash8d283ca9389328bf79fddca19fbb8e46 73ff830de1d026619d9da6b9c79f3c0dfa17f8a7 32ed55b044f57ffe928f2a0012f942f1a54dcae4148b5c51a1ce7e637bdbe7d2
GET /next/current/embed/lang/fr.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 9589
server: nginx
last-modified: Tue, 23 Apr 2024 21:01:55 GMT
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
date: Thu, 25 Apr 2024 08:26:26 GMT
expires: Thu, 25 Apr 2024 08:31:06 GMT
cache-control: max-age=300, public
etag: "662821c3-2575"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xq0obCZEA-pmWpDZGyu2ZmXMTNOuVUh15289HvOUkgzw-_WEbfzWig==
age: 207
X-Firefox-Spdy: h2
|
|
| c.disquscdn.com/next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js | 143.204.55.14 | 200 OK | 27 kB |
URL GET HTTP/2c.disquscdn.com/next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js IP143.204.55.14:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerAmazon Subjecta.disquscdn.com FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32024) Hash6a2058c1873047f445835a25ca19ca8c c05084762dc4cfafe00c2a7daab90e27ae94d783 9efb3d5e1b082a66bd94908b42afb4cf6fe0e8eb8f50b8d2a18f6a5da03e6a18
GET /next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 26578
date: Wed, 27 Sep 2023 08:53:26 GMT
server: nginx
last-modified: Tue, 26 Sep 2023 16:46:05 GMT
etag: "65130acd-67d2"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Thu, 26 Sep 2024 08:53:26 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DPXf8ZrVWq_MRWRdZHCy5uY3RUOvgNgNhf7lYBuM8JK88AQUThjU4Q==
age: 18228967
X-Firefox-Spdy: h2
|
|
| hdss.guru/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js | 188.114.97.1 | 200 OK | 25 kB |
URL GET HTTP/3hdss.guru/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeJavaScript source, ASCII text, with very long lines (7923), with no line terminators Hashe9ad20f0633e0297ffb102dd177cf133 c495dfa609eb312370bd86922a5734aacffdb8e2 36112ee68e7bcb45d370a2ce1d79cca36855db0548707f14960dca4dc67e9840
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1; ppu_main_5e8bca158be0bbfbe0b1ec8c5be5a6bb=1; sb_main_f98c6279d54f9619690a2401e3ea449f=1; sb_count_f98c6279d54f9619690a2401e3ea449f=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:31 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
cache-control: max-age=14400, public
content-encoding: br
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=su%2BCGfTk1GfV%2FxkI%2BChDxnymIo0lB%2FsniNYWmSEEI2DAe%2FfeHnoOlVUfY7xenOop9iSWC8b5q82bKLQXsZcbE%2Ftjs8eD4HTs7aCh7qPSoCJdcrkOaxEiHxMIchc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf73e48065687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tsyndicate.com/do2/6f9236d830aa4f49bd83a150a6e34c36/vast?t=outstream&subid=hdss-1&keywords=7825%2Cconann%2Cvf%2Chdssto&w=1280&h=1024&tz=0 | 142.132.207.176 | 200 OK | 2.6 kB |
URL GET HTTP/2tsyndicate.com/do2/6f9236d830aa4f49bd83a150a6e34c36/vast?t=outstream&subid=hdss-1&keywords=7825%2Cconann%2Cvf%2Chdssto&w=1280&h=1024&tz=0 IP142.132.207.176:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjecttsyndicate.com FingerprintF5:9F:1F:89:8F:08:CD:46:43:4B:55:0A:42:66:52:21:16:57:43:31 ValidityFri, 12 Apr 2024 09:06:37 GMT - Thu, 11 Jul 2024 09:06:36 GMT
File typegzip compressed data, from Unix Hashbc9cc1fa9296328e9b3b8cc9e95d7def 9c158d425b4b01cdfbf92eb31f544e45756a1514 948877f6ba1e734d4562bad99faf95ebcbe9c0addb5570872c6a99651a25f54b
GET /do2/6f9236d830aa4f49bd83a150a6e34c36/vast?t=outstream&subid=hdss-1&keywords=7825%2Cconann%2Cvf%2Chdssto&w=1280&h=1024&tz=0 HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hdss.guru
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:29:33 GMT
content-type: application/xml; charset=utf-8
access-control-allow-origin: https://hdss.guru
access-control-allow-methods: POST, GET, HEAD
access-control-allow-headers: Accept, X-Requested-With, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Legacy
access-control-allow-credentials: true
pragma: no-cache
expires: 0
vary: Accept-Encoding, *
x-api-version: 2
x-vast: 3.0
x-request-id: 97e710f4555bdffb
set-cookie: ts_uid=70b66364-e458-4f37-97a9-bc481ee38141; expires=Fri, 25 Oct 2024 08:29:33 GMT; domain=.tsyndicate.com; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| c.disquscdn.com/next/embed/assets/img/svg-sprite.6d7ccb1c98b314b20422a2c2f0497a7f.svg | 143.204.55.14 | 200 OK | 14 kB |
URL GET HTTP/2c.disquscdn.com/next/embed/assets/img/svg-sprite.6d7ccb1c98b314b20422a2c2f0497a7f.svg IP143.204.55.14:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerAmazon Subjecta.disquscdn.com FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash6d7ccb1c98b314b20422a2c2f0497a7f 4b2016e8d09321b0bc908f89ff56c2b6fbcc995b 973329cbeaebf60b87a29ec5651af3302c3cdc4c3dd610bf18b6ff346087428a
GET /next/embed/assets/img/svg-sprite.6d7ccb1c98b314b20422a2c2f0497a7f.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.72f05dc27e007c48ba81ee73c524d4ed.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 13540
date: Tue, 30 Jan 2024 18:41:19 GMT
server: nginx
last-modified: Tue, 30 Jan 2024 16:48:51 GMT
etag: "65b92873-34e4"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 29 Jan 2025 18:41:19 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: p5JDXc4GlHV733qwCY80Soq2gzEn-xRz_rGV0DrcQbA7mjdZdZ6WEQ==
age: 7393694
X-Firefox-Spdy: h2
|
|
| c.disquscdn.com/next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif | 143.204.55.14 | 200 OK | 3.0 kB |
URL GET HTTP/2c.disquscdn.com/next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif IP143.204.55.14:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerAmazon Subjecta.disquscdn.com FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
File typeGIF image data, version 87a, 62 x 20 Hashba7c86e8b4b6135bb668d05223f8f127 ae07a576af9eab682281921075436798438e902e 4c4491dcfa94cb46fb73742fc2caf49a1cd59027304af1830c7dc6ce1889857c
GET /next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.72f05dc27e007c48ba81ee73c524d4ed.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 2971
date: Sun, 20 Aug 2023 12:05:10 GMT
server: nginx
last-modified: Wed, 02 Aug 2023 23:18:56 GMT
etag: "64cae460-b9b"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Mon, 19 Aug 2024 12:05:10 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0yMURsCR-wWa8HxUKRfAi_ISS6wuZqXZM3cnFuVw4vV1KWscRYY0Gw==
age: 21500663
X-Firefox-Spdy: h2
|
|
| c.disquscdn.com/next/embed/assets/img/email.727e30eb9b6c1e85cb010b9c8eb04c7e.svg | 143.204.55.14 | 200 OK | 840 B |
URL GET HTTP/2c.disquscdn.com/next/embed/assets/img/email.727e30eb9b6c1e85cb010b9c8eb04c7e.svg IP143.204.55.14:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerAmazon Subjecta.disquscdn.com FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash727e30eb9b6c1e85cb010b9c8eb04c7e 5b7ed3f88c4d25d1d9e15bbd15af68daf5c573b4 0589c5845288117448d7aa710af60618b151d78efd1a2653f89a0b57f7eb3de8
GET /next/embed/assets/img/email.727e30eb9b6c1e85cb010b9c8eb04c7e.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.72f05dc27e007c48ba81ee73c524d4ed.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 840
date: Thu, 21 Sep 2023 03:03:24 GMT
server: nginx
last-modified: Wed, 20 Sep 2023 10:55:06 GMT
etag: "650acf8a-348"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 20 Sep 2024 03:03:24 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IwTM7njd5iHdcbT03090z9xNgz2ZR7Nc8MpWGVvX_tr0uM5e-oUTjw==
age: 18768368
X-Firefox-Spdy: h2
|
|
| c.disquscdn.com/next/embed/assets/img/privacy.8c96be6b50de1c3fab838c5f050e0be5.svg | 143.204.55.14 | 200 OK | 891 B |
URL GET HTTP/2c.disquscdn.com/next/embed/assets/img/privacy.8c96be6b50de1c3fab838c5f050e0be5.svg IP143.204.55.14:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerAmazon Subjecta.disquscdn.com FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash8c96be6b50de1c3fab838c5f050e0be5 d0eb4a80710c083c77020cc3b6cd6756cf0bca60 068753b8f09b32ad8a3283199c7252090d0076a56924df724dda72828ae31b95
GET /next/embed/assets/img/privacy.8c96be6b50de1c3fab838c5f050e0be5.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.72f05dc27e007c48ba81ee73c524d4ed.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 891
date: Tue, 06 Feb 2024 20:22:14 GMT
server: nginx
last-modified: Tue, 30 Jan 2024 16:48:51 GMT
etag: "65b92873-37b"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 05 Feb 2025 20:22:14 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XNiwEwm2BocdPxqAEar5nWtixfa7hkXFFW6mPbMbru4ZaSV-Tm6b9w==
age: 6782839
X-Firefox-Spdy: h2
|
|
| c.disquscdn.com/next/embed/assets/img/warning.3bc0b4bff6c268a4ceaf404014b9be42.svg | 143.204.55.14 | 200 OK | 605 B |
URL GET HTTP/2c.disquscdn.com/next/embed/assets/img/warning.3bc0b4bff6c268a4ceaf404014b9be42.svg IP143.204.55.14:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerAmazon Subjecta.disquscdn.com FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash3bc0b4bff6c268a4ceaf404014b9be42 d8f61dc82cbbd889b66505bb3e9c7711b9bb8cb5 a657bedd3bc0c106f7cfa5fe6556a0b7e175870d33bd7da9ef67ffcffbafda69
GET /next/embed/assets/img/warning.3bc0b4bff6c268a4ceaf404014b9be42.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.72f05dc27e007c48ba81ee73c524d4ed.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 605
date: Thu, 11 Jan 2024 04:39:35 GMT
server: nginx
last-modified: Mon, 08 Jan 2024 22:12:55 GMT
etag: "659c7367-25d"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 10 Jan 2025 04:39:35 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7E8Niv6eqJ2rwUeq2s2bgOJw412ydrsX8d-Xh3TeKcBG2H_Ki4maPA==
age: 9085798
X-Firefox-Spdy: h2
|
|
| c.disquscdn.com/next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png | 143.204.55.14 | 200 OK | 1.8 kB |
URL GET HTTP/2c.disquscdn.com/next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png IP143.204.55.14:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerAmazon Subjecta.disquscdn.com FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
File typePNG image data, 172 x 81, 8-bit colormap, non-interlaced Hashad630a07080a45451f139a7487853ff8 c2673d7404fc947fab20eed21416f9656149018d 9714221c828961b20f45a782c3281c0596f6652cfe1299bee18097f98e8fb7b3
GET /next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.72f05dc27e007c48ba81ee73c524d4ed.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1763
date: Mon, 24 Jul 2023 12:53:27 GMT
server: nginx
last-modified: Wed, 12 Jul 2023 14:04:56 GMT
etag: "64aeb308-6e3"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 23 Jul 2024 12:53:27 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2lhH8ojbDNTNO2mLJ5xHgfu9htJE65kURB66a3PSOHwfaVS2YwR74g==
age: 23830566
X-Firefox-Spdy: h2
|
|
| c.disquscdn.com/next/embed/assets/font/icons.79e576f9489bae308388e5b8e250aa86.woff2 | 143.204.55.14 | 200 OK | 8.2 kB |
URL GET HTTP/2c.disquscdn.com/next/embed/assets/font/icons.79e576f9489bae308388e5b8e250aa86.woff2 IP143.204.55.14:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerAmazon Subjecta.disquscdn.com FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 8216, version 1.0 Hash79e576f9489bae308388e5b8e250aa86 36b1bef5fe4ec3b4922075b0a66057c00f8ab651 8dc675da542f629aca965669b35900a5ed0685f4d87dce9eac4660baf4493687
GET /next/embed/assets/font/icons.79e576f9489bae308388e5b8e250aa86.woff2 HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
DNT: 1
Connection: keep-alive
Referer: https://c.disquscdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 8216
date: Thu, 28 Dec 2023 00:31:07 GMT
server: nginx
last-modified: Thu, 21 Dec 2023 18:58:13 GMT
etag: "65848ac5-2018"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 27 Dec 2024 00:31:07 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jwAhEG61Hwjwx4Sj9dP-BWccWigglg-n_oTELpjrQ9f688ufc9ZIzw==
age: 10310306
X-Firefox-Spdy: h2
|
|
| disqus.com/api/3.0/forums/details?forum=hdss-1&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F | 151.101.128.134 | 200 OK | 3.0 kB |
URL GET HTTP/1.1disqus.com/api/3.0/forums/details?forum=hdss-1&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F IP151.101.128.134:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerSectigo Limited Subject*.disqus.com FingerprintD5:19:5B:31:AD:E0:FA:FE:28:DF:43:18:5C:BB:1B:17:FC:38:F6:DC ValidityTue, 16 Apr 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
Hash5f3606f7761455f04128bff96034ec6c 0e6451c12a372b7211149897a5e99b1cc5130005 6d76e44b819c67ca913e4f9dd85ae620176949f3c57573719544d5b14760306e
GET /api/3.0/forums/details?forum=hdss-1&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 3000
Server: nginx
Content-Type: application/json
X-Frame-Options: SAMEORIGIN
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Age: 0
Date: Thu, 25 Apr 2024 08:29:33 GMT
Vary: Origin, Cookie
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
|
|
| vacdn.tsyndicate.com/videos/8/6/df568e06be3d180269d8e4eccb425d92f4c216/440x250.mp4 | 185.185.15.2 | 302 Found | 0 B |
URL GET HTTP/2vacdn.tsyndicate.com/videos/8/6/df568e06be3d180269d8e4eccb425d92f4c216/440x250.mp4 IP185.185.15.2:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjectvacdn.tsyndicate.com FingerprintEA:02:D9:87:F4:E3:E3:3A:81:BD:B8:C5:C0:8D:7D:81:05:29:7F:92 ValiditySat, 30 Mar 2024 02:07:31 GMT - Fri, 28 Jun 2024 02:07:30 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /videos/8/6/df568e06be3d180269d8e4eccb425d92f4c216/440x250.mp4 HTTP/1.1
Host: vacdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.20.1
date: Thu, 25 Apr 2024 08:29:33 GMT
content-length: 0
location: https://ip255660966.ahcdn.com/key=+vlvX7WAz3KjKiXXfjTs+A,s=,,end=1714037373/state=ZioUW1oq/buffer=181420:6615,20.4/speed=25917/reftag=0345976730/ssd9/454/3/346082863/videos/8/6/df568e06be3d180269d8e4eccb425d92f4c216/440x250.mp4
access-control-allow-origin: *
cache-control: private, max-age=1800
expires: Thu, 25 Apr 2024 08:59:33 GMT
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 142.250.74.163 | 200 OK | 16 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP142.250.74.163:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 10:46:32 GMT
expires: Wed, 23 Apr 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 164581
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.163 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.163:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:37:01 GMT
expires: Fri, 25 Apr 2025 02:37:01 GMT
cache-control: public, max-age=31536000
age: 21152
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 | 142.250.74.163 | 200 OK | 17 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 IP142.250.74.163:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 17368, version 1.0 Hashabe083d96b58eb02ada8b7c30d7b09f2 61447d66d13a8c8f4335696777a85c438c46f749 db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:38:21 GMT
expires: Fri, 18 Apr 2025 17:38:21 GMT
cache-control: public, max-age=31536000
age: 571872
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.163 | 200 OK | 16 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.163:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15920, version 1.0 Hash3a44e06eb954b96aa043227f3534189d 23cef6993ddb2b2979e8e7647fc3763694e2ba7d b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:32:53 GMT
expires: Fri, 25 Apr 2025 02:32:53 GMT
cache-control: public, max-age=31536000
age: 21400
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2 | 142.250.74.163 | 200 OK | 17 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2 IP142.250.74.163:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 17032, version 1.0 Hash05a47f9e469d408c629f931cd33ff8b2 823f21f7b1d456db889c3afea393f0d2b9581c38 6be97ca17228a69c406231d89c003194c3dfba7401eaa9fe9e9ed0ef1c18dc38
GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17032
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 23:02:14 GMT
expires: Tue, 22 Apr 2025 23:02:14 GMT
cache-control: public, max-age=31536000
age: 206839
last-modified: Wed, 11 May 2022 19:24:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&load_time=312&event=init_embed&thread=10148801006&forum=hdss-1&forum_id=7356966&imp=3n8t1ob3m0vvqp&thread_slug=conann_streaming_vf_gratuit_hdssto_97&user_type=anon&referrer=https%3A%2F%2Fhdss.guru%2F&theme=next&dnt=1&tracking_enabled=0&experiment=network_default&variant=fallthrough&service=dynamic&promoted_enabled=true&max_enabled=true | 199.232.192.134 | 200 OK | 43 B |
URL GET HTTP/1.1referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&load_time=312&event=init_embed&thread=10148801006&forum=hdss-1&forum_id=7356966&imp=3n8t1ob3m0vvqp&thread_slug=conann_streaming_vf_gratuit_hdssto_97&user_type=anon&referrer=https%3A%2F%2Fhdss.guru%2F&theme=next&dnt=1&tracking_enabled=0&experiment=network_default&variant=fallthrough&service=dynamic&promoted_enabled=true&max_enabled=true IP199.232.192.134:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerSectigo Limited Subject*.disqus.com FingerprintD5:19:5B:31:AD:E0:FA:FE:28:DF:43:18:5C:BB:1B:17:FC:38:F6:DC ValidityTue, 16 Apr 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/event.gif?abe=0&embed_hidden=0&load_time=312&event=init_embed&thread=10148801006&forum=hdss-1&forum_id=7356966&imp=3n8t1ob3m0vvqp&thread_slug=conann_streaming_vf_gratuit_hdssto_97&user_type=anon&referrer=https%3A%2F%2Fhdss.guru%2F&theme=next&dnt=1&tracking_enabled=0&experiment=network_default&variant=fallthrough&service=dynamic&promoted_enabled=true&max_enabled=true HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
server: nginx
content-type: image/gif
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
Date: Thu, 25 Apr 2024 08:29:33 GMT
Cross-Origin-Resource-Policy: cross-origin
|
|
| links.services.disqus.com/api/ping | 199.232.192.64 | 403 Forbidden | 979 B |
URL POST HTTP/1.1links.services.disqus.com/api/ping IP199.232.192.64:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGlobalSign nv-sa Subject*.services.disqus.com Fingerprint50:A1:DE:0D:FF:87:C9:55:D3:07:CE:35:8A:C5:E9:9D:3F:9E:78:9E ValidityTue, 08 Aug 2023 17:50:10 GMT - Sun, 08 Sep 2024 17:50:09 GMT
File typeHTML document, ASCII text, with very long lines (979), with no line terminators Hash1edc3fac1e0eb87ed6b19d4ecd08f8ef bc58af52fa6a97e7506db76cb9e5a1895c92dcfd 613acec36f8b4ee7869a9907bc4b81eb6c24bcdd373520d6ee3a9b040d78ed98
POST /api/ping HTTP/1.1
Host: links.services.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 151
Origin: https://hdss.guru
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Connection: keep-alive
Content-Length: 979
Content-Language: en
Content-Type: text/html;charset=utf-8
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Server: Apache-Coyote/1.1
Date: Thu, 25 Apr 2024 08:29:34 GMT
|
|
| ip255660966.ahcdn.com/key=+vlvX7WAz3KjKiXXfjTs+A,s=,,end=1714037373/state=ZioUW1oq/buffer=181420:6615,20.4/speed=25917/reftag=0345976730/ssd9/454/3/346082863/videos/8/6/df568e06be3d180269d8e4eccb425d92f4c216/440x250.mp4 | 185.208.128.7 | 206 Partial Content | 130 kB |
URL GET HTTP/2ip255660966.ahcdn.com/key=+vlvX7WAz3KjKiXXfjTs+A,s=,,end=1714037373/state=ZioUW1oq/buffer=181420:6615,20.4/speed=25917/reftag=0345976730/ssd9/454/3/346082863/videos/8/6/df568e06be3d180269d8e4eccb425d92f4c216/440x250.mp4 IP185.208.128.7:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoGetSSL Subject*.ahcdn.com Fingerprint97:05:50:06:B9:73:62:E4:01:BD:F0:42:93:D3:2A:30:ED:AC:B8:10 ValidityWed, 17 May 2023 00:00:00 GMT - Sun, 16 Jun 2024 23:59:59 GMT
File typeISO Media, MP4 Base Media v1 [ISO 14496-12:2003] Size130 kB (129700 bytes) Hash4fde75cc77f26766ef084916a6a85949 714c9643114ce412296ff843e86af17bcc504173 1c03fca2e99b1c18b483236b0fbbc23af9bf3e8bce627d502ce9367413722b68
GET /key=+vlvX7WAz3KjKiXXfjTs+A,s=,,end=1714037373/state=ZioUW1oq/buffer=181420:6615,20.4/speed=25917/reftag=0345976730/ssd9/454/3/346082863/videos/8/6/df568e06be3d180269d8e4eccb425d92f4c216/440x250.mp4 HTTP/1.1
Host: ip255660966.ahcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br, identity
Range: bytes=0-
Referer: https://hdss.guru/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
server: nginx/1.22.0
date: Thu, 25 Apr 2024 08:29:33 GMT
content-type: video/mp4
content-length: 441025
last-modified: Fri, 09 Feb 2024 04:02:39 GMT
access-control-allow-origin: *
etag: "65c5a3df-6bac1"
expires: Thu, 25 Apr 2024 10:29:33 GMT
cache-control: max-age=7200, private
content-range: bytes 0-441024/441025
X-Firefox-Spdy: h2
|
|
| childishenough.com/pixel/sbs?c=1 | 172.240.253.132 | 200 OK | 0 B |
URL GET HTTP/1.1childishenough.com/pixel/sbs?c=1 IP172.240.253.132:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjectchildishenough.com Fingerprint73:00:B1:5A:CB:AB:53:72:CD:E8:9F:16:DB:35:75:AC:2B:C8:0C:28 ValidityTue, 23 Apr 2024 10:46:27 GMT - Mon, 22 Jul 2024 10:46:26 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbs?c=1 HTTP/1.1
Host: childishenough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Cookie: u_pl=22319057; uid_id2=670914b3-b33b-4b88-b16b-f770888b38fe:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:29:33 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| hdss.guru/engine/classes/js/jquery3.js?v=e6010 | 188.114.97.1 | 200 OK | 90 kB |
URL GET HTTP/3hdss.guru/engine/classes/js/jquery3.js?v=e6010 IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeJavaScript source, ASCII text, with very long lines (65446), with CRLF line terminators Hash0732e3eabbf8aa7ce7f69eedbd07dfdd 4cd5ddc413b3024d7b56331c0d0d0b2bd933f27f ce9d07500ad91ec2b524c270764ec4c9a33e78320d8d374ec400ede488f6251b
GET /engine/classes/js/jquery3.js?v=e6010 HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 03 Jan 2024 06:53:23 GMT
vary: Accept-Encoding
etag: W/"65950463-15d9f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 162992
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9kfmfYWaM%2FwqKP8p%2FMzI79bzru74wW2L2k53LFlcFPquaS4UMygIPZOV8ga8VO8VfEh%2BI%2FXkzty5WPCETGUgsWtgwnVPBZMdlISWBLBwUVf%2BQXlvNQC5NqvFliI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf7354fc35687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/engine/classes/masha/masha.js?v=e6010 | 188.114.97.1 | 200 OK | 24 kB |
URL GET HTTP/3hdss.guru/engine/classes/masha/masha.js?v=e6010 IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeJavaScript source, ASCII text, with very long lines (21220), with CRLF line terminators Hash1bd584b61915c386135bfcb513e0af34 fd4be11d3807be2598d54c4b0d9ac9a3336d2f9d 1ab65123bd2a03b3dc4eeeb0765d131162d3dd7c7544d2580ccc7e0a3c6a5f06
GET /engine/classes/masha/masha.js?v=e6010 HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 03 Jan 2024 06:53:23 GMT
vary: Accept-Encoding
etag: W/"65950463-5ea1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 162971
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7T0opPXN2s893PfcoUAYS7gE97SQTlSfwuyzEW8pyJNRHBt9L%2Bo9JAND%2BI9tibq05uKeRn24lhuFgoTsL%2B6TMAY3DYRw6cDcGRS1tjA5qDyfiEnNbf7JAYsnNqI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf7355fd05687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/animate.css | 188.114.97.1 | 200 OK | 79 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/animate.css IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash3d4123dbfb33d27a5cfdfcfa91df6783 e7d0eeeec54b848f0bc3da8685fa3bc88429d660 cb7d1393b65701b2f97d8da244c2c6023e9cbc3463ecb0136b915cfc775c6887
GET /sb/ssp/vpn/classic-push/small/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hdss.guru
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:29:32 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-13361"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GdCWOarC9wncIWzVwaQz58snTrdjyYBOYtrBDAN4ovnKfkCRVYeQsQ%2BdUUgEdgKBat%2Fg9COHxPlGzf0i82sMcDm6GoVSddroKA%2Bj8m1ZIaAxEyotLD0cOyGmiF3n8qYs2a77P0LsP5YT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf7429a2756b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.tsyndicate.com/sdk/v1/outstream.video.v2.css | 45.133.44.71 | 200 OK | 6.4 kB |
URL GET HTTP/2cdn.tsyndicate.com/sdk/v1/outstream.video.v2.css IP45.133.44.71:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjectcdn.tsyndicate.com Fingerprint27:B4:A1:69:D6:DF:AF:13:62:9C:06:AB:7A:E0:2F:B6:9B:08:43:75 ValidityTue, 09 Apr 2024 03:01:17 GMT - Mon, 08 Jul 2024 03:01:16 GMT
File typeASCII text, with very long lines (6463), with no line terminators Hash48dba2cbe648524df2ae13b6f734d9d2 e598606465fa92efe2c62a5a30ef832079cc77e2 5cbe8ef124b7bcf9ffc70efa1820674e43b505ea07b853a6178b1346bc049bad
GET /sdk/v1/outstream.video.v2.css HTTP/1.1
Host: cdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:29:33 GMT
content-type: text/css
server: nginx
last-modified: Fri, 15 Mar 2024 13:05:04 GMT
etag: W/"65f44780-192d"
x-robots-tag: noindex, nofollow
content-encoding: gzip
cache-control: max-age=172800
expires: Sat, 27 Apr 2024 08:29:33 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
X-Firefox-Spdy: h2
|
|
| hdss.guru/templates/hdss/js/owl.carousel.min.js | 188.114.97.1 | 200 OK | 44 kB |
URL GET HTTP/3hdss.guru/templates/hdss/js/owl.carousel.min.js IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeJavaScript source, ASCII text, with very long lines (31997), with CRLF line terminators Hash91048baa34dd0f318ab1605193ae794e d257215114385290eaa5259c7501736c17290491 94f86b07cb5d64f54dd842d732cb4981c0f39f9f4325edc085afb04d77e3e606
GET /templates/hdss/js/owl.carousel.min.js HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 03 Jan 2024 06:54:50 GMT
vary: Accept-Encoding
etag: W/"659504ba-ad3e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 1694521
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GSlBoRn81HGX6qawGSc6uZIIreX8e7pNTgNQTV3xnb1a6RjMhW%2B9j6hBaNhMyomY3wJOG7h0FGRUFq5Ny660SEi1JIFMwD2gUotQ3KgiY7OnyIoqRL%2FFe2ATUpQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf7355fde5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| dismantlepenantiterrorist.com/pxf.gif?uuid=670914b3-b33b-4b88-b16b-f770888b38fe&eb=770939d430504a1fc9359f602363d1b9&te=f27a9fc391291bfbea981afd04faf753&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=13.2071&b_frame=0&pk=5e8bca158be0bbfbe0b1ec8c5be5a6bb&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8 | 0.0.0.0 | | 0 B |
URL GET dismantlepenantiterrorist.com/pxf.gif?uuid=670914b3-b33b-4b88-b16b-f770888b38fe&eb=770939d430504a1fc9359f602363d1b9&te=f27a9fc391291bfbea981afd04faf753&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=13.2071&b_frame=0&pk=5e8bca158be0bbfbe0b1ec8c5be5a6bb&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8 IP0.0.0.0:0
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=670914b3-b33b-4b88-b16b-f770888b38fe&eb=770939d430504a1fc9359f602363d1b9&te=f27a9fc391291bfbea981afd04faf753&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=13.2071&b_frame=0&pk=5e8bca158be0bbfbe0b1ec8c5be5a6bb&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8 HTTP/1.1
Host: dismantlepenantiterrorist.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| c.disquscdn.com/next/embed/common.bundle.a59842d31742a609955eb402e17bb0c3.js | 143.204.55.14 | 200 OK | 286 kB |
URL GET HTTP/2c.disquscdn.com/next/embed/common.bundle.a59842d31742a609955eb402e17bb0c3.js IP143.204.55.14:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerAmazon Subjecta.disquscdn.com FingerprintB0:90:A7:25:E8:69:E1:D2:10:DF:D4:36:AC:0F:B1:B6:2D:91:C4:FB ValidityThu, 31 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
Size286 kB (286471 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /next/embed/common.bundle.a59842d31742a609955eb402e17bb0c3.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 94164
date: Mon, 01 Apr 2024 21:27:11 GMT
server: nginx
last-modified: Mon, 01 Apr 2024 21:21:15 GMT
etag: "660b254b-16fd4"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 01 Apr 2025 21:27:11 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eaRYLkY8P84ya6ClYAeOekpoeN97L1AUGaznLHRjxoscWbZfh9TFPA==
age: 2026942
X-Firefox-Spdy: h2
|
|
| hdss.guru/templates/hdss/js/lib.js?v=12 | 188.114.97.1 | 200 OK | 1.7 kB |
URL GET HTTP/3hdss.guru/templates/hdss/js/lib.js?v=12 IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (1897), with no line terminators Hashecb3ba714c05c3b7773e4463629972e2 862d23d165efeabd5a8553a206524deace283df9 c1fc771250d5913740622b6eb59dc313039231cb571a7c40187e26ec41283e27
GET /templates/hdss/js/lib.js?v=12 HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 03 Jan 2024 06:54:50 GMT
vary: Accept-Encoding
etag: W/"659504ba-6ac"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 315276
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AAQpuhzzvzbIecpdLG4EFBqyVNsOQVuubUR5NGDEzrJiyFyKWA0FeWU9Qgf5dtJlAPsnKiDjUnNddsvDjA5acXIHIWef%2BOYkE3xmc%2Fj1YxSXPchwlu%2Fv8Xl0MM8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf7355fe15687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=Roboto:ital,wght@0,400;0,500;0,600;0,700;1,400;1,700&display=swap | 142.250.74.106 | 200 OK | 12 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Roboto:ital,wght@0,400;0,500;0,600;0,700;1,400;1,700&display=swap IP142.250.74.106:443
Requested byhttps://disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default#version=515899f66d5b4919df6237c59d70b9fb CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
Hash8466e61c543d10fe3793fb46129f8b32 5b59d12b2ad6fb2129f1f2bece5320ef02a3b834 7dd43d1e52f57a1b70d8100f287348147524859f631b3bb0de03ade37213786f
GET /css2?family=Roboto:ital,wght@0,400;0,500;0,600;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 08:29:33 GMT
date: Thu, 25 Apr 2024 08:29:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| childishenough.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=322 | 192.243.59.12 | 200 OK | 0 B |
URL GET HTTP/1.1childishenough.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=322 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjectchildishenough.com Fingerprint73:00:B1:5A:CB:AB:53:72:CD:E8:9F:16:DB:35:75:AC:2B:C8:0C:28 ValidityTue, 23 Apr 2024 10:46:27 GMT - Mon, 22 Jul 2024 10:46:26 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=322 HTTP/1.1
Host: childishenough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Cookie: u_pl=22319057; uid_id2=670914b3-b33b-4b88-b16b-f770888b38fe:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 25 Apr 2024 08:29:32 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| acdn.tsyndicate.com/images/8/1/a528046f614aa9fc4aedd2617f6ef04891fc5f.png | 45.133.44.71 | 200 OK | 21 kB |
URL GET HTTP/2acdn.tsyndicate.com/images/8/1/a528046f614aa9fc4aedd2617f6ef04891fc5f.png IP45.133.44.71:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjectacdn.tsyndicate.com Fingerprint9A:AE:79:BE:2C:BB:CF:C7:A3:F0:FB:72:3D:0F:55:E4:E8:E3:4D:5F ValiditySat, 30 Mar 2024 03:00:48 GMT - Fri, 28 Jun 2024 03:00:47 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hasheda6e0d401cd4eae6556394c395c06a2 371f4fc45d44d33846283776639d56dcfa30f263 9724c4cd73b76e5b57b7116004c1c2acdff71af5abba4b7acec68657aca85199
GET /images/8/1/a528046f614aa9fc4aedd2617f6ef04891fc5f.png HTTP/1.1
Host: acdn.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:29:33 GMT
content-type: image/png
content-length: 20760
server: nginx
last-modified: Wed, 03 Jan 2024 18:53:09 GMT
etag: "6595ad15-5118"
x-robots-tag: noindex, nofollow
cache-control: max-age=172800
expires: Sat, 27 Apr 2024 08:29:33 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| hdss.guru/engine/editor/css/default.css?v=e6010 | 188.114.97.1 | 200 OK | 2.6 kB |
URL GET HTTP/3hdss.guru/engine/editor/css/default.css?v=e6010 IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeASCII text, with very long lines (2895), with no line terminators Hashd3fe6151eff739f300ba0d63ce885466 cbf2cb3b496a67fe81e68366f57b1570a75593ed 9b9ddadef5f4d60eb61fc48562f9cd8bb81d99d82a37a9e5f3e12b6b25f43d27
GET /engine/editor/css/default.css?v=e6010 HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:29 GMT
content-type: text/css
last-modified: Wed, 03 Jan 2024 06:53:27 GMT
vary: Accept-Encoding
etag: W/"65950467-a37"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 1694521
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zc7jQNHTWMmTqSN2SLKESuORKBqxhoHlEG0KhP1wa2MeTChc5eCECVhUFzHh4fW0IvBOm%2FL5YeWaALQk%2FFDOMH7eSBCgvoII%2FS2QZEJTdrut8JX1biB2RSgcpjs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf7354fc25687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| childishenough.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=133 | 192.243.59.12 | 200 OK | 0 B |
URL GET HTTP/1.1childishenough.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=133 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjectchildishenough.com Fingerprint73:00:B1:5A:CB:AB:53:72:CD:E8:9F:16:DB:35:75:AC:2B:C8:0C:28 ValidityTue, 23 Apr 2024 10:46:27 GMT - Mon, 22 Jul 2024 10:46:26 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=133 HTTP/1.1
Host: childishenough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Cookie: u_pl=22319057; uid_id2=670914b3-b33b-4b88-b16b-f770888b38fe:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 25 Apr 2024 08:29:31 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js | 188.114.97.1 | 200 OK | 84 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeJavaScript source, ASCII text, with very long lines (32025) Hash4a356126b9573eb7bd1e9a7494737410 8258d046f17dd3c15a5d3984e1868b7b5d1db329 22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5
GET /sb/ssp/vpn/classic-push/small/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:29:32 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-1499c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 6117866
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tI4jj62Iksg8%2Fo3YHFscHl3JhkJntAGFfMXraOlyFw02nt%2BS6EhnN5j3JTvvLs0ZHibnDL55fv0OYQ93dSr5WSVabYtzzPCFNmT%2FufXqyjNZOT5l5xtAwadeJoaE%2BFYMMCQezI8j0vkQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf7432ab356b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| hdss.guru/templates/hdss/images/favicon.ico | 188.114.97.1 | 200 OK | 101 kB |
URL GET HTTP/3hdss.guru/templates/hdss/images/favicon.ico IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeMS Windows icon resource - 6 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel Size101 kB (101031 bytes) Hash318a53a8da1c420136aa392beca4f5b3 e789273f1425e3427e75ab111d656ac79fa240de 6955cccd7989aab80208eb33812ed0aafd64b62304711122ce5519fd180e5822
GET /templates/hdss/images/favicon.ico HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1; ppu_main_5e8bca158be0bbfbe0b1ec8c5be5a6bb=1; sb_main_f98c6279d54f9619690a2401e3ea449f=1; sb_count_f98c6279d54f9619690a2401e3ea449f=1; cf_clearance=3GlYxzt9_Z56kFioWzlhjlXbaxIBz4WHpNglE4GhhQM-1714033771-1.0.1.1-I021Ov.cGIkZ8hfzOfe9XQpe1.B9KO1u0ThjAK09psLhj6gSvkdpJS0Gp6rPZNYe0GWI_T7ndqwqLJtmfzBPOw; pbpr0tpuw4isk85t8yg3jb2lj5vqf=childishenough.com; pp_idelay_0de5f9688ae0da03d97a06e2c0008e2a=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:32 GMT
content-type: image/x-icon
last-modified: Wed, 03 Jan 2024 06:54:49 GMT
vary: Accept-Encoding
etag: W/"659504b9-18aa7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 162992
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LCLHMoOe0i0vB8SwwCWdB395BYWI7bvvjkw0H%2FY3pm7WeUoBj7dh3B4u92I4Ai%2F73zuYiSHWP%2B4Ei3PrinF%2FEovLSx1krtSNkQohYWfdRMpSKeBzdGeEb94tmEY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf7466ecb5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default | 151.101.128.134 | 200 OK | 6.4 kB |
URL GET HTTP/1.1disqus.com/embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default IP151.101.128.134:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerSectigo Limited Subject*.disqus.com FingerprintD5:19:5B:31:AD:E0:FA:FE:28:DF:43:18:5C:BB:1B:17:FC:38:F6:DC ValidityTue, 16 Apr 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (6963), with no line terminators Hash945f3bcb2411cff6423d31ef7144109b 0ea4a8e3ae48323fc43fff533c43b1d21de69254 2c8a0fa9e45d86cfb24cfc44e75a67b58514892f2e27b1747c2a3d20f2fe0d62
GET /embed/comments/?base=default&f=hdss-1&t_u=https%3A%2F%2Fhdss.guru%2F7825-conann-vf-hdssto.html&t_d=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&t_t=Conann%20streaming%20vf%20Gratuit%20-%20HDss.to&s_o=default HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 2778
Server: nginx
Content-Type: text/html; charset=utf-8
Content-Security-Policy: script-src https://*.twitter.com:* https://www.gstatic.com/recaptcha/ https://a.disquscdn.com https://c.disquscdn.com c.disquscdn.com https://*.services.disqus.com:* https://cdn.boomtrain.com/p13n/ https://com-disqus.netmng.com:* 'unsafe-inline' https://referrer.disqus.com/juggler/ https://connect.facebook.net/en_US/sdk.js https://cdn.syndication.twimg.com/tweets.json https://apis.google.com https://www.google.com/recaptcha/ https://cf.ignitionone.com:* https://disqus.com
Last-Modified: Sun, 07 Apr 2024 00:31:41 GMT
ETag: W/"lounge:view:10148801006.c3e50108beb353af192b1b80a9a3c1c9.2"
Link: <https://c.disquscdn.com>;rel=preconnect,<https://c.disquscdn.com>;rel=dns-prefetch
Cache-Control: stale-if-error=3600, s-stalewhilerevalidate=3600, stale-while-revalidate=30, no-cache, must-revalidate, public, s-maxage=5
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Referrer-Policy: no-referrer-when-downgrade
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
Age: 0
Date: Thu, 25 Apr 2024 08:29:33 GMT
Vary: Accept-Encoding
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
|
|
| dismantlepenantiterrorist.com/pxf.gif?uuid=670914b3-b33b-4b88-b16b-f770888b38fe&eb=770939d430504a1fc9359f602363d1b9&te=f27a9fc391291bfbea981afd04faf753&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=13.2071&b_frame=0&pk=f98c6279d54f9619690a2401e3ea449f&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8 | 0.0.0.0 | | 0 B |
URL GET dismantlepenantiterrorist.com/pxf.gif?uuid=670914b3-b33b-4b88-b16b-f770888b38fe&eb=770939d430504a1fc9359f602363d1b9&te=f27a9fc391291bfbea981afd04faf753&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=13.2071&b_frame=0&pk=f98c6279d54f9619690a2401e3ea449f&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8 IP0.0.0.0:0
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=670914b3-b33b-4b88-b16b-f770888b38fe&eb=770939d430504a1fc9359f602363d1b9&te=f27a9fc391291bfbea981afd04faf753&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=13.2071&b_frame=0&pk=f98c6279d54f9619690a2401e3ea449f&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8 HTTP/1.1
Host: dismantlepenantiterrorist.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| hdss.guru/uploads/thumb/220x330-0-80/2024-02/1709135336_hh3j3f2zxkwpqgrfdowjwfhu40n.jpg | 188.114.97.1 | 200 OK | 12 kB |
URL GET HTTP/3hdss.guru/uploads/thumb/220x330-0-80/2024-02/1709135336_hh3j3f2zxkwpqgrfdowjwfhu40n.jpg IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 220x330, components 3 Hashc4c89b8ad09d1f8d1e73cf49c1b581b8 c0524a8568b859734c1a5c2fdd8438d0a65b05c0 bfa68ab77f2ef39a0a23b9f304bc2f0b8befe32856729bff25d36dc9a99f03a5
GET /uploads/thumb/220x330-0-80/2024-02/1709135336_hh3j3f2zxkwpqgrfdowjwfhu40n.jpg HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1; ppu_main_5e8bca158be0bbfbe0b1ec8c5be5a6bb=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:31 GMT
content-type: image/jpeg
content-length: 12023
last-modified: Wed, 28 Feb 2024 15:49:21 GMT
etag: "65df5601-2ef7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lCCasRF4d0v1mNvjt7wwb8EzPO%2Fj8RoQgsUxD1tr5PS9%2BNfHzNR%2BWzq6819da4UPaBBR3cWxjLV0205wNI9a37zBoPAffa1gAO4%2Fg9Jk0FOOh2aIdmh5DHBglQ0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf73defb85687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/templates/hdss/images/cropped-favicon-1-compressor.png-180x180.png | 188.114.97.1 | 200 OK | 13 kB |
URL GET HTTP/3hdss.guru/templates/hdss/images/cropped-favicon-1-compressor.png-180x180.png IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Hashabb231c241b3ad29bf72f8822ea1b228 0ca2b7bf96fccb2cf642f025a077a7677a27f136 729517f99bd136e7e9e8d5e0db75421fd0dc6642cdbcc320c6d4bbb8299c8d0a
GET /templates/hdss/images/cropped-favicon-1-compressor.png-180x180.png HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1; ppu_main_5e8bca158be0bbfbe0b1ec8c5be5a6bb=1; sb_main_f98c6279d54f9619690a2401e3ea449f=1; sb_count_f98c6279d54f9619690a2401e3ea449f=1; cf_clearance=3GlYxzt9_Z56kFioWzlhjlXbaxIBz4WHpNglE4GhhQM-1714033771-1.0.1.1-I021Ov.cGIkZ8hfzOfe9XQpe1.B9KO1u0ThjAK09psLhj6gSvkdpJS0Gp6rPZNYe0GWI_T7ndqwqLJtmfzBPOw; pbpr0tpuw4isk85t8yg3jb2lj5vqf=childishenough.com; pp_idelay_0de5f9688ae0da03d97a06e2c0008e2a=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:32 GMT
content-type: image/png
content-length: 12837
last-modified: Wed, 03 Jan 2024 06:54:50 GMT
etag: "659504ba-3225"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JM01M0q2BpyDPx4euZg7QViB0MRSAOthaJ8PKrS0kdiKNz1PT5FDVIqfwCw0rJpe9K5IylIDNKvy%2Btpf6BLErPpp0%2F2VNvI2hmVHwlJBIdH6P37B9n1f8EtLYwc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf7466ec95687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/7825-conann-vf-hdssto.html?ad_format=video-outstream&spot=6f9236d830aa4f49bd83a150a6e34c36&event_type=error_FAILED_TO_LOAD_VIDEO | 188.114.97.1 | 200 OK | 141 kB |
URL POST HTTP/3hdss.guru/7825-conann-vf-hdssto.html?ad_format=video-outstream&spot=6f9236d830aa4f49bd83a150a6e34c36&event_type=error_FAILED_TO_LOAD_VIDEO IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
Size141 kB (140719 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /7825-conann-vf-hdssto.html?ad_format=video-outstream&spot=6f9236d830aa4f49bd83a150a6e34c36&event_type=error_FAILED_TO_LOAD_VIDEO HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 100
Origin: https://hdss.guru
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1; ppu_main_5e8bca158be0bbfbe0b1ec8c5be5a6bb=1; sb_main_f98c6279d54f9619690a2401e3ea449f=1; sb_count_f98c6279d54f9619690a2401e3ea449f=1; cf_clearance=3GlYxzt9_Z56kFioWzlhjlXbaxIBz4WHpNglE4GhhQM-1714033771-1.0.1.1-I021Ov.cGIkZ8hfzOfe9XQpe1.B9KO1u0ThjAK09psLhj6gSvkdpJS0Gp6rPZNYe0GWI_T7ndqwqLJtmfzBPOw; pbpr0tpuw4isk85t8yg3jb2lj5vqf=childishenough.com; pp_idelay_0de5f9688ae0da03d97a06e2c0008e2a=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:34 GMT
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
last-modified: Wed, 28 Feb 2024 18:48:49 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RwYxmsggL4IROBu3lqlyIZcotkOMZKa1TTf7m0XIB2HHwb0Ro5yZmlCLjiW6OT8H1NWjevhUHTv8U74sDIAsA7pzEC4wZ%2Bic4jaWaUY%2Fj2OwbX5jh822rXFZAyU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf74f3f425687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| hdss.guru/templates/hdss/js/lazyload.min.js | 188.114.97.1 | 200 OK | 2.2 kB |
URL GET HTTP/3hdss.guru/templates/hdss/js/lazyload.min.js IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeJavaScript source, ASCII text, with very long lines (2253), with no line terminators Hashd50aa7f6a64493cdbf8dfc7024b0294d a4ac80df35a6f178e28e6623dd2ecaa7d031f81a 28fd7082fa7e1cf552adc1f8451464af15e7e47a48ee5cca63e028b9b9ffb92c
GET /templates/hdss/js/lazyload.min.js HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/7825-conann-vf-hdssto.html
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:29 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 03 Jan 2024 06:54:50 GMT
vary: Accept-Encoding
etag: W/"659504ba-8a5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 940229
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=unHF%2FciJtCOD4QMt1H4N6hVaewCiR%2FZPfZR1lJ%2FdhmLP6nipXuTdlhRjqLZGmk6oEgZlTVgeIQfj4q%2B233hvqEO3Ta29GojcakDWu8B6GeuPB0Scs7oSiES1g0M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf7355fdf5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| pxl.tsyndicate.com/api/v1/p/p.gif?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XgyAGjRg4yMsq0-NiwBY2QZFqIKQMjR4sZMXCMWTnGxg2PYkQ8nCMmDRmFOrYM_DmnRQwRXR6GqTMm440wMMaUqSEjRosaMGykpIEDx4yRLMe8zGFDxgyWNciYMdNUKRk7C2t4tTHjIZw6OXXMqGrDIUQ4cBbSqNGXxk44E3XQ2AtThoyHY9oE1mHDRgwZZd2aWUj3oRg3bhbO8LpXBo6HbdxgZFgaht3Uqx3jwPqwjhw2gjs2jGGjtoyMaOjQgTNHx4sXK-fQMSjmDR4XY960eWFwjowXP8aEkRwmzRk3Scj0cPMGdJ2DXOrAgIG5TZk2K-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-p3C8kgl6ki3PyFGHIs1BWgZeDcxhtkFG1wp2TI8YZoD70B1GOQao1HHnEBmkdoOtAhRx1lnPoxcMIRZ9wLaBBq6NovJHpHRpcFnSgafLP37U6oZqT1cnSw3EIdbqRBh1HYgrTyHIUzlMNsy-awGKAnH_SF5Ba1QdEN0MIwA7E31CUCHW38xhDpNJiO-gxUqW5QzmXMAccXYSQWA-yy-2y7GIkl_fFS9yUKh8yxQrYaDH0oEBA%3D&s=9099a4b3b20fbfcc9faf43cd64bea3a3809c7833da4c3024ac6ed3dd85d7c08a1714033773 | 144.76.197.134 | 200 OK | 35 B |
URL GET HTTP/2pxl.tsyndicate.com/api/v1/p/p.gif?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XgyAGjRg4yMsq0-NiwBY2QZFqIKQMjR4sZMXCMWTnGxg2PYkQ8nCMmDRmFOrYM_DmnRQwRXR6GqTMm440wMMaUqSEjRosaMGykpIEDx4yRLMe8zGFDxgyWNciYMdNUKRk7C2t4tTHjIZw6OXXMqGrDIUQ4cBbSqNGXxk44E3XQ2AtThoyHY9oE1mHDRgwZZd2aWUj3oRg3bhbO8LpXBo6HbdxgZFgaht3Uqx3jwPqwjhw2gjs2jGGjtoyMaOjQgTNHx4sXK-fQMSjmDR4XY960eWFwjowXP8aEkRwmzRk3Scj0cPMGdJ2DXOrAgIG5TZk2K-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-p3C8kgl6ki3PyFGHIs1BWgZeDcxhtkFG1wp2TI8YZoD70B1GOQao1HHnEBmkdoOtAhRx1lnPoxcMIRZ9wLaBBq6NovJHpHRpcFnSgafLP37U6oZqT1cnSw3EIdbqRBh1HYgrTyHIUzlMNsy-awGKAnH_SF5Ba1QdEN0MIwA7E31CUCHW38xhDpNJiO-gxUqW5QzmXMAccXYSQWA-yy-2y7GIkl_fFS9yUKh8yxQrYaDH0oEBA%3D&s=9099a4b3b20fbfcc9faf43cd64bea3a3809c7833da4c3024ac6ed3dd85d7c08a1714033773 IP144.76.197.134:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjecttsyndicate.com FingerprintF5:9F:1F:89:8F:08:CD:46:43:4B:55:0A:42:66:52:21:16:57:43:31 ValidityFri, 12 Apr 2024 09:06:37 GMT - Thu, 11 Jul 2024 09:06:36 GMT
File typeGIF image data, version 89a, 1 x 1 Hashc2196de8ba412c60c22ab491af7b1409 5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /api/v1/p/p.gif?p=APeIQFMmDJkycuaI0BGjBgsRYcbQWRjjIZ0zC0XgyAGjRg4yMsq0-NiwBY2QZFqIKQMjR4sZMXCMWTnGxg2PYkQ8nCMmDRmFOrYM_DmnRQwRXR6GqTMm440wMMaUqSEjRosaMGykpIEDx4yRLMe8zGFDxgyWNciYMdNUKRk7C2t4tTHjIZw6OXXMqGrDIUQ4cBbSqNGXxk44E3XQ2AtThoyHY9oE1mHDRgwZZd2aWUj3oRg3bhbO8LpXBo6HbdxgZFgaht3Uqx3jwPqwjhw2gjs2jGGjtoyMaOjQgTNHx4sXK-fQMSjmDR4XY960eWFwjowXP8aEkRwmzRk3Scj0cPMGdJ2DXOrAgIG5TZk2K-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-p3C8kgl6ki3PyFGHIs1BWgZeDcxhtkFG1wp2TI8YZoD70B1GOQao1HHnEBmkdoOtAhRx1lnPoxcMIRZ9wLaBBq6NovJHpHRpcFnSgafLP37U6oZqT1cnSw3EIdbqRBh1HYgrTyHIUzlMNsy-awGKAnH_SF5Ba1QdEN0MIwA7E31CUCHW38xhDpNJiO-gxUqW5QzmXMAccXYSQWA-yy-2y7GIkl_fFS9yUKh8yxQrYaDH0oEBA%3D&s=9099a4b3b20fbfcc9faf43cd64bea3a3809c7833da4c3024ac6ed3dd85d7c08a1714033773 HTTP/1.1
Host: pxl.tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:29:33 GMT
content-type: text/plain; charset=utf-8
content-length: 35
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/script.js | 188.114.97.1 | 200 OK | 962 B |
URL GET HTTP/2cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/script.js IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (1015), with no line terminators Hash88523e22d10f0cbad31aa1d8276764fa 9238cd9499e01abdbeb33e68c550d26cfb6eaba5 d553390acb639c765cb6aaa4fbb72529e4005227d190f53108aec87ccec411c2
GET /sb/ssp/vpn/classic-push/small/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hdss.guru
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:29:32 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-3c2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WgxbDAqqWUBkt6DdlvNVcKOgJoyKiU0k2dn9Mg5zWDXWV49leN5%2BI2x9DeCQM3FPFfyvuvKU7%2BVSPxuVz8U%2FKtprUsZBj3qfn30VqHKcR16amCd%2FXbLpF1lhGyvnKirnQ6USWevxHcSJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf743bb3b56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| hdss.guru/templates/hdss/images/rating.svg | 188.114.97.1 | 200 OK | 1.7 kB |
URL GET HTTP/3hdss.guru/templates/hdss/images/rating.svg IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeSVG Scalable Vector Graphics image Hashef4f988b00da86cadc60c7fca6bf63b5 4b153242f1ccc280b21a71000038198f59b766d5 78bb204abb1e7bf6b60c89e10a03c443a9c21e31cc2d350890a838670c768b27
GET /templates/hdss/images/rating.svg HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/templates/hdss/css/engine.css
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:30 GMT
content-type: image/svg+xml
last-modified: Wed, 03 Jan 2024 06:54:50 GMT
vary: Accept-Encoding
etag: W/"659504ba-6cf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 120475
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Szd6XQr45LrdhstAIsKoyX7PKu4QcJDLg1pWpAWSb2lKmUOM0gw5k5r4cqcv%2BGWD%2BhUl0Ut9e4fvnqfvl5JGARTza2HbgMcbp8lKRA3HLRBXyuKmT41C9I2b2DE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf73b5d3f5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.barscreative1.com/sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html | 45.133.44.4 | 200 OK | 1.3 kB |
URL GET HTTP/2cdn.barscreative1.com/sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html IP45.133.44.4:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjectcdn.barscreative1.com FingerprintF6:54:F4:B9:EB:AD:1E:FA:8F:76:B9:75:20:9B:41:57:32:37:94:E3 ValiditySun, 10 Mar 2024 03:01:32 GMT - Sat, 08 Jun 2024 03:01:31 GMT
File typeHTML document, ASCII text, with very long lines (1405), with no line terminators Hash5373f3c4843345dde67db670323b2d54 666b2db9872196e52a2bc902111de5e37aa1ae28 e398fbdac28494dec6505fb0143d4cd41cee83989517e12c13ea113fef006fda
GET /sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hdss.guru
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:29:31 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Mon, 27 Sep 2021 07:43:24 GMT
etag: W/"6151761c-52d"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Thu, 25 Apr 2024 09:29:31 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
|
|
| hdss.guru/7825-conann-vf-hdssto.html | 188.114.97.1 | 200 OK | 142 kB |
URL User Request GET HTTP/2hdss.guru/7825-conann-vf-hdssto.html IP188.114.97.1:443
CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
Size142 kB (141837 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /7825-conann-vf-hdssto.html HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:29:29 GMT
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; path=/; secure; HttpOnly
last-modified: Wed, 28 Feb 2024 18:48:49 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nBqIr%2BimW7FjCtT%2BVVraFL3q%2BvSRWOJQzQ5TFWlzGd%2BbWj099s7Xjz1XP1KaF%2F1%2FAv86BQBJAoqzvWxilhcCMO0R6gs3z5Fj1zGWj7KSkBhN9vSjoTASxGGwspw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf732dade5688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| hdss.guru/templates/hdss/fonts/fontawesome-webfont.woff2?v=4.6.3 | 188.114.97.1 | 200 OK | 72 kB |
URL GET HTTP/3hdss.guru/templates/hdss/fonts/fontawesome-webfont.woff2?v=4.6.3 IP188.114.97.1:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerGoogle Trust Services LLC Subjecthdss.guru Fingerprint09:23:BD:76:98:EF:00:CE:84:B0:D8:36:E2:5C:A1:30:F2:77:B7:CD ValidityFri, 05 Apr 2024 08:12:49 GMT - Thu, 04 Jul 2024 08:12:48 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 71896, version 4.393 Hashe6cf7c6ec7c2d6f670ae9d762604cb0b 97e438cc545714309882fbceadbf344fcaddcec5 7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
GET /templates/hdss/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: hdss.guru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/templates/hdss/css/style.css?v=24
Cookie: PHPSESSID=866pr1ft0h8idlsfbt91h3p9vv; dom3ic8zudi28v8lr6fgphwffqoz0j6c=670914b3-b33b-4b88-b16b-f770888b38fe%3A3%3A1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:29:30 GMT
content-type: font/woff2
content-length: 71896
last-modified: Wed, 03 Jan 2024 06:54:49 GMT
etag: "659504b9-118d8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F0k6vBFDviDTptrF6CSF5jkEge28acBuwOLVQndT%2F9axWH%2Fsj8eTisFCpTtBjfWAru%2Bx%2Fh3jUnGm1j8sXY9wuq33kERf1gmbdt8cOifMv9IrKF5Sqxjl%2Flt0%2BnQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf73b0cf25687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| proftrafficcounter.com/stats | 18.185.247.192 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.185.247.192:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash8da4ff549768e7429287482318a3ef55 a5dee0718172430e129eb8764f51d66a7860f418 2bf6311e1706328915ab71c545aab60c1da52110b2ed7d44d7655e2a40ed5a24
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hdss.guru
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:29:30 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://hdss.guru
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=670914b3-b33b-4b88-b16b-f770888b38fe:3:1; expires=Sun, 23 Apr 2034 08:29:30 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| trebleuniversity.com/pixel/purst?dl=0&th=0&sc=0&rs=2006&rd=2006&fd=727&bv=24.4.4887&tmpl=136 | 172.240.108.68 | 200 OK | 0 B |
URL GET HTTP/1.1trebleuniversity.com/pixel/purst?dl=0&th=0&sc=0&rs=2006&rd=2006&fd=727&bv=24.4.4887&tmpl=136 IP172.240.108.68:443
Requested byhttps://hdss.guru/7825-conann-vf-hdssto.html CertificateIssuerLet's Encrypt Subjecttrebleuniversity.com FingerprintBB:85:33:0C:29:8B:B9:F9:12:37:D8:BE:36:46:F1:D3:EC:A5:DB:42 ValidityTue, 23 Apr 2024 10:53:58 GMT - Mon, 22 Jul 2024 10:53:57 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/purst?dl=0&th=0&sc=0&rs=2006&rd=2006&fd=727&bv=24.4.4887&tmpl=136 HTTP/1.1
Host: trebleuniversity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdss.guru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:29:31 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|