web3.topcinema.top/wp-content/themes/movies2023/UI/js/jquery.min.js
200 OK 32 kB URL GET HTTP/3 web3.topcinema.top/wp-content/themes/movies2023/UI/js/jquery.min.js
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerGoogle Trust Services LLC
Subjecttopcinema.top
FingerprintE9:EB:03:48:94:9D:1A:1C:01:13:68:7D:CF:0A:15:DD:AC:2D:FC:74
ValidityMon, 20 Nov 2023 00:50:42 GMT - Sun, 18 Feb 2024 00:50:41 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash af4078402c5e090d3f81d1abd71e2250
9592732de681f4365e9b7016dc5cf76e2a55ee9b
8603b20b548270423fb03c2138c16f5f863ead4c48eb0999167df869e2eef8a6
GET /wp-content/themes/movies2023/UI/js/jquery.min.js HTTP/1.1
Host: web3.topcinema.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 27 Nov 2023 22:35:29 GMT
content-type: text/javascript
last-modified: Wed, 16 Feb 2022 10:29:52 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2094
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lYyeSizuiGMTeAYLc18%2BRYnwxMY7Pv5MjqefY75WV1GaINs%2BbSqG1btK%2BXU2OJVfYW%2BRPvW1z6olwtoI2NmS73i8NPpTMKOqNjvBZMBiMcS2g54p8uwG8qMLamXGrRk9ulELAdI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd83389a456c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
200 OK 40 kB URL User Request GET HTTP/2 web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
IP
Certificate IssuerGoogle Trust Services LLC
Subjecttopcinema.top
FingerprintE9:EB:03:48:94:9D:1A:1C:01:13:68:7D:CF:0A:15:DD:AC:2D:FC:74
ValidityMon, 20 Nov 2023 00:50:42 GMT - Sun, 18 Feb 2024 00:50:41 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (47074)
Hash ce7e5fb3d30f9880b9a62800244c826d
94f5363ee53a6615531137b4a230952c14e5b62f
7c07a9441332f2a4fa0f422ae37bfacd020fe28f4a880182518566e71985d581
GET /%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/ HTTP/1.1
Host: web3.topcinema.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 27 Nov 2023 22:35:28 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding,Cookie
cache-control: max-age=3, must-revalidate
last-modified: Mon, 27 Nov 2023 22:00:01 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DYemVEUKBNrjJ9XFF4oMRAZqooDVIxl%2FRGNsgwv%2BPTsbncFnzmjYQp8ziDLCoY%2B%2ByPMLLrMzyMKMQAKs570kjVTLKu1AhiScIENWYAjEM%2FYbLi4ac%2FJQLobC9a3YiAWlnDNlw1w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82cdd82f4ac8b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-6ZDPCTTMZN
200 OK 94 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-6ZDPCTTMZN
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (5955)
Hash 0940a8f0e38ea1058f89e9f0a0d5676d
eab1d66c407fd4b088283adc581d97d4ee65e73e
823c6b4c2251caeb83af06606c587f7acd449078c6c95ea71418ee385c7206ec
GET /gtag/js?id=G-6ZDPCTTMZN HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 27 Nov 2023 22:35:29 GMT
expires: Mon, 27 Nov 2023 22:35:29 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93795
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-269945118-2
200 OK 65 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-269945118-2
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3026)
Hash de963b3206dd53ba37eb06c34f82b948
0d8a520000c0eb16d8fca5bb59539e94f1c78eb1
21fc0bbccf13ba387d65723b95fffd0398f890c4b9250f5a5c339d6738c2401d
GET /gtag/js?id=UA-269945118-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 27 Nov 2023 22:35:29 GMT
expires: Mon, 27 Nov 2023 22:35:29 GMT
cache-control: private, max-age=900
last-modified: Mon, 27 Nov 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 64707
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-269945118-1
200 OK 65 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-269945118-1
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3026)
Hash 3fa30f6f7f147381f186737819b504e8
5a737f449ca4aa9ff47d7d23967af15193c24aa6
22a2c36f3ca27471b78e12067d3ab1864cc205b7847a25182f666634a56ef90e
GET /gtag/js?id=UA-269945118-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 27 Nov 2023 22:35:29 GMT
expires: Mon, 27 Nov 2023 22:35:29 GMT
cache-control: private, max-age=900
last-modified: Mon, 27 Nov 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 64678
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
web3.topcinema.top/wp-content/themes/movies2023/back.jpg
200 OK 205 kB URL GET HTTP/3 web3.topcinema.top/wp-content/themes/movies2023/back.jpg
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerGoogle Trust Services LLC
Subjecttopcinema.top
FingerprintE9:EB:03:48:94:9D:1A:1C:01:13:68:7D:CF:0A:15:DD:AC:2D:FC:74
ValidityMon, 20 Nov 2023 00:50:42 GMT - Sun, 18 Feb 2024 00:50:41 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1200x843, components 3\012- data
Size 205 kB (205078 bytes)
Hash e300a8d70bd9f15b34e21e04051e935e
c5a070849504ebdbb3f943eaa0f48c201e0b098c
0b0e5065548d1d1ab4f66c66444163dbfdba312e2920f3c273c55493bb43075c
GET /wp-content/themes/movies2023/back.jpg HTTP/1.1
Host: web3.topcinema.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 27 Nov 2023 22:35:29 GMT
content-type: image/jpeg
content-length: 205078
last-modified: Sun, 04 Jun 2023 09:53:29 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 522
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rXfy%2BG%2Bcgw1UlL8kgGbo6dExX3GZMYuEQPF14KMz2DnjUA3%2FxvvX2V0dMXvcsKd9BkKg5TtJ07MF4hu%2FMGpnGQpVrgpjlQFC7I8dhAD1Tyuo3C%2BPwkqR47H5%2BbWAw8S6HtDUZcA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd836cc5956c0-OSL
alt-svc: h3=":443"; ma=86400
web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
200 OK 0 B URL User Request GET HTTP/2 web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
IP
Certificate IssuerGoogle Trust Services LLC
Subjecttopcinema.top
FingerprintE9:EB:03:48:94:9D:1A:1C:01:13:68:7D:CF:0A:15:DD:AC:2D:FC:74
ValidityMon, 20 Nov 2023 00:50:42 GMT - Sun, 18 Feb 2024 00:50:41 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/ HTTP/1.1
Host: web3.topcinema.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 27 Nov 2023 22:35:29 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding,Cookie
cache-control: max-age=3, must-revalidate
last-modified: Mon, 27 Nov 2023 22:00:01 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QvZC0ROuCNTK%2FM%2F9EWvBkOqBwFR1BK%2B%2BFdaA6mTuI6sya%2BCS72rUh%2FIWNttPxVdRBhgVDP7KE9k6Buz63sUNftdq6qgxhdrXeJ25alFUHoH%2BU5rs6CLzaiW%2FdchtEKUFFfCfQqM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82cdd836bc4e56c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/righteous/v17/1cXxaUPXBpj2rGoU7C9WiHGF.woff2
200 OK 13 kB URL GET HTTP/2 fonts.gstatic.com/s/righteous/v17/1cXxaUPXBpj2rGoU7C9WiHGF.woff2
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 12608, version 1.0\012- data
Hash 2669249f36607a740d21ff026caca825
fad0f311506b84e078d7be1554706e09b16abf43
99ac2accca3d9670c1fd8f197db636fec37cecfa403150f78cc1107c047e1ef6
GET /s/righteous/v17/1cXxaUPXBpj2rGoU7C9WiHGF.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web3.topcinema.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12608
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 05:02:08 GMT
expires: Fri, 22 Nov 2024 05:02:08 GMT
cache-control: public, max-age=31536000
age: 408801
last-modified: Thu, 24 Aug 2023 20:51:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/anton/v25/1Ptgg87LROyAm3Kz-C8.woff2
200 OK 19 kB URL GET HTTP/2 fonts.gstatic.com/s/anton/v25/1Ptgg87LROyAm3Kz-C8.woff2
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 18796, version 1.0\012- data
Hash a2675f0a46717d18588f16531f72674d
adfe4d6f18d4522b73ef6853ea2084570855f87c
f9ad420bf51c2930fc2a49d44209d202cb18acb2d8b82853a01023e69eab6885
GET /s/anton/v25/1Ptgg87LROyAm3Kz-C8.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web3.topcinema.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 23:22:50 GMT
expires: Fri, 22 Nov 2024 23:22:50 GMT
cache-control: public, max-age=31536000
age: 342759
last-modified: Thu, 24 Aug 2023 20:21:17 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
site-assets.fontawesome.com/releases/v6.1.1/webfonts/fa-brands-400.woff2
200 OK 106 kB URL GET HTTP/2 site-assets.fontawesome.com/releases/v6.1.1/webfonts/fa-brands-400.woff2
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 105768, version 769.768\012- data
Size 106 kB (105768 bytes)
Hash ea24446014ea86d85129883a9511629f
90fe0513c6a0ff1d8f564ec782fa54b559e7d3f8
3701cbff3acccd80b1f2eede4311050514f7a64c2039eb77a77368fcd6e3de28
GET /releases/v6.1.1/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web3.topcinema.top
DNT: 1
Connection: keep-alive
Referer: https://site-assets.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Nov 2023 22:35:29 GMT
content-type: font/woff2
content-length: 105768
x-amz-id-2: HQu2pAetRJgfeHBiFC5GLS4+9pt43btn3MCT4Dn5/zm1xrVEkoEpxuiPjafy9Z630GPLr731fU4=
x-amz-request-id: YT45FE5VK1CGVD6W
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 22 Mar 2022 15:42:55 GMT
etag: "ea24446014ea86d85129883a9511629f"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 51165
accept-ranges: bytes
server: cloudflare
cf-ray: 82cdd8384e8a712b-OSL
X-Firefox-Spdy: h2
site-assets.fontawesome.com/releases/v6.1.1/webfonts/fa-light-300.woff2
200 OK 424 kB URL GET HTTP/2 site-assets.fontawesome.com/releases/v6.1.1/webfonts/fa-light-300.woff2
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 424536, version 769.768\012- data
Size 424 kB (424536 bytes)
Hash b7412eb0b0d0a37deffbb70250b4011d
b89ad9dfe0720d47eb134b6a32806f185cc12ee3
515954fe1dc163277d36b51f79fe56265f6b6cf79f99e307bbf6e52b477b9c87
GET /releases/v6.1.1/webfonts/fa-light-300.woff2 HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web3.topcinema.top
DNT: 1
Connection: keep-alive
Referer: https://site-assets.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 27 Nov 2023 22:35:29 GMT
content-type: font/woff2
content-length: 424536
x-amz-id-2: 9ZiZRpbJXK8pT6JO7CRCLnlxmhpZ61qlMGDTrekKrKBFDBLc+wsYBp67WDPmPCuP65CCf+9f13U=
x-amz-request-id: 2EX555V652QYH82X
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 22 Mar 2022 15:42:55 GMT
etag: "b7412eb0b0d0a37deffbb70250b4011d"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 504255
accept-ranges: bytes
server: cloudflare
cf-ray: 82cdd8383e86712b-OSL
X-Firefox-Spdy: h2
site-assets.fontawesome.com/releases/v6.1.1/webfonts/fa-regular-400.woff2
200 OK 389 kB URL GET HTTP/2 site-assets.fontawesome.com/releases/v6.1.1/webfonts/fa-regular-400.woff2
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 388900, version 769.768\012- data
Size 389 kB (388900 bytes)
Hash a927362a975051e5d7361d860d8ffba7
6b97f2ea63d6e7e04006d0366b87697fb4a594d0
121b176974226dbc9b1ab227becb657d40b88d2bb7010a746c2360c31d7c373e
GET /releases/v6.1.1/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web3.topcinema.top
DNT: 1
Connection: keep-alive
Referer: https://site-assets.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Nov 2023 22:35:29 GMT
content-type: font/woff2
content-length: 388900
x-amz-id-2: S3wcMorpmnWuCL0QWsvw/cuLMfbfhHfHWgpv0TAK/I9pu7zd7XQTyOxwym7PfPP1FGpY6gRDRY8=
x-amz-request-id: X3K9GGD39XP7EEZQ
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 22 Mar 2022 15:42:55 GMT
etag: "a927362a975051e5d7361d860d8ffba7"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 146898
accept-ranges: bytes
server: cloudflare
cf-ray: 82cdd8384e8e712b-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Righteous&display=swap
200 OK 330 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Righteous&display=swap
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type gzip compressed data, max compression\012- data
Size 330 kB (329565 bytes)
Hash d6ab7143fd5f7f70e20331d5dc144a86
27a8183c3316a306821f61e82b529b57c25bac99
8601fbd3cb30a71e3743cb10d870325f1335c9c33d4fd5dd314fea12a571b359
GET /css2?family=Righteous&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 27 Nov 2023 22:35:29 GMT
date: Mon, 27 Nov 2023 22:35:29 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
nukeluck.net/tag.min.js
200 OK 26 kB IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerLet's Encrypt
Subjectnukeluck.net
Fingerprint10:9E:8F:E3:6A:F8:48:21:94:4C:23:4D:4E:96:D5:07:46:36:8E:4F
ValiditySun, 08 Oct 2023 09:09:43 GMT - Sat, 06 Jan 2024 09:09:42 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash c59159cd6d3da253c32262d8c656026c
c529e6d3ccfc330f1b53c9f310bb88e6db1e3f08
41cf785e519b2bc2d6abee07e04a1ca8bed14dbda3e06983fe1a7cb31ce02529
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /tag.min.js HTTP/1.1
Host: nukeluck.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 27 Nov 2023 22:35:30 GMT
content-type: text/javascript; charset=utf-8
content-length: 25606
content-encoding: br
x-trace-id: 6676d6103f8206bdd154f7d4bcd5d930
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Mon, 27 Nov 2023 11:33:21 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
nukeluck.net/5/6297608/?oo=1&aab=1
200 OK 15 kB URL GET HTTP/2 nukeluck.net/5/6297608/?oo=1&aab=1
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerLet's Encrypt
Subjectnukeluck.net
Fingerprint10:9E:8F:E3:6A:F8:48:21:94:4C:23:4D:4E:96:D5:07:46:36:8E:4F
ValiditySun, 08 Oct 2023 09:09:43 GMT - Sat, 06 Jan 2024 09:09:42 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash 040155c5b430e4a1a25be0221a09c87b
2c995663b7773f37f858b8a4ec735028cca0e834
7e319aab4c65e024b3f73e41b1538719c3a461cd623b61d7b5bba06afff83149
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /5/6297608/?oo=1&aab=1 HTTP/1.1
Host: nukeluck.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web3.topcinema.top
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 27 Nov 2023 22:35:30 GMT
content-type: application/json
x-trace-id: 22609a79ea5859b5ffe5f7d8457dce7b
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://web3.topcinema.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=ff63c18fb7424abda367f71fef0c514d; expires=Tue, 26 Nov 2024 22:35:30 GMT; path=/; secure; SameSite=None
oaidts=1701124530; expires=Tue, 26 Nov 2024 22:35:30 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Anton&family=Righteous&display=swap
200 OK 987 B URL GET HTTP/2 fonts.googleapis.com/css2?family=Anton&family=Righteous&display=swap
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type gzip compressed data, max compression\012- data
Hash 7a2fbe31b18b44aa23e34f28e816bb31
0dcc5da4a8e83a972c85e15a484d682c97fa1008
10b630e390fc8d0884baa8d6005e729f676e27f4da7c8ca3fbc6ed3bc0d58ba2
GET /css2?family=Anton&family=Righteous&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 27 Nov 2023 22:35:29 GMT
date: Mon, 27 Nov 2023 22:35:29 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=ff63c18fb7424abda367f71fef0c514d
200 OK 65 B URL GET HTTP/2 my.rtmark.net/gid.js?userId=ff63c18fb7424abda367f71fef0c514d
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT
File type JSON data\012- , ASCII text
Hash d1facaab26e81b503f2413772f93aaa1
5ba4896ac398aecd866312f92d8a02894e6b256b
11e9a0ca3236cbb3ddeb89af6777bfbfabe754dad9ec01d7fff3b91fde6c05b2
GET /gid.js?userId=ff63c18fb7424abda367f71fef0c514d HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web3.topcinema.top
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 27 Nov 2023 22:35:30 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://web3.topcinema.top
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=ff63c18fb7424abda367f71fef0c514d; expires=Tue, 26 Nov 2024 22:35:30 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
web3.topcinema.top/wp-content/uploads/2023/05/cropped-icon-192x192.png
200 OK 8.3 kB URL GET HTTP/3 web3.topcinema.top/wp-content/uploads/2023/05/cropped-icon-192x192.png
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerGoogle Trust Services LLC
Subjecttopcinema.top
FingerprintE9:EB:03:48:94:9D:1A:1C:01:13:68:7D:CF:0A:15:DD:AC:2D:FC:74
ValidityMon, 20 Nov 2023 00:50:42 GMT - Sun, 18 Feb 2024 00:50:41 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 2431b1704f9493638078e7f9f4606456
610f96b459379f5d3a92ec304a5deb118a86a93d
f9a64fd2115bfae82d606094f523138624b496e07a287339ac23c7fc5b91fb3e
GET /wp-content/uploads/2023/05/cropped-icon-192x192.png HTTP/1.1
Host: web3.topcinema.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Cookie: _ga_6ZDPCTTMZN=GS1.1.1701124533.1.0.1701124533.0.0.0; _ga=GA1.1.28245141.1701124534
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 27 Nov 2023 22:35:30 GMT
content-type: image/png
content-length: 8346
last-modified: Fri, 26 May 2023 17:09:44 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 336
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EAhXukuEABRtJpqFeZu1iGK3M1feWbO6l9MOcT27l5tma8zjp8D73BctIQ%2FWUgAdzi5w0bufObeIVsjKqQ1pT7tlrGzmEZn%2F2ss1CeEJyyuK6X047So7qzibAlRnBR4Dxf%2BYHAo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd83db9eb56c0-OSL
alt-svc: h3=":443"; ma=86400
web3.topcinema.top/wp-content/uploads/2023/05/cropped-icon-32x32.png
200 OK 1.1 kB URL GET HTTP/3 web3.topcinema.top/wp-content/uploads/2023/05/cropped-icon-32x32.png
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerGoogle Trust Services LLC
Subjecttopcinema.top
FingerprintE9:EB:03:48:94:9D:1A:1C:01:13:68:7D:CF:0A:15:DD:AC:2D:FC:74
ValidityMon, 20 Nov 2023 00:50:42 GMT - Sun, 18 Feb 2024 00:50:41 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 07438809fcc2ce462d4593e45c81c8aa
2ab7f9b6ca47c0817bb48ee2af30c71f7b0f22c1
46ea39c723ef2604ca2fe78f6390641b3e898b3fae5c9947f46a08f2f270ab3a
GET /wp-content/uploads/2023/05/cropped-icon-32x32.png HTTP/1.1
Host: web3.topcinema.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Cookie: _ga_6ZDPCTTMZN=GS1.1.1701124533.1.0.1701124533.0.0.0; _ga=GA1.1.28245141.1701124534
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 27 Nov 2023 22:35:30 GMT
content-type: image/png
content-length: 1081
last-modified: Fri, 26 May 2023 17:09:44 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3798
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VPqldDVcxLhods3CmgTwOLbXzun3w%2FY0HanxEN8q4doVqHwu5iNVJOUILJD9rnqqJkBUeqzIiPH14i9sfcUwj2yvy%2Bl6D4u2Bj2DKhtQZ2y9%2BpAWlLuLXjnU5j68zOavRZCTLAc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd83db9ed56c0-OSL
alt-svc: h3=":443"; ma=86400
server-hls2-stream-c15.cdn-tube.xyz/i/02/00033/pvs7hchgv53u.jpg
200 OK 17 kB URL GET HTTP/1.1 server-hls2-stream-c15.cdn-tube.xyz/i/02/00033/pvs7hchgv53u.jpg
IP
Requested by https://vidtube.pro/embed-pvs7hchgv53u.html
File type JPEG image data, baseline, precision 8, 720x402, components 3\012- data
Hash 73d6eaebf9c95639c7f4593d83a7b447
16d00da76d1ade0ac02ae904d1f406522b99b9fe
e2952b9532ea1267a6f5258764bf55a06d587cefc4282b332979957261144d4f
GET /i/02/00033/pvs7hchgv53u.jpg HTTP/1.1
Host: server-hls2-stream-c15.cdn-tube.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidtube.pro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Nov 2023 22:35:30 GMT
Content-Type: image/jpeg
Content-Length: 16821
Last-Modified: Wed, 11 Oct 2023 08:49:51 GMT
Connection: keep-alive
ETag: "652661af-41b5"
Expires: Mon, 04 Dec 2023 22:35:30 GMT
Cache-Control: max-age=604800
Accept-Ranges: bytes
nukeluck.net/?rb=YlUzutcByaEWMVOat5LlRUYqjmtoUq5Boa2sTduX8qrzVnWEbcIYfYfULSIar3DD4kpo0159nmSQxbmUPF69FyeRykNiCbvVWSGIe8RvMhsuaCDQ2AbvKVa0YMTEzETemkOD5XlUnTv7YGjPGarh29XS6mH5pa6FtjeD7wM9GRWsaMNSJVHY3OCingkwLQj8sqMwzYfZEZkvcRktHFw4WBZYxI-IkVaUbybqdMyESo0CLoIM&request_ab2=0&zoneid=6297608&js_build=iclick-v1.633.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=2&pl=https%3A%2F%2Fweb3.topcinema.top%2F%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-anne-with-an-e-%25D8%25A7%25D9%2584%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-%25D8%25A7%25D9%2584%25D8%25A7%25D9%2588%25D9%2584-%25D8%25A7%25D9%2584%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-1-%25D9%2585%25D8%25AA%25D8%25B1%25D8%25AC%25D9%2585%25D8%25A9%2Fwatch%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.633.0&bs=de88d18e-b9db-4545-9169-14529d88f620&userId=ff63c18fb7424abda367f71fef0c514d&m=link
200 OK 1.5 MB URL GET HTTP/2 nukeluck.net/?rb=YlUzutcByaEWMVOat5LlRUYqjmtoUq5Boa2sTduX8qrzVnWEbcIYfYfULSIar3DD4kpo0159nmSQxbmUPF69FyeRykNiCbvVWSGIe8RvMhsuaCDQ2AbvKVa0YMTEzETemkOD5XlUnTv7YGjPGarh29XS6mH5pa6FtjeD7wM9GRWsaMNSJVHY3OCingkwLQj8sqMwzYfZEZkvcRktHFw4WBZYxI-IkVaUbybqdMyESo0CLoIM&request_ab2=0&zoneid=6297608&js_build=iclick-v1.633.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=2&pl=https%3A%2F%2Fweb3.topcinema.top%2F%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-anne-with-an-e-%25D8%25A7%25D9%2584%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-%25D8%25A7%25D9%2584%25D8%25A7%25D9%2588%25D9%2584-%25D8%25A7%25D9%2584%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-1-%25D9%2585%25D8%25AA%25D8%25B1%25D8%25AC%25D9%2585%25D8%25A9%2Fwatch%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.633.0&bs=de88d18e-b9db-4545-9169-14529d88f620&userId=ff63c18fb7424abda367f71fef0c514d&m=link
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerLet's Encrypt
Subjectnukeluck.net
Fingerprint10:9E:8F:E3:6A:F8:48:21:94:4C:23:4D:4E:96:D5:07:46:36:8E:4F
ValiditySun, 08 Oct 2023 09:09:43 GMT - Sat, 06 Jan 2024 09:09:42 GMT
File type gzip compressed data, max speed, from Unix\012- data
Size 1.5 MB (1472407 bytes)
Hash 23f61bed7139f699a6ce04b0f2f06758
f595b286f966c5d3469b5eb9b82e15f1aefcff67
6f0896911d61414595d239e45c9c8e23683d9a85308bf78cc81063e86445116f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /?rb=YlUzutcByaEWMVOat5LlRUYqjmtoUq5Boa2sTduX8qrzVnWEbcIYfYfULSIar3DD4kpo0159nmSQxbmUPF69FyeRykNiCbvVWSGIe8RvMhsuaCDQ2AbvKVa0YMTEzETemkOD5XlUnTv7YGjPGarh29XS6mH5pa6FtjeD7wM9GRWsaMNSJVHY3OCingkwLQj8sqMwzYfZEZkvcRktHFw4WBZYxI-IkVaUbybqdMyESo0CLoIM&request_ab2=0&zoneid=6297608&js_build=iclick-v1.633.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=2&pl=https%3A%2F%2Fweb3.topcinema.top%2F%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-anne-with-an-e-%25D8%25A7%25D9%2584%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-%25D8%25A7%25D9%2584%25D8%25A7%25D9%2588%25D9%2584-%25D8%25A7%25D9%2584%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-1-%25D9%2585%25D8%25AA%25D8%25B1%25D8%25AC%25D9%2585%25D8%25A9%2Fwatch%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.633.0&bs=de88d18e-b9db-4545-9169-14529d88f620&userId=ff63c18fb7424abda367f71fef0c514d&m=link HTTP/1.1
Host: nukeluck.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web3.topcinema.top/
Origin: https://web3.topcinema.top
DNT: 1
Connection: keep-alive
Cookie: OAID=ff63c18fb7424abda367f71fef0c514d; oaidts=1701124530
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 27 Nov 2023 22:35:30 GMT
content-type: application/json
x-trace-id: 55542ba7c6d2c4698b6d60ab9467cf0f
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://web3.topcinema.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=ff63c18fb7424abda367f71fef0c514d; expires=Tue, 26 Nov 2024 22:35:30 GMT; path=/; secure; SameSite=None
oaidts=1701124530; expires=Tue, 26 Nov 2024 22:35:30 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Mon, 04 Dec 2023 22:35:30 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
cameesse.net/9?z=6508190&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fweb3.topcinema.top%2F%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-anne-with-an-e-%25D8%25A7%25D9%2584%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-%25D8%25A7%25D9%2584%25D8%25A7%25D9%2588%25D9%2584-%25D8%25A7%25D9%2584%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-1-%25D9%2585%25D8%25AA%25D8%25B1%25D8%25AC%25D9%2585%25D8%25A9%2Fwatch%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&var=6297608&oaid=ff63c18fb7424abda367f71fef0c514d
200 OK 0 B URL POST HTTP/2 cameesse.net/9?z=6508190&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fweb3.topcinema.top%2F%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-anne-with-an-e-%25D8%25A7%25D9%2584%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-%25D8%25A7%25D9%2584%25D8%25A7%25D9%2588%25D9%2584-%25D8%25A7%25D9%2584%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-1-%25D9%2585%25D8%25AA%25D8%25B1%25D8%25AC%25D9%2585%25D8%25A9%2Fwatch%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&var=6297608&oaid=ff63c18fb7424abda367f71fef0c514d
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerLet's Encrypt
Subjectcameesse.net
Fingerprint95:AE:4C:29:A9:9F:0C:04:38:32:00:81:30:07:95:A7:F8:B0:77:D6
ValidityWed, 18 Oct 2023 10:27:53 GMT - Tue, 16 Jan 2024 10:27:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
OPTIONS /9?z=6508190&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fweb3.topcinema.top%2F%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-anne-with-an-e-%25D8%25A7%25D9%2584%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-%25D8%25A7%25D9%2584%25D8%25A7%25D9%2588%25D9%2584-%25D8%25A7%25D9%2584%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-1-%25D9%2585%25D8%25AA%25D8%25B1%25D8%25AC%25D9%2585%25D8%25A9%2Fwatch%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&var=6297608&oaid=ff63c18fb7424abda367f71fef0c514d HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://web3.topcinema.top/
Origin: https://web3.topcinema.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 27 Nov 2023 22:35:31 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://web3.topcinema.top
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
vidtube.pro/embed-pvs7hchgv53u.html
200 OK 29 kB URL GET HTTP/2 vidtube.pro/embed-pvs7hchgv53u.html
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerLet's Encrypt
Subjectvidtube.pro
Fingerprint1A:83:9E:B6:DD:C2:BF:7D:A6:C5:AF:FA:F5:3E:FD:ED:9D:7C:EE:6C
ValiditySun, 15 Oct 2023 22:16:32 GMT - Sat, 13 Jan 2024 22:16:31 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6084)
Hash 5cab30a7d7511f57b05ec49712e10dc8
385b86079344f5c9e69a2242a606737ca9474b73
67b9473aaecfe487ca9995cc5d42bd184261da2cfb308a34eec7b7a06ea776ab
GET /embed-pvs7hchgv53u.html HTTP/1.1
Host: vidtube.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 27 Nov 2023 22:35:30 GMT
content-type: text/html; charset=UTF-8
expires: Sun, 26 Nov 2023 22:35:29 GMT
set-cookie: lang=1; domain=.vidtube.pro; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LwJk0a%2Bc9VPCqIO5PWSyv%2BKFm9MF5Y1GETxAPO2iBa5L8J%2ByYE5ACX95ZKZrIhHdkELEgLMHaEnibPkRpk%2FXXVB9UDt%2FMm1rmKgO8sl3kJNr3zDXAbxLRoEhzk0sYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82cdd83738cc1c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cameesse.net/11?rnd=66574676&z=6508190&b=19427765&var=6297608&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=l5MK9pzdKqNzZRMQx_OkDDDXMlrO38lFZYwTmDCmn5kNeHzzl7ApeHEbGxOPlmil_rRUx6L4jYEkOTwJSJCPOsu7XAVVFLtvyyO7hMv55VdJ9XJtvIm31YeYxFuxGdcoMZEFf8QYyHGBo3ZY9miNewqtMoDvud1s_EeelsK8_CnrhnaZIsSsW7CzIZlaoJwCjMbMvZJFB9cPElpC5K4G_6h27p0_AWgl7pun9UuIhLC018N7xXrbV4dwmo0D_BQXgbQ-3Mnc4hx57ltu59VMK-R4shEWnOoHeUlFwuplM2MF9qeE4srPkmrshhrEBg52GM5Oe3mJo3NgT8vmAFNPBw62Zx_gogRNIPtwl4jbh5IgrFu12chNW321YGHVqvKkNq-YlZ5Mm7Ml0cA_FpxZ8IiOLRog7aUVTaWQOzjeKXwWHGz2R-i5Y5HOP9tKKltCN8LLqRZQRC0G5MUgjW0jMl89QHvuffrAQMGtSMXvFRwqJqEEQEEtasSM_ie0OI7oTwbNBoCioUIhy8YtjxRgJkKenx-Kzi9zGG5-YhWSkkcv8yq59QvYsLvwz_ulp14hBfKnKb5bbLqBRPoVOI9p-32nxF0Rbpnnx6J0aPuJonyiiMzIfJrN0HIbtyuBSvLby3-DIcakayulnmn4RqWWnXa-Z8mUQwjARaz4Vg==&ruid=004e16e1-e78d-4768-87bd-c609cebe25e6&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fweb3.topcinema.top%2F%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-anne-with-an-e-%25D8%25A7%25D9%2584%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-%25D8%25A7%25D9%2584%25D8%25A7%25D9%2588%25D9%2584-%25D8%25A7%25D9%2584%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-1-%25D9%2585%25D8%25AA%25D8%25B1%25D8%25AC%25D9%2585%25D8%25A9%2Fwatch%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&ot=232
200 OK 0 B URL GET HTTP/2 cameesse.net/11?rnd=66574676&z=6508190&b=19427765&var=6297608&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=l5MK9pzdKqNzZRMQx_OkDDDXMlrO38lFZYwTmDCmn5kNeHzzl7ApeHEbGxOPlmil_rRUx6L4jYEkOTwJSJCPOsu7XAVVFLtvyyO7hMv55VdJ9XJtvIm31YeYxFuxGdcoMZEFf8QYyHGBo3ZY9miNewqtMoDvud1s_EeelsK8_CnrhnaZIsSsW7CzIZlaoJwCjMbMvZJFB9cPElpC5K4G_6h27p0_AWgl7pun9UuIhLC018N7xXrbV4dwmo0D_BQXgbQ-3Mnc4hx57ltu59VMK-R4shEWnOoHeUlFwuplM2MF9qeE4srPkmrshhrEBg52GM5Oe3mJo3NgT8vmAFNPBw62Zx_gogRNIPtwl4jbh5IgrFu12chNW321YGHVqvKkNq-YlZ5Mm7Ml0cA_FpxZ8IiOLRog7aUVTaWQOzjeKXwWHGz2R-i5Y5HOP9tKKltCN8LLqRZQRC0G5MUgjW0jMl89QHvuffrAQMGtSMXvFRwqJqEEQEEtasSM_ie0OI7oTwbNBoCioUIhy8YtjxRgJkKenx-Kzi9zGG5-YhWSkkcv8yq59QvYsLvwz_ulp14hBfKnKb5bbLqBRPoVOI9p-32nxF0Rbpnnx6J0aPuJonyiiMzIfJrN0HIbtyuBSvLby3-DIcakayulnmn4RqWWnXa-Z8mUQwjARaz4Vg==&ruid=004e16e1-e78d-4768-87bd-c609cebe25e6&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fweb3.topcinema.top%2F%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-anne-with-an-e-%25D8%25A7%25D9%2584%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-%25D8%25A7%25D9%2584%25D8%25A7%25D9%2588%25D9%2584-%25D8%25A7%25D9%2584%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-1-%25D9%2585%25D8%25AA%25D8%25B1%25D8%25AC%25D9%2585%25D8%25A9%2Fwatch%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&ot=232
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerLet's Encrypt
Subjectcameesse.net
Fingerprint95:AE:4C:29:A9:9F:0C:04:38:32:00:81:30:07:95:A7:F8:B0:77:D6
ValidityWed, 18 Oct 2023 10:27:53 GMT - Tue, 16 Jan 2024 10:27:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /11?rnd=66574676&z=6508190&b=19427765&var=6297608&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=l5MK9pzdKqNzZRMQx_OkDDDXMlrO38lFZYwTmDCmn5kNeHzzl7ApeHEbGxOPlmil_rRUx6L4jYEkOTwJSJCPOsu7XAVVFLtvyyO7hMv55VdJ9XJtvIm31YeYxFuxGdcoMZEFf8QYyHGBo3ZY9miNewqtMoDvud1s_EeelsK8_CnrhnaZIsSsW7CzIZlaoJwCjMbMvZJFB9cPElpC5K4G_6h27p0_AWgl7pun9UuIhLC018N7xXrbV4dwmo0D_BQXgbQ-3Mnc4hx57ltu59VMK-R4shEWnOoHeUlFwuplM2MF9qeE4srPkmrshhrEBg52GM5Oe3mJo3NgT8vmAFNPBw62Zx_gogRNIPtwl4jbh5IgrFu12chNW321YGHVqvKkNq-YlZ5Mm7Ml0cA_FpxZ8IiOLRog7aUVTaWQOzjeKXwWHGz2R-i5Y5HOP9tKKltCN8LLqRZQRC0G5MUgjW0jMl89QHvuffrAQMGtSMXvFRwqJqEEQEEtasSM_ie0OI7oTwbNBoCioUIhy8YtjxRgJkKenx-Kzi9zGG5-YhWSkkcv8yq59QvYsLvwz_ulp14hBfKnKb5bbLqBRPoVOI9p-32nxF0Rbpnnx6J0aPuJonyiiMzIfJrN0HIbtyuBSvLby3-DIcakayulnmn4RqWWnXa-Z8mUQwjARaz4Vg==&ruid=004e16e1-e78d-4768-87bd-c609cebe25e6&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fweb3.topcinema.top%2F%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-anne-with-an-e-%25D8%25A7%25D9%2584%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-%25D8%25A7%25D9%2584%25D8%25A7%25D9%2588%25D9%2584-%25D8%25A7%25D9%2584%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-1-%25D9%2585%25D8%25AA%25D8%25B1%25D8%25AC%25D9%2585%25D8%25A9%2Fwatch%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&ot=232 HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web3.topcinema.top
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/
Cookie: scm=1; OAID=ff63c18fb7424abda367f71fef0c514d; oaidts=1701124530
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 27 Nov 2023 22:35:31 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://web3.topcinema.top
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 7ff87d0d3fa4ff22a0713e8390baa8c7
access-control-expose-headers: X-Sc
set-cookie: OAID=ff63c18fb7424abda367f71fef0c514d; expires=Tue, 26 Nov 2024 22:35:31 GMT; secure; SameSite=None
oaidts=1701124530; expires=Tue, 26 Nov 2024 22:35:31 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
ocsp.r2m03.amazontrust.com/
471 B URL ocsp.r2m03.amazontrust.com/
IP
Hash ab08b21b37480bf609deaf73dcbf1e34
4121333c3a37ff481b30918ce3a1aa643cf813c2
d8c99d9c9d12731615d29afd9aba86e213ce6c7dfb8938334de50d3edfd78fcd
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Mon, 27 Nov 2023 22:35:31 GMT
Last-Modified: Mon, 27 Nov 2023 21:03:19 GMT
Server: ECAcc (ska/F7A2)
X-Cache: Miss from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AQHTjUZ2dPL-8H6Z0p-Yy_idcJYVfA7puIaOhaf37eDzKgCTTfniNw==
Age: 5532
cameesse.net/9?z=6508190&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fweb3.topcinema.top%2F%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-anne-with-an-e-%25D8%25A7%25D9%2584%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-%25D8%25A7%25D9%2584%25D8%25A7%25D9%2588%25D9%2584-%25D8%25A7%25D9%2584%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-1-%25D9%2585%25D8%25AA%25D8%25B1%25D8%25AC%25D9%2585%25D8%25A9%2Fwatch%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&var=6297608&oaid=ff63c18fb7424abda367f71fef0c514d
200 OK 2.7 kB URL POST HTTP/2 cameesse.net/9?z=6508190&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fweb3.topcinema.top%2F%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-anne-with-an-e-%25D8%25A7%25D9%2584%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-%25D8%25A7%25D9%2584%25D8%25A7%25D9%2588%25D9%2584-%25D8%25A7%25D9%2584%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-1-%25D9%2585%25D8%25AA%25D8%25B1%25D8%25AC%25D9%2585%25D8%25A9%2Fwatch%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&var=6297608&oaid=ff63c18fb7424abda367f71fef0c514d
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerLet's Encrypt
Subjectcameesse.net
Fingerprint95:AE:4C:29:A9:9F:0C:04:38:32:00:81:30:07:95:A7:F8:B0:77:D6
ValidityWed, 18 Oct 2023 10:27:53 GMT - Tue, 16 Jan 2024 10:27:52 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash eb4f65404cd21b33ec5f016a70046cdf
b2c242ed81985feb1b80205e3ea7308621613da2
93e2a0e811d1e98de2dbbef353cf727865f6c044225d003f531d6179e52a9702
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /9?z=6508190&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fweb3.topcinema.top%2F%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-anne-with-an-e-%25D8%25A7%25D9%2584%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-%25D8%25A7%25D9%2584%25D8%25A7%25D9%2588%25D9%2584-%25D8%25A7%25D9%2584%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-1-%25D9%2585%25D8%25AA%25D8%25B1%25D8%25AC%25D9%2585%25D8%25A9%2Fwatch%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&var=6297608&oaid=ff63c18fb7424abda367f71fef0c514d HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 385
Origin: https://web3.topcinema.top
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/
Cookie: scm=1; OAID=219d6cd5a8ec424d91cda7fe19e84f78; oaidts=1701124530
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 27 Nov 2023 22:35:31 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://web3.topcinema.top
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 666ceeb3c5f22d6d5191fc17836ca9e5
access-control-expose-headers: X-Sc
set-cookie: OAID=ff63c18fb7424abda367f71fef0c514d; expires=Tue, 26 Nov 2024 22:35:31 GMT; secure; SameSite=None
oaidts=1701124530; expires=Tue, 26 Nov 2024 22:35:31 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
banquetunarmedgrater.com/advertisers.js
200 OK 0 B URL GET HTTP/2 banquetunarmedgrater.com/advertisers.js
IP
Requested by https://vidtube.pro/embed-pvs7hchgv53u.html
Certificate IssuerGoogle Trust Services LLC
Subjectbanquetunarmedgrater.com
Fingerprint92:8E:AD:72:AC:AD:3B:21:99:CD:21:A0:9F:BD:F2:AF:0D:98:D8:57
ValidityThu, 09 Nov 2023 11:40:15 GMT - Wed, 07 Feb 2024 11:40:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidtube.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 27 Nov 2023 22:35:31 GMT
content-type: application/javascript
content-length: 0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=172800
x-request-id: 5accf938db356a07abc33616c795745d
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Mon, 27 Nov 2023 22:35:31 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lCVHrM%2BnuqmWcx2sVyjf3KNGThLF4qK68MMWOWXGbVtCwgr%2FP6ejwxUhHRZNBY87Fo5mfZvrS3hESWWDqfj%2BRtQmYI3cde6B9IiItqY4vHhi7lYg9M6WAR4bK6lZUXjF7VCPmNRTTyF1caM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd842fd15b524-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
prospercognomenoptional.com/pixel/purst?dl=0&th=0&sc=0&rs=1840&rd=1840&fd=1099&bv=23.11.v.7&tmpl=70
200 OK 0 B URL GET HTTP/1.1 prospercognomenoptional.com/pixel/purst?dl=0&th=0&sc=0&rs=1840&rd=1840&fd=1099&bv=23.11.v.7&tmpl=70
IP
Requested by https://vidtube.pro/embed-pvs7hchgv53u.html
Certificate IssuerLet's Encrypt
Subjectprospercognomenoptional.com
Fingerprint5F:DD:F9:B5:F8:E7:D7:15:B5:02:14:F6:24:69:2B:59:67:E4:27:33
ValidityTue, 07 Nov 2023 07:55:23 GMT - Mon, 05 Feb 2024 07:55:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1840&rd=1840&fd=1099&bv=23.11.v.7&tmpl=70 HTTP/1.1
Host: prospercognomenoptional.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidtube.pro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 27 Nov 2023 22:35:31 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fcameesse.net%2F12%3Frnd%3D2323334708%26z%3D6508190%26b%3D19427765%26c%3D7595353%26var%3D6297608%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3Dl5MK9pzdKqNzZRMQx_OkDDDXMlrO38lFZYwTmDCmn5kNeHzzl7ApeHEbGxOPlmil_rRUx6L4jYEkOTwJSJCPOsu7XAVVFLtvyyO7hMv55VdJ9XJtvIm31YeYxFuxGdcoMZEFf8QYyHGBo3ZY9miNewqtMoDvud1s_EeelsK8_CnrhnaZIsSsW7CzIZlaoJwCjMbMvZJFB9cPElpC5K4G_6h27p0_AWgl7pun9UuIhLC018N7xXrbV4dwmo0D_BQXgbQ-3Mnc4hx57ltu59VMK-R4shEWnOoHeUlFwuplM2MF9qeE4srPkmrshhrEBg52GM5Oe3mJo3NgT8vmAFNPBw62Zx_gogRNIPtwl4jbh5IgrFu12chNW321YGHVqvKkNq-YlZ5Mm7Ml0cA_FpxZ8IiOLRog7aUVTaWQOzjeKXwWHGz2R-i5Y5HOP9tKKltCN8LLqRZQRC0G5MUgjW0jMl89QHvuffrAQMGtSMXvFRwqJqEEQEEtasSM_ie0OI7oTwbNBoCioUIhy8YtjxRgJkKenx-Kzi9zGG5-YhWSkkcv8yq59QvYsLvwz_ulp14hBfKnKb5bbLqBRPoVOI9p-32nxF0Rbpnnx6J0aPuJonyiiMzIfJrN0HIbtyuBSvLby3-DIcakayulnmn4RqWWnXa-Z8mUQwjARaz4Vg%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D004e16e1-e78d-4768-87bd-c609cebe25e6%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fweb3.topcinema.top%252F%2525D9%252585%2525D8%2525B3%2525D9%252584%2525D8%2525B3%2525D9%252584-anne-with-an-e-%2525D8%2525A7%2525D9%252584%2525D9%252585%2525D9%252588%2525D8%2525B3%2525D9%252585-%2525D8%2525A7%2525D9%252584%2525D8%2525A7%2525D9%252588%2525D9%252584-%2525D8%2525A7%2525D9%252584%2525D8%2525AD%2525D9%252584%2525D9%252582%2525D8%2525A9-1-%2525D9%252585%2525D8%2525AA%2525D8%2525B1%2525D8%2525AC%2525D9%252585%2525D8%2525A9%252Fwatch%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D2%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D1
200 OK 12 kB URL GET HTTP/2 interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fcameesse.net%2F12%3Frnd%3D2323334708%26z%3D6508190%26b%3D19427765%26c%3D7595353%26var%3D6297608%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3Dl5MK9pzdKqNzZRMQx_OkDDDXMlrO38lFZYwTmDCmn5kNeHzzl7ApeHEbGxOPlmil_rRUx6L4jYEkOTwJSJCPOsu7XAVVFLtvyyO7hMv55VdJ9XJtvIm31YeYxFuxGdcoMZEFf8QYyHGBo3ZY9miNewqtMoDvud1s_EeelsK8_CnrhnaZIsSsW7CzIZlaoJwCjMbMvZJFB9cPElpC5K4G_6h27p0_AWgl7pun9UuIhLC018N7xXrbV4dwmo0D_BQXgbQ-3Mnc4hx57ltu59VMK-R4shEWnOoHeUlFwuplM2MF9qeE4srPkmrshhrEBg52GM5Oe3mJo3NgT8vmAFNPBw62Zx_gogRNIPtwl4jbh5IgrFu12chNW321YGHVqvKkNq-YlZ5Mm7Ml0cA_FpxZ8IiOLRog7aUVTaWQOzjeKXwWHGz2R-i5Y5HOP9tKKltCN8LLqRZQRC0G5MUgjW0jMl89QHvuffrAQMGtSMXvFRwqJqEEQEEtasSM_ie0OI7oTwbNBoCioUIhy8YtjxRgJkKenx-Kzi9zGG5-YhWSkkcv8yq59QvYsLvwz_ulp14hBfKnKb5bbLqBRPoVOI9p-32nxF0Rbpnnx6J0aPuJonyiiMzIfJrN0HIbtyuBSvLby3-DIcakayulnmn4RqWWnXa-Z8mUQwjARaz4Vg%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D004e16e1-e78d-4768-87bd-c609cebe25e6%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fweb3.topcinema.top%252F%2525D9%252585%2525D8%2525B3%2525D9%252584%2525D8%2525B3%2525D9%252584-anne-with-an-e-%2525D8%2525A7%2525D9%252584%2525D9%252585%2525D9%252588%2525D8%2525B3%2525D9%252585-%2525D8%2525A7%2525D9%252584%2525D8%2525A7%2525D9%252588%2525D9%252584-%2525D8%2525A7%2525D9%252584%2525D8%2525AD%2525D9%252584%2525D9%252582%2525D8%2525A9-1-%2525D9%252585%2525D8%2525AA%2525D8%2525B1%2525D8%2525AC%2525D9%252585%2525D8%2525A9%252Fwatch%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D2%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D1
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerLet's Encrypt
Subjectinterbuzznews.com
FingerprintB5:C4:C7:F0:3F:BC:50:A9:21:50:39:B8:F8:2E:7E:72:56:62:E7:33
ValidityFri, 22 Sep 2023 05:18:00 GMT - Thu, 21 Dec 2023 05:17:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1783)
Hash 1fe5c36e562af8ac46a9a5e21dd0d257
eaff39a7ef0f5aca36e96d72ab5ae729ec9d519c
2b275c8bc533f0b8e1d7a828ffab96fea3348b8fc75e35bca1b256b792b60e51
GET /?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fcameesse.net%2F12%3Frnd%3D2323334708%26z%3D6508190%26b%3D19427765%26c%3D7595353%26var%3D6297608%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3Dl5MK9pzdKqNzZRMQx_OkDDDXMlrO38lFZYwTmDCmn5kNeHzzl7ApeHEbGxOPlmil_rRUx6L4jYEkOTwJSJCPOsu7XAVVFLtvyyO7hMv55VdJ9XJtvIm31YeYxFuxGdcoMZEFf8QYyHGBo3ZY9miNewqtMoDvud1s_EeelsK8_CnrhnaZIsSsW7CzIZlaoJwCjMbMvZJFB9cPElpC5K4G_6h27p0_AWgl7pun9UuIhLC018N7xXrbV4dwmo0D_BQXgbQ-3Mnc4hx57ltu59VMK-R4shEWnOoHeUlFwuplM2MF9qeE4srPkmrshhrEBg52GM5Oe3mJo3NgT8vmAFNPBw62Zx_gogRNIPtwl4jbh5IgrFu12chNW321YGHVqvKkNq-YlZ5Mm7Ml0cA_FpxZ8IiOLRog7aUVTaWQOzjeKXwWHGz2R-i5Y5HOP9tKKltCN8LLqRZQRC0G5MUgjW0jMl89QHvuffrAQMGtSMXvFRwqJqEEQEEtasSM_ie0OI7oTwbNBoCioUIhy8YtjxRgJkKenx-Kzi9zGG5-YhWSkkcv8yq59QvYsLvwz_ulp14hBfKnKb5bbLqBRPoVOI9p-32nxF0Rbpnnx6J0aPuJonyiiMzIfJrN0HIbtyuBSvLby3-DIcakayulnmn4RqWWnXa-Z8mUQwjARaz4Vg%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D004e16e1-e78d-4768-87bd-c609cebe25e6%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fweb3.topcinema.top%252F%2525D9%252585%2525D8%2525B3%2525D9%252584%2525D8%2525B3%2525D9%252584-anne-with-an-e-%2525D8%2525A7%2525D9%252584%2525D9%252585%2525D9%252588%2525D8%2525B3%2525D9%252585-%2525D8%2525A7%2525D9%252584%2525D8%2525A7%2525D9%252588%2525D9%252584-%2525D8%2525A7%2525D9%252584%2525D8%2525AD%2525D9%252584%2525D9%252582%2525D8%2525A9-1-%2525D9%252585%2525D8%2525AA%2525D8%2525B1%2525D8%2525AC%2525D9%252585%2525D8%2525A9%252Fwatch%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D2%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D1 HTTP/1.1
Host: interbuzznews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 27 Nov 2023 22:35:31 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
set-cookie: reverse=VmNxb1IYk0bExR7f0i0IuasyrfFILXzl6e-K3Ji_6yM; expires=Mon, 27-Nov-2023 23:35:31 GMT; Max-Age=3600; path=/
OAID=e6ed15f81be66bfd52748c8241f10849; expires=Mon, 24-Oct-2078 21:11:02 GMT; Max-Age=1732746931; path=/
oaidts=1701124531; expires=Mon, 24-Oct-2078 21:11:02 GMT; Max-Age=1732746931; path=/
syncedCookie=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: br
X-Firefox-Spdy: h2
interbuzznews.com/contents/s/ce/c1/ce/fae62b87ac8ffd152fb67c62f3/01133900792764.jpeg
200 OK 76 kB URL GET HTTP/2 interbuzznews.com/contents/s/ce/c1/ce/fae62b87ac8ffd152fb67c62f3/01133900792764.jpeg
IP
Requested by https://interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fcameesse.net%2F12%3Frnd%3D2323334708%26z%3D6508190%26b%3D19427765%26c%3D7595353%26var%3D6297608%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3Dl5MK9pzdKqNzZRMQx_OkDDDXMlrO38lFZYwTmDCmn5kNeHzzl7ApeHEbGxOPlmil_rRUx6L4jYEkOTwJSJCPOsu7XAVVFLtvyyO7hMv55VdJ9XJtvIm31YeYxFuxGdcoMZEFf8QYyHGBo3ZY9miNewqtMoDvud1s_EeelsK8_CnrhnaZIsSsW7CzIZlaoJwCjMbMvZJFB9cPElpC5K4G_6h27p0_AWgl7pun9UuIhLC018N7xXrbV4dwmo0D_BQXgbQ-3Mnc4hx57ltu59VMK-R4shEWnOoHeUlFwuplM2MF9qeE4srPkmrshhrEBg52GM5Oe3mJo3NgT8vmAFNPBw62Zx_gogRNIPtwl4jbh5IgrFu12chNW321YGHVqvKkNq-YlZ5Mm7Ml0cA_FpxZ8IiOLRog7aUVTaWQOzjeKXwWHGz2R-i5Y5HOP9tKKltCN8LLqRZQRC0G5MUgjW0jMl89QHvuffrAQMGtSMXvFRwqJqEEQEEtasSM_ie0OI7oTwbNBoCioUIhy8YtjxRgJkKenx-Kzi9zGG5-YhWSkkcv8yq59QvYsLvwz_ulp14hBfKnKb5bbLqBRPoVOI9p-32nxF0Rbpnnx6J0aPuJonyiiMzIfJrN0HIbtyuBSvLby3-DIcakayulnmn4RqWWnXa-Z8mUQwjARaz4Vg%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D004e16e1-e78d-4768-87bd-c609cebe25e6%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fweb3.topcinema.top%252F%2525D9%252585%2525D8%2525B3%2525D9%252584%2525D8%2525B3%2525D9%252584-anne-with-an-e-%2525D8%2525A7%2525D9%252584%2525D9%252585%2525D9%252588%2525D8%2525B3%2525D9%252585-%2525D8%2525A7%2525D9%252584%2525D8%2525A7%2525D9%252588%2525D9%252584-%2525D8%2525A7%2525D9%252584%2525D8%2525AD%2525D9%252584%2525D9%252582%2525D8%2525A9-1-%2525D9%252585%2525D8%2525AA%2525D8%2525B1%2525D8%2525AC%2525D9%252585%2525D8%2525A9%252Fwatch%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D2%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D1
Certificate IssuerLet's Encrypt
Subjectinterbuzznews.com
FingerprintB5:C4:C7:F0:3F:BC:50:A9:21:50:39:B8:F8:2E:7E:72:56:62:E7:33
ValidityFri, 22 Sep 2023 05:18:00 GMT - Thu, 21 Dec 2023 05:17:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 492x328, components 3\012- data
Hash cec1cefae62b87ac8ffd152fb67c62f3
5ad9ab10582d18882a0460169b8bc163297cfd9b
6b911a21ac38a27da56d277be7c268886f1adc52d6e68bd5169feaf2a76f863c
GET /contents/s/ce/c1/ce/fae62b87ac8ffd152fb67c62f3/01133900792764.jpeg HTTP/1.1
Host: interbuzznews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fcameesse.net%2F12%3Frnd%3D2323334708%26z%3D6508190%26b%3D19427765%26c%3D7595353%26var%3D6297608%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3Dl5MK9pzdKqNzZRMQx_OkDDDXMlrO38lFZYwTmDCmn5kNeHzzl7ApeHEbGxOPlmil_rRUx6L4jYEkOTwJSJCPOsu7XAVVFLtvyyO7hMv55VdJ9XJtvIm31YeYxFuxGdcoMZEFf8QYyHGBo3ZY9miNewqtMoDvud1s_EeelsK8_CnrhnaZIsSsW7CzIZlaoJwCjMbMvZJFB9cPElpC5K4G_6h27p0_AWgl7pun9UuIhLC018N7xXrbV4dwmo0D_BQXgbQ-3Mnc4hx57ltu59VMK-R4shEWnOoHeUlFwuplM2MF9qeE4srPkmrshhrEBg52GM5Oe3mJo3NgT8vmAFNPBw62Zx_gogRNIPtwl4jbh5IgrFu12chNW321YGHVqvKkNq-YlZ5Mm7Ml0cA_FpxZ8IiOLRog7aUVTaWQOzjeKXwWHGz2R-i5Y5HOP9tKKltCN8LLqRZQRC0G5MUgjW0jMl89QHvuffrAQMGtSMXvFRwqJqEEQEEtasSM_ie0OI7oTwbNBoCioUIhy8YtjxRgJkKenx-Kzi9zGG5-YhWSkkcv8yq59QvYsLvwz_ulp14hBfKnKb5bbLqBRPoVOI9p-32nxF0Rbpnnx6J0aPuJonyiiMzIfJrN0HIbtyuBSvLby3-DIcakayulnmn4RqWWnXa-Z8mUQwjARaz4Vg%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D004e16e1-e78d-4768-87bd-c609cebe25e6%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fweb3.topcinema.top%252F%2525D9%252585%2525D8%2525B3%2525D9%252584%2525D8%2525B3%2525D9%252584-anne-with-an-e-%2525D8%2525A7%2525D9%252584%2525D9%252585%2525D9%252588%2525D8%2525B3%2525D9%252585-%2525D8%2525A7%2525D9%252584%2525D8%2525A7%2525D9%252588%2525D9%252584-%2525D8%2525A7%2525D9%252584%2525D8%2525AD%2525D9%252584%2525D9%252582%2525D8%2525A9-1-%2525D9%252585%2525D8%2525AA%2525D8%2525B1%2525D8%2525AC%2525D9%252585%2525D8%2525A9%252Fwatch%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D2%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 27 Nov 2023 22:35:31 GMT
content-type: image/jpeg
content-length: 75924
last-modified: Thu, 23 Feb 2023 08:55:31 GMT
vary: Accept-Encoding
etag: "63f72a03-12894"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
cameesse.net/11?rnd=66574676&z=6508190&b=19427765&var=6297608&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=l5MK9pzdKqNzZRMQx_OkDDDXMlrO38lFZYwTmDCmn5kNeHzzl7ApeHEbGxOPlmil_rRUx6L4jYEkOTwJSJCPOsu7XAVVFLtvyyO7hMv55VdJ9XJtvIm31YeYxFuxGdcoMZEFf8QYyHGBo3ZY9miNewqtMoDvud1s_EeelsK8_CnrhnaZIsSsW7CzIZlaoJwCjMbMvZJFB9cPElpC5K4G_6h27p0_AWgl7pun9UuIhLC018N7xXrbV4dwmo0D_BQXgbQ-3Mnc4hx57ltu59VMK-R4shEWnOoHeUlFwuplM2MF9qeE4srPkmrshhrEBg52GM5Oe3mJo3NgT8vmAFNPBw62Zx_gogRNIPtwl4jbh5IgrFu12chNW321YGHVqvKkNq-YlZ5Mm7Ml0cA_FpxZ8IiOLRog7aUVTaWQOzjeKXwWHGz2R-i5Y5HOP9tKKltCN8LLqRZQRC0G5MUgjW0jMl89QHvuffrAQMGtSMXvFRwqJqEEQEEtasSM_ie0OI7oTwbNBoCioUIhy8YtjxRgJkKenx-Kzi9zGG5-YhWSkkcv8yq59QvYsLvwz_ulp14hBfKnKb5bbLqBRPoVOI9p-32nxF0Rbpnnx6J0aPuJonyiiMzIfJrN0HIbtyuBSvLby3-DIcakayulnmn4RqWWnXa-Z8mUQwjARaz4Vg==&ruid=004e16e1-e78d-4768-87bd-c609cebe25e6&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fweb3.topcinema.top%2F%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-anne-with-an-e-%25D8%25A7%25D9%2584%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-%25D8%25A7%25D9%2584%25D8%25A7%25D9%2588%25D9%2584-%25D8%25A7%25D9%2584%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-1-%25D9%2585%25D8%25AA%25D8%25B1%25D8%25AC%25D9%2585%25D8%25A9%2Fwatch%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
200 OK 0 B URL GET HTTP/2 cameesse.net/11?rnd=66574676&z=6508190&b=19427765&var=6297608&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=l5MK9pzdKqNzZRMQx_OkDDDXMlrO38lFZYwTmDCmn5kNeHzzl7ApeHEbGxOPlmil_rRUx6L4jYEkOTwJSJCPOsu7XAVVFLtvyyO7hMv55VdJ9XJtvIm31YeYxFuxGdcoMZEFf8QYyHGBo3ZY9miNewqtMoDvud1s_EeelsK8_CnrhnaZIsSsW7CzIZlaoJwCjMbMvZJFB9cPElpC5K4G_6h27p0_AWgl7pun9UuIhLC018N7xXrbV4dwmo0D_BQXgbQ-3Mnc4hx57ltu59VMK-R4shEWnOoHeUlFwuplM2MF9qeE4srPkmrshhrEBg52GM5Oe3mJo3NgT8vmAFNPBw62Zx_gogRNIPtwl4jbh5IgrFu12chNW321YGHVqvKkNq-YlZ5Mm7Ml0cA_FpxZ8IiOLRog7aUVTaWQOzjeKXwWHGz2R-i5Y5HOP9tKKltCN8LLqRZQRC0G5MUgjW0jMl89QHvuffrAQMGtSMXvFRwqJqEEQEEtasSM_ie0OI7oTwbNBoCioUIhy8YtjxRgJkKenx-Kzi9zGG5-YhWSkkcv8yq59QvYsLvwz_ulp14hBfKnKb5bbLqBRPoVOI9p-32nxF0Rbpnnx6J0aPuJonyiiMzIfJrN0HIbtyuBSvLby3-DIcakayulnmn4RqWWnXa-Z8mUQwjARaz4Vg==&ruid=004e16e1-e78d-4768-87bd-c609cebe25e6&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fweb3.topcinema.top%2F%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-anne-with-an-e-%25D8%25A7%25D9%2584%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-%25D8%25A7%25D9%2584%25D8%25A7%25D9%2588%25D9%2584-%25D8%25A7%25D9%2584%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-1-%25D9%2585%25D8%25AA%25D8%25B1%25D8%25AC%25D9%2585%25D8%25A9%2Fwatch%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerLet's Encrypt
Subjectcameesse.net
Fingerprint95:AE:4C:29:A9:9F:0C:04:38:32:00:81:30:07:95:A7:F8:B0:77:D6
ValidityWed, 18 Oct 2023 10:27:53 GMT - Tue, 16 Jan 2024 10:27:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /11?rnd=66574676&z=6508190&b=19427765&var=6297608&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=l5MK9pzdKqNzZRMQx_OkDDDXMlrO38lFZYwTmDCmn5kNeHzzl7ApeHEbGxOPlmil_rRUx6L4jYEkOTwJSJCPOsu7XAVVFLtvyyO7hMv55VdJ9XJtvIm31YeYxFuxGdcoMZEFf8QYyHGBo3ZY9miNewqtMoDvud1s_EeelsK8_CnrhnaZIsSsW7CzIZlaoJwCjMbMvZJFB9cPElpC5K4G_6h27p0_AWgl7pun9UuIhLC018N7xXrbV4dwmo0D_BQXgbQ-3Mnc4hx57ltu59VMK-R4shEWnOoHeUlFwuplM2MF9qeE4srPkmrshhrEBg52GM5Oe3mJo3NgT8vmAFNPBw62Zx_gogRNIPtwl4jbh5IgrFu12chNW321YGHVqvKkNq-YlZ5Mm7Ml0cA_FpxZ8IiOLRog7aUVTaWQOzjeKXwWHGz2R-i5Y5HOP9tKKltCN8LLqRZQRC0G5MUgjW0jMl89QHvuffrAQMGtSMXvFRwqJqEEQEEtasSM_ie0OI7oTwbNBoCioUIhy8YtjxRgJkKenx-Kzi9zGG5-YhWSkkcv8yq59QvYsLvwz_ulp14hBfKnKb5bbLqBRPoVOI9p-32nxF0Rbpnnx6J0aPuJonyiiMzIfJrN0HIbtyuBSvLby3-DIcakayulnmn4RqWWnXa-Z8mUQwjARaz4Vg==&ruid=004e16e1-e78d-4768-87bd-c609cebe25e6&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fweb3.topcinema.top%2F%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-anne-with-an-e-%25D8%25A7%25D9%2584%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-%25D8%25A7%25D9%2584%25D8%25A7%25D9%2588%25D9%2584-%25D8%25A7%25D9%2584%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-1-%25D9%2585%25D8%25AA%25D8%25B1%25D8%25AC%25D9%2585%25D8%25A9%2Fwatch%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web3.topcinema.top
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/
Cookie: scm=1; OAID=ff63c18fb7424abda367f71fef0c514d; oaidts=1701124530
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 27 Nov 2023 22:35:32 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://web3.topcinema.top
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: f67b06982f827ac8cd606b4426be6992
access-control-expose-headers: X-Sc
set-cookie: OAID=ff63c18fb7424abda367f71fef0c514d; expires=Tue, 26 Nov 2024 22:35:32 GMT; secure; SameSite=None
oaidts=1701124530; expires=Tue, 26 Nov 2024 22:35:32 GMT; secure; SameSite=None
oaidvc=1; expires=Tue, 26 Nov 2024 22:35:32 GMT; secure; SameSite=None
CNT=1_v1_tXEoAQEAAADoTAAA; expires=Mon, 27 Nov 2023 23:35:32 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
site-assets.fontawesome.com/releases/v6.1.1/css/all.css
200 OK 498 kB URL GET HTTP/2 site-assets.fontawesome.com/releases/v6.1.1/css/all.css
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (65360)
Size 498 kB (498160 bytes)
Hash 325672b036bab9b57f6873aed5eccc43
264f5db348311950380ad1bca79754ff593d87e2
a35f901d01118e5649091bd03ac5784a7db52e111fb3806524c412f3d1dcfc5d
GET /releases/v6.1.1/css/all.css HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 27 Nov 2023 22:35:29 GMT
content-type: text/css
x-amz-id-2: Y1TmNuBPJ2aktX68kJThHqHYS+UBzLzvigLuxqSKGropAjQHJXqctJ8cMj8EZaj3hWZqBw7vjseo/ptPWK0rIs/nC5bnGezhyLprTTXGcJA=
x-amz-request-id: 9ZNBHYHZ9G1WY9FS
last-modified: Tue, 22 Mar 2022 15:39:41 GMT
etag: W/"325672b036bab9b57f6873aed5eccc43"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 418811
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd8348c0a56c7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
vidtube.pro/js/jquery.min.js
200 OK 90 kB URL GET HTTP/3 vidtube.pro/js/jquery.min.js
IP
Requested by https://vidtube.pro/embed-pvs7hchgv53u.html
Certificate IssuerLet's Encrypt
Subjectvidtube.pro
Fingerprint1A:83:9E:B6:DD:C2:BF:7D:A6:C5:AF:FA:F5:3E:FD:ED:9D:7C:EE:6C
ValiditySun, 15 Oct 2023 22:16:32 GMT - Sat, 13 Jan 2024 22:16:31 GMT
File type ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /js/jquery.min.js HTTP/1.1
Host: vidtube.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidtube.pro/embed-pvs7hchgv53u.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 27 Nov 2023 22:35:30 GMT
content-type: application/javascript
last-modified: Tue, 02 Mar 2021 23:27:20 GMT
etag: W/"15d9d-5bc9613642600"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6841
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r2jTXJAlPtgu2oPlf4IDvsGYcdToJtFwNieVxS%2BDoPvNBAp9C0ctGRg8PDI3pYxxrPUc53p3dtVs%2FNlDN07LLD1aPiUGh%2BcuvUhBBNxSKj%2BhgyUa0Fj3ymBMTKXVCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd83afc135696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cameesse.net/27/b7af9eee900df9a8aa2af9ad8ee46174
200 OK 413 kB URL GET HTTP/2 cameesse.net/27/b7af9eee900df9a8aa2af9ad8ee46174
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerLet's Encrypt
Subjectcameesse.net
Fingerprint95:AE:4C:29:A9:9F:0C:04:38:32:00:81:30:07:95:A7:F8:B0:77:D6
ValidityWed, 18 Oct 2023 10:27:53 GMT - Tue, 16 Jan 2024 10:27:52 GMT
File type ASCII text, with very long lines (65523)
Size 413 kB (412914 bytes)
Hash 1dc3ebe1459db3cde0597b21156f2665
0e5a8c7b79a34f4fffaeab7c7eb4f3a19b0d75f6
1a3f7f2cfe5fba958e9df1a38c0980aab5bb21225601ea849f9e6df4afe09f2e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /27/b7af9eee900df9a8aa2af9ad8ee46174 HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/
Cookie: scm=1; OAID=219d6cd5a8ec424d91cda7fe19e84f78; oaidts=1701124530
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 27 Nov 2023 22:35:30 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 0d9e43bafdf209061de76f39a425b0d9
cache-control: max-age:290304000, public
last-modified: Fri, 24 Nov 2023 06:46:08 GMT
expires: Fri, 24 Dec 2083 06:46:08 GMT
access-control-expose-headers: X-Sc
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
web3.topcinema.top/wp-content/themes/movies2023/UI/fonts/Bahij_TheSansArabic-Bold.ttf
200 OK 306 kB URL GET HTTP/3 web3.topcinema.top/wp-content/themes/movies2023/UI/fonts/Bahij_TheSansArabic-Bold.ttf
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerGoogle Trust Services LLC
Subjecttopcinema.top
FingerprintE9:EB:03:48:94:9D:1A:1C:01:13:68:7D:CF:0A:15:DD:AC:2D:FC:74
ValidityMon, 20 Nov 2023 00:50:42 GMT - Sun, 18 Feb 2024 00:50:41 GMT
File type TrueType Font data, digitally signed, 15 tables, 1st "BASE", 34 names, Macintosh, \251 2013 Bahij Virtual Academy. All rights reserved.RegularBahij TheSansArabic Bold:Version 1.\012- data
Size 306 kB (305580 bytes)
Hash 7c587dafe989d542263d86ce681883bd
f54f028ef5e8b1bd8125be2b50fcb25fa83fc454
4ebe3fc6c3842b134af2a8be389f87e92b048ff1ef7d7d96c9a18d2a1b1baaad
GET /wp-content/themes/movies2023/UI/fonts/Bahij_TheSansArabic-Bold.ttf HTTP/1.1
Host: web3.topcinema.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 27 Nov 2023 22:35:29 GMT
content-type: font/ttf
last-modified: Thu, 18 May 2023 18:46:59 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3397
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nDPwGkzmzvqz4DHN597lzJeWc1%2BHGz%2B4HQsq7MEXPORh4%2FOqwg25ds2XxJJksB%2BgCfxB2X18btqHGw3NU%2B17WVt%2F40foGmEWw51Xqj0R2NinQREZ4ZpIm3%2FqZIOj9ZZOhcGgoO8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd836bc5056c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
vidtube.cam/player/jw8/jwplayer.core.controls.html5.js
200 OK 372 kB URL GET HTTP/3 vidtube.cam/player/jw8/jwplayer.core.controls.html5.js
IP
Requested by https://vidtube.pro/embed-pvs7hchgv53u.html
Certificate IssuerGoogle Trust Services LLC
Subjectvidtube.cam
Fingerprint43:52:66:E2:FA:FC:A2:23:CD:C8:0A:BA:74:CD:46:CA:31:ED:79:7F
ValiditySat, 28 Oct 2023 11:31:54 GMT - Fri, 26 Jan 2024 11:31:53 GMT
Size 372 kB (371791 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player/jw8/jwplayer.core.controls.html5.js HTTP/1.1
Host: vidtube.cam
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidtube.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 27 Nov 2023 22:35:30 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=371813
etag: W/"5ac65-5ef352eead3c0"
last-modified: Wed, 07 Dec 2022 04:16:23 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3705
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vmxBDv4%2FvAAGN691F%2B2dYAO1XSXivW8SlZppICaBQZwiTIjb4It1l5EEH6Yq0QLCovRkSOzg%2BcDTfjSowwd24JVfcEW%2B1336uyi8CqmT789z3PSvrp0L91VwLMIUzw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd83d7c55b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
interbuzznews.com/contents/s/1c/09/63/75a534c6a2bf3b7f1ca702d1c7/0114732544225.jpeg
200 OK 9.3 kB URL GET HTTP/2 interbuzznews.com/contents/s/1c/09/63/75a534c6a2bf3b7f1ca702d1c7/0114732544225.jpeg
IP
Requested by https://interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fcameesse.net%2F12%3Frnd%3D2323334708%26z%3D6508190%26b%3D19427765%26c%3D7595353%26var%3D6297608%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3Dl5MK9pzdKqNzZRMQx_OkDDDXMlrO38lFZYwTmDCmn5kNeHzzl7ApeHEbGxOPlmil_rRUx6L4jYEkOTwJSJCPOsu7XAVVFLtvyyO7hMv55VdJ9XJtvIm31YeYxFuxGdcoMZEFf8QYyHGBo3ZY9miNewqtMoDvud1s_EeelsK8_CnrhnaZIsSsW7CzIZlaoJwCjMbMvZJFB9cPElpC5K4G_6h27p0_AWgl7pun9UuIhLC018N7xXrbV4dwmo0D_BQXgbQ-3Mnc4hx57ltu59VMK-R4shEWnOoHeUlFwuplM2MF9qeE4srPkmrshhrEBg52GM5Oe3mJo3NgT8vmAFNPBw62Zx_gogRNIPtwl4jbh5IgrFu12chNW321YGHVqvKkNq-YlZ5Mm7Ml0cA_FpxZ8IiOLRog7aUVTaWQOzjeKXwWHGz2R-i5Y5HOP9tKKltCN8LLqRZQRC0G5MUgjW0jMl89QHvuffrAQMGtSMXvFRwqJqEEQEEtasSM_ie0OI7oTwbNBoCioUIhy8YtjxRgJkKenx-Kzi9zGG5-YhWSkkcv8yq59QvYsLvwz_ulp14hBfKnKb5bbLqBRPoVOI9p-32nxF0Rbpnnx6J0aPuJonyiiMzIfJrN0HIbtyuBSvLby3-DIcakayulnmn4RqWWnXa-Z8mUQwjARaz4Vg%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D004e16e1-e78d-4768-87bd-c609cebe25e6%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fweb3.topcinema.top%252F%2525D9%252585%2525D8%2525B3%2525D9%252584%2525D8%2525B3%2525D9%252584-anne-with-an-e-%2525D8%2525A7%2525D9%252584%2525D9%252585%2525D9%252588%2525D8%2525B3%2525D9%252585-%2525D8%2525A7%2525D9%252584%2525D8%2525A7%2525D9%252588%2525D9%252584-%2525D8%2525A7%2525D9%252584%2525D8%2525AD%2525D9%252584%2525D9%252582%2525D8%2525A9-1-%2525D9%252585%2525D8%2525AA%2525D8%2525B1%2525D8%2525AC%2525D9%252585%2525D8%2525A9%252Fwatch%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D2%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D1
Certificate IssuerLet's Encrypt
Subjectinterbuzznews.com
FingerprintB5:C4:C7:F0:3F:BC:50:A9:21:50:39:B8:F8:2E:7E:72:56:62:E7:33
ValidityFri, 22 Sep 2023 05:18:00 GMT - Thu, 21 Dec 2023 05:17:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash 1c096375a534c6a2bf3b7f1ca702d1c7
99b923326a9c71c15a252c43e47d586a8936bfb1
e9f457f6e6a31b5e1a741d024c107d10a58df50a62707c7883da864ce7191cc2
GET /contents/s/1c/09/63/75a534c6a2bf3b7f1ca702d1c7/0114732544225.jpeg HTTP/1.1
Host: interbuzznews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fcameesse.net%2F12%3Frnd%3D2323334708%26z%3D6508190%26b%3D19427765%26c%3D7595353%26var%3D6297608%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3Dl5MK9pzdKqNzZRMQx_OkDDDXMlrO38lFZYwTmDCmn5kNeHzzl7ApeHEbGxOPlmil_rRUx6L4jYEkOTwJSJCPOsu7XAVVFLtvyyO7hMv55VdJ9XJtvIm31YeYxFuxGdcoMZEFf8QYyHGBo3ZY9miNewqtMoDvud1s_EeelsK8_CnrhnaZIsSsW7CzIZlaoJwCjMbMvZJFB9cPElpC5K4G_6h27p0_AWgl7pun9UuIhLC018N7xXrbV4dwmo0D_BQXgbQ-3Mnc4hx57ltu59VMK-R4shEWnOoHeUlFwuplM2MF9qeE4srPkmrshhrEBg52GM5Oe3mJo3NgT8vmAFNPBw62Zx_gogRNIPtwl4jbh5IgrFu12chNW321YGHVqvKkNq-YlZ5Mm7Ml0cA_FpxZ8IiOLRog7aUVTaWQOzjeKXwWHGz2R-i5Y5HOP9tKKltCN8LLqRZQRC0G5MUgjW0jMl89QHvuffrAQMGtSMXvFRwqJqEEQEEtasSM_ie0OI7oTwbNBoCioUIhy8YtjxRgJkKenx-Kzi9zGG5-YhWSkkcv8yq59QvYsLvwz_ulp14hBfKnKb5bbLqBRPoVOI9p-32nxF0Rbpnnx6J0aPuJonyiiMzIfJrN0HIbtyuBSvLby3-DIcakayulnmn4RqWWnXa-Z8mUQwjARaz4Vg%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3D004e16e1-e78d-4768-87bd-c609cebe25e6%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fweb3.topcinema.top%252F%2525D9%252585%2525D8%2525B3%2525D9%252584%2525D8%2525B3%2525D9%252584-anne-with-an-e-%2525D8%2525A7%2525D9%252584%2525D9%252585%2525D9%252588%2525D8%2525B3%2525D9%252585-%2525D8%2525A7%2525D9%252584%2525D8%2525A7%2525D9%252588%2525D9%252584-%2525D8%2525A7%2525D9%252584%2525D8%2525AD%2525D9%252584%2525D9%252582%2525D8%2525A9-1-%2525D9%252585%2525D8%2525AA%2525D8%2525B1%2525D8%2525AC%2525D9%252585%2525D8%2525A9%252Fwatch%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D2%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 27 Nov 2023 22:35:31 GMT
content-type: image/jpeg
content-length: 9303
last-modified: Tue, 31 Oct 2023 04:03:52 GMT
vary: Accept-Encoding
etag: "65407ca8-2457"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
web3.topcinema.top/wp-content/themes/movies2023/UI/js/owl.carousel.min.js
200 OK 44 kB URL GET HTTP/3 web3.topcinema.top/wp-content/themes/movies2023/UI/js/owl.carousel.min.js
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerGoogle Trust Services LLC
Subjecttopcinema.top
FingerprintE9:EB:03:48:94:9D:1A:1C:01:13:68:7D:CF:0A:15:DD:AC:2D:FC:74
ValidityMon, 20 Nov 2023 00:50:42 GMT - Sun, 18 Feb 2024 00:50:41 GMT
File type ASCII text, with very long lines (31997)
Hash f416f9031fef25ae25ba9756e3eb6978
e2a600e433df72b4cfde93d7880e3114917a3cbe
a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d
GET /wp-content/themes/movies2023/UI/js/owl.carousel.min.js HTTP/1.1
Host: web3.topcinema.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 27 Nov 2023 22:35:29 GMT
content-type: text/javascript
last-modified: Wed, 16 Feb 2022 10:29:52 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XwAa%2Bo2uOVJkJazrbUmbSZZqvbvUu83paggW8PjvC0f9JCpnm%2F4ta95DJidzESuLBinI0oOsbLJddEHwcjMtXJCKj5P8dq23hdaslswlEZex5LvbEGMJnvSt9AUwaBNOBewjLKE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd83399a656c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
vidtube.cam/player/jw8/jwplayer.js?v=2
200 OK 121 kB URL GET HTTP/2 vidtube.cam/player/jw8/jwplayer.js?v=2
IP
Requested by https://vidtube.pro/embed-pvs7hchgv53u.html
Certificate IssuerGoogle Trust Services LLC
Subjectvidtube.cam
Fingerprint43:52:66:E2:FA:FC:A2:23:CD:C8:0A:BA:74:CD:46:CA:31:ED:79:7F
ValiditySat, 28 Oct 2023 11:31:54 GMT - Fri, 26 Jan 2024 11:31:53 GMT
Size 121 kB (120875 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player/jw8/jwplayer.js?v=2 HTTP/1.1
Host: vidtube.cam
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidtube.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 27 Nov 2023 22:35:30 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=120878
etag: W/"1d82e-5ef356be49180"
last-modified: Wed, 07 Dec 2022 04:33:26 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2737
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X90QIK4sWu0g%2BArV7S7HwPp%2F1IVwz%2F6GkClvldqtSRm6YsirvQKESuXmW4M2Da2GvM3wpiIFCV4zSShHdsIZeiAyCKSy8jsQUblOo9glBPZQ%2B%2FNkr%2Frb4kHy%2FxgjCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd83b6af156aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
pl20234767.highcpmrevenuegate.com/ed/d1/17/edd117d1da7a598087a27f7afeb9e8a7.js
200 OK 62 kB URL GET HTTP/1.1 pl20234767.highcpmrevenuegate.com/ed/d1/17/edd117d1da7a598087a27f7afeb9e8a7.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://vidtube.pro/embed-pvs7hchgv53u.html
Certificate IssuerLet's Encrypt
Subjecthighcpmrevenuegate.com
Fingerprint05:55:3B:E2:80:35:3A:08:FB:BB:55:82:83:A5:E5:78:E0:1D:2F:6E
ValidityFri, 29 Sep 2023 07:37:01 GMT - Thu, 28 Dec 2023 07:37:00 GMT
File type ASCII text, with very long lines (62546), with no line terminators
Hash 640eb4502d41a53ab8a3139782135a35
89f6cf02b44da9f678df159cb105fcf5723d0a65
b43ad40ae3451a018f0ccc2258e4e2965ba14dffe61ac8a060511a3d0ad001d1
GET /ed/d1/17/edd117d1da7a598087a27f7afeb9e8a7.js HTTP/1.1
Host: pl20234767.highcpmrevenuegate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidtube.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 27 Nov 2023 22:35:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2f60c5d90d01b8b945c1e17e4c0796bb
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
web3.topcinema.top/wp-content/themes/movies2023/UI/fonts/Bahij_TheSansArabic-Black.ttf
200 OK 308 kB URL GET HTTP/3 web3.topcinema.top/wp-content/themes/movies2023/UI/fonts/Bahij_TheSansArabic-Black.ttf
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerGoogle Trust Services LLC
Subjecttopcinema.top
FingerprintE9:EB:03:48:94:9D:1A:1C:01:13:68:7D:CF:0A:15:DD:AC:2D:FC:74
ValidityMon, 20 Nov 2023 00:50:42 GMT - Sun, 18 Feb 2024 00:50:41 GMT
File type TrueType Font data, digitally signed, 15 tables, 1st "BASE", 34 names, Macintosh, \251 2013 Bahij Virtual Academy. All rights reserved.RegularBahij TheSansArabic Black:Version 1\012- data
Size 308 kB (307476 bytes)
Hash c6072c9e5cd851e297abd7e7b2a26909
3834bfbe53734bd21ac0b0d29135afdf45898d6a
79b549f8a455765299f258649302e195044da82d1556fd45f0218309748156c1
GET /wp-content/themes/movies2023/UI/fonts/Bahij_TheSansArabic-Black.ttf HTTP/1.1
Host: web3.topcinema.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 27 Nov 2023 22:35:29 GMT
content-type: font/ttf
last-modified: Thu, 18 May 2023 18:46:59 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 1654
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wPlP0m00jslxGT8OrhAFq3yqeSKEBF50OTlIEZyTAsKRJU8MM3h0AHDUkj3hf3t8Fh81QPfT8pmJBAK4C8%2FmcJQ8335gKPrMfATfxfXt1hT4jY%2B7yODCu01mkr36dzy%2Blk3D4ro%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd836cc5d56c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
vidtube.pro/js/xupload.js
200 OK 11 kB URL GET HTTP/3 vidtube.pro/js/xupload.js
IP
Requested by https://vidtube.pro/embed-pvs7hchgv53u.html
Certificate IssuerLet's Encrypt
Subjectvidtube.pro
Fingerprint1A:83:9E:B6:DD:C2:BF:7D:A6:C5:AF:FA:F5:3E:FD:ED:9D:7C:EE:6C
ValiditySun, 15 Oct 2023 22:16:32 GMT - Sat, 13 Jan 2024 22:16:31 GMT
Hash e7cb7dae1da48c74b41563b936111f97
bda176bc9fd4060d50006cd31d8c25453362db70
590c624e3400ed1e344d5c44f184356937d2704917289340ec5b099d35d5b9e8
GET /js/xupload.js HTTP/1.1
Host: vidtube.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidtube.pro/embed-pvs7hchgv53u.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 27 Nov 2023 22:35:30 GMT
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 10:18:46 GMT
etag: W/"2a26-5f20e71302d80"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6841
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BPcnBMIDZEN5hgoJwthU620tOks%2Ba3yCHnBi%2F2r7kj01hSFw%2FoottM9mDYlP%2FG6%2BdxE8egOuwPlA20T3oJJrcALSR820Ly7JsEt3f7tgL8pxY2H56zI3x9Xq5atTCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd83afc225696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
vidtube.pro/js/jquery.cookie.js
200 OK 4.3 kB URL GET HTTP/3 vidtube.pro/js/jquery.cookie.js
IP
Requested by https://vidtube.pro/embed-pvs7hchgv53u.html
Certificate IssuerLet's Encrypt
Subjectvidtube.pro
Fingerprint1A:83:9E:B6:DD:C2:BF:7D:A6:C5:AF:FA:F5:3E:FD:ED:9D:7C:EE:6C
ValiditySun, 15 Oct 2023 22:16:32 GMT - Sat, 13 Jan 2024 22:16:31 GMT
File type ASCII text, with very long lines (4427), with no line terminators
Hash c8a0b7f16c38377537c6ab251cb5bc72
528e37de81abf523b92ce0b457cb593983ed347a
e31179e4a4fffc7faee4f95d4f67ce056d12a57c451dee1dae3e9062b126a00e
GET /js/jquery.cookie.js HTTP/1.1
Host: vidtube.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidtube.pro/embed-pvs7hchgv53u.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 27 Nov 2023 22:35:30 GMT
content-type: application/javascript
last-modified: Tue, 31 May 2011 10:53:56 GMT
etag: W/"10eb-4a4903870b900"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2736
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TCRcQcrWeLl7IzZgbPxHXw87ZiuqvJQXfyKvHG44%2FylgrZpqkGEfQ3J2EQZAgbqi2H7Ep0oFoPTIDiDkltY599vHRZPxPEUTu8uhmTqPYtZGCeTMy9auZGTGBxMHjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd83afc255696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cameesse.net/1?z=6508190&var=6297608
200 OK 43 kB URL GET HTTP/2 cameesse.net/1?z=6508190&var=6297608
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerLet's Encrypt
Subjectcameesse.net
Fingerprint95:AE:4C:29:A9:9F:0C:04:38:32:00:81:30:07:95:A7:F8:B0:77:D6
ValidityWed, 18 Oct 2023 10:27:53 GMT - Tue, 16 Jan 2024 10:27:52 GMT
File type ASCII text, with very long lines (41880)
Hash 734fe482642af41ac7d700c0dd38c07e
1b1dce811218125b31065a64a00009fc69453eb1
10fb44fae5782bce26ed733141a27cdd7a5039244a86ecc6089bdca579ef0da9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /1?z=6508190&var=6297608 HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 27 Nov 2023 22:35:30 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 5f73047d3abb4357f1574831016ffcc4
access-control-expose-headers: X-Sc
x-sc: -U168tYA65d2ozCjo7Axgf3ukPvucWwdIlhl_Kw1HOhF9voU9UC5n-PYUbH6VTUXTNici7jAshtXo7KrHqaP-F8U4Dk=
set-cookie: scm=1; expires=Tue, 26 Nov 2024 22:35:30 GMT; secure; SameSite=None
OAID=219d6cd5a8ec424d91cda7fe19e84f78; expires=Tue, 26 Nov 2024 22:35:30 GMT; secure; SameSite=None
oaidts=1701124530; expires=Tue, 26 Nov 2024 22:35:30 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
server-hls2-stream-c15.cdn-tube.xyz/v/02/00033/pvs7hchgv53u_x/x.mp4?t=-nYBEsDs_dK_XtixSxlaEf_2BWW0n190G0oBk9cxuL4&s=1701124529&e=86400&f=165411&sp=30000&i=0.0
0 B URL GET server-hls2-stream-c15.cdn-tube.xyz/v/02/00033/pvs7hchgv53u_x/x.mp4?t=-nYBEsDs_dK_XtixSxlaEf_2BWW0n190G0oBk9cxuL4&s=1701124529&e=86400&f=165411&sp=30000&i=0.0
IP
Requested by https://vidtube.pro/embed-pvs7hchgv53u.html
Certificate IssuerGlobalSign nv-sa
Subject*.cdn-tube.xyz
Fingerprint91:88:4D:59:5F:9C:0C:BA:5C:B6:4F:77:46:E7:F0:0F:18:CF:B4:53
ValidityThu, 04 May 2023 16:23:01 GMT - Tue, 04 Jun 2024 16:23:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v/02/00033/pvs7hchgv53u_x/x.mp4?t=-nYBEsDs_dK_XtixSxlaEf_2BWW0n190G0oBk9cxuL4&s=1701124529&e=86400&f=165411&sp=30000&i=0.0 HTTP/1.1
Host: server-hls2-stream-c15.cdn-tube.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://vidtube.pro/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 206 Partial Content
Server: nginx
Date: Mon, 27 Nov 2023 22:35:31 GMT
Content-Type: video/mp4
Content-Length: 1807931067
Last-Modified: Wed, 11 Oct 2023 08:49:50 GMT
Connection: keep-alive
ETag: "652661ae-6bc2d6bb"
Access-Control-Allow-Origin: *
Content-disposition: attachment
Content-Range: bytes 0-1807931066/1807931067
vidtube.pro/css/main.css
200 OK 49 kB IP
Requested by https://vidtube.pro/embed-pvs7hchgv53u.html
Certificate IssuerLet's Encrypt
Subjectvidtube.pro
Fingerprint1A:83:9E:B6:DD:C2:BF:7D:A6:C5:AF:FA:F5:3E:FD:ED:9D:7C:EE:6C
ValiditySun, 15 Oct 2023 22:16:32 GMT - Sat, 13 Jan 2024 22:16:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /css/main.css HTTP/1.1
Host: vidtube.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidtube.pro/embed-pvs7hchgv53u.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 27 Nov 2023 22:35:30 GMT
content-type: text/css
last-modified: Tue, 15 Aug 2023 09:18:00 GMT
etag: W/"c05b-602f2a7c04200"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1467
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1bnxmbrV4GlItuK9c64gs9tBvBt%2BXH3m7W1ZIKaACBJ4tcTuUCGLWnjxcAsKSmPYEJ4b7sY7TeWGPmX51Ovsdrk%2BTx8MbKOrJVZtXh4T1PWi0e9dMBCg8rjiIqL%2Faw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd83afc125696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
site-assets.fontawesome.com/releases/v6.1.1/webfonts/fa-solid-900.woff2
200 OK 329 kB URL GET HTTP/2 site-assets.fontawesome.com/releases/v6.1.1/webfonts/fa-solid-900.woff2
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 329204, version 769.768\012- data
Size 329 kB (329204 bytes)
Hash 6ebcf9f18ded9c54f71ec1198c32aa52
06695b645047b29c333edac0c78a97922a135ad9
f350c708b5e7748a452b4b98600fa49127166d995686e260ccafb58d51a4ea62
GET /releases/v6.1.1/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web3.topcinema.top
DNT: 1
Connection: keep-alive
Referer: https://site-assets.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 27 Nov 2023 22:35:30 GMT
content-type: font/woff2
content-length: 329204
x-amz-id-2: +eiB11UosHXwIE7aMhX0z0fWjXumaE+5OnmJZ1TXSbwg/SvoiCbOVvG5MTPkbviAXywf+Z07cGE=
x-amz-request-id: R5T8NEVMZ62881Q0
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 22 Mar 2022 15:42:55 GMT
etag: "6ebcf9f18ded9c54f71ec1198c32aa52"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 410306
accept-ranges: bytes
server: cloudflare
cf-ray: 82cdd838cedb712b-OSL
X-Firefox-Spdy: h2
vidtube.cam/js/dnsads.js?ads=1&AdType=1&cbrandom=2&clicktag=http
200 OK 30 B URL GET HTTP/2 vidtube.cam/js/dnsads.js?ads=1&AdType=1&cbrandom=2&clicktag=http
IP
Requested by https://vidtube.pro/embed-pvs7hchgv53u.html
Certificate IssuerGoogle Trust Services LLC
Subjectvidtube.cam
Fingerprint43:52:66:E2:FA:FC:A2:23:CD:C8:0A:BA:74:CD:46:CA:31:ED:79:7F
ValiditySat, 28 Oct 2023 11:31:54 GMT - Fri, 26 Jan 2024 11:31:53 GMT
File type ASCII text, with no line terminators
Hash 1c57f7e83ceae8ee7d8707cf3eb91c2c
ca5b7c4bf30cbdb6a4680ee5345d5c68e90d0675
cdf19c04fc4fd1992d9cf69ee0ef7c83d03dfa4f6998f06c8d73611f5a6d1740
GET /js/dnsads.js?ads=1&AdType=1&cbrandom=2&clicktag=http HTTP/1.1
Host: vidtube.cam
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidtube.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 27 Nov 2023 22:35:30 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=38
etag: W/"26-5cbe0be937180"
last-modified: Mon, 13 Sep 2021 13:50:14 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2737
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JSi0mZLkbpEdK1GM2e555xCcpmXLJ%2F8D6lcl0gCUf8xTTSWrecaObgEkBHmK6aJd6Z31Z1oCkG%2BZuZUz2uwIXbZ4ho34S%2BxDEbyN89UXf4Hew84pgfw69YlDfd3SdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd83b7af956aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
200 OK 86 kB URL GET HTTP/2 friendshipmale.com/sfp.js
IP
Requested by https://vidtube.pro/embed-pvs7hchgv53u.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidtube.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 27 Nov 2023 22:35:31 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 5442dd59ed4923ea08d24033072e4127
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Mon, 27 Nov 2023 22:35:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jrVCP5W2JyTCssK1Y6MNt%2B9QCkKV31dUfxi0xHnWdgwXygEJdEU2Af4BuxUyqqkrw%2B76Afx9qvY%2FxPO93jYjV7rNpHdGxwBxpliYn1rCA3lUuBHKhGAKLAZ9qnOHRbMVAGtA81U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd8422e2f63ae-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
web3.topcinema.top/wp-content/themes/movies2023/Init.js?1931454924
200 OK 9.2 kB URL GET HTTP/3 web3.topcinema.top/wp-content/themes/movies2023/Init.js?1931454924
IP
Requested by https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Certificate IssuerGoogle Trust Services LLC
Subjecttopcinema.top
FingerprintE9:EB:03:48:94:9D:1A:1C:01:13:68:7D:CF:0A:15:DD:AC:2D:FC:74
ValidityMon, 20 Nov 2023 00:50:42 GMT - Sun, 18 Feb 2024 00:50:41 GMT
File type Unicode text, UTF-8 text, with very long lines (10149), with no line terminators
Hash e5719c6067dbc3034e4a6eb063570bd2
af4cc9b20fdd2f31fb13b6dc372926608608e177
65961350b3b7f5ee8c8eafa83a6704ae83b0db4ec4e741527dea360fefab7b13
GET /wp-content/themes/movies2023/Init.js?1931454924 HTTP/1.1
Host: web3.topcinema.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web3.topcinema.top/%D9%85%D8%B3%D9%84%D8%B3%D9%84-anne-with-an-e-%D8%A7%D9%84%D9%85%D9%88%D8%B3%D9%85-%D8%A7%D9%84%D8%A7%D9%88%D9%84-%D8%A7%D9%84%D8%AD%D9%84%D9%82%D8%A9-1-%D9%85%D8%AA%D8%B1%D8%AC%D9%85%D8%A9/watch/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 27 Nov 2023 22:35:29 GMT
content-type: text/javascript
last-modified: Mon, 05 Jun 2023 23:03:37 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QTAuXa1D6z0ibHCanzliG0QgS1VexfvYU9qtR9OAjh1v%2BrczyGDlmyaoXF4hW%2Fi%2FBUIn5hJ9uAFofDa%2BhspTiUf9i9KLEUaZRnR8ndOmNQh%2Bk%2B7CYI1ULGaNLToGPQIF5RzvcgI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd83399a756c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
vidtube.pro/js/localstorage-slim.js
200 OK 2.1 kB URL GET HTTP/3 vidtube.pro/js/localstorage-slim.js
IP
Requested by https://vidtube.pro/embed-pvs7hchgv53u.html
Certificate IssuerLet's Encrypt
Subjectvidtube.pro
Fingerprint1A:83:9E:B6:DD:C2:BF:7D:A6:C5:AF:FA:F5:3E:FD:ED:9D:7C:EE:6C
ValiditySun, 15 Oct 2023 22:16:32 GMT - Sat, 13 Jan 2024 22:16:31 GMT
File type ASCII text, with very long lines (2081), with no line terminators
Hash 08a1ba68560486fde4d74f0ab0f313da
8f4068b45f2e731f146611d0d7b03d6bb0241876
9993f955d5c1239c7ec7a87a364032c892d0271761871b02b702eb2b632494f7
GET /js/localstorage-slim.js HTTP/1.1
Host: vidtube.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidtube.pro/embed-pvs7hchgv53u.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 27 Nov 2023 22:35:30 GMT
content-type: application/javascript
last-modified: Tue, 16 Nov 2021 12:32:06 GMT
etag: W/"810-5d0e71cfe3d80"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1072
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8Nx6siP5exedQQnR0h1KY59P8kaOxQB9FtKEVQXNO52MyM%2BjY9dSrqvjr9Sss4IypHK9bAYvBVPxTcfr4JiV4gj57HTV1kac5PPvhNIIskP3Fnewf7hQWf4rgEyLFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cdd83b0c3d5696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://vidtube.pro/embed-pvs7hchgv53u.html
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash cf42285ac05e445a5b3d16005c2a12b8
dafa75e4d6455f56ed1b2735ee387ee2943beb4c
8a5c316915973888e6501e93fdbee20c2ca967c7b91e35632e704e5eac6d0551
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vidtube.pro
DNT: 1
Connection: keep-alive
Referer: https://vidtube.pro/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 27 Nov 2023 22:35:31 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://vidtube.pro
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=d7db8dc9-84fa-411f-811c-6037b2faa3b6:2:1; expires=Thu, 24 Nov 2033 22:35:31 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
104.21.60.210
139.45.197.154
192.243.59.12
195.154.174.31
18.157.203.0
0.0.0.0