Report - www.am-da.xyz/watch_direct.php?id=5394c112ae

Report Overview

Visited public
2024-07-13 18:50:09
Tags
Submit Tags
URL
www.am-da.xyz/watch_direct.php?id=5394c112ae
Finishing URL
www.amdahost.com/watch_direct.php?id=5394c112ae
IP / ASN
172.67.160.108
#13335 CLOUDFLARENET
Title
young strip

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-07-13 18:12:55	2.0 kB	5.3 kB	23.33.119.27
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2024-07-13 18:18:18	522 B	15 kB	142.250.74.131
unpkg.com	11693	2016-01-06	2016-01-08 00:26:01	2024-07-13 19:09:24	874 B	161 kB	104.17.248.203
www.amdahost.com	unknown	2024-03-17	2024-03-21 09:33:48	2024-04-18 10:50:03	7.8 kB	470 kB	104.21.40.89
vjs.zencdn.net	4968	2011-12-27	2012-05-21 10:26:59	2024-07-13 18:14:10	830 B	201 kB	151.101.194.217
cdn.tailwindcss.com	422202	2017-07-20	2018-07-09 07:46:13	2024-07-13 15:05:30	394 B	858 B	104.22.21.144
ofleafeona.com	unknown	2023-06-15	2023-06-16 00:19:31	2024-06-29 07:07:55	319 B	35 kB	139.45.197.244
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2024-07-13 19:02:45	430 B	31 kB	142.250.74.138
a.magsrv.com	unknown	2023-08-01	2023-08-04 18:18:00	2024-07-13 17:24:11	401 B	54 kB	185.76.9.19
r11.o.lencr.org	unknown	2020-06-29	2024-06-07 07:43:57	2024-07-13 18:12:20	327 B	887 B	23.33.119.27
bid.onclcktg.com	unknown	2023-11-28	2024-02-11 05:01:24	2024-07-12 10:31:21	470 B	1.6 kB	45.133.44.24
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2024-07-13 18:18:18	422 B	105 kB	142.250.74.72
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2024-07-13 18:12:28	444 B	18 kB	151.101.1.229
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24 16:34:56	2024-07-13 18:13:38	494 B	18 kB	104.16.80.73
js.onclckmn.com	unknown	2023-12-13	2023-12-28 02:05:45	2024-07-12 10:31:20	408 B	11 kB	45.133.44.52
s.magsrv.com	unknown	2023-08-01	2023-08-04 14:48:00	2024-07-13 17:24:03	474 B	3.6 kB	95.211.229.246
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2024-07-13 18:38:02	445 B	1.4 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-07-13	medium	ofleafeona.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (26)

	URL	From	Size	First Seen	Last Seen
	vjs.zencdn.net/8.10.0/video.min.js	ScriptElement	634 kB	2024-03-28	2025-07-17
Pretty URL vjs.zencdn.net/8.10.0/video.min.js IP 151.101.194.217 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 05:58 Last Seen2025-07-17 06:41 Times Seen455 Hash 1b57eb5452ebb18f777d224eb9b0fc06 57ab88b660bffe5f0edb59c871ad564fc5b447ba 0957d68a4f0298bad4d37b150b48cbb022f62ac9b660df7056dd6194f69e4dc0 Loading...

	js.onclckmn.com/static/onclicka.m.js	ScriptElement	116 kB	2024-06-30	2024-08-19
Pretty URL js.onclckmn.com/static/onclicka.m.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-30 16:30 Last Seen2024-08-19 18:43 Times Seen10 Hash 88380d15fa2fe7e3ea7eeea338008789 772b44966cafa9c51ebe81c3afdc06e9f8432214 6185c55a903639b50994cc89c4a2edae941d23dc6fdc25de6506b1933c3184d9 Loading...

	unknown	ScriptElement	236 B	2024-08-19	2024-08-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 17:01 Last Seen2024-08-19 17:01 Times Seen1 Hash 573b12d1e4999fb8c36ca27b0eb2d3aa c1113f64b2323e0205bc01276c04f04addb4876a 3deb7d57c8a23425f9a6dff03153fa1b26c950fb1528ae5a9fbc6ae7b44baed6 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.7.1/jquery.min.js	ScriptElement	88 kB	2023-08-31	2025-07-17
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.7.1/jquery.min.js IP 142.250.74.138 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-31 16:03 Last Seen2025-07-17 07:08 Times Seen47917 Hash 2c872dbe60f4ba70fb85356113d8b35e ee48592d1fff952fcf06ce0b666ed4785493afdc fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a Loading...

	www.amdahost.com/watch_direct.php?id=5394c112ae	ScriptElement	153 B	2024-05-23	2025-01-26
Pretty URL www.amdahost.com/watch_direct.php?id=5394c112ae IP 104.21.40.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-23 22:19 Last Seen2025-01-26 00:59 Times Seen54 Hash fa0f540fa58a7af06845bedcb1c2a5df 149c728d7c00e4d9228c92435440c02a041f6aa8 2cff3946e52d7472f45a1a41cda811f50be3e2fa4a9113a692569c1ebdb46723 Loading...

	www.amdahost.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	ScriptElement	1.2 kB	2023-03-07	2025-07-17
Pretty URL www.amdahost.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 104.21.40.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-17 07:13 Times Seen90716 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	a.magsrv.com/ad-provider.js	ScriptElement	166 kB	2024-06-28	2024-08-21
Pretty URL a.magsrv.com/ad-provider.js IP 185.76.9.19 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-28 09:25 Last Seen2024-08-21 17:30 Times Seen612 Hash 710721b64ea5e3867ccff5f3de8ef294 18483d80947e14cf49f8c9ebbe3391e1f48fd0bc bc0563abe13d7d9aa2d4b78a528f19ab616341e43dbf486aabca10559ae58e64 Loading...

	www.googletagmanager.com/gtag/js?id=G-473NMXMZ7V	ScriptElement	314 kB	2024-08-19	2024-08-19
Pretty URL www.googletagmanager.com/gtag/js?id=G-473NMXMZ7V IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 17:01 Last Seen2024-08-19 17:01 Times Seen2 Hash 9893ee7c7550b8c02267e63eb98d1b9f fd6f475ea423e42d54dd1d74a4c8ec3a62617f5c 436217b3d26241c3eed8fa8202ce2c1dd4f381578f2f07443579359fe9310110 Loading...

	cdn.tailwindcss.com/	ScriptElement	366 kB	2024-06-06	2024-12-07
Pretty URL cdn.tailwindcss.com/ IP 104.22.21.144 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-06 14:44 Last Seen2024-12-07 15:18 Times Seen147 Hash 6e7481c9ff89cf51b6248fb3db30f220 f85627a945a3ce53a298ec8a6d6eb3340f1214ba 75d96c0d79b25aa220aa2af3a4c65a7833b0c3258512b7f69f2492a0dce50522 Loading...

	www.amdahost.com/watch_direct.php?id=5394c112ae	ScriptElement	55 B	2024-07-13	2024-08-19
Pretty URL www.amdahost.com/watch_direct.php?id=5394c112ae IP 104.21.40.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-07-13 20:50 Last Seen2024-08-19 17:01 Times Seen5 Hash 9a7731f353c294fe540d31ef8f1a31ec 677f16d70e466a2451f835f55f9f79d1496d7eb6 3a237cfd006546153632704d250b168e392b1ac6f18fee5cc982a7f5b81d1463 Loading...

	www.amdahost.com/watch_direct.php?id=5394c112ae	ScriptElement	59 B	2023-03-07	2025-07-17
Pretty URL www.amdahost.com/watch_direct.php?id=5394c112ae IP 104.21.40.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-07-17 06:31 Times Seen5304 Hash de7507ad26c6c904109c87dd5dfac288 952cae1ce6ce1e74b010b31b4357424c12a5960c 09f81a5c463b570b389ce0b118a29bf489353d0ae7d47eefee9b9e7b703e0e02 Loading...

	www.amdahost.com/watch_direct.php?id=5394c112ae	ScriptElement	184 B	2024-07-13	2024-10-04
Pretty URL www.amdahost.com/watch_direct.php?id=5394c112ae IP 104.21.40.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-07-13 20:50 Last Seen2024-10-04 11:20 Times Seen6 Hash a6467ab15616a01a925d7a71198d31bb 9781088e31b523663e99a155aa665006f92e590f d95c2a0873b3e4a8029e114f6077eb55a4f376ef595c00a58c72cf03b42d8389 Loading...

	www.amdahost.com/watch_direct.php?id=5394c112ae	ScriptElement	438 B	2024-08-19	2024-08-19
Pretty URL www.amdahost.com/watch_direct.php?id=5394c112ae IP 104.21.40.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 17:01 Last Seen2024-08-19 17:01 Times Seen2 Hash b3929692e9da9a59af894b21b2639322 08cc3ba0c833b08c0e92b3361dd9a43a30e90e86 5ec800f1ff2cc422851328253fdf6d62acf8b93d484d50f51c9f0c5c5de7b0d6 Loading...

	www.amdahost.com/watch_direct.php?id=5394c112ae	ScriptElement	66 kB	2024-08-19	2024-08-19
Pretty URL www.amdahost.com/watch_direct.php?id=5394c112ae IP 104.21.40.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 17:01 Last Seen2024-08-19 17:01 Times Seen2 Hash 984f1411e6d3359e32958b1ca82ab597 0965d9bc031ea2324b7d789c4875282c19b2090a bef9a837e61f72f0f84e53fab8857ff09945ba65b49111d00b76f704f1d1c8c6 Loading...

	js.onclckmn.com/static/onclicka.js	ScriptElement	1.7 kB	2024-04-18	2025-07-16
Pretty URL js.onclckmn.com/static/onclicka.js IP 45.133.44.52 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 08:38 Last Seen2025-07-16 01:00 Times Seen526 Hash 8b7247e161d471ff6bebe6c31ff2f55f fb0b0b34f6b31d2b50dade01175ffffae9608db3 cda46ed2c3a79a0ddf3c79277ad51b6545660648d6c10b8ef7516ec87c50ab44 Loading...

	ofleafeona.com/400/7718993	ScriptElement	89 kB	2024-08-19	2024-08-19
Pretty URL ofleafeona.com/400/7718993 IP 139.45.197.244 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 17:01 Last Seen2024-08-19 17:01 Times Seen1 Hash a024e4874f7026bada2383b17e727b22 000bcdf053d7bd982761d54b5df47c17d50bd4ec 463bd4fc4e675c8c23aea2280e096201742b9907e77d014ebf8a9f1c049b310a Loading...

	www.amdahost.com/watch_direct.php?id=5394c112ae	ScriptElement	6.4 kB	2024-06-23	2024-08-19
Pretty URL www.amdahost.com/watch_direct.php?id=5394c112ae IP 104.21.40.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-06-23 17:09 Last Seen2024-08-19 19:06 Times Seen4 Hash 340191ee5ef17e4e6bd052aab37761c6 f5515c19509ac8cc11ad50c0ae680d847b2de491 dc0f276f1bbc0b5ff7cc4ba5a271de3a12b83e4606c1786054ac18d9b9762bb1 Loading...

	www.amdahost.com/watch_direct.php?id=5394c112ae	ScriptElement	66 kB	2024-08-19	2024-08-19
Pretty URL www.amdahost.com/watch_direct.php?id=5394c112ae IP 104.21.40.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 17:01 Last Seen2024-08-19 17:01 Times Seen2 Hash 10415fa8fbd88da3c435cd1c8558dce8 b20e35c695e7772d982014f3b0f55f5ef6d01f4e 0c578a7772bee18cd906928c963caf717ca197fc251b66f0441445d2b00ba90c Loading...

	www.amdahost.com/js/main_script.js	ScriptElement	1.9 kB	2024-06-23	2024-10-04
Pretty URL www.amdahost.com/js/main_script.js IP 104.21.40.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-23 17:09 Last Seen2024-10-04 11:20 Times Seen8 Hash f3c2ae26eed58eac198c2746759b0e5e 2cb947005ad72c3edb2dd39936e0645a2f355638 5f7e832d7492bca7ebf70e39a88509fea642afda662c1f848510734655084e72 Loading...

	www.amdahost.com/js/video_player.js	ScriptElement	879 B	2024-07-13	2024-11-03
Pretty URL www.amdahost.com/js/video_player.js IP 104.21.40.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-13 20:50 Last Seen2024-11-03 10:57 Times Seen7 Hash 0bd3b974a6c861312d4ea8a0d53f2137 aa2f19749a9482336ed6f90467bf17b360d141fe 8f406724869773af8c29f0c8b5ceb1809315f829e43998c0f8f168087ab67fdc Loading...

	static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	ScriptElement	20 kB	2024-06-07	2025-07-17
Pretty URL static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 IP 104.16.80.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-07 09:21 Last Seen2025-07-17 07:13 Times Seen91512 Hash ec18af6d41f6f278b6aed3bdabffa7bc 62c9e2cab76b888829f3c5335e91c320b22329ae 8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f Loading...

	www.amdahost.com/watch_direct.php?id=5394c112ae	ScriptElement	234 B	2024-08-19	2024-08-19
Pretty URL www.amdahost.com/watch_direct.php?id=5394c112ae IP 104.21.40.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 17:01 Last Seen2024-08-19 17:01 Times Seen2 Hash 8c63bf9c1f165e373ad55b076b4e4e18 0c6f38bd2fcd9fdf2b629098b6a407881b50fd48 a63fb20df12a6a01998bfb279ab536b9984ace0330d2bccb24bd80cf12363b12 Loading...

	www.amdahost.com/watch_direct.php?id=5394c112ae	ScriptElement	1.1 kB	2024-08-19	2024-08-19
Pretty URL www.amdahost.com/watch_direct.php?id=5394c112ae IP 104.21.40.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 17:01 Last Seen2024-08-19 17:01 Times Seen2 Hash 0ee1b4462dc35fca23fb502bed401aa3 782bc03416120ca041b2a4bae44790ad6d1cfde8 a91c4f78d5d46858c3d5267330a39dc83f14e32256510938051faf1208f9ee5d Loading...

	www.amdahost.com/watch_direct.php?id=5394c112ae	ScriptElement	104 B	2023-11-22	2024-08-20
Pretty URL www.amdahost.com/watch_direct.php?id=5394c112ae IP 104.21.40.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 05:00 Last Seen2024-08-20 18:22 Times Seen5 Hash 6c94f623c15bf6fe5bbdb14890133060 0004d6b04ef6b952172d19380b5be7e017f71504 f735102c956ed0af37058ea2edaf6f5baac259f29029b1ea66bf0d5cedfb97e4 Loading...

	www.amdahost.com/watch_direct.php?id=5394c112ae	ScriptElement	921 B	2024-08-19	2024-08-19
Pretty URL www.amdahost.com/watch_direct.php?id=5394c112ae IP 104.21.40.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 17:01 Last Seen2024-08-19 17:01 Times Seen1 Hash 862696775cc0ae9ebdeb437fabd38dc0 be24819282d53630ca7198711fe22769a9a78d60 dc05debd6fcbb91cdc609e495b272fd4ec2ed5bb58665d83c8f53504c890e23b Loading...

		Size	First Seen	Last Seen
	#1 Eval - 73497a37c3561adbd8ce84e4f017b368	9 B	2023-03-07 01:03	2025-07-17 04:51
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-07-17 04:51 Times Seen3580 Hash 73497a37c3561adbd8ce84e4f017b368 9193ae73cb3dd2833be8c942714d5544bfb628c9 9312a1adbbf0a4c05fc296d158ec3bd39acfe50e9e98ff02688139aad6fc3351 Loading...

HTTP Transactions (40)

URL IP Response Size

r10.o.lencr.org/

23.33.119.27

504 B

URL
r10.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
4a4d81b1c193182fe2b1122877e94203
fd1f4427cb5867a8f63ae15825279827bbf768e6
4cd1772d378248e886ee96f55d956ff0856ba3f2eae9f15a10136e68f450ca70

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "4CD1772D378248E886EE96F55D956FF0856BA3F2EAE9F15A10136E68F450CA70"
Last-Modified: Fri, 12 Jul 2024 11:47:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15641
Expires: Sat, 13 Jul 2024 23:10:22 GMT
Date: Sat, 13 Jul 2024 18:49:41 GMT
Connection: keep-alive

GET www.amdahost.com/watch_direct.php?id=5394c112ae

104.21.40.89

200 OK

48 kB

URL User Request GET HTTP/1.1
www.amdahost.com/watch_direct.php?id=5394c112ae
IP
104.21.40.89:80
ASN
#13335 CLOUDFLARENET

File type
HTML document, Unicode text, UTF-8 text, with very long lines (53802), with CRLF, LF line terminators
Size
48 kB (48521 bytes)
Hash
66472507e4577b4d7c374d004d17376f
2a201ae4efb20f35a5eddda76c454b19cd4acf59
51acba764964f0fb844b14aeaf995e1226305ff281911f1f11dde169bdb17c06

HTTP Headers

GET /watch_direct.php?id=5394c112ae HTTP/1.1
Host: www.amdahost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 13 Jul 2024 18:49:42 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=7b0542deee83bdd55194098473c2392b; path=/; domain=.amdahost.com
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lRcJsKRbhphYcqbE6KuXjaScd%2FEoklImvL8V3k3t6Cg8WYpamLX%2FaTgmeWO1bvk2pfLfN0ehC78zdO8dEXg8FFxeJEKZvZAT7n9bJ%2BMphHgGb7BlZPtHVWS9NRAE%2B1NmM5kQ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8a2b74590ba70b55-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

www.amdahost.com/css/main_style.css

104.21.40.89

1.2 kB

URL
www.amdahost.com/css/main_style.css
IP
104.21.40.89:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (4877), with no line terminators
Size
1.2 kB (1186 bytes)
Hash
294dbd8f2431d605a1212800658a6a73
cdc7e6c76fecb284b722ce4a6e0f5712956588ee
460ebdcb6690041147e81199705d97b98c120b7b8c14db1041b73e5fbd8e6ebe

HTTP Headers

GET /css/main_style.css HTTP/1.1
Host: www.amdahost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/watch_direct.php?id=5394c112ae
Cookie: PHPSESSID=7b0542deee83bdd55194098473c2392b
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 13 Jul 2024 18:49:43 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=8546
Last-Modified: Thu, 20 Jun 2024 08:35:57 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 3330
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MlEf2WLFRoxPMmDPo64ogdymxK4dAkOQgWIErGe3M0m%2FpUiCG5Gz1R9ISwKOEbmObFuBGVR0sQZQv2sHhpHwUGWWyQRgJfT2wuZUbHnUeSTL8u9HXT%2Bw1287kywuuZNy274S"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8a2b745c2e6d712a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

GET www.amdahost.com/css/video.css

104.21.40.89

200 OK

200 B

URL GET HTTP/1.1
www.amdahost.com/css/video.css
IP
104.21.40.89:80
ASN
#13335 CLOUDFLARENET

Requested by
http://www.amdahost.com/watch_direct.php?id=5394c112ae

File type
ASCII text, with very long lines (697), with no line terminators
Size
200 B (200 bytes)
Hash
ddbcf3d69f9455f5a833a3593fefcd50
47c5cb9982e71cd9388f08d76624692e79fafa88
38469db308059697a6a2e242a0e1fb292fa6ecb298ffbc136f258d8b2e1e102c

HTTP Headers

GET /css/video.css HTTP/1.1
Host: www.amdahost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/watch_direct.php?id=5394c112ae
Cookie: PHPSESSID=7b0542deee83bdd55194098473c2392b
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 13 Jul 2024 18:49:43 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=939
Last-Modified: Thu, 20 Jun 2024 08:28:53 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 3330
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Be6f4pwdzhfjvjGZzgQD23giXHvq32LV5ti6s3%2Bd2t6F8cRP4or9s7Ekg9%2FWa4pRCusMnxhkE8YpKVJM9TP8iQy9OnAO%2F4o7CJRcI%2F0LvOxgm%2BrYOQ%2FXbiQV3p6MrvFEaTUN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8a2b745c2de9b51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

www.amdahost.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

104.21.40.89

655 B

URL
www.amdahost.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
104.21.40.89:0
ASN
#13335 CLOUDFLARENET

File type
JavaScript source, ASCII text, with very long lines (1238)
Size
655 B (655 bytes)
Hash
9e8f56e8e1806253ba01a95cfc3d392c
a8af90d7482e1e99d03de6bf88fed2315c5dd728
2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: www.amdahost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/watch_direct.php?id=5394c112ae
Cookie: PHPSESSID=7b0542deee83bdd55194098473c2392b
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 13 Jul 2024 18:49:43 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 11 Jul 2024 08:14:23 GMT
ETag: W/"668f945f-4d7"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JwX98FawGKP0OjmNtS8Xt0vBDp3mK7SkY0qfj7Ah2gPaVq1SV1bIQFPJVMb63Nhp3x73rS1YcXlGZ8aHKAthqLeMkCOl%2B89rQyAQKhRJL9Z2irbBWzjVdjO6E0OWums36gc5"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8a2b745cbeed712a-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Mon, 15 Jul 2024 18:49:43 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip

www.amdahost.com/js/video_player.js

104.21.40.89

460 B

URL
www.amdahost.com/js/video_player.js
IP
104.21.40.89:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (727)
Size
460 B (460 bytes)
Hash
0bd3b974a6c861312d4ea8a0d53f2137
aa2f19749a9482336ed6f90467bf17b360d141fe
8f406724869773af8c29f0c8b5ceb1809315f829e43998c0f8f168087ab67fdc

HTTP Headers

GET /js/video_player.js HTTP/1.1
Host: www.amdahost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/watch_direct.php?id=5394c112ae
Cookie: PHPSESSID=7b0542deee83bdd55194098473c2392b
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 13 Jul 2024 18:49:43 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=1209
Last-Modified: Tue, 25 Jun 2024 08:05:43 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 5896
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EWSzvTWZUk5OCbeAkWYf%2BSzcBhfHuWFopUyk7Gdq%2Bjq2k3mOZVoR5PfWKVUkri1xComhNhd7CmsS5QwEt0diFFkatthqrgbbgiqt2sQmV4ZvxD%2Bv8fFxMpOl1mkfZ9CJo6UB"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8a2b745cbdf30b55-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

www.amdahost.com/js/main_script.js

104.21.40.89

753 B

URL
www.amdahost.com/js/main_script.js
IP
104.21.40.89:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1447)
Size
753 B (753 bytes)
Hash
f3c2ae26eed58eac198c2746759b0e5e
2cb947005ad72c3edb2dd39936e0645a2f355638
5f7e832d7492bca7ebf70e39a88509fea642afda662c1f848510734655084e72

HTTP Headers

GET /js/main_script.js HTTP/1.1
Host: www.amdahost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/watch_direct.php?id=5394c112ae
Cookie: PHPSESSID=7b0542deee83bdd55194098473c2392b
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 13 Jul 2024 18:49:43 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=2771
Last-Modified: Sat, 22 Jun 2024 08:11:28 GMT
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 3327
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kTwyXr6iA9TboH5QuxkP4rzIvkxZnS%2FeQnKKR%2BR9hnlYj1zXwjq1voCgB7%2BoRdI8ywe5u3YcmcofOaDHQyv%2FOuNXlBtCMhXyUpHiZFChXNwMEO7x%2B%2FMy%2FMnRQuyLFIX%2Bvanw"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8a2b745cbe8db51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ajax.googleapis.com/ajax/libs/jquery/3.7.1/jquery.min.js

142.250.74.138

30 kB

URL
ajax.googleapis.com/ajax/libs/jquery/3.7.1/jquery.min.js
IP
142.250.74.138:0
ASN
#15169 GOOGLE

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
30 kB (30462 bytes)
Hash
2c872dbe60f4ba70fb85356113d8b35e
ee48592d1fff952fcf06ce0b666ed4785493afdc
fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a

HTTP Headers

GET /ajax/libs/jquery/3.7.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30462
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 10 Jul 2024 19:22:45 GMT
expires: Thu, 10 Jul 2025 19:22:45 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 257218
last-modified: Tue, 12 Sep 2023 02:38:22 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

vjs.zencdn.net/8.10.0/video-js.css

151.101.194.217

13 kB

URL
vjs.zencdn.net/8.10.0/video-js.css
IP
151.101.194.217:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (7288)
Size
13 kB (12695 bytes)
Hash
27818e70d5704691d9264fe0083c5b08
b4dffd90528e8f63d54ad3a859b749344e6e00ad
92e11fbc7753b5be23fd489ba4e09c0d62d0b8c64e466845b4534934c46c85d6

HTTP Headers

GET /8.10.0/video-js.css HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 17 Jan 2024 12:53:07 GMT
etag: "27818e70d5704691d9264fe0083c5b08"
x-amz-server-side-encryption: AES256
content-type: text/css
content-encoding: gzip
date: Sat, 13 Jul 2024 18:49:43 GMT
x-served-by: cache-hel1410023-HEL
x-cache: HIT
x-cache-hits: 9
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 12695
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-473NMXMZ7V

142.250.74.72

104 kB

URL
www.googletagmanager.com/gtag/js?id=G-473NMXMZ7V
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
104 kB (103994 bytes)
Hash
9893ee7c7550b8c02267e63eb98d1b9f
fd6f475ea423e42d54dd1d74a4c8ec3a62617f5c
436217b3d26241c3eed8fa8202ce2c1dd4f381578f2f07443579359fe9310110

HTTP Headers

GET /gtag/js?id=G-473NMXMZ7V HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 13 Jul 2024 18:49:43 GMT
expires: Sat, 13 Jul 2024 18:49:43 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 103994
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET cdn.jsdelivr.net/npm/remixicon@4.0.0/fonts/remixicon.css

151.101.1.229

200 OK

17 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/remixicon@4.0.0/fonts/remixicon.css
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
http://www.amdahost.com/watch_direct.php?id=5394c112ae
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text
Size
17 kB (16743 bytes)
Hash
373c68d52e3daa5cd7e1ae058fb6bd70
30a01afb8338555278162655e4a8e7ac57774f35
f53b0f6c14c09b5c263713876dfe7185531a3a424a91d192dfee3c5fa03493dd

HTTP Headers

GET /npm/remixicon@4.0.0/fonts/remixicon.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.0.0
x-jsd-version-type: version
etag: W/"200b1-MKAa+4M4VVJ4FiZV5KjnrFd3TzU"
content-encoding: br
accept-ranges: bytes
date: Sat, 13 Jul 2024 18:49:43 GMT
age: 3343551
x-served-by: cache-fra-etou8220109-FRA, cache-hel1410029-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 16743
X-Firefox-Spdy: h2

vjs.zencdn.net/8.10.0/video.min.js

151.101.194.217

188 kB

URL
vjs.zencdn.net/8.10.0/video.min.js
IP
151.101.194.217:0
ASN
#54113 FASTLY

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65141)
Size
188 kB (187525 bytes)
Hash
1b57eb5452ebb18f777d224eb9b0fc06
57ab88b660bffe5f0edb59c871ad564fc5b447ba
0957d68a4f0298bad4d37b150b48cbb022f62ac9b660df7056dd6194f69e4dc0

HTTP Headers

GET /8.10.0/video.min.js HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 17 Jan 2024 12:53:07 GMT
etag: "1b57eb5452ebb18f777d224eb9b0fc06"
x-amz-server-side-encryption: AES256
content-type: text/javascript
content-encoding: gzip
date: Sat, 13 Jul 2024 18:49:43 GMT
x-served-by: cache-hel1410023-HEL
x-cache: HIT
x-cache-hits: 1
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 187525
X-Firefox-Spdy: h2

www.amdahost.com/assetes/telegram.png

104.21.40.89

21 kB

URL
www.amdahost.com/assetes/telegram.png
IP
104.21.40.89:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
21 kB (21052 bytes)
Hash
b37d6df3b36a74748a9bda890b3ba550
5cc676971d10b1bed5abdf9350f3e12bbcbb6f09
679f1d83a75a7d104c262b8a440b5788ea5826a7065e105266a71d0492b497ca

HTTP Headers

GET /assetes/telegram.png HTTP/1.1
Host: www.amdahost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/watch_direct.php?id=5394c112ae
Cookie: PHPSESSID=7b0542deee83bdd55194098473c2392b
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 13 Jul 2024 18:49:43 GMT
Content-Type: image/png
Content-Length: 21052
Connection: keep-alive
Last-Modified: Thu, 13 Jun 2024 07:40:43 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 3327
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NkQRp2WrNKhQ7f4JFlgjdF%2BkgreGda33rmvuq5A7Bh1Rl9Mw8izdHHJLcCTcYbvzMUDAkMDHB0SxMiHhW5OyuhBiZpT0CKftm1Jcyzi4j%2Bp3%2B%2F9Yr1VZGbHjGvUU8qtNFv4a"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8a2b745e2eac0b55-OSL
alt-svc: h2=":443"; ma=60

www.amdahost.com/assetes/twitter.png

104.21.40.89

24 kB

URL
www.amdahost.com/assetes/twitter.png
IP
104.21.40.89:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
24 kB (23628 bytes)
Hash
6352d995b0c2a0f882503daa1d99a2e7
ec8795722329e3fcf6804406e537ac15cfbf081c
32a7e2dede5e29f94724a267f96743fde931038c3f3be13802de159b548791e2

HTTP Headers

GET /assetes/twitter.png HTTP/1.1
Host: www.amdahost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/watch_direct.php?id=5394c112ae
Cookie: PHPSESSID=7b0542deee83bdd55194098473c2392b
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 13 Jul 2024 18:49:43 GMT
Content-Type: image/png
Content-Length: 23628
Connection: keep-alive
Last-Modified: Thu, 13 Jun 2024 07:40:42 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 3327
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tANcRJYPQ7X9bi93HRaK1coznb%2Fjgf1HivoHhsDQbaztkfdRAitxaw5%2BESoSbLnGHkMiwPBcBG4W7KwmVuu2EvVN3RAcPrxNr4CLVnbKow2rLlL043NJVeGdGqemwM2sSlyF"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8a2b745e2843712a-OSL
alt-svc: h2=":443"; ma=60

r10.o.lencr.org/

23.33.119.27

504 B

URL
r10.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
98735b80b02575ddc9edf3adb0278cfe
2f2783b352868f87b533ae970c8d2fa87bf87ac3
ba54ed130d5f15a8ae23f3240a74c25fe6785289a80da596bc97139a25387863

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "BA54ED130D5F15A8AE23F3240A74C25FE6785289A80DA596BC97139A25387863"
Last-Modified: Thu, 11 Jul 2024 15:39:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2842
Expires: Sat, 13 Jul 2024 19:37:05 GMT
Date: Sat, 13 Jul 2024 18:49:43 GMT
Connection: keep-alive

GET www.amdahost.com/assetes/download.png

104.21.40.89

200 OK

11 kB

URL GET HTTP/1.1
www.amdahost.com/assetes/download.png
IP
104.21.40.89:80
ASN
#13335 CLOUDFLARENET

Requested by
http://www.amdahost.com/watch_direct.php?id=5394c112ae

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
11 kB (10637 bytes)
Hash
5fc702324cd7cfbfc1c1719d294d140d
e5d4f193aec2a50d8e079d683c71bf8cdc1bb75e
777fe09fa5ef9019e70076e67ab6e273c40ed5d42846543376db596ec506dcaa

HTTP Headers

GET /assetes/download.png HTTP/1.1
Host: www.amdahost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/watch_direct.php?id=5394c112ae
Cookie: PHPSESSID=7b0542deee83bdd55194098473c2392b
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 13 Jul 2024 18:49:43 GMT
Content-Type: image/png
Content-Length: 10637
Connection: keep-alive
Last-Modified: Wed, 19 Jun 2024 06:42:46 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 3327
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6GBZp65Ol7Ca6oIVwSr9dLyV%2B1eh3KPv%2BdI97TkptksBhWiJLDZcJRBcvjzYVq6szZvbQhxE6BYmXu8BzIPJWALk1yMcUS%2FrtAiC8bdA2A75jhhgawgBTxHcMDdApi%2Fxyo1k"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8a2b745f091d712a-OSL
alt-svc: h2=":443"; ma=60

GET www.amdahost.com/includes/cap.php

104.21.40.89

200 OK

1.8 kB

URL GET HTTP/1.1
www.amdahost.com/includes/cap.php
IP
104.21.40.89:80
ASN
#13335 CLOUDFLARENET

Requested by
http://www.amdahost.com/watch_direct.php?id=5394c112ae

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), default quality", baseline, precision 8, 120x40, components 3
Size
1.8 kB (1804 bytes)
Hash
17d355f8c843a652e768327b0a1ac3d0
9094be533d3ef4f45dd2460c6554b28d97a2091e
5451948ecfc60bad96550baad706127016928e23e6fcaf7e3d2bacac99244b5b

HTTP Headers

GET /includes/cap.php HTTP/1.1
Host: www.amdahost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/watch_direct.php?id=5394c112ae
Cookie: PHPSESSID=7b0542deee83bdd55194098473c2392b
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 13 Jul 2024 18:49:43 GMT
Content-Type: image/jpeg
Content-Length: 1804
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XwIojmSFe27T34dhL97cVyIqLpxLVExunmZbTyLaqm1DUxiOeLexJZLAtScm9zV34Hay4CQk8YFsd9WPRhoek5LrlyRI5YZnSPu%2BakuCxj5KNvSU4YrkAAF3UW9Tj%2BY77GnH"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8a2b745e2ff0b51e-OSL
alt-svc: h2=":443"; ma=60

www.amdahost.com/thumbnails/1720696740_826c6339ad762c4d.jpg

104.21.40.89

304 kB

URL
www.amdahost.com/thumbnails/1720696740_826c6339ad762c4d.jpg
IP
104.21.40.89:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 100", baseline, precision 8, 960x540, components 3
Size
304 kB (303787 bytes)
Hash
0595e7dcd29fb52395bdffba3f61769a
4ca8e7c4a55c8326e0956574481556943fba03e5
f417e70e341bc29806bc4353c632bc436648f186b5746d1dbb43099b56f16c57

HTTP Headers

GET /thumbnails/1720696740_826c6339ad762c4d.jpg HTTP/1.1
Host: www.amdahost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/watch_direct.php?id=5394c112ae
Cookie: PHPSESSID=7b0542deee83bdd55194098473c2392b
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 13 Jul 2024 18:49:43 GMT
Content-Type: image/jpeg
Content-Length: 303787
Connection: keep-alive
Last-Modified: Thu, 11 Jul 2024 11:19:04 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mma8XxnZtMRlHMG9sm27n6Cdu1NuskwHva3zqE40%2FiXctEzyFsYOS3C1c7B7bcRdLwdjbTNM9aMmUr%2BgWK8qjtPXOmT%2BcSMQZH%2BZ87Y3o5NolEeQqhSQUzLgnTB0k7ZcvNPI"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8a2b745f0c52712e-OSL
alt-svc: h2=":443"; ma=60

GET static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015

104.16.80.73

200 OK

17 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
IP
104.16.80.73:443
ASN
#13335 CLOUDFLARENET

Requested by
http://www.amdahost.com/watch_direct.php?id=5394c112ae
Certificate
IssuerGoogle Trust Services
Subjectcloudflareinsights.com
FingerprintEB:6E:FA:69:A4:FA:21:AE:59:5E:1B:46:84:BD:81:51:55:62:5B:04
ValiditySat, 06 Jul 2024 05:58:05 GMT - Fri, 04 Oct 2024 05:58:04 GMT

File type
gzip compressed data, from Unix
Size
17 kB (17294 bytes)
Hash
eceba36a42b82996f0199cf750579ca7
3b5200e8444735161e9bd6618af64b141deff2b8
e05662324f7e397685a0ab73e1be4a37ffcc030a12fdec2fd445dda574803c67

HTTP Headers

GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.amdahost.com
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 13 Jul 2024 18:49:43 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.6.1"
last-modified: Thu, 06 Jun 2024 15:52:56 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a2b745f1a90b51d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.gstatic.com/s/daysone/v18/mem9YaCnxnKRiYZOCIYScrg.woff2

142.250.74.131

14 kB

URL
fonts.gstatic.com/s/daysone/v18/mem9YaCnxnKRiYZOCIYScrg.woff2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 13872, version 1.0
Size
14 kB (13872 bytes)
Hash
e5f2e041fd4e596146779ef24e62c80c
585a9f68b8e8ff460c150bc53a4dad3471749dcb
3532c2289f153057e7638b2e7aa4933ab6aa32c8986bcf21cecd160b4eb349b4

HTTP Headers

GET /s/daysone/v18/mem9YaCnxnKRiYZOCIYScrg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.amdahost.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Jul 2024 11:19:44 GMT
expires: Fri, 11 Jul 2025 11:19:44 GMT
cache-control: public, max-age=31536000
age: 199800
last-modified: Thu, 24 Aug 2023 17:36:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET unpkg.com/videojs-contribhls/dist/videojs-contrib-hls.js

104.17.248.203

404 Not Found

155 kB

URL GET HTTP/2
unpkg.com/videojs-contribhls/dist/videojs-contrib-hls.js
IP
104.17.248.203:443
ASN
#13335 CLOUDFLARENET

Requested by
http://www.amdahost.com/watch_direct.php?id=5394c112ae
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint1E:BD:61:21:20:80:6D:7A:38:A4:15:7A:FB:C2:B0:50:AF:1F:F6:31
ValidityThu, 30 May 2024 03:44:12 GMT - Wed, 28 Aug 2024 03:44:11 GMT

File type
ASCII text, with no line terminators
Size
155 kB (154717 bytes)
Hash
cfa4f0b6268e5531b3a0a98742c7e119
b0abdf1bc9bc3726fda0598eeeb77e15c84f17b4
4f99662ea0c2f5bf572a256ef48bab68965b4e1a8c24e3a96d1b46f0320846a4

HTTP Headers

GET /videojs-contribhls/dist/videojs-contrib-hls.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sat, 13 Jul 2024 18:49:44 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
content-encoding: br
etag: W/"2d-sKvfG8m8Nyb9oFmO7rd+FchPF7Q"
via: 1.1 fly.io
fly-request-id: 01J2PPRYT8VKT8BJGKYDN6MY88-arn
cf-cache-status: HIT
age: 98
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8a2b7462fb53b518-OSL
X-Firefox-Spdy: h2

r10.o.lencr.org/

23.33.119.27

504 B

URL
r10.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
80ee007415e4a9cd9ff180ee56d4fd90
08276896e8774d12a699400ffe88939d02acd056
b76186c793cde690af253f9096553d00dffd54dc33faf5b9a7059b5ce61de651

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "B76186C793CDE690AF253F9096553D00DFFD54DC33FAF5B9A7059B5CE61DE651"
Last-Modified: Sat, 13 Jul 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14193
Expires: Sat, 13 Jul 2024 22:46:17 GMT
Date: Sat, 13 Jul 2024 18:49:44 GMT
Connection: keep-alive

cdn.tailwindcss.com/

104.22.21.144

504 B

URL
cdn.tailwindcss.com/
IP
104.22.21.144:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
504 B (504 bytes)
Hash
80ee007415e4a9cd9ff180ee56d4fd90
08276896e8774d12a699400ffe88939d02acd056
b76186c793cde690af253f9096553d00dffd54dc33faf5b9a7059b5ce61de651

HTTP Headers

GET / HTTP/1.1
Host: cdn.tailwindcss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Sat, 13 Jul 2024 18:49:43 GMT
cache-control: max-age=14400
location: /3.4.4
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: cle1::iad1::v778q-1720896071224-7a46b399eb06
cf-cache-status: HIT
age: 230
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a2b745cace3b52d-OSL
X-Firefox-Spdy: h2

r10.o.lencr.org/

23.33.119.27

504 B

URL
r10.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
80ee007415e4a9cd9ff180ee56d4fd90
08276896e8774d12a699400ffe88939d02acd056
b76186c793cde690af253f9096553d00dffd54dc33faf5b9a7059b5ce61de651

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "B76186C793CDE690AF253F9096553D00DFFD54DC33FAF5B9A7059B5CE61DE651"
Last-Modified: Sat, 13 Jul 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14193
Expires: Sat, 13 Jul 2024 22:46:17 GMT
Date: Sat, 13 Jul 2024 18:49:44 GMT
Connection: keep-alive

r10.o.lencr.org/

23.33.119.27

504 B

URL
r10.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
80ee007415e4a9cd9ff180ee56d4fd90
08276896e8774d12a699400ffe88939d02acd056
b76186c793cde690af253f9096553d00dffd54dc33faf5b9a7059b5ce61de651

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "B76186C793CDE690AF253F9096553D00DFFD54DC33FAF5B9A7059B5CE61DE651"
Last-Modified: Sat, 13 Jul 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14193
Expires: Sat, 13 Jul 2024 22:46:17 GMT
Date: Sat, 13 Jul 2024 18:49:44 GMT
Connection: keep-alive

GET unpkg.com/videojs-contribhls/dist/videojs-contrib-hls.js

104.17.248.203

404 Not Found

5.1 kB

URL GET HTTP/2
unpkg.com/videojs-contribhls/dist/videojs-contrib-hls.js
IP
104.17.248.203:443
ASN
#13335 CLOUDFLARENET

Requested by
http://www.amdahost.com/watch_direct.php?id=5394c112ae
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint1E:BD:61:21:20:80:6D:7A:38:A4:15:7A:FB:C2:B0:50:AF:1F:F6:31
ValidityThu, 30 May 2024 03:44:12 GMT - Wed, 28 Aug 2024 03:44:11 GMT

File type
ASCII text, with no line terminators
Size
5.1 kB (5086 bytes)
Hash
cfa4f0b6268e5531b3a0a98742c7e119
b0abdf1bc9bc3726fda0598eeeb77e15c84f17b4
4f99662ea0c2f5bf572a256ef48bab68965b4e1a8c24e3a96d1b46f0320846a4

HTTP Headers

GET /videojs-contribhls/dist/videojs-contrib-hls.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Sat, 13 Jul 2024 18:49:43 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
content-encoding: br
etag: W/"2d-sKvfG8m8Nyb9oFmO7rd+FchPF7Q"
via: 1.1 fly.io
fly-request-id: 01J2PPRYT8VKT8BJGKYDN6MY88-arn
cf-cache-status: HIT
age: 97
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8a2b745ccce7b518-OSL
X-Firefox-Spdy: h2

r10.o.lencr.org/

23.33.119.27

504 B

URL
r10.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
80ee007415e4a9cd9ff180ee56d4fd90
08276896e8774d12a699400ffe88939d02acd056
b76186c793cde690af253f9096553d00dffd54dc33faf5b9a7059b5ce61de651

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "B76186C793CDE690AF253F9096553D00DFFD54DC33FAF5B9A7059B5CE61DE651"
Last-Modified: Sat, 13 Jul 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14193
Expires: Sat, 13 Jul 2024 22:46:17 GMT
Date: Sat, 13 Jul 2024 18:49:44 GMT
Connection: keep-alive

a.magsrv.com/ad-provider.js

185.76.9.19

54 kB

URL
a.magsrv.com/ad-provider.js
IP
185.76.9.19:0
ASN
#60068 Datacamp Limited

File type
gzip compressed data, from Unix
Size
54 kB (53782 bytes)
Hash
c0ce6ea3d6eee3e7a9c4f3a54115b4a3
6cf4f40a345187ced0b4633ed8eb88ab9ff05ac1
ae89f9e4cdd82f95ea0eefe68c1dc2012e5429a127761f3c0f6c9f94d7a116d7

HTTP Headers

GET /ad-provider.js HTTP/1.1
Host: a.magsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 13 Jul 2024 18:49:43 GMT
content-type: application/javascript
etag: W/"18483d80947e14cf49f8c9ebbe3"
expires: Thu, 11 Jul 2024 17:52:17 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBuUwJDQH3ZQ0AAAwBuUwKAQH38gIAAAwBJRPCLgH3BQAAAA
x-77-nzt-ray: c0a4cc2898f3c8df47cc9266bcb38b0c
x-accel-expires: @1720903954
x-accel-date: 1720893154
x-77-cache: HIT
x-77-age: 3429
vary: Accept-Encoding
content-encoding: gzip
server: CDN77-Turbo
x-accel-date-max: 1720710296
x-cache: HIT
x-age: 3429
x-77-pop: stockholmSE
X-Firefox-Spdy: h2

GET js.onclckmn.com/static/onclicka.js

45.133.44.52

200 OK

10 kB

URL GET HTTP/2
js.onclckmn.com/static/onclicka.js
IP
45.133.44.52:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
http://www.amdahost.com/watch_direct.php?id=5394c112ae
Certificate
IssuerLet's Encrypt
Subjectjs.onclckmn.com
FingerprintDE:2E:86:24:6F:81:EB:B2:67:D1:09:EC:E2:50:E2:A2:46:9B:B5:EE
ValidityMon, 24 Jun 2024 02:01:08 GMT - Sun, 22 Sep 2024 02:01:07 GMT

File type
gzip compressed data, from Unix
Size
10 kB (10427 bytes)
Hash
e83b6f49c79a775309b2db34183daca5
a79749721836f817fc9f2fd61023a65195ff95af
b4e362302c9d2b42a54ab1ea336229da6df1aa61aec4913b332699ba0e015dbf

HTTP Headers

GET /static/onclicka.js HTTP/1.1
Host: js.onclckmn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 13 Jul 2024 18:49:43 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 25 Jun 2024 15:04:45 GMT
etag: W/"667adc8d-6c6"
content-encoding: gzip
expires: Sat, 13 Jul 2024 18:54:43 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

ofleafeona.com/400/7718993

139.45.197.244

34 kB

URL
ofleafeona.com/400/7718993
IP
139.45.197.244:0
ASN
#9002 RETN Limited

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
34 kB (34395 bytes)
Hash
a024e4874f7026bada2383b17e727b22
000bcdf053d7bd982761d54b5df47c17d50bd4ec
463bd4fc4e675c8c23aea2280e096201742b9907e77d014ebf8a9f1c049b310a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /400/7718993 HTTP/1.1
Host: ofleafeona.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 13 Jul 2024 18:49:44 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: ccc65c5da48897bbc4fa185be472a78c
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Vary: Origin
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Accept-Ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
Set-Cookie: OAID=030098f551c845fffcf6cc4c1fac7bea; expires=Sun, 13 Jul 2025 18:49:44 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip

GET www.amdahost.com/watch_direct.php?id=5394c112ae

104.21.40.89

200 OK

0 B

URL User Request GET HTTP/1.1
www.amdahost.com/watch_direct.php?id=5394c112ae
IP
104.21.40.89:80
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /watch_direct.php?id=5394c112ae HTTP/1.1
Host: www.amdahost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/watch_direct.php?id=5394c112ae
Cookie: PHPSESSID=7b0542deee83bdd55194098473c2392b; _ga_473NMXMZ7V=GS1.1.1720896583.1.0.1720896583.0.0.0; _ga=GA1.1.678983897.1720896584
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 13 Jul 2024 18:49:44 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kOZvfdwL5HrDFA1fdaT0iNuKwc7dNeYm%2BIQ7CyHTyuN6w0T17nVKGzb51iI958HU5xoXGlvyiHz8rUbpG51k6YYEvYSp0rg9MbKc7Xs91r6oz1D5vjYiiVkLngGJy3qWRhdv"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8a2b74662a71712e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

GET www.amdahost.com/watch_direct.php?id=5394c112ae

104.21.40.89

200 OK

0 B

URL User Request GET HTTP/1.1
www.amdahost.com/watch_direct.php?id=5394c112ae
IP
104.21.40.89:80
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /watch_direct.php?id=5394c112ae HTTP/1.1
Host: www.amdahost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/watch_direct.php?id=5394c112ae
Cookie: PHPSESSID=7b0542deee83bdd55194098473c2392b; _ga_473NMXMZ7V=GS1.1.1720896583.1.0.1720896583.0.0.0; _ga=GA1.1.678983897.1720896584
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 13 Jul 2024 18:49:44 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q3bU2%2BNgGCWO00eNfx1HYBVTaZaHS3Z6u0BQrPo7q29EMshgFTvXCH6awpuN0KbFv6yqLVQN%2FziVN58JpxCOZMZD8hqr3LoJTSAQdIWxwdiOdZ%2BKKusXG8ciBIrNcLJ5jT%2Bq"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8a2b74668f0a712a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

GET www.amdahost.com/cdn-cgi/challenge-platform/scripts/jsd/main.js

104.21.40.89

302 Found

0 B

URL GET HTTP/1.1
www.amdahost.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
104.21.40.89:80
ASN
#13335 CLOUDFLARENET

Requested by
http://www.amdahost.com/watch_direct.php?id=5394c112ae

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: www.amdahost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=7b0542deee83bdd55194098473c2392b; _ga_473NMXMZ7V=GS1.1.1720896583.1.0.1720896583.0.0.0; _ga=GA1.1.678983897.1720896584
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Sat, 13 Jul 2024 18:49:45 GMT
Content-Length: 0
Connection: keep-alive
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/7a55c9ccbaaa/main.js?
cache-control: max-age: 300, public
access-control-allow-origin: *
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BesmLCL70j%2B2Xop6bVHJguVa9E%2BLKrna4FS0ODPh2jyOhEXQcFD5JlxmF7GV1SXR%2FdG7HsBW6w%2BIj41lyrVgUUVLTpiolNX8MXycqVmuKAdCxTdD%2FUGw2GtcH4y89YU7IU6A"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8a2b74687c89712e-OSL
alt-svc: h2=":443"; ma=60

POST s.magsrv.com/v1/api.php

95.211.229.246

200 OK

3.0 kB

URL POST HTTP/1.1
s.magsrv.com/v1/api.php
IP
95.211.229.246:443
ASN
#60781 LeaseWeb Netherlands B.V.

Requested by
http://www.amdahost.com/watch_direct.php?id=5394c112ae
Certificate
IssuerLet's Encrypt
Subjectmagsrv.com
Fingerprint8E:61:86:2F:82:07:61:43:48:51:5B:D9:4A:30:13:C5:56:73:0F:42
ValidityMon, 01 Jul 2024 10:24:45 GMT - Sun, 29 Sep 2024 10:24:44 GMT

File type
JSON text data
Size
3.0 kB (3011 bytes)
Hash
11774fb0c19352ce9ede6f8c0fb0e4b8
1b94899c887b7a788841d8d08e3d4943c7fabfcb
cc25a855327d3ac9e0267880c723a23b68bc70d523ee6ea3dcefdb141249f238

HTTP Headers

POST /v1/api.php HTTP/1.1
Host: s.magsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 305
Origin: http://www.amdahost.com
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 13 Jul 2024 18:49:45 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://www.amdahost.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226692cc490f5f57.063846073100112746%22%3B%7D; expires=Mon, 13-Jul-2026 18:49:45 GMT; Max-Age=63072000; path=/; domain=magsrv.com; secure; SameSite=None
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

r11.o.lencr.org/

23.33.119.27

504 B

URL
r11.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
d4429fc33d8025ce5057e0bcbf0b14f9
c618d3c06c7b538d91f48f5e83a96e022e89ac7c
f1f33664b980db49e1d24fa907a4df0e37b3917a972d65c3d6843fda8d63c06f

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F1F33664B980DB49E1D24FA907A4DF0E37B3917A972D65C3D6843FDA8D63C06F"
Last-Modified: Fri, 12 Jul 2024 15:42:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6920
Expires: Sat, 13 Jul 2024 20:45:05 GMT
Date: Sat, 13 Jul 2024 18:49:45 GMT
Connection: keep-alive

GET www.amdahost.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/7a55c9ccbaaa/main.js?

104.21.40.89

200 OK

3.6 kB

URL GET HTTP/1.1
www.amdahost.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/7a55c9ccbaaa/main.js?
IP
104.21.40.89:80
ASN
#13335 CLOUDFLARENET

Requested by
http://www.amdahost.com/watch_direct.php?id=5394c112ae

File type
JavaScript source, ASCII text, with very long lines (7907), with no line terminators
Size
3.6 kB (3618 bytes)
Hash
2642d71fd1ab85c1cfdbbb00a22f6503
861b018f029b8011f89455354634b42ee51a49f9
ba68f5cb5ee2ceb8a29216e4cd91443b16ff97698f5255069737ffdccf2856ba

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/7a55c9ccbaaa/main.js? HTTP/1.1
Host: www.amdahost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=7b0542deee83bdd55194098473c2392b; _ga_473NMXMZ7V=GS1.1.1720896583.1.0.1720896583.0.0.0; _ga=GA1.1.678983897.1720896584
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 13 Jul 2024 18:49:45 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: max-age=14400, public
x-content-type-options: nosniff
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qWSdCPzHxGktI62Hym9tHUR5La2aOV6U1XTdsCS5svXmgksphSIM8OEhIW7mflhQr%2BzTxpzMibnaw7E2KDAq5lMGsbIvjDNjcUmlr%2FrmlROKxYGkXEBpArxrjxQIt7h%2FvXtt"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8a2b74698d5f712e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

bid.onclcktg.com/tags/181085?version_name=a&domain=www.amdahost.com

45.133.44.24

1.3 kB

URL
bid.onclcktg.com/tags/181085?version_name=a&domain=www.amdahost.com
IP
45.133.44.24:0
ASN
#39572 DataWeb Global Group B.V.

File type
JSON text data
Size
1.3 kB (1337 bytes)
Hash
91116cb19a6107e588e25fbc1255c315
7b6d117f16d372f49791044e9d9082d3bb5d1738
5a255d34131180029fbed004fe52d2792c213070667491c4e93d25f38126ea6f

HTTP Headers

GET /tags/181085?version_name=a&domain=www.amdahost.com HTTP/1.1
Host: bid.onclcktg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.amdahost.com
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 13 Jul 2024 18:49:45 GMT
content-type: application/json
content-length: 1337
server: nginx/1.24.0
cache-control: max-age=300, public
x-proxy-cache: EXPIRED
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.amdahost.com/media/apple-touch-icon.png

104.21.40.89

40 kB

URL
www.amdahost.com/media/apple-touch-icon.png
IP
104.21.40.89:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
40 kB (40332 bytes)
Hash
3a0b8d799ca52ea360286be206ff8fb3
2dc98f04f62990a7ab58494b8cc4c9d34f88d82b
a18a7554000483027f4297e642dd6ffa175ee4028844be6e7888cd31c165972d

HTTP Headers

GET /media/apple-touch-icon.png HTTP/1.1
Host: www.amdahost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/
Cookie: PHPSESSID=7b0542deee83bdd55194098473c2392b; _ga_473NMXMZ7V=GS1.1.1720896583.1.0.1720896583.0.0.0; _ga=GA1.1.678983897.1720896584
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 13 Jul 2024 18:49:45 GMT
content-type: image/png
content-length: 40332
last-modified: Sun, 17 Mar 2024 20:29:38 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4036
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C52FnEGaxvnE02pUleyIZeL5Ui2tofzx5XFXtLr9IdkbEq6rUzFTluKnX7gbRmWAkSY%2BdBCy1%2FXOKP%2B6Kf7i3B0st2dSADC2fDPlIMcTR9MZfEjLjhZuix66gj0iPBWDbdJN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a2b746a3eb4568f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.amdahost.com/media/favicon-16x16.png

104.21.40.89

936 B

URL
www.amdahost.com/media/favicon-16x16.png
IP
104.21.40.89:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
936 B (936 bytes)
Hash
ac0cd4d64276fa91e68993406abcd43d
c9af1132645f2bccfb9295a4e45cc95e8e78b7b6
bf852eabb9e0bbeb89b360a2dc4ccc1b86f2ffea3dfa78f0c2bb8747be598382

HTTP Headers

GET /media/favicon-16x16.png HTTP/1.1
Host: www.amdahost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/
Cookie: PHPSESSID=7b0542deee83bdd55194098473c2392b; _ga_473NMXMZ7V=GS1.1.1720896583.1.0.1720896583.0.0.0; _ga=GA1.1.678983897.1720896584
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 13 Jul 2024 18:49:45 GMT
content-type: image/png
content-length: 936
last-modified: Sun, 17 Mar 2024 20:29:38 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 353
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RGElvhu%2FqYDYUG19jEllwJ8KpPddKWfW0Ejt9ZkBRs%2B%2F1yfNVudmaGc8JUzO%2F9EvB%2B9XySlDwgzQJNsCCeiTgGtmPMYwGBVpDp0YxoTEruhO6xwShPRQcj4RxP1Xt67%2FgeDv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a2b746a3eb9568f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET fonts.googleapis.com/css2?family=Krona+One&display=swap

142.250.74.106

200 OK

792 B

URL GET HTTP/2
fonts.googleapis.com/css2?family=Krona+One&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
http://www.amdahost.com/watch_direct.php?id=5394c112ae
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint8F:1C:80:D7:A7:FA:04:F3:EE:EF:70:FD:56:35:32:FD:55:AB:63:5F
ValidityMon, 24 Jun 2024 07:40:53 GMT - Mon, 16 Sep 2024 07:40:52 GMT

File type
ASCII text, with very long lines (810), with no line terminators
Size
792 B (792 bytes)
Hash
46225e79541ead02407b8f682a33f449
65dbbea22ca11d1893bd3b9bde248a015bbb8a3d
ea34b259b1fe5df7c5645fd42e371e40097ad7a99b87f0f2bc4134ae63c1625e

HTTP Headers

GET /css2?family=Krona+One&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.amdahost.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 13 Jul 2024 18:49:43 GMT
date: Sat, 13 Jul 2024 18:49:43 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash