Report - videzz.net/embed-ubajah218krs.html

Report Overview

Submitted URL
videzz.net/embed-ubajah218krs.html
IP
78.142.18.54
ASN
#208046 ColocationX Ltd.
Submitted
2024-04-25 08:25:54
Access
public
Website Title
Vidoza
Final URL
videzz.net/embed-ubajah218krs.html
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
46

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-24	905 B	13 kB	104.17.24.14
www.google.no	25607	2001-02-26	2016-04-05	2024-04-24	575 B	578 B	172.217.21.163
cdn.o333o.com	158144	2015-02-16	2015-05-28	2024-03-08	395 B	311 kB	108.157.214.56
cache49.vidoza.net	unknown	unknown	No data	No data	1.5 kB	210 kB	0.0.0.0
static.addtoany.com	4091	2006-03-10	2012-05-21	2024-04-24	4.5 kB	91 kB	172.67.39.148
xml.cachegorilla.com	unknown	2021-07-23	2023-11-27	2024-03-08	561 B	139 B	173.239.53.20
veepteero.com	unknown	2023-05-08	2023-05-09	2024-04-20	1.5 kB	7.5 kB	139.45.197.242
tr.7vid.net	unknown	2018-07-27	2023-12-16	2024-03-08	2.0 kB	115 kB	135.181.208.216
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-04-24	914 B	710 B	35.158.46.84
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18	2024-04-24	1.0 kB	110 kB	104.18.10.207
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-25	1.0 kB	33 kB	142.250.74.163
my.rtmark.net	9054	2014-10-29	2015-02-04	2024-04-24	453 B	739 B	139.45.195.8
unseenreport.com	unknown	2022-03-30	2022-03-30	2024-04-24	1.5 kB	846 B	192.243.61.227
profitablegatecpm.com	unknown	2024-02-05	2024-02-06	2024-04-18	435 B	17 kB	172.240.108.68
s.o333o.com	unknown	2015-02-16	2015-03-05	2024-04-23	389 B	1.2 kB	85.10.205.45
experimentalpersecute.com	unknown	unknown	No data	No data	7.6 kB	48 kB	172.240.108.68
myliveforyoudreder.com	unknown	2023-07-27	2023-07-27	2024-03-08	404 B	2.3 kB	104.21.40.134
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-25	418 B	7.6 kB	142.250.74.106
ossgogoaton.com	unknown	2022-04-18	2022-04-18	2024-02-03	397 B	74 kB	188.114.97.1
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-25	1.3 kB	418 kB	142.250.74.136
xml.zeusadx.com	330930	2019-08-07	2019-09-23	2024-03-08	1.1 kB	276 B	174.137.133.17
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15	2024-04-24	2.0 kB	112 kB	188.114.97.1
tzegilo.com	unknown	2022-01-14	2022-01-14	2024-04-20	393 B	20 kB	104.21.11.245
aistekso.net	unknown	2023-10-16	2023-10-16	2024-04-20	924 B	92 kB	139.45.197.244
allvideometrika.com	unknown	2022-05-16	2022-05-16	2024-04-18	520 B	705 B	172.67.214.245
region1.analytics.google.com	unknown	1997-09-15	2022-03-17	2024-04-23	1.5 kB	862 B	216.239.34.36
architecturecultivated.com	unknown	unknown	No data	No data	488 B	467 B	192.243.61.227
cdn.itskiddien.club	unknown	2022-10-06	2022-10-06	2024-03-04	1.7 kB	99 kB	139.45.197.236
videzz.net	unknown	2024-02-28	2024-03-04	2024-04-18	7.5 kB	1.9 MB	78.142.18.54
kr.cafenehkikki.com	unknown	2024-02-08	2024-02-22	2024-04-18	400 B	1.2 kB	23.109.170.241
bid.bidclickmedia.com	unknown	2022-09-19	2023-03-09	2024-03-08	6.9 kB	151 kB	172.67.205.77
zv.7vid.net	unknown	2018-07-27	2023-07-29	2024-04-18	591 B	7.8 kB	135.181.208.216
cdn.yourwebbars.com	62037	2020-08-21	2021-01-29	2024-04-21	502 B	2.3 kB	172.67.74.218
vv.7vid.net	unknown	2018-07-27	2023-08-25	2023-11-25	391 B	77 kB	135.181.208.216
xml.xmlking.com	unknown	2020-07-27	2020-11-12	2024-04-20	1.7 kB	413 B	174.137.133.17
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-04-24	405 B	28 kB	172.67.180.87
fleraprt.com	unknown	2022-01-14	2022-01-14	2024-04-20	559 B	478 B	139.45.195.254

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-25	medium	videzz.net	Sinkholed
2024-04-25	medium	videzz.net	Sinkholed
2024-04-25	medium	videzz.net	Sinkholed
2024-04-25	medium	videzz.net	Sinkholed
2024-04-25	medium	cafenehkikki.com	Sinkholed
2024-04-25	medium	videzz.net	Sinkholed
2024-04-25	medium	unseenreport.com	Sinkholed
2024-04-25	medium	unseenreport.com	Sinkholed
2024-04-25	medium	fleraprt.com	Sinkholed
2024-04-25	medium	tzegilo.com	Sinkholed
2024-04-25	medium	videzz.net	Sinkholed
2024-04-25	medium	videzz.net	Sinkholed
2024-04-25	medium	veepteero.com	Sinkholed
2024-04-25	medium	videzz.net	Sinkholed
2024-04-25	medium	videzz.net	Sinkholed
2024-04-25	medium	veepteero.com	Sinkholed
2024-04-25	medium	videzz.net	Sinkholed
2024-04-25	medium	videzz.net	Sinkholed
2024-04-25	medium	ossgogoaton.com	Sinkholed
2024-04-25	medium	videzz.net	Sinkholed
2024-04-25	medium	videzz.net	Sinkholed
2024-04-25	medium	videzz.net	Sinkholed
2024-04-25	medium	videzz.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (72)

	URL	Size	First Seen	Last Seen
	static.addtoany.com/menu/page.js	3.0 kB	2024-04-12	2024-05-05
Pretty URL static.addtoany.com/menu/page.js IP 172.67.39.148 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 02:34:00 Last Seen2024-05-05 04:22:32 Times Seen693 Hash 5f984fdd1d3384220c67422c1f544a95 79c8a48b5fab47972dd69ce7dfd08cee895006b5 6e0cc78c402cbc02fdfd41cd77c5fd6ffbd8066cc07935ea8eb5f3fcc59744a3 Loading...

	videzz.net/embed-ubajah218krs.html	162 B	2023-03-07	2024-05-05
Pretty URL videzz.net/embed-ubajah218krs.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:08:16 Last Seen2024-05-05 04:22:32 Times Seen101 Hash 035c117549bb95ad0992ae461d89e44e 2f45bc18613030f169e7c8ef25553df24e7003b6 0d89ce1d538634aeb6d56fa061bb107311c5daaa1c59aed01cb4e18c48081a96 Loading...

	videzz.net/js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42	416 kB	2023-03-07	2024-05-05
Pretty URL videzz.net/js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:08:16 Last Seen2024-05-05 04:22:32 Times Seen102 Hash 9721700ae4b3d8e0e81f9c6c1c8d511b 1c987ebb7fac787eaa3b2190c9b53bb685d5b8ea d4098ce7457b5191970d2df49c8b8f6c2ffc0d8510673777a08910f0b68d5c2f Loading...

	videzz.net/js/jquery.min.js	96 kB	2023-03-07	2024-05-05
Pretty URL videzz.net/js/jquery.min.js IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-05 04:22:32 Times Seen47021 Hash 8101d596b2b8fa35fe3a634ea342d7c3 d6c1f41972de07b09bfa63d2e50f9ab41ec372bd 540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441 Loading...

	videzz.net/embed-ubajah218krs.html	357 B	2023-03-07	2024-05-05
Pretty URL videzz.net/embed-ubajah218krs.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:08:16 Last Seen2024-05-05 04:22:32 Times Seen101 Hash 824c86e507e4c27bb34b991feedb5820 06bd36505ef9492db28ebb53c740d5c17d4516b4 0c45ee272e41a3a37bb7d5a0881665e4d54b762e20921cdb145bf5539fe4f551 Loading...

	unknown	658 B	2023-12-02	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-02 22:02:09 Last Seen2024-05-05 04:22:32 Times Seen18 Hash f2a627f60c3e858d02c665cb50e29998 cf946e95e052f6c63ec09abbfd64890f893b9341 74b81147b6d910383e801b755eabad4dc3df3f82e797aa8fa720bb00497cfc76 Loading...

	unknown	660 B	2023-12-02	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-02 22:02:10 Last Seen2024-05-05 04:22:32 Times Seen15 Hash 6fd1be1abc624d10186974c2a6ef4502 8d975476c4defc975a3ca622558427daec6c3f38 44adf544834a165ce516122963884d91f0aaa353c313e469faea995aed849fab Loading...

	unknown	662 B	2023-12-02	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-02 22:02:10 Last Seen2024-05-05 04:22:32 Times Seen15 Hash 2a5e6e1741ecff15c9b8353884d70b4e b3c484dd4bdf6d7d89aa3d13a26e66ee253ef318 2a4a2bc469d46ae85dae6362bfd3a172c38404575b09d80bae244c664dd8af83 Loading...

	videzz.net/sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42	42 kB	2023-03-07	2024-05-05
Pretty URL videzz.net/sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:08:16 Last Seen2024-05-05 04:22:32 Times Seen160 Hash 764aafd976dd9cd9f33279bfafa02908 e9ad856ec00bccfdcbe17b79113681685c943b8d 2c20e295faeb1ef24dae1e26caa5089fdb2ba5a36a86a6a26780b8a515ca99aa Loading...

	videzz.net/embed-ubajah218krs.html	87 B	2023-03-08	2024-05-05
Pretty URL videzz.net/embed-ubajah218krs.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 20:28:37 Last Seen2024-05-05 04:22:32 Times Seen67 Hash 0a672ce747f1a359a1a6ef6d23ea6202 47662e53c52c0e4d4004acd5c72d4fd34f8fc439 49013788910cc5aee4e70354bdde9cce7f9c9912a142dd141622a68bb9d2293f Loading...

	static.addtoany.com/menu/svg/icons/twitter.js	645 B	2024-04-12	2024-05-05
Pretty URL static.addtoany.com/menu/svg/icons/twitter.js IP 172.67.39.148 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 16:11:45 Last Seen2024-05-05 04:22:33 Times Seen116 Hash ca05cf90bd32d6134c0b92464c343f9a 187feb5cc71d225717838268487a0abc9b8d405c 3003867b66a32c12fdafeefc27cf06d906e5a99ba275550ab757f4bb04834636 Loading...

	aistekso.net/401/5708419	88 kB	2024-04-23	2024-04-25
Pretty URL aistekso.net/401/5708419 IP 139.45.197.244 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 23:11:54 Last Seen2024-04-25 10:26:03 Times Seen9 Hash 2e942160674d0ebc4f7675fe73ef15fe 10ed07d481858610a5ce62f2be590262fc686c1b 84e8033b8ddb4058c785b6a7fa2971d4843af80d17e7167d14cc5362aa1bb3ab Loading...

	videzz.net/embed-ubajah218krs.html	42 B	2023-03-12	2024-05-05
Pretty URL videzz.net/embed-ubajah218krs.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 17:26:16 Last Seen2024-05-05 04:22:32 Times Seen44 Hash ef7ab1eb5fe88b692b3d8d65ff95a2c4 1339642288bd1758b6b3864292da22d085349752 c2ba1c539107eb3a3ceb346cf19e3ba42b4e7104ac2c96dd5495aafb48d0b021 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-56DK3TH	204 kB	2024-04-25	2024-04-25
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-56DK3TH IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 10:26:02 Last Seen2024-04-25 10:26:03 Times Seen2 Hash c3cee89dad2c413dd67bd34d8a194a6f 31cab38af53d2d59d7ee89dfd61687348ff95183 6ca41be428b2ab0433d54d5e9d29ef693333cb61efc8b7ae465f910b957419bf Loading...

	videzz.net/js/videojs.stm.5.min.js?0.759016567108013	7.2 kB	2024-03-08	2024-05-05
Pretty URL videzz.net/js/videojs.stm.5.min.js?0.759016567108013 IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-08 05:50:53 Last Seen2024-05-05 04:22:32 Times Seen64 Hash 4630f52d883cdd6dc5b7e0aee209fe40 ae08102d07ab32e76d5dbd12fa7db315e6f51f4e b74ebfdefad877a934b2e7d38afb3a56ad4db4ebbd88a72b7ae4a44fad74c0d3 Loading...

	tr.7vid.net/api/users/59846?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&sid=150e7b28-dbb7-4623-9143-4f0aba0e8833&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908	638 B	2024-04-25	2024-04-25
Pretty URL tr.7vid.net/api/users/59846?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&sid=150e7b28-dbb7-4623-9143-4f0aba0e8833&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908 IP 135.181.208.216 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 10:26:02 Last Seen2024-04-25 10:26:02 Times Seen1 Hash c3632e255dd49902a645996da97b79df c50bc2e20b56ff383957dd3479391def04ed956f 8d328ca741d506e3a1726d6a64c5e31c15da880001608c1280f6fd01ef558410 Loading...

	videzz.net/embed-ubajah218krs.html	388 B	2024-01-07	2024-05-05
Pretty URL videzz.net/embed-ubajah218krs.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-07 20:19:39 Last Seen2024-05-05 04:22:32 Times Seen7 Hash 96a496a5bf450a896816f85c31924113 801e85a60ef83b8a62d9baab51e19fd87939bab5 2c11a4117b0af03ef327bea399f1fd132e66e97a6fc001ebe9ac831845f25baf Loading...

	unknown	627 B	2023-10-28	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-28 00:22:41 Last Seen2024-05-05 04:22:32 Times Seen13 Hash d9334270bd31fdac18496fe7cd079dfb e073469dca5a3738953b029031ce516484ef8d8f 130a71372360348a1038494c9302c2adb48133f40cf352112d9dd0753b6fa69e Loading...

	videzz.net/embed-ubajah218krs.html	82 B	2023-03-07	2024-05-05
Pretty URL videzz.net/embed-ubajah218krs.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:08:17 Last Seen2024-05-05 04:22:32 Times Seen97 Hash 67b70174cc2854586ec824f84b79d825 c9bde16aa4e39ab912e1a20fe298b028a3432596 a979d312087118fa753a8ed59077b51936c9595eb2a37cd369a6b4f579eebafd Loading...

	videzz.net/embed-ubajah218krs.html	488 B	2023-03-07	2024-05-05
Pretty URL videzz.net/embed-ubajah218krs.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:08:16 Last Seen2024-05-05 04:22:32 Times Seen97 Hash c88a098ddb34ae8eb653079349e1eb71 c273d06595b90b3f3eadde95865d4fd88a2cdc4a f8be9aff934fb09a35261e76d411268402098e38f3c1468679a0ffddf96cb8cd Loading...

	videzz.net/sandbox%20eval%20code	147 B	2023-04-11	2024-05-05
Pretty URL videzz.net/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-05 07:18:38 Times Seen344870 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	videzz.net/js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42	159 kB	2023-03-07	2024-05-05
Pretty URL videzz.net/js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:08:17 Last Seen2024-05-05 04:22:32 Times Seen177 Hash 7c33538390b466ae717449d729bb32ea 49ea1eb1dc06467f516eae28e09863a23b244a31 a2f37fa7aee9e9248856735b807b028c93be60eb6bb9916595ba123690513f02 Loading...

	videzz.net/js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42	4.5 kB	2023-03-08	2024-05-05
Pretty URL videzz.net/js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:28:37 Last Seen2024-05-05 04:22:32 Times Seen69 Hash b3415295ff8e1f9ac2ee3804686e8000 aa440d72b1f380d6b63cea2615984bddfd78c3d0 e5b0442a1e812c047177f669bec8d9f81678b0e26d4cc98c642a00da19ccb1b7 Loading...

	videzz.net/embed-ubajah218krs.html	1.9 kB	2024-04-25	2024-04-25
Pretty URL videzz.net/embed-ubajah218krs.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 10:26:02 Last Seen2024-04-25 10:26:02 Times Seen1 Hash 0051fa2b64a0d52c6bccb8cc500d6b7e 336ee3c17b76ae56ed876888d4b62cf109f18b35 aa98e5e6b89eaf4dae86ae16e63f90621f636006f450517b821733afc2133ac2 Loading...

	www.googletagmanager.com/gtag/js?id=UA-158623850-1	203 kB	2024-04-25	2024-04-25
Pretty URL www.googletagmanager.com/gtag/js?id=UA-158623850-1 IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 10:26:02 Last Seen2024-04-25 10:26:03 Times Seen2 Hash d7f4d57ef9a70aed720518476fd1d798 ea08103de4bcdd7b92b1bfca91a5ec581bbf0b91 8150b3c07ba636d74dc403b014d1dbfb0a7493336643fb80a2dba7d8d87e97f4 Loading...

	unknown	652 B	2023-11-02	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 00:44:33 Last Seen2024-05-05 04:22:32 Times Seen19 Hash 90a7fb6f3fd2e87d1af6ef8356ae8573 8a88de6448927a9008ddf081f9bc5473c3b59e67 a7e229056bbef6f07db2831da9341f40f48d71f93f4fff8c29e325c1e721c4cc Loading...

	videzz.net/embed-ubajah218krs.html	1.9 kB	2023-03-26	2024-05-05
Pretty URL videzz.net/embed-ubajah218krs.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-26 09:32:06 Last Seen2024-05-05 04:22:32 Times Seen82 Hash 82e1ab0f6fb26e1a626e1ad6812a2e50 ff89302fd6c7736cfe3c0ce1bea0da569a763ced c1133cdc2ae23220a521a156d0edc736cea501341435673899a05f4d54597373 Loading...

	static.addtoany.com/menu/svg/icons/reddit.js	893 B	2024-04-16	2024-05-05
Pretty URL static.addtoany.com/menu/svg/icons/reddit.js IP 172.67.39.148 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 17:58:32 Last Seen2024-05-05 04:22:32 Times Seen94 Hash 408cc755e613b4f00fbe10d7411ed087 14341990ed687477b3addbdd1a3b50ae8a98589b 68ed9b82b62d45cf5d12587a7e9566a4ddeb94d69bcb225e9e3c7268c76b3cbb Loading...

	vv.7vid.net/lx4oag1.js	239 kB	2024-03-22	2024-05-05
Pretty URL vv.7vid.net/lx4oag1.js IP 135.181.208.216 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-22 21:45:50 Last Seen2024-05-05 04:22:32 Times Seen409 Hash a6781eeb8be115c2cc64c5b4898e5b9d 76001e6e130f936956842ce1fb672ca16be2370e cb8949c4918f30d767c8a97d1b1ddb36eabccf8d93659a80f4e850caa3701da2 Loading...

	unknown	623 B	2023-10-28	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-28 00:22:42 Last Seen2024-05-05 04:22:32 Times Seen13 Hash 448bf6ba1a81b08fc827beeab1762a8f aa93a42c463893e0753c4b8ef2a1a4536fe79ee1 ba80fe3447201708f905503a252055c3593ce907fbce00c61770f33d63e83710 Loading...

	profitablegatecpm.com/fd/40/b6/fd40b682a05e4aaf489d29601350aa66.js	44 kB	2024-04-25	2024-04-25
Pretty URL profitablegatecpm.com/fd/40/b6/fd40b682a05e4aaf489d29601350aa66.js IP 172.240.108.68 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 10:26:02 Last Seen2024-04-25 10:26:03 Times Seen2 Hash 79b83588110115b2404d429040de8205 769e09f3a1676f0127dcf84e299b7833c485202d 202c94169509a99d34a64570980befa4ba02182766c18ab77be5c0315e9f2697 Loading...

	unknown	656 B	2023-12-02	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-02 22:02:10 Last Seen2024-05-05 04:22:32 Times Seen18 Hash 0cb63a542cc8304f1b414eb985b358d8 62b35a29974ed7788d74efbbf6f37bc0603a7a57 f1a1ce1f8c7cfcebe82f6c3e05267fcdc1d052073de83232c3f65a6a246a927c Loading...

	static.addtoany.com/menu/svg/icons/viber.js	1.0 kB	2024-04-12	2024-05-05
Pretty URL static.addtoany.com/menu/svg/icons/viber.js IP 172.67.39.148 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 13:25:33 Last Seen2024-05-05 04:22:32 Times Seen99 Hash aeffbbeba6dd343b89fdc22cdf23f8c8 7be9f0a8fbd22f85cd4408ed04b69e98cbb79de7 c38246b300667ea8ab28940a729e65168f981baf8adc8d708c299e85b9e2dcee Loading...

	www.googletagmanager.com/gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c	271 kB	2024-04-25	2024-04-25
Pretty URL www.googletagmanager.com/gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 10:26:02 Last Seen2024-04-25 10:26:04 Times Seen2 Hash 654dc403ce211fa269e9ce221dce228c 69e2419cd190ab6261efbe5e4a03df62ad02d241 7d88cd944c8dfe0284bb72fc2bd3cb3a13e4ad3d84381468bbd78ed9212122f8 Loading...

	experimentalpersecute.com/f1/77/6d/f1776d24271c5ad55c5f1492e2d01e10.js	84 kB	2024-04-25	2024-04-25
Pretty URL experimentalpersecute.com/f1/77/6d/f1776d24271c5ad55c5f1492e2d01e10.js IP 172.240.108.68 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 10:26:02 Last Seen2024-04-25 10:26:03 Times Seen2 Hash 4064c95911f26f0a365fab91cc68dad7 83674c8832dc988f7ca8a39cc2e5c54dbf020df7 acfd3b98af82ba8712f4740296a4c35c5e6230604ec0ea9c080024e6555cbd60 Loading...

	ossgogoaton.com/tag.min.js	72 kB	2024-04-24	2024-04-25
Pretty URL ossgogoaton.com/tag.min.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 21:32:31 Last Seen2024-04-25 10:26:04 Times Seen12 Hash ad104d6838b1598223e097ad025c7da6 6fd1a44f70d7f2674c98ea85b5659b6b9df72a3d 4a5fefe9aad006d46bc209cd5626fa7d1585f4bc04488ca993ab005ef66388d1 Loading...

	videzz.net/embed-ubajah218krs.html	1.9 kB	2023-05-14	2024-05-05
Pretty URL videzz.net/embed-ubajah218krs.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-14 23:54:05 Last Seen2024-05-05 04:22:32 Times Seen81 Hash a692b14c46b795baddef6cde7925aec0 83421ee7434ca7916a53f711c1a207c04e264e3c 0a136fef0aef4b2b4d90057c95c48e84618ecebe376ad324594150d0b8588f90 Loading...

	static.addtoany.com/menu/locale/ru.js	2.1 kB	2023-03-07	2024-05-05
Pretty URL static.addtoany.com/menu/locale/ru.js IP 172.67.39.148 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:27 Last Seen2024-05-05 04:22:32 Times Seen122 Hash c0717dc8cde3baa722c4e7d4c12a2cb0 6e8702b80bdcbe0cd5fc183ce582b2add61d0863 cde5eaa4da56876821229a97a09a4b53e929ea30b7310848d0e84212a5137397 Loading...

	myliveforyoudreder.com/vidozza.js	1.6 kB	2023-03-08	2024-05-05
Pretty URL myliveforyoudreder.com/vidozza.js IP 104.21.40.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:28:37 Last Seen2024-05-05 04:22:32 Times Seen122 Hash b340619418518ced51fbbc860814ea19 e2cbf47a089e8941bcdb6f24c64fad9004852348 ebbf367cc151e337e4c4d375e86682b6e1593b25224c6c733b4cea4f507c4000 Loading...

	unknown	601 B	2024-01-07	2024-05-02
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-07 20:19:39 Last Seen2024-05-02 18:06:25 Times Seen20 Hash 1c412859cf3521fcfc7f9c33db7b2b43 63cfd2acf51f4c834cea7a6b61f0adf7fac10ba7 2e55c494ab73e28a67592bd3c6cacb8fa0b0624b72909a79e84fa3ff3aa78fd7 Loading...

	tzegilo.com/stattag.js	19 kB	2024-02-10	2024-05-05
Pretty URL tzegilo.com/stattag.js IP 104.21.11.245 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-10 03:00:18 Last Seen2024-05-05 05:21:33 Times Seen1556 Hash 70ebd404c2e1e7bad13998538b56887c 86e57af8ba3cfc2c004da3311835f6b54ba6d848 d71ea61938136a384e4c53c5a7a3c36e68fcc70a68bae691e270987d5d2eb11f Loading...

	videzz.net/embed-ubajah218krs.html	221 B	2024-04-25	2024-04-25
Pretty URL videzz.net/embed-ubajah218krs.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 10:26:02 Last Seen2024-04-25 10:26:02 Times Seen1 Hash 3cc91dbd6eabb583d00d8eac1b9858fb c80cf1ed183e2d6b654bd7686d4a9f30731adebf 64dff1310addbeb0df7a2d2258da88c0c974bde49b1a02114a2ddfcdde88d40c Loading...

	kr.cafenehkikki.com/1clkn/14903	6 B	2023-03-07	2024-05-05
Pretty URL kr.cafenehkikki.com/1clkn/14903 IP 23.109.170.241 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:04 Last Seen2024-05-05 04:22:32 Times Seen14248 Hash 9082dc37e5e8046929da411544ad071a 41e0e3963ed94e59e8a2f115994c382712411537 b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550 Loading...

	static.addtoany.com/menu/svg/icons/facebook.js	429 B	2024-04-12	2024-05-05
Pretty URL static.addtoany.com/menu/svg/icons/facebook.js IP 172.67.39.148 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 16:11:44 Last Seen2024-05-05 04:22:32 Times Seen118 Hash 014bcc757e484e12e3aea6c9d768fd4b 4c17157d0012f8002e4e6cf77c5f4a9747792cf4 4b475960843a5619b907af1f0a89e3136bd5e6a4a700ec78cb417f302647cf49 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-05
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-05 07:18:38 Times Seen344364 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2024-03-29	2024-05-05
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 172.67.180.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 13:13:34 Last Seen2024-05-05 07:16:50 Times Seen2217 Hash f4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716 Loading...

	cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js	18 kB	2023-03-07	2024-05-05
Pretty URL cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-05-05 04:22:33 Times Seen2857 Hash 12dd498bf90c536803c2aad708b66c2b 5f9363d39a405d1c94328cf2303ff4a05c0ad163 c4e20f53f5ef0ed44b783437aa3f4638a9a56cc4aa29ae83ed9212eb2807052a Loading...

	videzz.net/embed-ubajah218krs.html	1.9 kB	2023-09-20	2024-05-05
Pretty URL videzz.net/embed-ubajah218krs.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-20 05:49:22 Last Seen2024-05-05 04:22:32 Times Seen70 Hash ea18635ebabe6012d41f9fe215f59b54 4bb7351c02f51a2d10b55eb8daecf0862aec3db7 4e69daf6970b0700406f701311ff61bf0623749d951327a09de054a9906c8056 Loading...

	unknown	625 B	2023-10-28	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-28 00:22:41 Last Seen2024-05-05 04:22:32 Times Seen13 Hash c792d5d07a8195cc1c0c3391296d9540 c251471b68199fd4baf055ec3a6fe010f2878a71 d0ddb0d20e6a09a1dbc9fe02f3d386995f163f0dc403301fb2692ec7eeb94cfe Loading...

	videzz.net/embed-ubajah218krs.html	1.9 kB	2023-09-20	2024-05-05
Pretty URL videzz.net/embed-ubajah218krs.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-20 05:49:22 Last Seen2024-05-05 04:22:32 Times Seen70 Hash af6177bd7ff00168d56dcbb2dfad8aad b0565c811d5bc5e2b4923cc1194a81126512010c 68848e296ab0993815dd2ae9efbb9b41e1bddf7d57aafd1ce37fcb6588b09901 Loading...

	s.o333o.com/adgpt.js	2.0 kB	2024-03-22	2024-05-05
Pretty URL s.o333o.com/adgpt.js IP 85.10.205.45 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-22 21:45:49 Last Seen2024-05-05 04:22:32 Times Seen219 Hash 55f8db8e0ec58b646f0b5425b405fdd0 0c79af1239cafc7ec4783f20b0b886a61daccc09 3ec8849ba857ec32cdc682ea93f0c1f8e8ab97980af4f1d8ec312684ed0f5237 Loading...

	static.addtoany.com/menu/svg/icons/whatsapp.js	1.1 kB	2024-04-12	2024-05-05
Pretty URL static.addtoany.com/menu/svg/icons/whatsapp.js IP 172.67.39.148 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 13:25:33 Last Seen2024-05-05 04:22:32 Times Seen108 Hash 0e8b3ac6bda5451ff39c5ecd6d7b3873 fb477a11167000a30e45369e686ec43dd62d026b c15e1379ca2c59f99912500bbc23a0d1d88f43198cbe1b53d87776fa351385eb Loading...

	cdn.o333o.com/vast-im.js	310 kB	2024-03-22	2024-05-05
Pretty URL cdn.o333o.com/vast-im.js IP 108.157.214.56 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-22 21:45:50 Last Seen2024-05-05 04:22:32 Times Seen234 Hash 04bdb2fd7797c33d38ad8a6a0997b389 a69a0999b9106aa1e49a6728c84b3e82b899276d 3039a1d2d40fce3b96ce115bc8fb858539ed084667fb0ee69fe68e0a682d9286 Loading...

	cdn.itskiddien.club/apu.php?zoneid=5902452&var=5708419&branchId=150121	84 kB	2024-04-25	2024-04-25
Pretty URL cdn.itskiddien.club/apu.php?zoneid=5902452&var=5708419&branchId=150121 IP 139.45.197.236 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 10:26:02 Last Seen2024-04-25 10:26:03 Times Seen2 Hash 8f8005e86fcc013ba8c5f0e2a5b7cb6a 2011590c4aaaef39e63f6fdfa5f0d450205f3dcf 1a8a1128f250431b48e623f0875d87ae78d9de4020e84df6f144d02e2e0d8543 Loading...

	static.addtoany.com/menu/sm.25.html#type=core&event=load	0 B	2023-03-07	2024-05-05
Pretty URL static.addtoany.com/menu/sm.25.html#type=core&event=load IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-05 07:47:29 Times Seen37355398 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	videzz.net/js/pop.js?v=1.0	35 B	2023-03-07	2024-05-05
Pretty URL videzz.net/js/pop.js?v=1.0 IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:29 Last Seen2024-05-05 04:22:32 Times Seen199 Hash da4bf5414bf75eefb21872f9b59fe6fc e34335e0705397a4ad02c406a2e92333e6d2b0e5 d48b428c1788391a1aef29802daaa691077732dc7b821d0968831bc50b19278d Loading...

	videzz.net/js/ads.js?v=1.0	211 B	2023-03-07	2024-05-05
Pretty URL videzz.net/js/ads.js?v=1.0 IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:08:16 Last Seen2024-05-05 04:22:32 Times Seen183 Hash 09f34de71e8853387dd398fbb263af69 4ccb7007fcebcffe64eaa80f2991509fdbac55d5 6ca7e6aebc6e3eec26d39e540e255a738fd9e48e9b97bd0e2a714686377ac523 Loading...

	unknown	654 B	2023-12-02	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-02 22:02:09 Last Seen2024-05-05 04:22:32 Times Seen18 Hash 23fc70c20089168d050ef5eaddbf7ee6 5a80fea5f23400aae85a0cda6e784a7630713a27 b62d7d1ce2825740f2bf6ee197b23ee9e4f2c4189fca72142c4fa049588e665e Loading...

	static.addtoany.com/menu/modules/core.BRQnzO8v.js	72 kB	2024-04-12	2024-05-05
Pretty URL static.addtoany.com/menu/modules/core.BRQnzO8v.js IP 172.67.39.148 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 02:34:00 Last Seen2024-05-05 04:22:34 Times Seen1031 Hash 629401c31553d2f42a6ca46e58c2a97b 0ab6084caa72f90913c7e4119f491838726ec5c2 91b9b24f0aa59668e4d0a770ee7a294b9baa361a76a20ade8128cd0482a5d805 Loading...

	videzz.net/embed-ubajah218krs.html	1.9 kB	2023-12-02	2024-05-05
Pretty URL videzz.net/embed-ubajah218krs.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-02 22:02:10 Last Seen2024-05-05 04:22:32 Times Seen61 Hash 861dcaf645aae37b6316256c150d9dfb 3a9f80b6a4bf4c7807b354238ee1092098ef0592 8580955f289133f8987846865a71337744c9e2f39defb5c7bad0df0752a47ae7 Loading...

	videzz.net/js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42	140 kB	2023-03-08	2024-05-05
Pretty URL videzz.net/js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:32:59 Last Seen2024-05-05 04:22:32 Times Seen102 Hash 8986804e792bac03d992cfa0d65281de 4a406ba9ac7ead8cfc1d181c6abd2340dae2bf44 e94d1a4f4bfe4d0efd8dc95e86573d32172fa8a0f08ee328c377962379bd9295 Loading...

	static.addtoany.com/menu/svg/icons/telegram.js	360 B	2023-03-08	2024-05-05
Pretty URL static.addtoany.com/menu/svg/icons/telegram.js IP 172.67.39.148 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:33:09 Last Seen2024-05-05 04:22:32 Times Seen840 Hash 48f25c508c92c3601cf047609318001f 59117e825084c63a0dda48edec82c14a60e16f23 6415561e892cf9d614e7179f71353af4ceadfd641d71c42fe54c9420eb0d0138 Loading...

	videzz.net/embed-ubajah218krs.html	416 B	2023-03-07	2024-05-05
Pretty URL videzz.net/embed-ubajah218krs.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:08:16 Last Seen2024-05-05 04:22:32 Times Seen101 Hash 7b2ab585a733a8e54eb7117dbe673331 38ba49b934ea93104d43c095a34cbebabee2416b 161196e2eb45160ec056dcf19476aaf0a8694cd099ce5ddb43f53f58fa86d0d8 Loading...

	videzz.net/embed-ubajah218krs.html	604 B	2023-03-07	2024-05-05
Pretty URL videzz.net/embed-ubajah218krs.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:08:16 Last Seen2024-05-05 04:22:32 Times Seen101 Hash 3f51f1dc48435128b95bc2f1354a7a17 1baedda0ccf0cdaaa29bf441fcfe0c5fb2f8d4d4 9a3b5d51bd26f5549b2a1ca571835e3c1f0beede7826fd81566bdbc1dad656e9 Loading...

	videzz.net/embed-ubajah218krs.html	0 B	2023-03-07	2024-05-05
Pretty URL videzz.net/embed-ubajah218krs.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-05 07:47:29 Times Seen37355398 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	tr.7vid.net/api/users/424503?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&sid=150e7b28-dbb7-4623-9143-4f0aba0e8833&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908	674 B	2024-04-25	2024-04-25
Pretty URL tr.7vid.net/api/users/424503?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&sid=150e7b28-dbb7-4623-9143-4f0aba0e8833&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908 IP 135.181.208.216 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 10:26:03 Last Seen2024-04-25 10:26:03 Times Seen1 Hash 7e0882fd231df1becb63db54a15dd1d3 df938bb161df27a83004a66454492bf7d5544d7c 5397cb71eba3f6cac254045b5a26e69429358788228c5d77b41d97b81840fc7a Loading...

		Size	First Seen	Last Seen
	#1 Eval - 73497a37c3561adbd8ce84e4f017b368	9 B	2023-03-07	2024-05-05
Pretty Observations First Seen2023-03-07 01:03:23 Last Seen2024-05-05 05:13:32 Times Seen2268 Hash 73497a37c3561adbd8ce84e4f017b368 9193ae73cb3dd2833be8c942714d5544bfb628c9 9312a1adbbf0a4c05fc296d158ec3bd39acfe50e9e98ff02688139aad6fc3351 Loading...

		Size	First Seen	Last Seen
	#1 Write - 7aea427efe0ebb35cac7f6c65074feaa	613 B	2023-03-26	2024-05-05
Pretty Observations First Seen2023-03-26 09:32:06 Last Seen2024-05-05 04:22:32 Times Seen82 Hash 7aea427efe0ebb35cac7f6c65074feaa 7f7025ff75b6c305cf0f7258c68dcc5c3b787ea6 d72f60419e2549dc6934524845bed150c6aa5e1541b5eac18dd5c145f40d2857 Loading...

	#2 Write - 43449de866396eb0131d8111f4fa3895	613 B	2023-05-14	2024-05-05
Pretty Observations First Seen2023-05-14 23:54:06 Last Seen2024-05-05 04:22:32 Times Seen81 Hash 43449de866396eb0131d8111f4fa3895 d74126ea9f2c40f8395c79b3e7f69760f91702fc a67ffe15bbd54d8f4cc64a1e458fc3b742f73783efb009b827b9cf3e9b502add Loading...

	#3 Write - c661bb9a7cc33ed4849427e94a91858c	614 B	2023-09-20	2024-05-05
Pretty Observations First Seen2023-09-20 05:49:23 Last Seen2024-05-05 04:22:32 Times Seen70 Hash c661bb9a7cc33ed4849427e94a91858c 4be38292beb83aa1b58a668283dfe08ed97d7a42 e56ca9ad4497b40fd4b7c14e2c5e6c5b58563af9cb588188992d2189d22dc477 Loading...

	#4 Write - bf6e0ef92ae84c6ac72a2e33e3bd0ba5	614 B	2023-09-20	2024-05-05
Pretty Observations First Seen2023-09-20 05:49:23 Last Seen2024-05-05 04:22:32 Times Seen70 Hash bf6e0ef92ae84c6ac72a2e33e3bd0ba5 dd276e9188ea2de2da9b957adbb91c7e2b08d4ec 5f5f7af99db9aecf63f1ae5480d2b95a82e350abcdd3a765f5537235d12a4744 Loading...

	#5 Write - ab34ea7c979c46402352a8ce4c7b87cf	614 B	2023-12-02	2024-05-05
Pretty Observations First Seen2023-12-02 22:02:11 Last Seen2024-05-05 04:22:32 Times Seen61 Hash ab34ea7c979c46402352a8ce4c7b87cf 4ec90223aeea83fe3850db77b92c11eed50c99d3 fd21c10a5b8c554e00e76da6ce58475053e414d4280741ed032a857cf9876978 Loading...

HTTP Transactions (101)

URL IP Response Size

www.googletagmanager.com/gtag/js?id=UA-158623850-1

142.250.74.136

200 OK

73 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-158623850-1
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
73 kB (73389 bytes)
Hash
d7f4d57ef9a70aed720518476fd1d798
ea08103de4bcdd7b92b1bfca91a5ec581bbf0b91
8150b3c07ba636d74dc403b014d1dbfb0a7493336643fb80a2dba7d8d87e97f4

HTTP Headers

GET /gtag/js?id=UA-158623850-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 08:25:25 GMT
expires: Thu, 25 Apr 2024 08:25:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73389
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

videzz.net/js/pop.js?v=1.0

78.142.18.54

200 OK

35 B

URL GET HTTP/2
videzz.net/js/pop.js?v=1.0
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5
ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT

File type
ASCII text
Size
35 B (35 bytes)
Hash
da4bf5414bf75eefb21872f9b59fe6fc
e34335e0705397a4ad02c406a2e92333e6d2b0e5
d48b428c1788391a1aef29802daaa691077732dc7b821d0968831bc50b19278d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/pop.js?v=1.0 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-ubajah218krs.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: application/javascript
content-length: 35
last-modified: Wed, 10 Apr 2024 07:00:32 GMT
etag: "66163910-23"
expires: Sat, 25 May 2024 08:23:01 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

videzz.net/js/ads.js?v=1.0

78.142.18.54

200 OK

211 B

URL GET HTTP/2
videzz.net/js/ads.js?v=1.0
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5
ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT

File type
Unicode text, UTF-8 text
Size
211 B (211 bytes)
Hash
09f34de71e8853387dd398fbb263af69
4ccb7007fcebcffe64eaa80f2991509fdbac55d5
6ca7e6aebc6e3eec26d39e540e255a738fd9e48e9b97bd0e2a714686377ac523

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/ads.js?v=1.0 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-ubajah218krs.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: application/javascript
content-length: 211
last-modified: Wed, 10 Apr 2024 07:00:40 GMT
etag: "66163918-d3"
expires: Sat, 25 May 2024 08:23:07 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

tr.7vid.net/LrfK7A3.js

135.181.208.216

200 OK

77 kB

URL GET HTTP/2
tr.7vid.net/LrfK7A3.js
IP
135.181.208.216:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjecta.gatwins.site
Fingerprint66:D4:C4:E9:BC:6E:82:9E:D0:2F:00:69:9A:DF:C2:6D:18:04:0B:1B
ValidityWed, 10 Apr 2024 10:27:11 GMT - Tue, 09 Jul 2024 10:27:10 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Size
77 kB (76790 bytes)
Hash
a6781eeb8be115c2cc64c5b4898e5b9d
76001e6e130f936956842ce1fb672ca16be2370e
cb8949c4918f30d767c8a97d1b1ddb36eabccf8d93659a80f4e850caa3701da2

HTTP Headers

GET /LrfK7A3.js HTTP/1.1
Host: tr.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: application/javascript
content-length: 76790
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
vary: Accept-Encoding
etag: "65fd69b1-12bf6"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 201
cf-ray: 8685d408ccf5d995-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2

videzz.net/images-newtheme/adb_logo.png

78.142.18.54

200 OK

8.3 kB

URL GET HTTP/2
videzz.net/images-newtheme/adb_logo.png
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5
ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT

File type
PNG image data, 178 x 178, 8-bit/color RGBA, non-interlaced
Size
8.3 kB (8308 bytes)
Hash
98fcd22c469a5aa46df8ec4e7a8eafc9
e8d95f175d3008736995a482d7304410a1da490a
b1e79e219bf46ca5ef14a9619c5440e78c2ebdbc34b8f0c65f0777a8b02fc30c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images-newtheme/adb_logo.png HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-ubajah218krs.html
Cookie: lang=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: image/png
content-length: 8308
last-modified: Wed, 10 Apr 2024 07:00:32 GMT
etag: "66163910-2074"
expires: Sat, 25 May 2024 08:23:12 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

videzz.net/images-newtheme/attention.png

78.142.18.54

200 OK

6.4 kB

URL GET HTTP/2
videzz.net/images-newtheme/attention.png
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5
ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT

File type
PNG image data, 263 x 231, 8-bit/color RGBA, non-interlaced
Size
6.4 kB (6377 bytes)
Hash
d28ebe1b4425fa4ab5d804792b5aa626
3183e2c59cdaed547de5fb1fc940709ed5117003
36fc8d817d7a356b2b8e8697697a5ce86bedadfea8df2a4e88f9514bb1ce02f6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images-newtheme/attention.png HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-ubajah218krs.html
Cookie: lang=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: image/png
content-length: 6377
last-modified: Wed, 10 Apr 2024 07:00:32 GMT
etag: "66163910-18e9"
expires: Sat, 25 May 2024 08:23:25 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

vv.7vid.net/lx4oag1.js

135.181.208.216

200 OK

77 kB

URL GET HTTP/2
vv.7vid.net/lx4oag1.js
IP
135.181.208.216:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subject0i.sh-cdn.com
Fingerprint24:B9:80:92:9A:AB:42:74:B0:D4:5F:04:68:CF:32:5F:5E:42:BC:53
ValidityFri, 05 Apr 2024 23:27:08 GMT - Thu, 04 Jul 2024 23:27:07 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Size
77 kB (76790 bytes)
Hash
a6781eeb8be115c2cc64c5b4898e5b9d
76001e6e130f936956842ce1fb672ca16be2370e
cb8949c4918f30d767c8a97d1b1ddb36eabccf8d93659a80f4e850caa3701da2

HTTP Headers

GET /lx4oag1.js HTTP/1.1
Host: vv.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: application/javascript
content-length: 76790
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
vary: Accept-Encoding
etag: "65fd69b1-12bf6"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 201
cf-ray: 8685d408ccf5d995-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css

104.17.24.14

200 OK

5.6 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (30837)
Size
5.6 kB (5631 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 827010
expires: Tue, 15 Apr 2025 08:25:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OoUjGi2CfTKdyV2QLc%2BFSzC%2Bs6ahvGxakE61A4%2BjJZsR0vG9o9van4CgKTSK9EEykcjRCg6DP1XXYowh9lCXalXjsRSNBYId5X1cO2C3E6cfoseo1lmmBo10DhUSy%2Bsn74CZuYq2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 879cf1402eb056b7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

kr.cafenehkikki.com/1clkn/14903

23.109.170.241

200 OK

26 B

URL GET HTTP/1.1
kr.cafenehkikki.com/1clkn/14903
IP
23.109.170.241:443
ASN
#7979 SERVERS-COM

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectkr.cafenehkikki.com
Fingerprint50:EE:4F:95:B6:16:97:F3:4B:CE:8F:41:22:EB:63:02:F2:48:7A:F2
ValidityThu, 18 Apr 2024 00:50:14 GMT - Wed, 17 Jul 2024 00:50:13 GMT

File type
ASCII text, with no line terminators
Size
26 B (26 bytes)
Hash
9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1clkn/14903 HTTP/1.1
Host: kr.cafenehkikki.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 08:25:25 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Fri, 26-Apr-2024 08:25:25 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Fri, 26-Apr-2024 08:25:25 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

www.googletagmanager.com/gtm.js?id=GTM-56DK3TH

142.250.74.136

200 OK

72 kB

URL GET HTTP/3
www.googletagmanager.com/gtm.js?id=GTM-56DK3TH
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (3287)
Size
72 kB (72224 bytes)
Hash
c3cee89dad2c413dd67bd34d8a194a6f
31cab38af53d2d59d7ee89dfd61687348ff95183
6ca41be428b2ab0433d54d5e9d29ef693333cb61efc8b7ae465f910b957419bf

HTTP Headers

GET /gtm.js?id=GTM-56DK3TH HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 08:25:25 GMT
expires: Thu, 25 Apr 2024 08:25:25 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72224
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

profitablegatecpm.com/fd/40/b6/fd40b682a05e4aaf489d29601350aa66.js

172.240.108.68

200 OK

16 kB

URL GET HTTP/1.1
profitablegatecpm.com/fd/40/b6/fd40b682a05e4aaf489d29601350aa66.js
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectprofitablegatecpm.com
Fingerprint9D:FB:8C:AD:4D:64:98:6B:85:78:33:54:E7:A3:BB:10:ED:77:63:30
ValidityFri, 05 Apr 2024 18:10:33 GMT - Thu, 04 Jul 2024 18:10:32 GMT

File type
JavaScript source, ASCII text, with very long lines (44116), with no line terminators
Size
16 kB (15859 bytes)
Hash
79b83588110115b2404d429040de8205
769e09f3a1676f0127dcf84e299b7833c485202d
202c94169509a99d34a64570980befa4ba02182766c18ab77be5c0315e9f2697

HTTP Headers

GET /fd/40/b6/fd40b682a05e4aaf489d29601350aa66.js HTTP/1.1
Host: profitablegatecpm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:25:25 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a1f6cb7aeb5d0b756a1a605a346b7c07
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

s.o333o.com/adgpt.js

85.10.205.45

200 OK

820 B

URL GET HTTP/2
s.o333o.com/adgpt.js
IP
85.10.205.45:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerSectigo Limited
Subjects.o333o.com
FingerprintC1:C0:0F:C0:EF:0F:F7:7A:36:2F:00:9E:5C:55:63:54:63:A3:A6:46
ValidityMon, 12 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT

File type
ASCII text, with very long lines (2040), with no line terminators
Size
820 B (820 bytes)
Hash
55f8db8e0ec58b646f0b5425b405fdd0
0c79af1239cafc7ec4783f20b0b886a61daccc09
3ec8849ba857ec32cdc682ea93f0c1f8e8ab97980af4f1d8ec312684ed0f5237

HTTP Headers

GET /adgpt.js HTTP/1.1
Host: s.o333o.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: application/javascript
content-length: 820
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
vary: Accept-Encoding
etag: "65fd69b1-334"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
X-Firefox-Spdy: h2

proftrafficcounter.com/stats

35.158.46.84

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
35.158.46.84:443
ASN
#16509 AMAZON-02

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
c9b8bc31e5a73e00eeefedb1a81f9439
0cbcb6d208a5f9f569325d9d97994efb457cdc4b
2a5ef3a9547997f1584a9bd6fd096550c50ae65ba2a2a8acc4f4f05e71f0e50b

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://videzz.net
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=940a991f-3d75-4ecb-b9ad-02547392a9dc:3:1; expires=Sun, 23 Apr 2034 08:25:26 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

videzz.net/js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42

78.142.18.54

200 OK

320 kB

URL GET HTTP/2
videzz.net/js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5
ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT

File type
gzip compressed data, from Unix
Size
320 kB (319732 bytes)
Hash
0d694a87c7966a2fd9590830acfca6a3
6929fef6dd439de1345fd23413e3c7901b00cd86
4199362d8d20d84f09232d4aa7fe5dbf4c6bf062b28b0b4b96398b3373cd2140

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-ubajah218krs.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:18 GMT
vary: Accept-Encoding
etag: W/"66163902-22364"
expires: Sat, 25 May 2024 08:23:34 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2

bid.bidclickmedia.com/sub/Pj8pz0z

172.67.205.77

200 OK

94 kB

URL GET HTTP/2
bid.bidclickmedia.com/sub/Pj8pz0z
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text
Size
94 kB (93748 bytes)
Hash
e151e24dc5b354ea8ee36534a8264594
4b5f293d59d009ee46087f164ee86d066e8e83f4
b2fdeeef5c48f24499731fdd7aae1650ad1bc6fa9ee58cf88fafe175658e888f

HTTP Headers

GET /sub/Pj8pz0z HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZGhR0OagH2eSlH0L1tdmasQI%2FgUct8LdcsIO6gi7u%2BLWzDTDhJU7EehZByaaaC3B8V9t%2F0vFmsvAGv5fFKDNuQxKCajC3LmOfR69giP3c5frD%2BlAu8CHVdOuQj7uDnSH4StqShlKoWc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf1433bee5691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bid.bidclickmedia.com/sub/0YDX8OE

172.67.205.77

200 OK

29 kB

URL GET HTTP/2
bid.bidclickmedia.com/sub/0YDX8OE
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text
Size
29 kB (29081 bytes)
Hash
f5ed6ce7b82ba2323315254d8ec73268
130f2deb64cffe104ed683e06bb6f60d3755ac1c
fea4d8201695c74087e6b7cdd58df01361f12fcad31870e7d9fbbed7402a2926

HTTP Headers

GET /sub/0YDX8OE HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=epqm1ucvPfgxN2YOEx3Qh0XZkA%2BZ7ETYII6phbrEfl1FA2clv964mXgi0jESTFS6R9SVSkUZMgzCb%2Fp6xOb1IRgpcnA4xi3mACuWmc8WGO9qFOpAtvbs6yJn2VTjydc5N%2FBiYvmc5Cc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf1432bd85691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0

104.18.10.207

200 OK

77 kB

URL GET HTTP/3
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 19:08:24
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 0a41a35b44b9a221d4e11fe69e9304aa
cdn-cache: HIT
cf-cache-status: HIT
age: 1914535
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 879cf14648651bfe-OSL
alt-svc: h3=":443"; ma=86400

experimentalpersecute.com/f1/77/6d/f1776d24271c5ad55c5f1492e2d01e10.js

172.240.108.68

200 OK

31 kB

URL GET HTTP/1.1
experimentalpersecute.com/f1/77/6d/f1776d24271c5ad55c5f1492e2d01e10.js
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectexperimentalpersecute.com
Fingerprint5B:26:4B:A0:AF:BC:CB:6C:CE:FC:E1:0D:53:30:BC:D5:75:54:9A:DA
ValidityWed, 24 Apr 2024 15:08:26 GMT - Tue, 23 Jul 2024 15:08:25 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (31098 bytes)
Hash
4064c95911f26f0a365fab91cc68dad7
83674c8832dc988f7ca8a39cc2e5c54dbf020df7
acfd3b98af82ba8712f4740296a4c35c5e6230604ec0ea9c080024e6555cbd60

HTTP Headers

GET /f1/77/6d/f1776d24271c5ad55c5f1492e2d01e10.js HTTP/1.1
Host: experimentalpersecute.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:25:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-2931_new=0; expires=Sun, 28 Apr 2024 08:25:26 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a0aae4955ea32f7b819f466842d5d2f2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

proftrafficcounter.com/stats

35.158.46.84

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
35.158.46.84:443
ASN
#16509 AMAZON-02

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
c9b8bc31e5a73e00eeefedb1a81f9439
0cbcb6d208a5f9f569325d9d97994efb457cdc4b
2a5ef3a9547997f1584a9bd6fd096550c50ae65ba2a2a8acc4f4f05e71f0e50b

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: uid_id2=940a991f-3d75-4ecb-b9ad-02547392a9dc:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://videzz.net
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2

tr.7vid.net/api/settings/59846

135.181.208.216

200 OK

35 kB

URL GET HTTP/2
tr.7vid.net/api/settings/59846
IP
135.181.208.216:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjecta.gatwins.site
Fingerprint66:D4:C4:E9:BC:6E:82:9E:D0:2F:00:69:9A:DF:C2:6D:18:04:0B:1B
ValidityWed, 10 Apr 2024 10:27:11 GMT - Tue, 09 Jul 2024 10:27:10 GMT

File type
gzip compressed data, from Unix
Size
35 kB (35327 bytes)
Hash
6ecadc31cab98399782ffd901fdc7df0
8384a7be2c8f8483751e3062e4bebf48190d4321
8bc34626b004266d7cabd917023406c1000d890679c361e35a4357b3573dda98

HTTP Headers

GET /api/settings/59846 HTTP/1.1
Host: tr.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2

zv.7vid.net/api/spots/70102?s1=174908&v2=1&fill=0&kw=file%20upload%2Cshare%20files%2Cfree%20upload&i=1&url=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&sid=150e7b28-dbb7-4623-9143-4f0aba0e8833

135.181.208.216

200 OK

7.3 kB

URL GET HTTP/2
zv.7vid.net/api/spots/70102?s1=174908&v2=1&fill=0&kw=file%20upload%2Cshare%20files%2Cfree%20upload&i=1&url=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&sid=150e7b28-dbb7-4623-9143-4f0aba0e8833
IP
135.181.208.216:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subject1111.spinna.online
FingerprintF3:80:AE:D8:32:E7:57:75:94:99:58:76:4C:57:59:80:E8:9A:B7:ED
ValidityFri, 29 Mar 2024 23:27:07 GMT - Thu, 27 Jun 2024 23:27:06 GMT

File type
gzip compressed data, from Unix
Size
7.3 kB (7296 bytes)
Hash
0e5d1fcde161163fc9d6f0bd5d05386a
07987b88750009c576dbeeb9e2f37ebccbc17e32
b413e11f34108ed88d1090de41b54b6801e2982efe686f88dd5214eccff9dbdf

HTTP Headers

GET /api/spots/70102?s1=174908&v2=1&fill=0&kw=file%20upload%2Cshare%20files%2Cfree%20upload&i=1&url=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&sid=150e7b28-dbb7-4623-9143-4f0aba0e8833 HTTP/1.1
Host: zv.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://videzz.net
access-control-expose-headers: X-Asg-Config, X-t
set-cookie: nauid=Fa4XJA93OKD2zMM976pZ; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
x-robots-tag: noindex, nofollow
x-t: 0
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2

bid.bidclickmedia.com/load

172.67.205.77

302 Found

722 B

URL POST HTTP/3
bid.bidclickmedia.com/load
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text, with very long lines (306)
Size
722 B (722 bytes)
Hash
318737c25ff48ccd5a11762a39992180
189b6f85148f338461423aa93d6e41feeab19c70
3b3200cdb9c3ceaf957ed1c84477394ff1a905027ba628ffc580ee80ccbf55ac

HTTP Headers

POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/Pj8pz0z
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: text/html; charset=utf-8
location: https://xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k36MHtFulnoCrc%2FSJYrIYErTfSRxpWmqCxcewWec35X8JMJqjy30rzWbsnLhb6xvep8QNbG0ojZthQszrlU3b%2FiIus0osibms0chDlQlT%2FpV4kRiBklpbF92E8H7NgCkBNEzQpAB418%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf1463929b4ee-OSL
alt-svc: h3=":443"; ma=86400

xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183

174.137.133.17

200 OK

0 B

URL GET HTTP/1.1
xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183
IP
174.137.133.17:443
ASN
#27257 WEBAIR-INTERNET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerSectigo Limited
Subject*.xmlking.com
Fingerprint61:F0:9B:53:D2:DF:03:A0:08:09:BE:79:B1:70:10:34:65:07:7B:6D
ValidityWed, 26 Jul 2023 00:00:00 GMT - Fri, 26 Jul 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect?feed=591364&auth=oodr9S&pubid=195183 HTTP/1.1
Host: xml.xmlking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 08:25:27 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store

bid.bidclickmedia.com/load

172.67.205.77

302 Found

12 kB

URL POST HTTP/3
bid.bidclickmedia.com/load
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
data
Size
12 kB (12143 bytes)
Hash
cb260bbd8bdbbc607a38103c0b53734e
c162169b652966eee168d8bc8499db27b0fc4d65
17d12ce9727574f50322811a0ca49cae49f496670a8453d99506f4c9bb4a936c

HTTP Headers

POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/31pnK5n
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: text/html; charset=utf-8
location: https://xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vll%2Fc2fCdLZgwiq%2FuW5kKvQKWhZ%2F9%2FNJ6ziNV1qeZ2o5Awvno1UvV0BJcjmjcFuVI9BoEgpEH5EtLPdkrpjt5GSNaq0s%2Ff3JicCp2E6DCxDq3matrQGSe8g%2F88tiZ4IAY%2B6p%2BPznmDw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf1473a4cb4ee-OSL
alt-svc: h3=":443"; ma=86400

bid.bidclickmedia.com/sub/Pj8pz0z

172.67.205.77

200 OK

6.1 kB

URL GET HTTP/2
bid.bidclickmedia.com/sub/Pj8pz0z
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text
Size
6.1 kB (6060 bytes)
Hash
e151e24dc5b354ea8ee36534a8264594
4b5f293d59d009ee46087f164ee86d066e8e83f4
b2fdeeef5c48f24499731fdd7aae1650ad1bc6fa9ee58cf88fafe175658e888f

HTTP Headers

GET /sub/Pj8pz0z HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rE0Jto7Krv2mKLGSNghLlNkMr%2FH1eccwA1N5ajaVuCWWwLR0ICCIMi44ZV0lqprf4me%2BsxRG3x1lOsWN47ddO07DmrNHhb7HqjzuW2UI5ODoEigLBOI1VlFsrzpi8XcJtkmg2aO0CAo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf1433bec5691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bid.bidclickmedia.com/load

172.67.205.77

302 Found

371 B

URL POST HTTP/3
bid.bidclickmedia.com/load
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text
Size
371 B (371 bytes)
Hash
b8207054b13fda020d58a7f94425b36f
9b577687e561e17e9823e7fb83ad648dede4c74c
6dafbda0e014e02f234cd8025d827edc22403b87e4cd22270c86db55dd8bc4a6

HTTP Headers

POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 98
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/31bV2Jy
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: text/html; charset=utf-8
location: https://xml.cachegorilla.com/redirect?feed=612977&auth=kAeZgJ&pubid=197570
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H2%2FMjy2gdRO%2BQQiWJMeKFqiTI2FPgZrFgluv9ejTyCTVHyCMAJdPG0%2BrLqcrD3fRBOf1TKuiQsfmoZS%2B0Rn65aBWm4cCdXPehDBmpihva3Q%2BvRJrgPI4IQq7i8lp8GhtL5myR9dpX%2BU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf1468983b4ee-OSL
alt-svc: h3=":443"; ma=86400

downstairsnegotiatebarren.com/sfp.js

172.67.180.87

200 OK

28 kB

URL GET HTTP/3
downstairsnegotiatebarren.com/sfp.js
IP
172.67.180.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44
ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
28 kB (27461 bytes)
Hash
f4a2f8f9f99541c6f105bbd0a025bd40
1f8e3eff12168fdd9e719adfc098d24a45b6916a
b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 2840c1bccbef66862bb803979c6b1234
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Thu, 25 Apr 2024 08:25:26 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9XvqpY5l8hyaUtygdJnBjfuR%2Fk3Iso0qk8IgnKu6BsXpvNaK5k9h8yLCFsftXF6FqUfpK%2F9EIaw377uFB4gjtsgo2PDqBIHJGupFKhcfb1a3YpfoYUf9T%2FZLK%2BuzNHNXuZMBNXayBojW49PT5j2YTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf1434a6856b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319

174.137.133.17

200 OK

0 B

URL GET HTTP/1.1
xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319
IP
174.137.133.17:443
ASN
#27257 WEBAIR-INTERNET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerSectigo Limited
Subject*.zeusadx.com
FingerprintAA:67:88:35:5F:BC:20:3C:44:9B:00:BD:4F:E1:C0:5F:62:D0:69:C0
ValidityMon, 23 Oct 2023 00:00:00 GMT - Wed, 23 Oct 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect?feed=531847&auth=KhbHhS&pubid=162319 HTTP/1.1
Host: xml.zeusadx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 08:25:27 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store

bid.bidclickmedia.com/load

172.67.205.77

302 Found

361 B

URL POST HTTP/3
bid.bidclickmedia.com/load
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text
Size
361 B (361 bytes)
Hash
0afbc42662d610b514f5be89bfd0d53a
0e5f0faddf5910a3c68deb940bb23924d244f1ff
a850e0db4b9fad13d0cb77a0f6599bfaf2d068dea62db64a43c06dadb12bbc38

HTTP Headers

POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/Zj8D76R
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: text/html; charset=utf-8
location: https://xml.zeusadx.com/redirect?feed=552612&auth=OEhoVk&pubid=162319
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rmjKXPFxOjhgSmGNr%2BiKnzZ2st8kyLbwvHVEJJeI5O4OgVyza2AQq76Nyjb2xONH4LfxVdfujbTi4A0d8OFD2jJrJKY8j0hZ5KW0S44BEez%2BOA4B5HUdkP%2BX29I%2BWlE%2F9WsPVIcGQEY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf146a9a2b4ee-OSL
alt-svc: h3=":443"; ma=86400

static.addtoany.com/menu/svg/icons/twitter.js

172.67.39.148

200 OK

728 B

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/twitter.js
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
ASCII text, with very long lines (645), with no line terminators
Size
728 B (728 bytes)
Hash
ca05cf90bd32d6134c0b92464c343f9a
187feb5cc71d225717838268487a0abc9b8d405c
3003867b66a32c12fdafeefc27cf06d906e5a99ba275550ab757f4bb04834636

HTTP Headers

GET /menu/svg/icons/twitter.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"af2b829f9b79fabec7c0148a8b7e444b"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=no0s8wf%2B47RtY8CEer2btpxxEiQg64a2epQXM1gVeuJI2MFbat7D2FpnM2CTnrpqF8xhWPrS4hZNCEW3DGu0x8AI7gl43a8FCrFs3fa3QDBL33XfcQ%2F%2Bao27VUMmVJ9PHZZcsnwPTuha9DeAmuHyZVOg"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 13617
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 879cf1434cfd56a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183

174.137.133.17

200 OK

0 B

URL GET HTTP/1.1
xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183
IP
174.137.133.17:443
ASN
#27257 WEBAIR-INTERNET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerSectigo Limited
Subject*.xmlking.com
Fingerprint61:F0:9B:53:D2:DF:03:A0:08:09:BE:79:B1:70:10:34:65:07:7B:6D
ValidityWed, 26 Jul 2023 00:00:00 GMT - Fri, 26 Jul 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect?feed=591364&auth=oodr9S&pubid=195183 HTTP/1.1
Host: xml.xmlking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 08:25:27 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store

bid.bidclickmedia.com/load

172.67.205.77

302 Found

361 B

URL POST HTTP/3
bid.bidclickmedia.com/load
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text
Size
361 B (361 bytes)
Hash
4809a9602dd55d531906123e570b6d77
626fe0b9eeeda00a0ce401ee5a4e13f8256facb9
046c0a16886d7e34df54c815c1fee7740a3608671d33fd56c837dca5a1ac9c9f

HTTP Headers

POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/31pnK5n
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: text/html; charset=utf-8
location: https://xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=17qliZ00h%2BXYDQmExyqaT1t9BiNqXhnXfkOj9pSPlKKBRlh0sMzsDR4r%2B370YLpSOd16BzOCOfergSHnNkAfoKlBfOaLANZ7zZ2TON1N6ke7Db7mZ3hEgQjDGry0oOoKnnrpP1%2BaxQE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf146b9b1b4ee-OSL
alt-svc: h3=":443"; ma=86400

region1.analytics.google.com/g/collect?v=2&tid=G-HEX1BG8H46&gtm=45je44o0v9104348843za200&_p=1714033525878&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=218167250.1714033527&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=1&sid=1714033526&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&dt=Vidoza&en=page_view&_fv=1&_nsi=1&_ss=2&tfd=1835

216.239.34.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-HEX1BG8H46&gtm=45je44o0v9104348843za200&_p=1714033525878&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=218167250.1714033527&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=1&sid=1714033526&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&dt=Vidoza&en=page_view&_fv=1&_nsi=1&_ss=2&tfd=1835
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-HEX1BG8H46&gtm=45je44o0v9104348843za200&_p=1714033525878&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=218167250.1714033527&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=1&sid=1714033526&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&dt=Vidoza&en=page_view&_fv=1&_nsi=1&_ss=2&tfd=1835 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://videzz.net
date: Thu, 25 Apr 2024 08:25:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

experimentalpersecute.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuHhcviqDJTYQGETTIbHfPbM%2BMOYgxrixZszFR1JNUd1XPlltd1VT1j9k5LQYkxyEgXnu%2F2c1iDP646MkgvQGFgLDjaQ%2FuPyHkLDMujj6oeu973yv43nv1xX5xRgIU9PTqe3ospKSra23PffVj37%2FsbgpVjNxRP%2Fw07F52TfnGIGx7r7nv8nhHrwae73m%2B57vrwvBEj1bnJET2YOC3B167G7T9tS5G5v%2FYFg4sdcDKM%2FICBJutPHIuQsQNVPr9VW53cp29%2Fk5aSJprg5Idfah2lK4U0mWYGAeJOjqvhrYn6w%2Bh1eFCLnT5b2EkZsT59SEidXQuElF5sNAZSXCFiD2DqmzAZQNBG8T6NgQ7IUDMcH0LKr13XZuK7v7D0jk7IytP%2FoKoZmTlz4tQ6bdXpBi5t7QscqGVxSipIUYNxLBBVhwjH7cgqmPE%2BecQ7Hey%2BmQTKj3YslJDsHrRuxANRNJA8gmodVDMj3BQJA6KzEHKTt3Y9%2F2ex2Lq9Qdx3GE9HoXM82kv8anvhX0U8VzeBHk2QSwniM0eMrOHHTGBKX6B3a5hmQObz4jz%2Fh5KVqPiBJUlqChBJQiqnKAq60MmbWDre0zaIvLPfXDuO%2FVU58N9eqjzIVcE1ExgWL2fnZHn5%2FNxXm4F2OGnbsK6XhT2A%2Bqt8S6lSbc%2FYMEg9PzOmkdpGMKKGsK2Fi2PxYy8kvyETMzIs78RRPQYVh4jFhdAi5dAqxp0u8ZYfZdSodqlYHpM24rnYLpGlq8g33X25Rl5cbGka199CR4%2FJueG2NTITI3PxCOCobwzvakrcnBTV5b8sJXlIhVjOl%2FgrZzm%2FOn71%2FhupQ3buGonX78Vz4l5%2BOADbvNNqphQQ0u%2BuSIY42Zdm5iTnzfsRzy6UdjtK4VRRbZ54%2B31jTQz3FqhVQMqTj65i1jMyHM%2Fbi5%2B5iX3FMI0MEWNtFgqFbpBnO3BZsuc1QRGLnGUOaiKemqCaJmUgkDyJaZRDfsfHC3jqaHz11TU%2B%2FYOhqYFmt%2BGSmuUpkYpa1A5gS2emuaZefzmH52FIZKtaSRN6yCSRt5dDHl%2B3YcVp26v0%2FFoOFjzez3Ke1E36CehzygNumEQhrSD3M6SSxeqvwEAAP%2F%2FAQAA%2F%2F8rI5KMcwQAAA%3D%3D

172.240.108.68

200 OK

7 B

URL GET HTTP/1.1
experimentalpersecute.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuHhcviqDJTYQGETTIbHfPbM%2BMOYgxrixZszFR1JNUd1XPlltd1VT1j9k5LQYkxyEgXnu%2F2c1iDP646MkgvQGFgLDjaQ%2FuPyHkLDMujj6oeu973yv43nv1xX5xRgIU9PTqe3ospKSra23PffVj37%2FsbgpVjNxRP%2Fw07F52TfnGIGx7r7nv8nhHrwae73m%2B57vrwvBEj1bnJET2YOC3B167G7T9tS5G5v%2FYFg4sdcDKM%2FICBJutPHIuQsQNVPr9VW53cp29%2Fk5aSJprg5Idfah2lK4U0mWYGAeJOjqvhrYn6w%2Bh1eFCLnT5b2EkZsT59SEidXQuElF5sNAZSXCFiD2DqmzAZQNBG8T6NgQ7IUDMcH0LKr13XZuK7v7D0jk7IytP%2FoKoZmTlz4tQ6bdXpBi5t7QscqGVxSipIUYNxLBBVhwjH7cgqmPE%2BecQ7Hey%2BmQTKj3YslJDsHrRuxANRNJA8gmodVDMj3BQJA6KzEHKTt3Y9%2F2ex2Lq9Qdx3GE9HoXM82kv8anvhX0U8VzeBHk2QSwniM0eMrOHHTGBKX6B3a5hmQObz4jz%2Fh5KVqPiBJUlqChBJQiqnKAq60MmbWDre0zaIvLPfXDuO%2FVU58N9eqjzIVcE1ExgWL2fnZHn5%2FNxXm4F2OGnbsK6XhT2A%2Bqt8S6lSbc%2FYMEg9PzOmkdpGMKKGsK2Fi2PxYy8kvyETMzIs78RRPQYVh4jFhdAi5dAqxp0u8ZYfZdSodqlYHpM24rnYLpGlq8g33X25Rl5cbGka199CR4%2FJueG2NTITI3PxCOCobwzvakrcnBTV5b8sJXlIhVjOl%2FgrZzm%2FOn71%2FhupQ3buGonX78Vz4l5%2BOADbvNNqphQQ0u%2BuSIY42Zdm5iTnzfsRzy6UdjtK4VRRbZ54%2B31jTQz3FqhVQMqTj65i1jMyHM%2Fbi5%2B5iX3FMI0MEWNtFgqFbpBnO3BZsuc1QRGLnGUOaiKemqCaJmUgkDyJaZRDfsfHC3jqaHz11TU%2B%2FYOhqYFmt%2BGSmuUpkYpa1A5gS2emuaZefzmH52FIZKtaSRN6yCSRt5dDHl%2B3YcVp26v0%2FFoOFjzez3Ke1E36CehzygNumEQhrSD3M6SSxeqvwEAAP%2F%2FAQAA%2F%2F8rI5KMcwQAAA%3D%3D
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectexperimentalpersecute.com
Fingerprint5B:26:4B:A0:AF:BC:CB:6C:CE:FC:E1:0D:53:30:BC:D5:75:54:9A:DA
ValidityWed, 24 Apr 2024 15:08:26 GMT - Tue, 23 Jul 2024 15:08:25 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuHhcviqDJTYQGETTIbHfPbM%2BMOYgxrixZszFR1JNUd1XPlltd1VT1j9k5LQYkxyEgXnu%2F2c1iDP646MkgvQGFgLDjaQ%2FuPyHkLDMujj6oeu973yv43nv1xX5xRgIU9PTqe3ospKSra23PffVj37%2FsbgpVjNxRP%2Fw07F52TfnGIGx7r7nv8nhHrwae73m%2B57vrwvBEj1bnJET2YOC3B167G7T9tS5G5v%2FYFg4sdcDKM%2FICBJutPHIuQsQNVPr9VW53cp29%2Fk5aSJprg5Idfah2lK4U0mWYGAeJOjqvhrYn6w%2Bh1eFCLnT5b2EkZsT59SEidXQuElF5sNAZSXCFiD2DqmzAZQNBG8T6NgQ7IUDMcH0LKr13XZuK7v7D0jk7IytP%2FoKoZmTlz4tQ6bdXpBi5t7QscqGVxSipIUYNxLBBVhwjH7cgqmPE%2BecQ7Hey%2BmQTKj3YslJDsHrRuxANRNJA8gmodVDMj3BQJA6KzEHKTt3Y9%2F2ex2Lq9Qdx3GE9HoXM82kv8anvhX0U8VzeBHk2QSwniM0eMrOHHTGBKX6B3a5hmQObz4jz%2Fh5KVqPiBJUlqChBJQiqnKAq60MmbWDre0zaIvLPfXDuO%2FVU58N9eqjzIVcE1ExgWL2fnZHn5%2FNxXm4F2OGnbsK6XhT2A%2Bqt8S6lSbc%2FYMEg9PzOmkdpGMKKGsK2Fi2PxYy8kvyETMzIs78RRPQYVh4jFhdAi5dAqxp0u8ZYfZdSodqlYHpM24rnYLpGlq8g33X25Rl5cbGka199CR4%2FJueG2NTITI3PxCOCobwzvakrcnBTV5b8sJXlIhVjOl%2FgrZzm%2FOn71%2FhupQ3buGonX78Vz4l5%2BOADbvNNqphQQ0u%2BuSIY42Zdm5iTnzfsRzy6UdjtK4VRRbZ54%2B31jTQz3FqhVQMqTj65i1jMyHM%2Fbi5%2B5iX3FMI0MEWNtFgqFbpBnO3BZsuc1QRGLnGUOaiKemqCaJmUgkDyJaZRDfsfHC3jqaHz11TU%2B%2FYOhqYFmt%2BGSmuUpkYpa1A5gS2emuaZefzmH52FIZKtaSRN6yCSRt5dDHl%2B3YcVp26v0%2FFoOFjzez3Ke1E36CehzygNumEQhrSD3M6SSxeqvwEAAP%2F%2FAQAA%2F%2F8rI5KMcwQAAA%3D%3D HTTP/1.1
Host: experimentalpersecute.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:25:27 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0a009721a9b058fad6aa3c3ec4090271
Strict-Transport-Security: max-age=0; includeSubdomains

architecturecultivated.com/pixel/purst?dl=0&th=0&sc=0&rs=1915&rd=1915&fd=791&bv=24.4.4887&tmpl=136

192.243.61.227

200 OK

0 B

URL GET HTTP/1.1
architecturecultivated.com/pixel/purst?dl=0&th=0&sc=0&rs=1915&rd=1915&fd=791&bv=24.4.4887&tmpl=136
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectarchitecturecultivated.com
Fingerprint15:CF:E9:0B:87:6A:2C:2A:1B:D3:AE:48:6A:51:12:FA:BD:87:77:92
ValidityWed, 24 Apr 2024 14:56:26 GMT - Tue, 23 Jul 2024 14:56:25 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=1915&rd=1915&fd=791&bv=24.4.4887&tmpl=136 HTTP/1.1
Host: architecturecultivated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:25:27 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

experimentalpersecute.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Findex.html&l=1567&fd=253

172.240.108.68

200 OK

0 B

URL GET HTTP/1.1
experimentalpersecute.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Findex.html&l=1567&fd=253
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectexperimentalpersecute.com
Fingerprint5B:26:4B:A0:AF:BC:CB:6C:CE:FC:E1:0D:53:30:BC:D5:75:54:9A:DA
ValidityWed, 24 Apr 2024 15:08:26 GMT - Tue, 23 Jul 2024 15:08:25 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Findex.html&l=1567&fd=253 HTTP/1.1
Host: experimentalpersecute.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:25:27 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/img/1.jpg

188.114.97.1

200 OK

28 kB

URL GET HTTP/3
cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/img/1.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x320, components 3
Size
28 kB (28348 bytes)
Hash
bd0c89fce24a7f947251ba177af6860b
fae114743fd16313d63c5cc99a220831f88290e6
830443fe11ab663a8c20e09560e69a4a29c8d0266175efc235c3d9882123f209

HTTP Headers

GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/img/1.jpg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:25:27 GMT
content-type: image/jpeg
content-length: 28348
last-modified: Thu, 01 Feb 2024 14:55:05 GMT
etag: "65bbb0c9-6ebc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 6114152
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VtdK82Bm8GduohjAQYvEAzt9CaWwQR7l%2FlAcnptZ0RFsApDkHkr5%2FOqBttgouJqDNdfsjuoeH1qk%2FwGj4X14aWMKPOaCHsK2c5x5b3J0qPTHjszhMe%2B3YuE7FOv5wTwSvbTbC8aoGwwU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf14d7f81b4fd-OSL
alt-svc: h3=":443"; ma=86400

cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/style.css

188.114.97.1

200 OK

1.0 kB

URL GET HTTP/2
cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/style.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
1.0 kB (1006 bytes)
Hash
9b388680bb9d9cf0d8e7e4dad7b39ac5
393a2393f3b96b727a3114d249fffb35bf34d9f5
758934b1fbbad9e578664b4efbb5ee3303482d0d37ec7837b4bb2fa4915be70f

HTTP Headers

GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:27 GMT
content-type: text/css
last-modified: Thu, 01 Feb 2024 14:55:03 GMT
etag: W/"65bbb0c7-e2e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 413725
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JOUsi5txWN0XzGfP9eXvSYVzvHYKBHkPUMrGq8vqt7%2BllnQOQUggyYU41eXQxOinYx2tSW8v4ukzzKA%2FjuS%2B0RltA1nIm01K%2BLAm6i8ZQZLTuMV8aVWQCQlOKI1gDeCtSC%2FhAS%2FCAxYa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf14cff19b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

experimentalpersecute.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fanimate.css&l=79245&fd=83

172.240.108.68

200 OK

0 B

URL GET HTTP/1.1
experimentalpersecute.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fanimate.css&l=79245&fd=83
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectexperimentalpersecute.com
Fingerprint5B:26:4B:A0:AF:BC:CB:6C:CE:FC:E1:0D:53:30:BC:D5:75:54:9A:DA
ValidityWed, 24 Apr 2024 15:08:26 GMT - Tue, 23 Jul 2024 15:08:25 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fanimate.css&l=79245&fd=83 HTTP/1.1
Host: experimentalpersecute.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:25:27 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

172.240.108.68

200 OK

0 B

URL GET HTTP/1.1
experimentalpersecute.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fstyle.css&l=3630&fd=84
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectexperimentalpersecute.com
Fingerprint5B:26:4B:A0:AF:BC:CB:6C:CE:FC:E1:0D:53:30:BC:D5:75:54:9A:DA
ValidityWed, 24 Apr 2024 15:08:26 GMT - Tue, 23 Jul 2024 15:08:25 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fcss%2Fstyle.css&l=3630&fd=84 HTTP/1.1
Host: experimentalpersecute.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:25:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-HEX1BG8H46&cid=218167250.1714033527&gtm=45je44o0v9104348843za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&z=1006194844

172.217.21.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-HEX1BG8H46&cid=218167250.1714033527&gtm=45je44o0v9104348843za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&z=1006194844
IP
172.217.21.163:443
ASN
#15169 GOOGLE

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint4E:BD:F9:72:97:67:A2:4B:EE:E4:B0:03:CD:C8:F3:30:53:27:53:1D
ValidityMon, 18 Mar 2024 20:50:06 GMT - Mon, 10 Jun 2024 20:50:05 GMT

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-HEX1BG8H46&cid=218167250.1714033527&gtm=45je44o0v9104348843za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&z=1006194844 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 25 Apr 2024 08:25:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js

104.17.24.14

200 OK

5.1 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (17660)
Size
5.1 kB (5117 bytes)
Hash
12dd498bf90c536803c2aad708b66c2b
5f9363d39a405d1c94328cf2303ff4a05c0ad163
c4e20f53f5ef0ed44b783437aa3f4638a9a56cc4aa29ae83ed9212eb2807052a

HTTP Headers

GET /ajax/libs/postscribe/2.0.8/postscribe.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:25:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 5117
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03faa-45f4"
last-modified: Mon, 04 May 2020 16:15:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 832548
expires: Tue, 15 Apr 2025 08:25:28 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KADIzoCXT8ba45Ujo6ANzJKDcgMdVjSbfZy%2FHiZ%2BZUEPfP7gaGutQDqSUVh3UxCB%2F6lStSr1fs3W6SKhVN0wNFdBdjp9lhKuc32aT85%2BjiV%2BoQDPTwELRGWfREHOJO3OmBA%2B3FoA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 879cf1502ba05688-OSL
alt-svc: h3=":443"; ma=86400

experimentalpersecute.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuHhcviqDJTYQBETTIbPf82hlzEGNcWbJmY6KoJ6lfPVtudVVT1T09O6fFgOQ4BMRr7ze7WYzBHxc9GaQ3oBAQdjztwf0nhJxlxsXRB1Xvfe97Bd97r77Yz89IEzk9vfqeHSut6WqnEdZf%2FTiKLtc3lclH9VGv%2B2m3fbnuhm%2F0u43wtfq7ku%2FY1WYYhWEURvV15WRsR6tzEip90I8a%2FbDRbjaiThsj93%2Fs8wCeBhDDM%2FIClJitPAouQvEKJvn%2BqvQ7mU1ffyfJNc2sw1AcfWh2jC0MkmUYuwCxOTqvhvUn6w9hzeFCLuzw30KmZiT49SGYOToXCTY8WOhkGtKAiWdQDCtIXUHRCtzehhInBOAC17dgknvXrSvo7j8snbMzsvLkL6hiRlb%2BvAiTfHtFq1H9ltV5pqzxGMUl1KiCGlRI82Nk4xpUcQyefQ4lfierTzZhkoMtry2UKBe9K1VBxRW0nID6APn8qAB5HCBPAyTitM6jKFoLBadhr895S6xJ1hVhRNfiiEZht4ecz%2BVNkKUTcD0Bd3tI3R521AQu%2FwV%2Bu4QXAXw2I8H7exiKEoUkKDxBQQkKRVBkBMWwPBTaN315T2ifs%2BjcN899q5zabLBPD202kIaAugmcKPfTM%2FL8fD7By7UmduRpPRbtkHV7TRp2ZJvSuN3ri2a%2FG0atTkhptwuvSihfW7Q8VjPySvwTUjUjz%2F5GwOgxvD4GVxdA85dAixJ0u8TYfJdQZRpDJeyYNozMIGyJNFtBthvs6zPy4mJJ1776EpI%2FJucG7kqkrsRn6hHBQN%2BZ3rQFObhpC09%2B2EozlagxnS%2FwVkYz%2BfT9a3K3sE5sXPWTr9%2Fic2IePvhA%2BmyTGqHMwJNvrighpFu3jkvy84b%2FSLIbud%2B%2BkjuTp5s33l7fSFInvVfWVKDq5JO74GpGnvtxc%2FEzL9VPoVwFl5dI8qVSZSvwdA8%2BXea8JXB6iVkaoMjLqWuyZVIrAi2XmLIS%2Fj%2BYLeOpo%2FPXVJX7%2Fg4Grgaa3YZJSgxdiaEuQfUEPn9qmqXu8Zt%2FtBYGpmtTpl3tgGmn7y6GPL%2Fuw6vTeisUa0zGco3JdqcdSy5Yp8NCHnPWEr0eR%2BZn8aULxd8AAAD%2F%2FwEAAP%2F%2Fq%2FdHZHMEAAA%3D

172.240.108.68

200 OK

7 B

URL GET HTTP/1.1
experimentalpersecute.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuHhcviqDJTYQBETTIbPf82hlzEGNcWbJmY6KoJ6lfPVtudVVT1T09O6fFgOQ4BMRr7ze7WYzBHxc9GaQ3oBAQdjztwf0nhJxlxsXRB1Xvfe97Bd97r77Yz89IEzk9vfqeHSut6WqnEdZf%2FTiKLtc3lclH9VGv%2B2m3fbnuhm%2F0u43wtfq7ku%2FY1WYYhWEURvV15WRsR6tzEip90I8a%2FbDRbjaiThsj93%2Fs8wCeBhDDM%2FIClJitPAouQvEKJvn%2BqvQ7mU1ffyfJNc2sw1AcfWh2jC0MkmUYuwCxOTqvhvUn6w9hzeFCLuzw30KmZiT49SGYOToXCTY8WOhkGtKAiWdQDCtIXUHRCtzehhInBOAC17dgknvXrSvo7j8snbMzsvLkL6hiRlb%2BvAiTfHtFq1H9ltV5pqzxGMUl1KiCGlRI82Nk4xpUcQyefQ4lfierTzZhkoMtry2UKBe9K1VBxRW0nID6APn8qAB5HCBPAyTitM6jKFoLBadhr895S6xJ1hVhRNfiiEZht4ecz%2BVNkKUTcD0Bd3tI3R521AQu%2FwV%2Bu4QXAXw2I8H7exiKEoUkKDxBQQkKRVBkBMWwPBTaN315T2ifs%2BjcN899q5zabLBPD202kIaAugmcKPfTM%2FL8fD7By7UmduRpPRbtkHV7TRp2ZJvSuN3ri2a%2FG0atTkhptwuvSihfW7Q8VjPySvwTUjUjz%2F5GwOgxvD4GVxdA85dAixJ0u8TYfJdQZRpDJeyYNozMIGyJNFtBthvs6zPy4mJJ1776EpI%2FJucG7kqkrsRn6hHBQN%2BZ3rQFObhpC09%2B2EozlagxnS%2FwVkYz%2BfT9a3K3sE5sXPWTr9%2Fic2IePvhA%2BmyTGqHMwJNvrighpFu3jkvy84b%2FSLIbud%2B%2BkjuTp5s33l7fSFInvVfWVKDq5JO74GpGnvtxc%2FEzL9VPoVwFl5dI8qVSZSvwdA8%2BXea8JXB6iVkaoMjLqWuyZVIrAi2XmLIS%2Fj%2BYLeOpo%2FPXVJX7%2Fg4Grgaa3YZJSgxdiaEuQfUEPn9qmqXu8Zt%2FtBYGpmtTpl3tgGmn7y6GPL%2Fuw6vTeisUa0zGco3JdqcdSy5Yp8NCHnPWEr0eR%2BZn8aULxd8AAAD%2F%2FwEAAP%2F%2Fq%2FdHZHMEAAA%3D
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectexperimentalpersecute.com
Fingerprint5B:26:4B:A0:AF:BC:CB:6C:CE:FC:E1:0D:53:30:BC:D5:75:54:9A:DA
ValidityWed, 24 Apr 2024 15:08:26 GMT - Tue, 23 Jul 2024 15:08:25 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuHhcviqDJTYQBETTIbPf82hlzEGNcWbJmY6KoJ6lfPVtudVVT1T09O6fFgOQ4BMRr7ze7WYzBHxc9GaQ3oBAQdjztwf0nhJxlxsXRB1Xvfe97Bd97r77Yz89IEzk9vfqeHSut6WqnEdZf%2FTiKLtc3lclH9VGv%2B2m3fbnuhm%2F0u43wtfq7ku%2FY1WYYhWEURvV15WRsR6tzEip90I8a%2FbDRbjaiThsj93%2Fs8wCeBhDDM%2FIClJitPAouQvEKJvn%2BqvQ7mU1ffyfJNc2sw1AcfWh2jC0MkmUYuwCxOTqvhvUn6w9hzeFCLuzw30KmZiT49SGYOToXCTY8WOhkGtKAiWdQDCtIXUHRCtzehhInBOAC17dgknvXrSvo7j8snbMzsvLkL6hiRlb%2BvAiTfHtFq1H9ltV5pqzxGMUl1KiCGlRI82Nk4xpUcQyefQ4lfierTzZhkoMtry2UKBe9K1VBxRW0nID6APn8qAB5HCBPAyTitM6jKFoLBadhr895S6xJ1hVhRNfiiEZht4ecz%2BVNkKUTcD0Bd3tI3R521AQu%2FwV%2Bu4QXAXw2I8H7exiKEoUkKDxBQQkKRVBkBMWwPBTaN315T2ifs%2BjcN899q5zabLBPD202kIaAugmcKPfTM%2FL8fD7By7UmduRpPRbtkHV7TRp2ZJvSuN3ri2a%2FG0atTkhptwuvSihfW7Q8VjPySvwTUjUjz%2F5GwOgxvD4GVxdA85dAixJ0u8TYfJdQZRpDJeyYNozMIGyJNFtBthvs6zPy4mJJ1776EpI%2FJucG7kqkrsRn6hHBQN%2BZ3rQFObhpC09%2B2EozlagxnS%2FwVkYz%2BfT9a3K3sE5sXPWTr9%2Fic2IePvhA%2BmyTGqHMwJNvrighpFu3jkvy84b%2FSLIbud%2B%2BkjuTp5s33l7fSFInvVfWVKDq5JO74GpGnvtxc%2FEzL9VPoVwFl5dI8qVSZSvwdA8%2BXea8JXB6iVkaoMjLqWuyZVIrAi2XmLIS%2Fj%2BYLeOpo%2FPXVJX7%2Fg4Grgaa3YZJSgxdiaEuQfUEPn9qmqXu8Zt%2FtBYGpmtTpl3tgGmn7y6GPL%2Fuw6vTeisUa0zGco3JdqcdSy5Yp8NCHnPWEr0eR%2BZn8aULxd8AAAD%2F%2FwEAAP%2F%2Fq%2FdHZHMEAAA%3D HTTP/1.1
Host: experimentalpersecute.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:25:28 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b9f1bacded238d6e327317b2cd109e7a
Strict-Transport-Security: max-age=0; includeSubdomains

experimentalpersecute.com/pixel/sbs?c=1

172.240.108.68

200 OK

0 B

URL GET HTTP/1.1
experimentalpersecute.com/pixel/sbs?c=1
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectexperimentalpersecute.com
Fingerprint5B:26:4B:A0:AF:BC:CB:6C:CE:FC:E1:0D:53:30:BC:D5:75:54:9A:DA
ValidityWed, 24 Apr 2024 15:08:26 GMT - Tue, 23 Jul 2024 15:08:25 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: experimentalpersecute.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:25:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 10:46:32 GMT
expires: Wed, 23 Apr 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 164336
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:37:01 GMT
expires: Fri, 25 Apr 2025 02:37:01 GMT
cache-control: public, max-age=31536000
age: 20907
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?userId=008049d1e5ef4abbe5b66564c49be173

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?userId=008049d1e5ef4abbe5b66564c49be173
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC
ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT

File type
JSON text data
Size
65 B (65 bytes)
Hash
8d9b9b22fc97049547b94bf44e6a33cc
ece194fa7b2163fb7cee38bc6c16fd0f3970b46b
189f13286468ad2bd82e4ceb55f3604b7f6c55f466575f7ec1b54874ab080960

HTTP Headers

GET /gid.js?userId=008049d1e5ef4abbe5b66564c49be173 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:28 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://videzz.net
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=008049d1e5ef4abbe5b66564c49be173; expires=Fri, 25 Apr 2025 08:25:28 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

unseenreport.com/pxf.gif?uuid=940a991f-3d75-4ecb-b9ad-02547392a9dc&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=fd40b682a05e4aaf489d29601350aa66&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8

192.243.61.227

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=940a991f-3d75-4ecb-b9ad-02547392a9dc&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=fd40b682a05e4aaf489d29601350aa66&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=940a991f-3d75-4ecb-b9ad-02547392a9dc&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=fd40b682a05e4aaf489d29601350aa66&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:25:29 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8220f8545c41fa2c3c9691172875f2e9
Strict-Transport-Security: max-age=0; includeSubdomains

unseenreport.com/pxf.gif?uuid=940a991f-3d75-4ecb-b9ad-02547392a9dc&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=f1776d24271c5ad55c5f1492e2d01e10&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8

192.243.61.227

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=940a991f-3d75-4ecb-b9ad-02547392a9dc&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=f1776d24271c5ad55c5f1492e2d01e10&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=940a991f-3d75-4ecb-b9ad-02547392a9dc&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=f1776d24271c5ad55c5f1492e2d01e10&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:25:29 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0e5c1bbdede793c8244ca5cb182b990b
Strict-Transport-Security: max-age=0; includeSubdomains

fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=dc2466e4-5041-43de-b125-b6c868dda19a

139.45.195.254

200 OK

12 B

URL POST HTTP/1.1
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=dc2466e4-5041-43de-b125-b6c868dda19a
IP
139.45.195.254:443
ASN
#9002 RETN Limited

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerSectigo Limited
Subjectfleraprt.com
Fingerprint32:DB:C5:24:21:ED:1D:C3:40:C3:46:9F:CF:EE:98:4D:72:29:4C:3C
ValidityTue, 09 Jan 2024 00:00:00 GMT - Mon, 13 Jan 2025 23:59:59 GMT

File type
JSON text data
Size
12 B (12 bytes)
Hash
adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=dc2466e4-5041-43de-b125-b6c868dda19a HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1403
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Thu, 25 Apr 2024 08:25:29 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://videzz.net
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true

cdn.itskiddien.club/?rb=CzJvpzAOoXIzgIMX2euEpzagkAw41Dzyo_q-cGDposuQPX470QOjbgTmEEoDvrFDIcWqs5OSSsEG-xRTr2Dbem3w3YUSeato2ulTEj6XRgyNkw2xpUBuNdITsTtw_4z9ZxxhOYyAM8grqVsXQx_XRg001pnwb617-pbcyd528OjW-182cNxq_bm9Ji8jt01FgxbneP6EnHDpnEzimem2qhB-gQWSV5K11xxaFL3pdMkLDznggGUO8WStJxW1GNikgwC5qXgqIutGEJev7_cJPLKRMf0%3D&request_ab2=150121&zoneid=5902452&js_build=iclick-v1.779.2-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=12&pl=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.779.2-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=e08caa88-cada-4efc-b4c6-523409de43a7&userId=008049d1e5ef4abbe5b66564c49be173&m=link

139.45.197.236

200 OK

12 kB

URL GET HTTP/2
cdn.itskiddien.club/?rb=CzJvpzAOoXIzgIMX2euEpzagkAw41Dzyo_q-cGDposuQPX470QOjbgTmEEoDvrFDIcWqs5OSSsEG-xRTr2Dbem3w3YUSeato2ulTEj6XRgyNkw2xpUBuNdITsTtw_4z9ZxxhOYyAM8grqVsXQx_XRg001pnwb617-pbcyd528OjW-182cNxq_bm9Ji8jt01FgxbneP6EnHDpnEzimem2qhB-gQWSV5K11xxaFL3pdMkLDznggGUO8WStJxW1GNikgwC5qXgqIutGEJev7_cJPLKRMf0%3D&request_ab2=150121&zoneid=5902452&js_build=iclick-v1.779.2-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=12&pl=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.779.2-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=e08caa88-cada-4efc-b4c6-523409de43a7&userId=008049d1e5ef4abbe5b66564c49be173&m=link
IP
139.45.197.236:443
ASN
#9002 RETN Limited

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectitskiddien.club
FingerprintF8:F5:E1:2A:73:41:2E:21:C2:B1:A0:A3:DE:9D:2D:B2:87:3F:8E:5D
ValidityFri, 29 Mar 2024 21:36:27 GMT - Thu, 27 Jun 2024 21:36:26 GMT

File type
gzip compressed data, max speed, from Unix
Size
12 kB (12020 bytes)
Hash
5bbe395dbde64e73deae9013616faecf
91b1718038195e297e79536264170279a6b2857e
6119ff8b77390514e8160b0560690e998613d953135e39df59f50c289dd6fa4c

HTTP Headers

GET /?rb=CzJvpzAOoXIzgIMX2euEpzagkAw41Dzyo_q-cGDposuQPX470QOjbgTmEEoDvrFDIcWqs5OSSsEG-xRTr2Dbem3w3YUSeato2ulTEj6XRgyNkw2xpUBuNdITsTtw_4z9ZxxhOYyAM8grqVsXQx_XRg001pnwb617-pbcyd528OjW-182cNxq_bm9Ji8jt01FgxbneP6EnHDpnEzimem2qhB-gQWSV5K11xxaFL3pdMkLDznggGUO8WStJxW1GNikgwC5qXgqIutGEJev7_cJPLKRMf0%3D&request_ab2=150121&zoneid=5902452&js_build=iclick-v1.779.2-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=12&pl=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.779.2-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=e08caa88-cada-4efc-b4c6-523409de43a7&userId=008049d1e5ef4abbe5b66564c49be173&m=link HTTP/1.1
Host: cdn.itskiddien.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Cookie: OAID=008049b0b5af4f3de090294e7baecaa1; oaidts=1714033529
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:29 GMT
content-type: application/json
x-trace-id: e5daf6a14f8e4b49cc0afe61fb080b75
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://videzz.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=008049d1e5ef4abbe5b66564c49be173; expires=Fri, 25 Apr 2025 08:25:29 GMT; path=/; secure; SameSite=None
oaidts=1714033529; expires=Fri, 25 Apr 2025 08:25:29 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Thu, 02 May 2024 08:25:29 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-HEX1BG8H46&gtm=45je44o0v9104348843z8832020053za200&_p=1714033525878&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=218167250.1714033527&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=2&sid=1714033526&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&dt=Vidoza&en=error_network&tfd=26168

216.239.34.36

0 B

URL
region1.analytics.google.com/g/collect?v=2&tid=G-HEX1BG8H46&gtm=45je44o0v9104348843z8832020053za200&_p=1714033525878&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=218167250.1714033527&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=2&sid=1714033526&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&dt=Vidoza&en=error_network&tfd=26168
IP
216.239.34.36:0
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-HEX1BG8H46&gtm=45je44o0v9104348843z8832020053za200&_p=1714033525878&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=218167250.1714033527&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=2&sid=1714033526&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&dt=Vidoza&en=error_network&tfd=26168 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/3 204 No Content
access-control-allow-origin: https://videzz.net
date: Thu, 25 Apr 2024 08:25:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdn.itskiddien.club/apu.php?zoneid=5902452&var=5708419&branchId=150121

139.45.197.236

200 OK

84 kB

URL GET HTTP/2
cdn.itskiddien.club/apu.php?zoneid=5902452&var=5708419&branchId=150121
IP
139.45.197.236:443
ASN
#9002 RETN Limited

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectitskiddien.club
FingerprintF8:F5:E1:2A:73:41:2E:21:C2:B1:A0:A3:DE:9D:2D:B2:87:3F:8E:5D
ValidityFri, 29 Mar 2024 21:36:27 GMT - Thu, 27 Jun 2024 21:36:26 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
84 kB (84369 bytes)
Hash
8f8005e86fcc013ba8c5f0e2a5b7cb6a
2011590c4aaaef39e63f6fdfa5f0d450205f3dcf
1a8a1128f250431b48e623f0875d87ae78d9de4020e84df6f144d02e2e0d8543

HTTP Headers

GET /apu.php?zoneid=5902452&var=5708419&branchId=150121 HTTP/1.1
Host: cdn.itskiddien.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:29 GMT
content-type: application/javascript
x-trace-id: ca4cdcba903d001c2654798000ff3279
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=008049b0b5af4f3de090294e7baecaa1; expires=Fri, 25 Apr 2025 08:25:29 GMT; path=/; secure; SameSite=None
oaidts=1714033529; expires=Fri, 25 Apr 2025 08:25:29 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

static.addtoany.com/menu/page.js

172.67.39.148

200 OK

3.0 kB

URL GET HTTP/2
static.addtoany.com/menu/page.js
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
JavaScript source, ASCII text, with very long lines (3132), with no line terminators
Size
3.0 kB (3003 bytes)
Hash
40486591ae8ea6d1423aeb13f1fd509b
f847af56588642de93c6fe0d2ce182303f312455
16a6753a1de5c5602b0ca4afe3d17b95e2cb18d6b79bf7cdccedba3a733c1138

HTTP Headers

GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=86400, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"e346c2841e4abbb66ee259e9540abb61"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i2AC7bE2UDFKM7qC5jDQxDxGBrcVDlnPDaJpMnzeeMpH%2BWmJ3duBGtVLq6wxk1QIfxp7e6MatgiRO5LypYWukV0nng7cUXW9aran8y9cwM8v0JAzIBzS1YQZ9pyCABT%2BXorAHEebwrAhbk61YRrQnUdl"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 22632
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 879cf13e9dc2b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

experimentalpersecute.com/sbar.json?key=fd40b682a05e4aaf489d29601350aa66

172.240.108.68

200 OK

11 kB

URL GET HTTP/1.1
experimentalpersecute.com/sbar.json?key=fd40b682a05e4aaf489d29601350aa66
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectexperimentalpersecute.com
Fingerprint5B:26:4B:A0:AF:BC:CB:6C:CE:FC:E1:0D:53:30:BC:D5:75:54:9A:DA
ValidityWed, 24 Apr 2024 15:08:26 GMT - Tue, 23 Jul 2024 15:08:25 GMT

File type
JSON text data
Size
11 kB (11133 bytes)
Hash
fe629d329ff61d9edf8b34a0c8ba642f
e12b75aa663b2f35eb30b9e13b8ecc5f11fbaf34
3b5c8819e5bf5d9c3fc723faf6c10e035d2e99ec34b4eb2602a0cc3cbc034d4e

HTTP Headers

GET /sbar.json?key=fd40b682a05e4aaf489d29601350aa66 HTTP/1.1
Host: experimentalpersecute.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:25:27 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://videzz.net
Access-Control-Allow-Origin: https://videzz.net
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=19071538; expires=Fri, 26 Apr 2024 08:25:27 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 26 Apr 2024 08:25:27 GMT; secure; SameSite=None
uncs=1; expires=Fri, 26 Apr 2024 08:25:27 GMT; secure; SameSite=None
pdhtkv29=true; expires=Fri, 26 Apr 2024 08:25:27 GMT; secure; SameSite=None
uncs29=1; expires=Fri, 26 Apr 2024 08:25:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9e878fd9e67eec2425ee6dde984ca11b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/js/script.js

188.114.97.1

200 OK

386 B

URL GET HTTP/2
cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/js/script.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text, with very long lines (399), with no line terminators
Size
386 B (386 bytes)
Hash
022602a468da44628060800173771da2
9be813fbfebbcb2aa46d8c6b8abec68b3d16c89c
6742c376e658c34d09b2dc5772bd798e3cd52bb265758bac5bce184f8ee7b5cc

HTTP Headers

GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:27 GMT
content-type: application/javascript
last-modified: Thu, 01 Feb 2024 14:55:06 GMT
etag: W/"65bbb0ca-182"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 413725
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QKbGpPyet3pUZMnldceU6K3q3d4POIBx%2BoGmkDJHSSZOSalASwDWmzu9NO8VU7sCYYELqa2pEDDt4UgtE4OcXmQE4r66tYvCYFwuaiAeqEjCuQEKhawrj5VLdzJBJGXjyEmNEgsfIf3H"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf14cff14b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

tzegilo.com/stattag.js

104.21.11.245

200 OK

19 kB

URL GET HTTP/2
tzegilo.com/stattag.js
IP
104.21.11.245:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjecttzegilo.com
Fingerprint28:2E:D0:DF:04:78:60:5A:D2:5B:1F:EA:59:80:9C:2F:89:C1:9D:D1
ValiditySat, 30 Mar 2024 15:54:48 GMT - Fri, 28 Jun 2024 15:54:47 GMT

File type
JavaScript source, ASCII text, with very long lines (18486)
Size
19 kB (19136 bytes)
Hash
70ebd404c2e1e7bad13998538b56887c
86e57af8ba3cfc2c004da3311835f6b54ba6d848
d71ea61938136a384e4c53c5a7a3c36e68fcc70a68bae691e270987d5d2eb11f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:29 GMT
content-type: application/javascript
last-modified: Wed, 07 Feb 2024 12:51:13 GMT
etag: W/"65c37cc1-4ac0"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 953
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CCfUZIkp%2F6TNi3tNACDv0XbN4g7c7SdCcX7RQb%2BYeU6gni2VDu%2B3kVJSq7g2dsVYLdpKzSWkSetqDv1UewV7vgO3X7go6QYqYseYbSZauGTn2O6fea6%2FPwwy%2Bl3G3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf154ee8f56b4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

videzz.net/css/videojs.5.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42

78.142.18.54

200 OK

170 kB

URL GET HTTP/2
videzz.net/css/videojs.5.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5
ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT

File type
ASCII text, with very long lines (50421)
Size
170 kB (169541 bytes)
Hash
bf9af199b5ef61988f82fa239ebf61da
d3b9c5ef294f2ef0942a8bf1e62085b72b2e07cc
e8e86d55656a068d5bb43e7b65e474162b6dff2c57f314cfc90d25f16708048d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/videojs.5.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-ubajah218krs.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: text/css
last-modified: Wed, 10 Apr 2024 07:00:17 GMT
vary: Accept-Encoding
etag: W/"66163901-29645"
expires: Sat, 25 May 2024 08:21:04 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2

cdn.o333o.com/vast-im.js

108.157.214.56

200 OK

310 kB

URL GET HTTP/2
cdn.o333o.com/vast-im.js
IP
108.157.214.56:443
ASN
#16509 AMAZON-02

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerSectigo Limited
Subjectcdn.o333o.com
Fingerprint61:0E:6A:7F:7E:40:48:40:58:0F:EF:89:DB:CF:AD:C2:FB:52:F1:AC
ValidityThu, 09 Nov 2023 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type

Size
310 kB (310487 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /vast-im.js HTTP/1.1
Host: cdn.o333o.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 11 Apr 2024 09:31:31 GMT
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
etag: W/"65fd69b1-4bcd7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94251f2595ef5679fba3c952e8743886.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: qW3rxtX29JsJ4EzMU-JFmIfgDTGHaqp7S7fHLUhcyxyxHW9qmNaTpw==
age: 1205634
X-Firefox-Spdy: h2

aistekso.net/401/5708419?oo=1&oaid=008049d1e5ef4abbe5b66564c49be173&sw_version=v1.337.0

139.45.197.244

200 OK

2.4 kB

URL GET HTTP/2
aistekso.net/401/5708419?oo=1&oaid=008049d1e5ef4abbe5b66564c49be173&sw_version=v1.337.0
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectaistekso.net
Fingerprint3E:A5:CE:35:F4:D9:45:6B:A1:3B:2E:9C:B3:9E:78:4D:8A:4B:51:BB
ValiditySun, 24 Mar 2024 05:08:27 GMT - Sat, 22 Jun 2024 05:08:26 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2561), with no line terminators
Size
2.4 kB (2369 bytes)
Hash
baa67c52e066829d49d8e1eddda04d79
3a150c70f4f38b90a819ee2b7e48b3158fa545c7
37874b2cdee9529667cced9b1201e23268e874a04d069200814d2e6dde6ad235

HTTP Headers

GET /401/5708419?oo=1&oaid=008049d1e5ef4abbe5b66564c49be173&sw_version=v1.337.0 HTTP/1.1
Host: aistekso.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: OAID=03004949d82b469cefa698a8dd90ea53
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:29 GMT
content-type: application/json
x-trace-id: 5a916bbae3a41044f7ab47ec918d81f6
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://videzz.net
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=008049d1e5ef4abbe5b66564c49be173; expires=Fri, 25 Apr 2025 08:25:29 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

xml.cachegorilla.com/redirect?feed=612977&auth=kAeZgJ&pubid=197570

173.239.53.20

200 OK

0 B

URL GET HTTP/1.1
xml.cachegorilla.com/redirect?feed=612977&auth=kAeZgJ&pubid=197570
IP
173.239.53.20:443
ASN
#27257 WEBAIR-INTERNET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerSectigo Limited
Subject*.cachegorilla.com
Fingerprint29:B3:53:29:E3:6F:D3:48:F6:66:3E:78:57:05:A6:19:12:0D:2C:4A
ValidityFri, 10 Nov 2023 00:00:00 GMT - Sun, 10 Nov 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect?feed=612977&auth=kAeZgJ&pubid=197570 HTTP/1.1
Host: xml.cachegorilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 08:25:27 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store

tr.7vid.net/api/users/59846?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&sid=150e7b28-dbb7-4623-9143-4f0aba0e8833&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908

135.181.208.216

200 OK

638 B

URL GET HTTP/2
tr.7vid.net/api/users/59846?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&sid=150e7b28-dbb7-4623-9143-4f0aba0e8833&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908
IP
135.181.208.216:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjecta.gatwins.site
Fingerprint66:D4:C4:E9:BC:6E:82:9E:D0:2F:00:69:9A:DF:C2:6D:18:04:0B:1B
ValidityWed, 10 Apr 2024 10:27:11 GMT - Tue, 09 Jul 2024 10:27:10 GMT

File type
ASCII text, with very long lines (774), with no line terminators
Size
638 B (638 bytes)
Hash
0d356b0f45bf522ac8c2a51fdc02d538
9ce956d84f82bb8c6eba5730f4087a5237590d72
c187098c4a6351e7e8a216ae782b7183f4157ec2e7a8cf69527c0147af072f9d

HTTP Headers

GET /api/users/59846?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&sid=150e7b28-dbb7-4623-9143-4f0aba0e8833&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908 HTTP/1.1
Host: tr.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:28 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: nauid=Y6DxjVF2VdZPPaVgwPjp; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2

videzz.net/js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42

78.142.18.54

200 OK

159 kB

URL GET HTTP/2
videzz.net/js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5
ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
159 kB (158902 bytes)
Hash
7c33538390b466ae717449d729bb32ea
49ea1eb1dc06467f516eae28e09863a23b244a31
a2f37fa7aee9e9248856735b807b028c93be60eb6bb9916595ba123690513f02

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-ubajah218krs.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:40 GMT
vary: Accept-Encoding
etag: W/"66163918-26cb6"
expires: Sat, 25 May 2024 08:21:03 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2

static.addtoany.com/menu/svg/icons/viber.js

172.67.39.148

200 OK

1.0 kB

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/viber.js
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
ASCII text, with very long lines (1027), with no line terminators
Size
1.0 kB (1003 bytes)
Hash
b216786a6e2822572e4c78284416fd02
b3a072140d798b6734431ff6a890da7cb8c701ce
265af7156e77fce7638988053d5b3f4894c92ae2bdacac504131a96cf6a0d370

HTTP Headers

GET /menu/svg/icons/viber.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"ab1da422605fdb35fd02440984d36475"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jdllmjIIRPRO2sHETKfzSGgQqV%2B5f6wC121kOiSfff%2FleOBxlgQKvNn%2B2DUe%2Fr5kpz9KGft%2FRsHDcGcIpGt%2F42uj0Qb%2BUMIa9aqfRrxL31k1iZW4bD4Y1%2BVj76SQGbCP3FxdALOTUrcyP3H539%2BTGVdC"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 13617
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 879cf1434cff56a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

static.addtoany.com/menu/svg/icons/whatsapp.js

172.67.39.148

200 OK

1.1 kB

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/whatsapp.js
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
ASCII text, with very long lines (1122), with no line terminators
Size
1.1 kB (1108 bytes)
Hash
d822c46f36a55fdbfcc5029e62e19937
c575da68fa99eeb33863f281395755cbf20004d4
062ec1f7c3acea435122961b771eb2e4d136a3e870b17d3e811413f5aa78ed3e

HTTP Headers

GET /menu/svg/icons/whatsapp.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"83af4df8173e43227812296bb8542dcf"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jWKI1OdsgbKSSTP8GoOtOhOKwQZxTKwLszgx9k%2BDMGmsGKC5miCWXMTCDxhml1%2BDIyezqjP%2F1TFlvruSrPSHWyFchgoghrBAuphUoHmG9VP4ODKiD5REkfluPD1gVIjmFYN898HTH2wMXNp45zD%2BhTqy"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 13617
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 879cf1434d0156a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

veepteero.com/?rb=TjCaU8KDWib4XfEOpRWLsKIF4Jw8AnAaoMWraXuZCImCjQWYABNVZPFbM8bh-ptel1R1YMixJ3yJbn6aKDM46CYsjtFRoxhwEk-jRg8Kbsj7lc-aapuZch3RkSOLaWedwMqUBHVLWLnaph1coHSelDOnC1Wj4eFP1__a_wP3RXYEy2CFEz0BBVVKQrFku7y7YWK2AQaYU9Ep_kjOSa62_LqGEJh0SHTpuF50ob-kMut0xDWDhoK1P7hQVE7dnJuQuZjn-Q%3D%3D&request_ab2=0&zoneid=5708417&js_build=iclick-v1.779.2-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=13&pl=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.779.2-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=547137c4-952c-4144-9a4b-f94412fc4246&userId=008049d1e5ef4abbe5b66564c49be173&m=link

139.45.197.242

200 OK

2.6 kB

URL GET HTTP/2
veepteero.com/?rb=TjCaU8KDWib4XfEOpRWLsKIF4Jw8AnAaoMWraXuZCImCjQWYABNVZPFbM8bh-ptel1R1YMixJ3yJbn6aKDM46CYsjtFRoxhwEk-jRg8Kbsj7lc-aapuZch3RkSOLaWedwMqUBHVLWLnaph1coHSelDOnC1Wj4eFP1__a_wP3RXYEy2CFEz0BBVVKQrFku7y7YWK2AQaYU9Ep_kjOSa62_LqGEJh0SHTpuF50ob-kMut0xDWDhoK1P7hQVE7dnJuQuZjn-Q%3D%3D&request_ab2=0&zoneid=5708417&js_build=iclick-v1.779.2-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=13&pl=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.779.2-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=547137c4-952c-4144-9a4b-f94412fc4246&userId=008049d1e5ef4abbe5b66564c49be173&m=link
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectveepteero.com
Fingerprint13:68:56:48:EC:67:A6:93:BE:E0:36:BC:FA:04:75:6D:6E:D2:C1:91
ValiditySat, 23 Mar 2024 05:18:36 GMT - Fri, 21 Jun 2024 05:18:35 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2606), with no line terminators
Size
2.6 kB (2580 bytes)
Hash
a6a17ab587daf17bd5d09d32138218f4
8c6bd4718622c5e2f2989e602e414992731e2d41
5077d16027536566f40818a92d36450f91dfa316319cb1f512aa573f85a32ae9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rb=TjCaU8KDWib4XfEOpRWLsKIF4Jw8AnAaoMWraXuZCImCjQWYABNVZPFbM8bh-ptel1R1YMixJ3yJbn6aKDM46CYsjtFRoxhwEk-jRg8Kbsj7lc-aapuZch3RkSOLaWedwMqUBHVLWLnaph1coHSelDOnC1Wj4eFP1__a_wP3RXYEy2CFEz0BBVVKQrFku7y7YWK2AQaYU9Ep_kjOSa62_LqGEJh0SHTpuF50ob-kMut0xDWDhoK1P7hQVE7dnJuQuZjn-Q%3D%3D&request_ab2=0&zoneid=5708417&js_build=iclick-v1.779.2-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=13&pl=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.779.2-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=547137c4-952c-4144-9a4b-f94412fc4246&userId=008049d1e5ef4abbe5b66564c49be173&m=link HTTP/1.1
Host: veepteero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:29 GMT
content-type: application/json
x-trace-id: e3ead1fbadd622ef0cffb307ae22fe21
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://videzz.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=008049d1e5ef4abbe5b66564c49be173; expires=Fri, 25 Apr 2025 08:25:29 GMT; path=/; secure; SameSite=None
oaidts=1714033529; expires=Fri, 25 Apr 2025 08:25:29 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Thu, 02 May 2024 08:25:29 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

cache49.vidoza.net/nvl4csrupqfeieno3uganh5mn3tnqwqqie5wrv7o7wpsg5zsdnj3zmk6ifda/v.mp4

0.0.0.0

0 B

URL GET
cache49.vidoza.net/nvl4csrupqfeieno3uganh5mn3tnqwqqie5wrv7o7wpsg5zsdnj3zmk6ifda/v.mp4
IP
0.0.0.0:0
ASN
#0

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectvidoza.net
FingerprintDD:9C:2A:D1:7E:90:60:D1:BE:1C:39:29:07:29:9C:34:6A:76:A6:C6
ValidityWed, 14 Feb 2024 01:21:54 GMT - Tue, 14 May 2024 01:21:53 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /nvl4csrupqfeieno3uganh5mn3tnqwqqie5wrv7o7wpsg5zsdnj3zmk6ifda/v.mp4 HTTP/1.1
Host: cache49.vidoza.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
server: nginx/1.20.1
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: video/mp4
content-length: 435177386
last-modified: Tue, 23 Apr 2024 20:15:41 GMT
etag: "662816ed-19f047aa"
content-range: bytes 0-435177385/435177386
X-Firefox-Spdy: h2

tr.7vid.net/api/users/424503?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&sid=150e7b28-dbb7-4623-9143-4f0aba0e8833&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908

135.181.208.216

200 OK

674 B

URL GET HTTP/2
tr.7vid.net/api/users/424503?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&sid=150e7b28-dbb7-4623-9143-4f0aba0e8833&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908
IP
135.181.208.216:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjecta.gatwins.site
Fingerprint66:D4:C4:E9:BC:6E:82:9E:D0:2F:00:69:9A:DF:C2:6D:18:04:0B:1B
ValidityWed, 10 Apr 2024 10:27:11 GMT - Tue, 09 Jul 2024 10:27:10 GMT

File type
ASCII text, with very long lines (814), with no line terminators
Size
674 B (674 bytes)
Hash
e6a3d0ec45e32c924dff29fb2a6f6560
a9c14bf2eef0e69868392aef62f2163ed74d3e54
edbfe55404a10509c8276ebf2859ed234b43002c16c4630295d22f2521c3bc75

HTTP Headers

GET /api/users/424503?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-ubajah218krs.html&sid=150e7b28-dbb7-4623-9143-4f0aba0e8833&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908 HTTP/1.1
Host: tr.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:28 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: nauid=tCfuNuvD32XAYKzpu4MB; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2

bid.bidclickmedia.com/sub/31pnK5n

172.67.205.77

200 OK

234 B

URL GET HTTP/2
bid.bidclickmedia.com/sub/31pnK5n
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text, with no line terminators
Size
234 B (234 bytes)
Hash
f80bebf9471a9840ef5768e8c6b26672
164896726fce06ed3a1b8cbed00ab7c0493b6d24
5367258c378438d9831e9138819e8e68c4b7e6525dde7a086fb82a083398099c

HTTP Headers

GET /sub/31pnK5n HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2xn2IZnhsdRy%2FzkzEw5Nu5K0LR5598URmLEj6LBmZyqfZeQ9U%2Bnpr6FuXMq6Qcfh%2F1soIIr9DrzTaIZE7cJkxs0HGL17B%2BVkQZB70%2Fn3HSl13mzeCj9okT4NgKcEIVXdvgJTn6Km22c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf1432bcf5691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.addtoany.com/menu/modules/core.BRQnzO8v.js

172.67.39.148

200 OK

72 kB

URL GET HTTP/3
static.addtoany.com/menu/modules/core.BRQnzO8v.js
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
72 kB (71454 bytes)
Hash
629401c31553d2f42a6ca46e58c2a97b
0ab6084caa72f90913c7e4119f491838726ec5c2
91b9b24f0aa59668e4d0a770ee7a294b9baa361a76a20ade8128cd0482a5d805

HTTP Headers

GET /menu/modules/core.BRQnzO8v.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
cf-bgj: minify
etag: W/"25da5432b1057724b8210f17e9b9db05"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B%2FN7klxF7wXP63HcRl%2BjCdei7MZiQdLbHTqz87Q9U8JynkbiNBMS1rbdVtmUknMMTPAEW9DWd2%2FJRR1gRNn7DGNrqap17XCipxcat6ZwNX7wMVLUN3VPJR8WgR5HpxT%2BapjjIqHt"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 15662
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 879cf141fb9f56a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bid.bidclickmedia.com/sub/31bV2Jy

172.67.205.77

200 OK

239 B

URL GET HTTP/2
bid.bidclickmedia.com/sub/31bV2Jy
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text, with no line terminators
Size
239 B (239 bytes)
Hash
d5b23342c3da61ad8cb32c85b5a9a6ca
3ca89fd68565941a5f5dec87720a2164c9b860ae
53073b03453dec44b400acecc549d6446aba803406a391777a94cc2504173bbb

HTTP Headers

GET /sub/31bV2Jy HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e3Ha2HQgNfJyEZ%2FOjzhtLP0Ep07miJygR7LLz5nGbNBm%2FpD7UkMo8cK0L3EmdcgZc%2BKMN%2BB5oXsr2NxOaQXyNVYhB5TFJGcQIUSJMW3xUpCehSFQgLUaxaPXssC7Hqg0PAoP%2FIgMGY8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf1431bcc5691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.addtoany.com/menu/svg/icons/facebook.js

172.67.39.148

200 OK

429 B

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/facebook.js
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
ASCII text, with very long lines (439), with no line terminators
Size
429 B (429 bytes)
Hash
874e1638740e061f9fa55eda3180724c
108a7e30fa0f7d50b961845ec970a2745f3c821f
d1bf990d09417220fcb615079a569e0a403c75beef0eac536e5976b7751c0370

HTTP Headers

GET /menu/svg/icons/facebook.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"68925fa8e347041c6006837e73c518bc"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6GJdn8sjfSnuFPLDtJ%2FQfURHSV9%2BVKFPN%2BoVMIE1WLd%2FjnFWUFJ2yQt7T11BUY%2FmaD3PEQ7eEP6%2Bz96%2BX%2BOzAKq%2BjuM95%2B0V1zYfujak10jOE9EJBhjR6qVVwcABhbLdH5ABU1D%2FXBghUl5L%2FyVYWLhC"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 13617
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 879cf1434cf256a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

static.addtoany.com/menu/svg/icons/telegram.js

172.67.39.148

200 OK

360 B

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/telegram.js
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
ASCII text, with very long lines (370), with no line terminators
Size
360 B (360 bytes)
Hash
d455b7099e753a3680d5e481a7b56a9d
146fdec3f2e51dabdd15fc8acda6d73823b0d44d
4eb7a6d1a684e68473de0e8854499206b2f512a3815a8114068636dd38aa197a

HTTP Headers

GET /menu/svg/icons/telegram.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"fb47b4f6548b6499923a1beed7472419"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rS6p7wFnFl7fkJw7fLG2A4znYwIH3MQ0wRM8iq4hiAUKTt95h0HUv0gE1X%2BxhNFe5NpA65SxgDVKQH2MWG8Tn0P%2BjYr297yGtzRJc%2FzpKzNH1%2BOg75hSsVnjZj9iezTg3kCEOC9X8UOzN6i49HViMtne"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 13617
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 879cf1434cfa56a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

videzz.net/favicon.ico?v=2

78.142.18.54

200 OK

1.2 kB

URL GET HTTP/2
videzz.net/favicon.ico?v=2
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5
ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Size
1.2 kB (1150 bytes)
Hash
07075ddac650ad1577e310576f4ac231
1c8f551262fac5a047a268b82fa932c405ab13ff
c5f2d482ae4405a8e9f16a7ab09c5d04380283eb0cb0a9b237b32bc1bca47901

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico?v=2 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-ubajah218krs.html
Cookie: lang=1; file_id=37979025; aff=174908; sb_main_fd40b682a05e4aaf489d29601350aa66=1; sb_count_fd40b682a05e4aaf489d29601350aa66=1; _ga_HEX1BG8H46=GS1.1.1714033526.1.0.1714033527.59.0.0; _ga=GA1.1.218167250.1714033527; asgfp2=172e5b6362817b33a26bdcbe3d1af8ae; dom3ic8zudi28v8lr6fgphwffqoz0j6c=940a991f-3d75-4ecb-b9ad-02547392a9dc%3A3%3A1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=experimentalpersecute.com; pp_main_f1776d24271c5ad55c5f1492e2d01e10=1; pp_idelay_f1776d24271c5ad55c5f1492e2d01e10=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 25 Apr 2024 08:25:28 GMT
content-type: image/x-icon
last-modified: Wed, 10 Apr 2024 07:00:24 GMT
vary: Accept-Encoding
etag: W/"66163908-47e"
expires: Sat, 25 May 2024 08:21:15 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2

videzz.net/css/embed.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42

78.142.18.54

200 OK

618 kB

URL GET HTTP/2
videzz.net/css/embed.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5
ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT

File type
ASCII text, with very long lines (63495)
Size
618 kB (618399 bytes)
Hash
ffba0e4b3edaa1a4c6bc7ef04bcf0ba9
3507ae56cc30b273cf17d0cf4de234dafa4db0eb
57291457f6bd1dc724ab0cc7d5d9def8fceafc52263d72d0b3f6c6ae2dd8286c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/embed.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-ubajah218krs.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: text/css
last-modified: Wed, 10 Apr 2024 07:00:40 GMT
vary: Accept-Encoding
etag: W/"66163918-96f9f"
expires: Sat, 25 May 2024 08:21:14 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2

veepteero.com/88/104

139.45.197.242

200 OK

2.9 kB

URL GET HTTP/2
veepteero.com/88/104
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectveepteero.com
Fingerprint13:68:56:48:EC:67:A6:93:BE:E0:36:BC:FA:04:75:6D:6E:D2:C1:91
ValiditySat, 23 Mar 2024 05:18:36 GMT - Fri, 21 Jun 2024 05:18:35 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (3203), with no line terminators
Size
2.9 kB (2947 bytes)
Hash
364f45edfa28c54a0cc2f9a8d552374f
b86a77107ae92b9d2e968477c68f9460d4dbac1d
aa7afe1f6647ba93b7f9e11e9c5dad88fb2a7e1054b46e374c7b5be8269c9eaf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /88/104 HTTP/1.1
Host: veepteero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:28 GMT
content-type: application/json
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://videzz.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

cache49.vidoza.net/nvl4csrupqfeieno3uganh5mn3tnqwqqie5wrv7o7wpsg5zsdnj3zmk6ifda/v.mp4

51.15.62.29

206 Partial Content

180 kB

URL GET HTTP/2
cache49.vidoza.net/nvl4csrupqfeieno3uganh5mn3tnqwqqie5wrv7o7wpsg5zsdnj3zmk6ifda/v.mp4
IP
51.15.62.29:443
ASN
#12876 Scaleway S.a.s.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectvidoza.net
FingerprintDD:9C:2A:D1:7E:90:60:D1:BE:1C:39:29:07:29:9C:34:6A:76:A6:C6
ValidityWed, 14 Feb 2024 01:21:54 GMT - Tue, 14 May 2024 01:21:53 GMT

File type
ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]
Size
180 kB (180206 bytes)
Hash
6ffd001a164ba17a95961c4e6a762ecb
023171072aa34ff204672066ef0fd815b6099cc1
703388e384deaac7c343f7816f757bd719d676001d5d2b08732a0c83e243a4e1

HTTP Headers

GET /nvl4csrupqfeieno3uganh5mn3tnqwqqie5wrv7o7wpsg5zsdnj3zmk6ifda/v.mp4 HTTP/1.1
Host: cache49.vidoza.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
server: nginx/1.20.1
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: video/mp4
content-length: 435177386
last-modified: Tue, 23 Apr 2024 20:15:41 GMT
etag: "662816ed-19f047aa"
content-range: bytes 0-435177385/435177386
X-Firefox-Spdy: h2

cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/index.html

172.67.74.218

200 OK

1.6 kB

URL GET HTTP/2
cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/index.html
IP
172.67.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49
ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (1656), with no line terminators
Size
1.6 kB (1567 bytes)
Hash
2a523dc3cb7314caf663b351ca42bb98
533eb671476d6199a2dd46c37445b41cb67979ec
beabb332b0ae2b66f893c34d6a805a306c127f4342c115097d188e0451851f67

HTTP Headers

GET /sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:27 GMT
content-type: text/html
last-modified: Thu, 01 Feb 2024 14:55:01 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 43286
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0TJas1RG9vHOkd4Pp0B3cK4dZimgqGEkINGFtPBLhX432U7aq%2F17sjDUJVWnCTKZ3vky2RBWc8eODlfzU7PMojYlw7baEGR601I43IafjyCZp9LRpu47Pz3q%2FFwqZEXM9Km47Og%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf14b9e385694-OSL
content-encoding: br
X-Firefox-Spdy: h2

myliveforyoudreder.com/vidozza.js

104.21.40.134

200 OK

1.6 kB

URL GET HTTP/2
myliveforyoudreder.com/vidozza.js
IP
104.21.40.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectmyliveforyoudreder.com
FingerprintD6:1F:6C:5C:81:FF:C4:D3:4D:C9:A9:22:DD:0B:D4:18:59:4E:58:B7
ValidityWed, 20 Mar 2024 02:24:57 GMT - Tue, 18 Jun 2024 02:24:56 GMT

File type
JavaScript source, ASCII text, with very long lines (1742), with no line terminators
Size
1.6 kB (1615 bytes)
Hash
1b10623dcc365c3e40aa543ee9be6c3d
ee99261cffbbf896eba3c60d867480042fbaadc5
54dec89c60117fd15b96d376c1dba2de2f333009f2ba0847fa71fa0a969f863f

HTTP Headers

GET /vidozza.js HTTP/1.1
Host: myliveforyoudreder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: application/javascript
last-modified: Mon, 24 Oct 2022 14:14:49 GMT
etag: W/"63569dd9-64f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4137
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZSEdSZ8fHz%2BHR3aicSvrSIULUUKab4vSldthOkDv4hsbcZkEu7U9urQZgNT%2FcMazTuCh7HcrlKG3pBu9DaGz0RQ36PD%2BYyeF3fsf6SeKfIoOiNEGvPIkWuEJssd%2Bo3klP8xW2YDwpUve"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf1437e7756ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

142.250.74.106

200 OK

7.0 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (7193), with no line terminators
Size
7.0 kB (7004 bytes)
Hash
16b49a99486594c0b42d9bd7821deb2c
2fb46e5e86d6b37d4497cc04bfd89b3cb33a276a
3f3540952441e06ef81189cf63d46bac242804e386779dbb0cdd78ed10025c21

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 08:25:27 GMT
date: Thu, 25 Apr 2024 08:25:27 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

xml.xmlking.com/redirect?feed=591363&auth=0yfQfB&pubid=195183

174.137.133.17

200 OK

0 B

URL GET HTTP/1.1
xml.xmlking.com/redirect?feed=591363&auth=0yfQfB&pubid=195183
IP
174.137.133.17:443
ASN
#27257 WEBAIR-INTERNET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerSectigo Limited
Subject*.xmlking.com
Fingerprint61:F0:9B:53:D2:DF:03:A0:08:09:BE:79:B1:70:10:34:65:07:7B:6D
ValidityWed, 26 Jul 2023 00:00:00 GMT - Fri, 26 Jul 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect?feed=591363&auth=0yfQfB&pubid=195183 HTTP/1.1
Host: xml.xmlking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 08:25:27 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store

cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/animate.css

188.114.97.1

200 OK

79 kB

URL GET HTTP/2
cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/animate.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
79 kB (79245 bytes)
Hash
80047eaa13ebd50c50e8a9753621e430
9c503e07d130572a0eaf51f7c02cbd4cf6213fe3
3f831a59615f8d5d40b4340b2836f91438c876f8dbce75f78e38360d6fe0f429

HTTP Headers

GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:27 GMT
content-type: text/css
last-modified: Thu, 01 Feb 2024 14:55:01 GMT
etag: W/"65bbb0c5-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 413725
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5nu%2B7oo87j4L%2Fzx1tzVCXPq8KeaXUzetzitIBjM7MirGaXWE5o%2Bho5TLAIRV1i2eVPFFi%2BWMCFF1u64cQVT%2FV4hlmGIrwZNH8JmGKpvflIu70zQQ7CO325YMlQDqVp46vQ%2FP2%2Fh8Gaug"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf14cff17b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

videzz.net/sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42

78.142.18.54

200 OK

42 kB

URL GET HTTP/2
videzz.net/sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5
ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT

File type
JavaScript source, ASCII text, with very long lines (42324), with no line terminators
Size
42 kB (42324 bytes)
Hash
764aafd976dd9cd9f33279bfafa02908
e9ad856ec00bccfdcbe17b79113681685c943b8d
2c20e295faeb1ef24dae1e26caa5089fdb2ba5a36a86a6a26780b8a515ca99aa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-ubajah218krs.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:32 GMT
vary: Accept-Encoding
etag: W/"66163910-a554"
expires: Sat, 25 May 2024 08:24:05 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2

aistekso.net/401/5708419

139.45.197.244

200 OK

88 kB

URL GET HTTP/2
aistekso.net/401/5708419
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectaistekso.net
Fingerprint3E:A5:CE:35:F4:D9:45:6B:A1:3B:2E:9C:B3:9E:78:4D:8A:4B:51:BB
ValiditySun, 24 Mar 2024 05:08:27 GMT - Sat, 22 Jun 2024 05:08:26 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
88 kB (87882 bytes)
Hash
2e942160674d0ebc4f7675fe73ef15fe
10ed07d481858610a5ce62f2be590262fc686c1b
84e8033b8ddb4058c785b6a7fa2971d4843af80d17e7167d14cc5362aa1bb3ab

HTTP Headers

GET /401/5708419 HTTP/1.1
Host: aistekso.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 08:25:28 GMT
content-type: application/javascript
x-trace-id: f39258ac6e0e28eb69e9595865502a6e
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=03004949d82b469cefa698a8dd90ea53; expires=Fri, 25 Apr 2025 08:25:28 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

videzz.net/embed-ubajah218krs.html

78.142.18.54

200 OK

32 kB

URL User Request GET HTTP/2
videzz.net/embed-ubajah218krs.html
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5
ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT

File type
HTML document, ASCII text, with very long lines (1926), with CRLF, LF line terminators
Size
32 kB (31653 bytes)
Hash
c60d985fdd85ed67b01de0b95691bb9a
21dd6742a9f145de70497066729d56585ca6ff2a
64652c39eae1eebeaf855f7fb8391e91689c41fe60bc5bdabd2e5ea835a34949

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /embed-ubajah218krs.html HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Wed, 24 Apr 2024 08:25:25 GMT
x-frame-options: 1
set-cookie: lang=1; domain=.videzz.net; path=/; HttpOnly
xfsts=; domain=.videzz.net; path=/; expires=Wed, 26-Apr-2023 08:25:25 GMT; HttpOnly
content-encoding: gzip
X-Firefox-Spdy: h2

bid.bidclickmedia.com/sub/Zj8D76R

172.67.205.77

200 OK

234 B

URL GET HTTP/2
bid.bidclickmedia.com/sub/Zj8D76R
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text, with no line terminators
Size
234 B (234 bytes)
Hash
aa39ce14ee4ef59a81b3b1ccc7c20cfb
4037f87db53a18212b896cbe7dc03404833bd9f4
5e96980309ab1a029fa20a02fb9aca51a5967df4e6ab8aaab5f0373d4ebd4f68

HTTP Headers

GET /sub/Zj8D76R HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mY0%2BGStEls%2Bem%2B2xAPvIuH0NOk1me1LH9%2Fsxdu6FL9tVhU%2FKe3grmyKugmiix91OICRmXM0btUey7ZmrTh2auGIO2Aq3jXG5Q06%2Bg1YAAEiDeL5jVCG5iSPG%2F75b%2F38TT8fBDiiINdM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf1431bce5691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.addtoany.com/menu/svg/icons/reddit.js

172.67.39.148

200 OK

893 B

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/reddit.js
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
ASCII text, with very long lines (903), with no line terminators
Size
893 B (893 bytes)
Hash
1f5dd30051ff637ea1d19ce73aced89c
bfdd1d1c07492ba397bdcf13e262edcfd8692a5e
c1bf0dd12b2f71de1e7e154b309caa18d2f1c2a8dc077beba23b89432ad72a81

HTTP Headers

GET /menu/svg/icons/reddit.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"1fe5b5008de689ce6464d7bcb07e742c"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BKI8JfGHLgDLQMxgjIu6uq9y5sFahBx8LFeIv85H4LGXkFnp9HWSnK6sZVx299a1mbU%2BjomK2FHlABBJnwQDJeYe4yJMdIkipFw6Yt2WeRGl5RDOvuaLloy6P%2F%2BRZw9yvyADzctlodc7WNv6iH7eoGMR"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 13617
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 879cf1434cf456a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

allvideometrika.com/f.php?sid=212515

172.67.214.245

200 OK

0 B

URL GET HTTP/2
allvideometrika.com/f.php?sid=212515
IP
172.67.214.245:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectallvideometrika.com
Fingerprint0F:3F:B1:7E:F7:3C:77:24:1C:85:B2:89:15:11:43:1A:AD:64:DF:13
ValidityTue, 23 Apr 2024 13:34:13 GMT - Mon, 22 Jul 2024 13:34:12 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /f.php?sid=212515 HTTP/1.1
Host: allvideometrika.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.1.33
cache-control: no-store, no-cache, must-revalidate, max-age=0
x-robots-tag: noindex
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y%2F0KN9dwT5NoSNi3wXcl86YAHSm56J71q%2FR%2FBJElT%2FbaVvr29fJ2zEhzy%2Fjw7DwHkiR7212PJwWrHCJt5iahgn7Oj2UIXWgX9Cihk1N8PUggOJOW7xYTW%2F7eiG0ydPxuUcdon5F9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf1459c7db512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ossgogoaton.com/tag.min.js

188.114.97.1

200 OK

72 kB

URL GET HTTP/2
ossgogoaton.com/tag.min.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectossgogoaton.com
FingerprintB8:1E:A6:C4:2B:2A:31:03:63:B7:B8:7D:1A:4D:46:B1:54:80:C7:C6
ValidityWed, 06 Mar 2024 10:18:26 GMT - Tue, 04 Jun 2024 10:18:25 GMT

File type
JavaScript source, ASCII text, with very long lines (65494)
Size
72 kB (72535 bytes)
Hash
ad104d6838b1598223e097ad025c7da6
6fd1a44f70d7f2674c98ea85b5659b6b9df72a3d
4a5fefe9aad006d46bc209cd5626fa7d1585f4bc04488ca993ab005ef66388d1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: ossgogoaton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:28 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: 7276e4812fa8f3c78b3c06118cbeb133
cache-control: max-age=86400
last-modified: Wed, 24 Apr 2024 16:46:12 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Thu, 25 Apr 2024 18:51:46 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 48822
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=atw9RvRBS3LnpXqvnxATUVu3YBqNQ%2BxkjWH0ZLLhOJAuC12w%2FM6gJ0pVmAlk9Qp1mLjp%2F3QhiWgtzOQBpYKcsei7%2Bqy4Jl%2F3BbyMEMT8J3SVZW%2FjeJiyfjjsFbD9W2imLSA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879cf15108950b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

videzz.net/js/jquery.min.js

78.142.18.54

200 OK

96 kB

URL GET HTTP/2
videzz.net/js/jquery.min.js
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5
ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT

File type
JavaScript source, ASCII text, with very long lines (32086)
Size
96 kB (95786 bytes)
Hash
8101d596b2b8fa35fe3a634ea342d7c3
d6c1f41972de07b09bfa63d2e50f9ab41ec372bd
540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery.min.js HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-ubajah218krs.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:40 GMT
vary: Accept-Encoding
etag: W/"66163918-1762a"
expires: Sat, 25 May 2024 08:21:04 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2

videzz.net/js/videojs.stm.5.min.js?0.759016567108013

78.142.18.54

200 OK

7.2 kB

URL GET HTTP/2
videzz.net/js/videojs.stm.5.min.js?0.759016567108013
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5
ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT

File type
JavaScript source, ASCII text, with very long lines (7493), with no line terminators
Size
7.2 kB (7205 bytes)
Hash
559fdbbfb2f700ef277f69b35a097d54
df1d4bf430b37e066e4e3187d621c954d581c160
d30c79b738e33d406468f33a059c11238995e485cad39bb31a721f370baa05c5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/videojs.stm.5.min.js?0.759016567108013 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-ubajah218krs.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:32 GMT
vary: Accept-Encoding
etag: W/"66163910-1c25"
expires: Sat, 25 May 2024 08:25:25 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: MISS
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42

104.18.10.207

200 OK

31 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
ASCII text, with very long lines (30837)
Size
31 kB (31000 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 03/18/2024 12:28:12
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 2ab8316fdef76f530c15e660f59a896d
cdn-cache: HIT
cf-cache-status: HIT
age: 2684969
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 879cf13e6a2056b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

172.240.108.68

200 OK

0 B

URL GET HTTP/1.1
experimentalpersecute.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fjs%2Fscript.js&l=386&fd=76
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectexperimentalpersecute.com
Fingerprint5B:26:4B:A0:AF:BC:CB:6C:CE:FC:E1:0D:53:30:BC:D5:75:54:9A:DA
ValidityWed, 24 Apr 2024 15:08:26 GMT - Tue, 23 Jul 2024 15:08:25 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2F%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2Fecorious%2Fmessage_redcircle2%2Fjan24%2F3%2Fjs%2Fscript.js&l=386&fd=76 HTTP/1.1
Host: experimentalpersecute.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 25 Apr 2024 08:25:27 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

static.addtoany.com/menu/sm.25.html

172.67.39.148

200 OK

716 B

URL GET HTTP/3
static.addtoany.com/menu/sm.25.html
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
HTML document, ASCII text, with very long lines (744), with no line terminators
Size
716 B (716 bytes)
Hash
c3c97893ca5c74e7504aa4ec474ea41b
cdccb12d7e73682e0e807107243ede7d5e14c962
b79f65e9ffe3bad9bd9cdcffed0758430f7eb1a630c368dc173eecdeb2821f00

HTTP Headers

GET /menu/sm.25.html HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5XqYdf3zT6f5djRXIIJwMp9CmOr869HlwkvaSLOezMHs8bCNXKhchHrxUkAX8VobSQtGTx9av1ds6j%2BrAMbeIHt6gjCWQ%2F0%2FDDuSz%2BYQMTMfH9cMBRVSXt9wfmQ0xD6qcBrOg5iLUMVJymypfmtsURYC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 22634
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 879cf141eb9356a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

xml.zeusadx.com/redirect?feed=552612&auth=OEhoVk&pubid=162319

174.137.133.17

200 OK

0 B

URL GET HTTP/1.1
xml.zeusadx.com/redirect?feed=552612&auth=OEhoVk&pubid=162319
IP
174.137.133.17:443
ASN
#27257 WEBAIR-INTERNET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerSectigo Limited
Subject*.zeusadx.com
FingerprintAA:67:88:35:5F:BC:20:3C:44:9B:00:BD:4F:E1:C0:5F:62:D0:69:C0
ValidityMon, 23 Oct 2023 00:00:00 GMT - Wed, 23 Oct 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect?feed=552612&auth=OEhoVk&pubid=162319 HTTP/1.1
Host: xml.zeusadx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 08:25:27 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store

cache49.vidoza.net/i/01/07595/ubajah218krs.jpg?v=1714033525

51.15.62.29

200 OK

29 kB

URL GET HTTP/2
cache49.vidoza.net/i/01/07595/ubajah218krs.jpg?v=1714033525
IP
51.15.62.29:443
ASN
#12876 Scaleway S.a.s.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectvidoza.net
FingerprintDD:9C:2A:D1:7E:90:60:D1:BE:1C:39:29:07:29:9C:34:6A:76:A6:C6
ValidityWed, 14 Feb 2024 01:21:54 GMT - Tue, 14 May 2024 01:21:53 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 720x405, components 3
Size
29 kB (28937 bytes)
Hash
1c33aecf7b0fd1fac8342ff300042370
1ccd2890ba680ea3b5814eed0666135613a8f40e
9f52fc3badb23df9f54b453bb0df86dfd1879aab2c5f5e587309e63aed032e7e

HTTP Headers

GET /i/01/07595/ubajah218krs.jpg?v=1714033525 HTTP/1.1
Host: cache49.vidoza.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: image/jpeg
content-length: 28937
last-modified: Tue, 23 Apr 2024 20:15:27 GMT
etag: "662816df-7109"
expires: Thu, 09 May 2024 08:25:26 GMT
cache-control: max-age=1209600
accept-ranges: bytes
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c

142.250.74.136

200 OK

271 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (7711)
Size
271 kB (270572 bytes)
Hash
654dc403ce211fa269e9ce221dce228c
69e2419cd190ab6261efbe5e4a03df62ad02d241
7d88cd944c8dfe0284bb72fc2bd3cb3a13e4ad3d84381468bbd78ed9212122f8

HTTP Headers

GET /gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 08:25:26 GMT
expires: Thu, 25 Apr 2024 08:25:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93604
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

videzz.net/js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42

78.142.18.54

200 OK

416 kB

URL GET HTTP/2
videzz.net/js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5
ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT

File type

Size
416 kB (416358 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-ubajah218krs.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:40 GMT
vary: Accept-Encoding
etag: W/"66163918-65a66"
expires: Sat, 25 May 2024 08:23:47 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2

videzz.net/js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42

78.142.18.54

200 OK

4.5 kB

URL GET HTTP/2
videzz.net/js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5
ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT

File type
JavaScript source, ASCII text, with very long lines (4724), with no line terminators
Size
4.5 kB (4483 bytes)
Hash
f3ccae55608834d0e7acfde8a7235903
16cd94840b9d0105558c5f8b26ac51845d84bb2e
8d950b465b8cb006d19d702a1d15e209cb10b861f5ead615e7f9625469605ef2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-ubajah218krs.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 25 Apr 2024 08:25:25 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:32 GMT
vary: Accept-Encoding
etag: W/"66163910-1183"
expires: Sat, 25 May 2024 08:24:12 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2

static.addtoany.com/menu/locale/ru.js

172.67.39.148

200 OK

2.1 kB

URL GET HTTP/3
static.addtoany.com/menu/locale/ru.js
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
ASCII text, with very long lines (2170), with no line terminators
Size
2.1 kB (2130 bytes)
Hash
7581051e137324f383ce692c383a90ac
7c66ac218fd109304436e9588d602c7aaab63b82
428aafe2046340df744b20fbab6f0cd4ddfb95776790e80440cfb60788dbde2c

HTTP Headers

GET /menu/locale/ru.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=86400, stale-while-revalidate=30, public
cf-bgj: minify
cf-polished: origSize=2289
etag: W/"9797b535a7dbc5ec8be5d83312871549"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SSZZPHRQHmmj7W9b8uSrlEOmUNd5EPtJjQ6dGciF28UUVd2CDtNJ%2FBwzXajDEbBux%2FcEjPyaUJyeHlp1cPBVMV3Q2eK944CTAvvX7nWPfNzysCaOl3kzBNgW%2F9nsUG4Ry0l3jQ6qpq%2Bc1bomXdrURWCn"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 21868
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 879cf1433cef56a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bid.bidclickmedia.com/sub/31pnK5n

172.67.205.77

200 OK

234 B

URL GET HTTP/2
bid.bidclickmedia.com/sub/31pnK5n
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-ubajah218krs.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text, with no line terminators
Size
234 B (234 bytes)
Hash
f80bebf9471a9840ef5768e8c6b26672
164896726fce06ed3a1b8cbed00ab7c0493b6d24
5367258c378438d9831e9138819e8e68c4b7e6525dde7a086fb82a083398099c

HTTP Headers

GET /sub/31pnK5n HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 Apr 2024 08:25:26 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s6Fmuj28JZp7rdViZhYtdgrkp60a%2BeIJjHJy2wL86tT9QoGohTck0Y61w2ycImpkKC2KyDy1gzzsvSm6TQT2ow7XCl8gxA2xObZ%2BwuWmTinDRZjOfOhh4YbLZXRqPK83K6SSHDC4L7U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879cf1431bc65691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (72)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash