| www.googletagmanager.com/gtag/js?id=UA-158623850-1 | 142.250.74.168 | 200 OK | 73 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=UA-158623850-1 IP142.250.74.168:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hasha57e019609bb255eef1d6c7d4c33b911 853fa593d4effa82fa2ef29d3a10de2dce5c223e db4855f51ac7a14778d63f8d8cc2ba37a02f9e1bd475fd4f41f3d808e15bb9d9
GET /gtag/js?id=UA-158623850-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 18:05:07 GMT
expires: Fri, 26 Apr 2024 18:05:07 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73362
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| videzz.net/js/pop.js?v=1.0 | 78.142.18.54 | 200 OK | 35 B |
URL GET HTTP/2videzz.net/js/pop.js?v=1.0 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
Hashda4bf5414bf75eefb21872f9b59fe6fc e34335e0705397a4ad02c406a2e92333e6d2b0e5 d48b428c1788391a1aef29802daaa691077732dc7b821d0968831bc50b19278d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/pop.js?v=1.0 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-74zqgcm7xbe5.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: application/javascript
content-length: 35
last-modified: Wed, 10 Apr 2024 07:00:40 GMT
etag: "66163918-23"
expires: Sun, 26 May 2024 17:56:27 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| videzz.net/js/ads.js?v=1.0 | 78.142.18.54 | 200 OK | 211 B |
URL GET HTTP/2videzz.net/js/ads.js?v=1.0 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
Hash09f34de71e8853387dd398fbb263af69 4ccb7007fcebcffe64eaa80f2991509fdbac55d5 6ca7e6aebc6e3eec26d39e540e255a738fd9e48e9b97bd0e2a714686377ac523
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/ads.js?v=1.0 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-74zqgcm7xbe5.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: application/javascript
content-length: 211
last-modified: Wed, 10 Apr 2024 07:00:18 GMT
etag: "66163902-d3"
expires: Sun, 26 May 2024 17:56:29 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| videzz.net/images-newtheme/adb_logo.png | 78.142.18.54 | 200 OK | 8.3 kB |
URL GET HTTP/2videzz.net/images-newtheme/adb_logo.png IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typePNG image data, 178 x 178, 8-bit/color RGBA, non-interlaced Hash98fcd22c469a5aa46df8ec4e7a8eafc9 e8d95f175d3008736995a482d7304410a1da490a b1e79e219bf46ca5ef14a9619c5440e78c2ebdbc34b8f0c65f0777a8b02fc30c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images-newtheme/adb_logo.png HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-74zqgcm7xbe5.html
Cookie: lang=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: image/png
content-length: 8308
last-modified: Wed, 10 Apr 2024 07:00:17 GMT
etag: "66163901-2074"
expires: Sun, 26 May 2024 17:56:36 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| videzz.net/images-newtheme/attention.png | 78.142.18.54 | 200 OK | 6.4 kB |
URL GET HTTP/2videzz.net/images-newtheme/attention.png IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typePNG image data, 263 x 231, 8-bit/color RGBA, non-interlaced Hashd28ebe1b4425fa4ab5d804792b5aa626 3183e2c59cdaed547de5fb1fc940709ed5117003 36fc8d817d7a356b2b8e8697697a5ce86bedadfea8df2a4e88f9514bb1ce02f6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /images-newtheme/attention.png HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-74zqgcm7xbe5.html
Cookie: lang=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: image/png
content-length: 6377
last-modified: Wed, 10 Apr 2024 07:00:17 GMT
etag: "66163901-18e9"
expires: Sun, 26 May 2024 17:57:03 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| tr.7vid.net/LrfK7A3.js | 135.181.208.216 | 200 OK | 77 kB |
IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjecta.gatwins.site Fingerprint66:D4:C4:E9:BC:6E:82:9E:D0:2F:00:69:9A:DF:C2:6D:18:04:0B:1B ValidityWed, 10 Apr 2024 10:27:11 GMT - Tue, 09 Jul 2024 10:27:10 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators Hasha6781eeb8be115c2cc64c5b4898e5b9d 76001e6e130f936956842ce1fb672ca16be2370e cb8949c4918f30d767c8a97d1b1ddb36eabccf8d93659a80f4e850caa3701da2
GET /LrfK7A3.js HTTP/1.1
Host: tr.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: application/javascript
content-length: 76790
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
vary: Accept-Encoding
etag: "65fd69b1-12bf6"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 201
cf-ray: 8685d408ccf5d995-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| vv.7vid.net/lx4oag1.js | 135.181.208.216 | 200 OK | 77 kB |
IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subject0i.sh-cdn.com Fingerprint24:B9:80:92:9A:AB:42:74:B0:D4:5F:04:68:CF:32:5F:5E:42:BC:53 ValidityFri, 05 Apr 2024 23:27:08 GMT - Thu, 04 Jul 2024 23:27:07 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators Hasha6781eeb8be115c2cc64c5b4898e5b9d 76001e6e130f936956842ce1fb672ca16be2370e cb8949c4918f30d767c8a97d1b1ddb36eabccf8d93659a80f4e850caa3701da2
GET /lx4oag1.js HTTP/1.1
Host: vv.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: application/javascript
content-length: 76790
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
vary: Accept-Encoding
etag: "65fd69b1-12bf6"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 201
cf-ray: 8685d408ccf5d995-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css | 104.17.24.14 | 200 OK | 5.6 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css IP104.17.24.14:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 948192
expires: Wed, 16 Apr 2025 18:05:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yWzy1VdFJw%2FKr8wUQhfslMAk16lR5VihFo%2BMCJtcrtkspMbl0fBUeTcYLzfZy6KJ5Tl%2FoNXSpiyfpeVEZ23q8RZnNtet5QbO0yfO2I03eyH%2BtclLWWHcaeZWQaUfQDW0SZtL%2Bw1y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a87fcaed7ab523-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-56DK3TH | 142.250.74.168 | 200 OK | 72 kB |
URL GET HTTP/3www.googletagmanager.com/gtm.js?id=GTM-56DK3TH IP142.250.74.168:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (3287) Hash3940a6c63c19b841b4f78d1ecf662b93 acec947e5d016bad00f604bc5548fc6c395c13e5 0e30ca9f4bb727cb3723d0eee9b2a0560baddef09ba631bf8fb51a991d76d8b6
GET /gtm.js?id=GTM-56DK3TH HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 18:05:07 GMT
expires: Fri, 26 Apr 2024 18:05:07 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72225
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| s.o333o.com/adgpt.js | 85.10.205.45 | 200 OK | 820 B |
IP85.10.205.45:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerSectigo Limited Subjects.o333o.com FingerprintC1:C0:0F:C0:EF:0F:F7:7A:36:2F:00:9E:5C:55:63:54:63:A3:A6:46 ValidityMon, 12 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typeASCII text, with very long lines (2040), with no line terminators Hash55f8db8e0ec58b646f0b5425b405fdd0 0c79af1239cafc7ec4783f20b0b886a61daccc09 3ec8849ba857ec32cdc682ea93f0c1f8e8ab97980af4f1d8ec312684ed0f5237
GET /adgpt.js HTTP/1.1
Host: s.o333o.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: application/javascript
content-length: 820
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
vary: Accept-Encoding
etag: "65fd69b1-334"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
X-Firefox-Spdy: h2
|
|
| str38.vidoza.net/i/03/07598/74zqgcm7xbe5.jpg?v=1714154707 | 213.152.167.138 | 200 OK | 15 kB |
URL GET HTTP/2str38.vidoza.net/i/03/07598/74zqgcm7xbe5.jpg?v=1714154707 IP213.152.167.138:443 ASN#49453 Global Layer B.V.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectvidoza.net FingerprintDD:9C:2A:D1:7E:90:60:D1:BE:1C:39:29:07:29:9C:34:6A:76:A6:C6 ValidityWed, 14 Feb 2024 01:21:54 GMT - Tue, 14 May 2024 01:21:53 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1552x1551, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 720x388, components 3 Hashf84b2f8c6dcb26839a525ab35cab8e6a bbf21a1ca2cbc07edad809cf5299bc9455a66010 40708733257cf2fd7b52007a389be2184f80ae445c77a3d0bf33efca2fe6745f
GET /i/03/07598/74zqgcm7xbe5.jpg?v=1714154707 HTTP/1.1
Host: str38.vidoza.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: image/jpeg
content-length: 14550
last-modified: Fri, 26 Apr 2024 09:45:43 GMT
etag: "662b77c7-38d6"
expires: Fri, 10 May 2024 18:05:08 GMT
cache-control: max-age=1209600
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 94 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (7711) Hashd89101a37b1fe7fe0b0f73ec9319ebba 2da3e8954019ed8ef980c6fbaf547119da5b86ad 1e4c0334d699792a4bbb8414dddc75140047ea6343e8210b72d26ec1ad778406
GET /gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 18:05:08 GMT
expires: Fri, 26 Apr 2024 18:05:08 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93624
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| bid.bidclickmedia.com/sub/0YDX8OE | 104.21.37.74 | 200 OK | 7.0 kB |
URL GET HTTP/2bid.bidclickmedia.com/sub/0YDX8OE IP104.21.37.74:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text Hashf5ed6ce7b82ba2323315254d8ec73268 130f2deb64cffe104ed683e06bb6f60d3755ac1c fea4d8201695c74087e6b7cdd58df01361f12fcad31870e7d9fbbed7402a2926
GET /sub/0YDX8OE HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ziKr7psIGFJ5nWy39PmnwTO6TIYPZoD0gwRiDcR0pjD4OUePlfLgLeXP5EqyoCxxM8FpNPmPg09sk7CwfYfwjdkwOhr9M%2F8yarslfs75Gt1SmMwCpPOcPW2fRKa4aGjVsPcurMVAIck%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a87fcd3d6b569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 | 104.18.10.207 | 200 OK | 77 kB |
URL GET HTTP/3maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 IP104.18.10.207:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459 Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 19:08:24
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 0a41a35b44b9a221d4e11fe69e9304aa
cdn-cache: HIT
cf-cache-status: HIT
age: 2035717
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a87fd12c63b505-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bid.bidclickmedia.com/load | 104.21.37.74 | 302 Found | 413 B |
URL POST HTTP/3bid.bidclickmedia.com/load IP104.21.37.74:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
Hashb0c955c7a71a827581b487395db887c5 27258484ab3ca37195ab28d61acdb34f883901ff 2b7184ea6277dee9e92cbfb6e776e694a1ce2e35e0993c2a0604f5bcaab9df94
POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 98
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/31bV2Jy
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: text/html; charset=utf-8
location: https://xml.cachegorilla.com/redirect?feed=612977&auth=kAeZgJ&pubid=197570
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9L5YLml3zUaGBUhanVIhUxhfJYQT5ZwHswbobxbtL5awNO4hDeH3yC2%2Fi0zWdwEqzysF4ydLWXPDz4Q5%2FVnA%2BnMTDOXjcv9MHWuDKYSlLS1MfA3hVkzoANwVVjBFhimySNzzBALyZGI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a87fd1c8e056c4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-HEX1BG8H46>m=45je44o0v9104348843za200&_p=1714154707762&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=1269327869.1714154709&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=1&sid=1714154708&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-74zqgcm7xbe5.html&dt=Vidoza&en=page_view&_fv=1&_nsi=1&_ss=2&tfd=1867 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-HEX1BG8H46>m=45je44o0v9104348843za200&_p=1714154707762&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=1269327869.1714154709&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=1&sid=1714154708&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-74zqgcm7xbe5.html&dt=Vidoza&en=page_view&_fv=1&_nsi=1&_ss=2&tfd=1867 IP216.239.32.36:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-HEX1BG8H46>m=45je44o0v9104348843za200&_p=1714154707762&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=1269327869.1714154709&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=1&sid=1714154708&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-74zqgcm7xbe5.html&dt=Vidoza&en=page_view&_fv=1&_nsi=1&_ss=2&tfd=1867 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://videzz.net
date: Fri, 26 Apr 2024 18:05:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/load | 104.21.37.74 | 302 Found | 361 B |
URL POST HTTP/3bid.bidclickmedia.com/load IP104.21.37.74:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text Hash4809a9602dd55d531906123e570b6d77 626fe0b9eeeda00a0ce401ee5a4e13f8256facb9 046c0a16886d7e34df54c815c1fee7740a3608671d33fd56c837dca5a1ac9c9f
POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/31pnK5n
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: text/html; charset=utf-8
location: https://xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vkcpzuva8%2F3zlB0xE5VlR8qPTCZjOk6Wyl4l2ryFKAlqIxXwax6PIx8v43D%2BnY1WGrPhGXWg9ctw5wXWEp2Hpcs5KdCWnzRz1ec%2FgovNmEh%2FmlcjUTs4aDVXf67YUYhrrxgR1%2BSNWdc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a87fd1786456c4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| xml.zeusadx.com/redirect?feed=552612&auth=OEhoVk&pubid=162319 | 174.137.133.17 | 302 Found | 0 B |
URL GET HTTP/1.1xml.zeusadx.com/redirect?feed=552612&auth=OEhoVk&pubid=162319 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerSectigo Limited Subject*.zeusadx.com FingerprintAA:67:88:35:5F:BC:20:3C:44:9B:00:BD:4F:E1:C0:5F:62:D0:69:C0 ValidityMon, 23 Oct 2023 00:00:00 GMT - Wed, 23 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=552612&auth=OEhoVk&pubid=162319 HTTP/1.1
Host: xml.zeusadx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 18:05:09 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://r.mylot.com/p.aspx?u=15f4c240-22bb-4dd4-b1e6-e4e7928aae02
|
|
| xml.cachegorilla.com/redirect?feed=612977&auth=kAeZgJ&pubid=197570 | 173.239.53.20 | 302 Found | 0 B |
URL GET HTTP/1.1xml.cachegorilla.com/redirect?feed=612977&auth=kAeZgJ&pubid=197570 IP173.239.53.20:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerSectigo Limited Subject*.cachegorilla.com Fingerprint29:B3:53:29:E3:6F:D3:48:F6:66:3E:78:57:05:A6:19:12:0D:2C:4A ValidityFri, 10 Nov 2023 00:00:00 GMT - Sun, 10 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=612977&auth=kAeZgJ&pubid=197570 HTTP/1.1
Host: xml.cachegorilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 18:05:09 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://animewatch.onionlive.workers.dev/
|
|
| bid.bidclickmedia.com/sub/31pnK5n | 104.21.37.74 | 200 OK | 507 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/31pnK5n IP104.21.37.74:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text Hashf43a9f52bdd16907856bcccdc018b8c9 260324361bf19dc2ea4982f6fd312f9c8d5039cc 0ce413bbb7e1789744cfd7f9c3bc4614d9c5086f6dd9cbad67bdc4d181b9d5be
GET /sub/31pnK5n HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aX5QTaoez96Dijor6yb4gDhbjUWcPSAWwe2GPhq1JGxcGh8yUkJz3ZbTples8PtufJiJTnG%2FmLi6XhmTWysYVPnz5OeyfGGB3nq0iMlwAGOL0TLYSKqQ6JprnuLzHaZ2CY%2FaI13sz4g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a87fcd4d75569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| r.mylot.com/p.aspx?u=dbf64d10-6e15-4f6e-b7e8-bd4d124d6eb4 | 18.233.59.62 | 200 OK | 526 B |
URL GET HTTP/2r.mylot.com/p.aspx?u=dbf64d10-6e15-4f6e-b7e8-bd4d124d6eb4 IP18.233.59.62:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerAmazon Subject*.mylot.com Fingerprint81:6A:9D:DF:7B:03:C9:DC:EE:3A:40:EA:60:8A:17:66:07:6C:3E:6C ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (526), with no line terminators Hash836c6869558696d29e1de47d22173322 b32076156d8645af77e6573238c1432c00c203bf e877e5ae38c8b5d4cde44529ae736dcc963115856f2d51ced3ec961439a21eb2
GET /p.aspx?u=dbf64d10-6e15-4f6e-b7e8-bd4d124d6eb4 HTTP/1.1
Host: r.mylot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:09 GMT
content-type: text/html; charset=utf-8
content-length: 526
cache-control: private
set-cookie: ASP.NET_SessionId=khav4evrmhfdxmehz1twpyvd; path=/; HttpOnly; SameSite=Lax
X-Firefox-Spdy: h2
|
|
| r.mylot.com/p.aspx?u=15f4c240-22bb-4dd4-b1e6-e4e7928aae02 | 18.233.59.62 | 200 OK | 526 B |
URL GET HTTP/2r.mylot.com/p.aspx?u=15f4c240-22bb-4dd4-b1e6-e4e7928aae02 IP18.233.59.62:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerAmazon Subject*.mylot.com Fingerprint81:6A:9D:DF:7B:03:C9:DC:EE:3A:40:EA:60:8A:17:66:07:6C:3E:6C ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (526), with no line terminators Hash5cd03dbce8e5cafdd88d86a657f7b978 f2aa276f2ecbcac56b2d999afcfe5d74afbf0622 12b2318cbf6833811bd844bcfa78b2d942eaaffc34d58b3aa790ec69611e9774
GET /p.aspx?u=15f4c240-22bb-4dd4-b1e6-e4e7928aae02 HTTP/1.1
Host: r.mylot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:09 GMT
content-type: text/html; charset=utf-8
content-length: 526
cache-control: private
set-cookie: ASP.NET_SessionId=o0qq1bwu3kc0c3qodi5zqznb; path=/; HttpOnly; SameSite=Lax
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=UA-119774978-7 | 142.250.74.168 | | 70 kB |
URL www.googletagmanager.com/gtag/js?id=UA-119774978-7 IP142.250.74.168:0
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (1763) Hash76b75f6ba63a96eb0baee5534c392c21 03383a73cd0c6e1a337fb92150e7ae056304cdc9 ac64273e375326f9512f8f2dba8fea17bb42d34fe390a25da6da55cc43b35314
GET /gtag/js?id=UA-119774978-7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animewatch.onionlive.workers.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 18:05:09 GMT
expires: Fri, 26 Apr 2024 18:05:09 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 70102
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=G-HJ5MMKB9WK | 142.250.74.168 | | 102 kB |
URL www.googletagmanager.com/gtag/js?id=G-HJ5MMKB9WK IP142.250.74.168:0
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Size102 kB (101730 bytes) Hasha43c665f45cd5f3f23b1f82b7e9e2e4f b9be5a22b4d05bb1045eb746402d99fe0fb08136 1c0502ad48a39b876607a18e91a39128ac2a1e8582acdcd9ae9823f540e07cde
GET /gtag/js?id=G-HJ5MMKB9WK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animewatch.onionlive.workers.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 18:05:09 GMT
expires: Fri, 26 Apr 2024 18:05:09 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101730
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| static.addtoany.com/menu/locale/ru.js | 172.67.39.148 | 200 OK | 654 B |
URL GET HTTP/3static.addtoany.com/menu/locale/ru.js IP172.67.39.148:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (2130), with no line terminators Hashc0717dc8cde3baa722c4e7d4c12a2cb0 6e8702b80bdcbe0cd5fc183ce582b2add61d0863 cde5eaa4da56876821229a97a09a4b53e929ea30b7310848d0e84212a5137397
GET /menu/locale/ru.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=86400, stale-while-revalidate=30, public
cf-bgj: minify
cf-polished: origSize=2289
etag: W/"9797b535a7dbc5ec8be5d83312871549"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SSZZPHRQHmmj7W9b8uSrlEOmUNd5EPtJjQ6dGciF28UUVd2CDtNJ%2FBwzXajDEbBux%2FcEjPyaUJyeHlp1cPBVMV3Q2eK944CTAvvX7nWPfNzysCaOl3kzBNgW%2F9nsUG4Ry0l3jQ6qpq%2Bc1bomXdrURWCn"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 27657
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a87fcf4ed6b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| xml.xmlking.com/redirect?feed=591363&auth=0yfQfB&pubid=195183 | 174.137.133.17 | 302 Found | 0 B |
URL GET HTTP/1.1xml.xmlking.com/redirect?feed=591363&auth=0yfQfB&pubid=195183 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerSectigo Limited Subject*.xmlking.com Fingerprint61:F0:9B:53:D2:DF:03:A0:08:09:BE:79:B1:70:10:34:65:07:7B:6D ValidityWed, 26 Jul 2023 00:00:00 GMT - Fri, 26 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=591363&auth=0yfQfB&pubid=195183 HTTP/1.1
Host: xml.xmlking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 18:05:09 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://xmlclick.adokutrtb.com/nrtb/click?bid=KbRiC5iWntxpu-qM7ta8bWQ_BQ1alhjOCTvGZYfrpwhikENFkO-WC2h8hoAQJr49_0_5
|
|
| bid.bidclickmedia.com/load | 104.21.37.74 | 302 Found | 361 B |
URL POST HTTP/3bid.bidclickmedia.com/load IP104.21.37.74:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text Hash6610c77cad5adb691fd5f9ffa06b9486 d003b0d6d8bb61e5fd17dc635c017f6393e0c24c 83695861f8ded5db81f9c1e185cdf9177d18c57bfe1196b03468f2d8ac22bc50
POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/Pj8pz0z
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: text/html; charset=utf-8
location: https://xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CQh%2F%2FZQq%2FgSskH7HssX9o9elzI%2BYAsnGXSEfERIL3kNlb20txwPDz4Z2VnvsAjrlOs5cqyFH%2BzR5E7HbP4LOmu%2BKOLp%2BKxls5JgViMbiCg1b5nTHXEY4Zl01PXMEk5qZCpciavOUt0w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a87fd1380456c4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zv.7vid.net/api/spots/70102?s1=107428&v2=1&fill=0&kw=file%20upload%2Cshare%20files%2Cfree%20upload&i=1&url=https%3A%2F%2Fvidezz.net%2Fembed-74zqgcm7xbe5.html&sid=e6591c13-e14a-4753-897d-47892558f47e | 135.181.208.216 | 200 OK | 93 kB |
URL GET HTTP/2zv.7vid.net/api/spots/70102?s1=107428&v2=1&fill=0&kw=file%20upload%2Cshare%20files%2Cfree%20upload&i=1&url=https%3A%2F%2Fvidezz.net%2Fembed-74zqgcm7xbe5.html&sid=e6591c13-e14a-4753-897d-47892558f47e IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subject1111.spinna.online FingerprintF3:80:AE:D8:32:E7:57:75:94:99:58:76:4C:57:59:80:E8:9A:B7:ED ValidityFri, 29 Mar 2024 23:27:07 GMT - Thu, 27 Jun 2024 23:27:06 GMT
File typegzip compressed data, from Unix Hash72833e6ed4d3874322364b5f03b94620 0c593b3e0046881d54f9525b0c4466ff0685d2e8 50fc473ff2035cfcf4aada78cc4103124a782b9ceb294be0662ac2c2ff0a4340
GET /api/spots/70102?s1=107428&v2=1&fill=0&kw=file%20upload%2Cshare%20files%2Cfree%20upload&i=1&url=https%3A%2F%2Fvidezz.net%2Fembed-74zqgcm7xbe5.html&sid=e6591c13-e14a-4753-897d-47892558f47e HTTP/1.1
Host: zv.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://videzz.net
access-control-expose-headers: X-Asg-Config, X-t
set-cookie: nauid=mneh5LC1naH00kAIRY2b; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
x-robots-tag: noindex, nofollow
x-t: 0
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-HJ5MMKB9WK&l=dataLayer&cx=c | 142.250.74.168 | | 101 kB |
URL www.googletagmanager.com/gtag/js?id=G-HJ5MMKB9WK&l=dataLayer&cx=c IP142.250.74.168:0
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Size101 kB (100556 bytes) Hashb85a92eb949a0470164fe220c52693ab c7debe95565436887bd42239e5e0b95eba49b955 9b2f6406b19a6dec42bd5d52f559e7eef653a2f3f1dafbe2242f19ccfec29a97
GET /gtag/js?id=G-HJ5MMKB9WK&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animewatch.onionlive.workers.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 18:05:10 GMT
expires: Fri, 26 Apr 2024 18:05:10 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100556
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js | 104.17.24.14 | 200 OK | 5.1 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js IP104.17.24.14:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (17660) Hash12dd498bf90c536803c2aad708b66c2b 5f9363d39a405d1c94328cf2303ff4a05c0ad163 c4e20f53f5ef0ed44b783437aa3f4638a9a56cc4aa29ae83ed9212eb2807052a
GET /ajax/libs/postscribe/2.0.8/postscribe.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:05:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 5117
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03faa-45f4"
last-modified: Mon, 04 May 2020 16:15:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 953730
expires: Wed, 16 Apr 2025 18:05:10 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GcLYc8EFX2WGeMINZd35VktH4wd3bBqwi6ZD9NOfooRigaC0HcQLpE0IDkYOG0IDtgaU1XJ%2BPygLWhcGKG5xhQW5DDccQ06By7b3P7OhPXVa3P%2F0JkFkVpjIYeBq9nbHJPKHml7a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a87fda08745689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bid.bidclickmedia.com/load | 104.21.37.74 | 302 Found | 722 B |
URL POST HTTP/3bid.bidclickmedia.com/load IP104.21.37.74:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with very long lines (306) Hash16d100fdbc2344bfa536b2a179b8abef 916296721f48db6242d8478493ab7fd33e8cc33e f2f1c6a23ddc6dac495bc4a21c18f85d8275386de0087140257fc677319203b9
POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/Pj8pz0z
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: text/html; charset=utf-8
location: https://xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F6W2dZyweT7ciIv5G9I4GtBb39QQHNeNhGfCVfrchaJy9h9PzRajCpq8nqig8eBWIche8Vt0w42OzJh0lGyhA72IawCIbITtIucGCyXr4Qt5wrj95vRoyC84e5oYetw80VSDB%2BpxxIc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a87fd0df4856c4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=UA-119774978-8&l=dataLayer&cx=c | 142.250.74.168 | | 69 kB |
URL www.googletagmanager.com/gtag/js?id=UA-119774978-8&l=dataLayer&cx=c IP142.250.74.168:0
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (1763) Hash9a5b60995a21a6dfd89fdabeb3b53cbf 1b619e729c6c81247f87fca02c9c7fe870126d59 61d792095b5cf9cdf13312baef6efe12f15dcf19d85cbde2ae0f8d3438def98f
GET /gtag/js?id=UA-119774978-8&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animewatch.onionlive.workers.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 18:05:10 GMT
expires: Fri, 26 Apr 2024 18:05:10 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69263
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| r.mylot.com/p.aspx?u=cbc7de46-7c3d-45c1-ae2d-8a0809ccc52d | 18.233.59.62 | 200 OK | 526 B |
URL GET HTTP/2r.mylot.com/p.aspx?u=cbc7de46-7c3d-45c1-ae2d-8a0809ccc52d IP18.233.59.62:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerAmazon Subject*.mylot.com Fingerprint81:6A:9D:DF:7B:03:C9:DC:EE:3A:40:EA:60:8A:17:66:07:6C:3E:6C ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (526), with no line terminators Hash3a72662703cc40cad7b008c749e3be0e 802a91c9fbd0d77d4f0ddf6cf5b36761d1220d62 8ba3f98cd3618981cd462da49e6e000a45911bc0e9b0fbc059cecb0cd4d84716
GET /p.aspx?u=cbc7de46-7c3d-45c1-ae2d-8a0809ccc52d HTTP/1.1
Host: r.mylot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:10 GMT
content-type: text/html; charset=utf-8
content-length: 526
cache-control: private
set-cookie: ASP.NET_SessionId=dxc11t1p5xejuzzlypxyylu4; path=/; HttpOnly; SameSite=Lax
X-Firefox-Spdy: h2
|
|
| r.mylot.com/p.aspx?u=a1ba9857-f9ef-44b9-93b6-19994844ae60 | 18.233.59.62 | 200 OK | 526 B |
URL GET HTTP/2r.mylot.com/p.aspx?u=a1ba9857-f9ef-44b9-93b6-19994844ae60 IP18.233.59.62:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerAmazon Subject*.mylot.com Fingerprint81:6A:9D:DF:7B:03:C9:DC:EE:3A:40:EA:60:8A:17:66:07:6C:3E:6C ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (526), with no line terminators Hasha8aaab9f415a2092180573820d446e38 f2e8a3dddfceadbb75aa461031ac238038713832 d1d2893bf30600858e7edf0cd5cf902343a1966140c5e0680f3385600242a4ae
GET /p.aspx?u=a1ba9857-f9ef-44b9-93b6-19994844ae60 HTTP/1.1
Host: r.mylot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:10 GMT
content-type: text/html; charset=utf-8
content-length: 526
cache-control: private
set-cookie: ASP.NET_SessionId=a4eazvwxjhrndcujo22ue0xb; path=/; HttpOnly; SameSite=Lax
X-Firefox-Spdy: h2
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hashd93155a9f404dda1fe4aa2aaf3f298ca 359964f051956aacef41c2b0caceb59d120c4b15 d91392c7f679da329521837282265a8855457b87141b1921233f3c26a2984947
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 26 Apr 2024 18:05:10 GMT
Last-Modified: Fri, 26 Apr 2024 16:32:13 GMT
Server: ECAcc (ska/F790)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: bURlfuV3LKy-X_bFd4TZkZYu9Rwz34sLs_hGN0OuVHIEgRmUFcfNHg==
Age: 5577
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hashd93155a9f404dda1fe4aa2aaf3f298ca 359964f051956aacef41c2b0caceb59d120c4b15 d91392c7f679da329521837282265a8855457b87141b1921233f3c26a2984947
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 26 Apr 2024 18:05:10 GMT
Last-Modified: Fri, 26 Apr 2024 17:17:09 GMT
Server: ECAcc (amb/6AC3)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EBpoCN8-4gVajBt-GV8sa4JOiJHH1UVLwZIRFg_LFJ4dDzesK69B0g==
Age: 2881
|
|
| tr.7vid.net/api/users/424503?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-74zqgcm7xbe5.html&sid=e6591c13-e14a-4753-897d-47892558f47e&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=107428 | 135.181.208.216 | 200 OK | 525 B |
URL GET HTTP/2tr.7vid.net/api/users/424503?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-74zqgcm7xbe5.html&sid=e6591c13-e14a-4753-897d-47892558f47e&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=107428 IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjecta.gatwins.site Fingerprint66:D4:C4:E9:BC:6E:82:9E:D0:2F:00:69:9A:DF:C2:6D:18:04:0B:1B ValidityWed, 10 Apr 2024 10:27:11 GMT - Tue, 09 Jul 2024 10:27:10 GMT
File typegzip compressed data, from Unix Hashfadcf95ec20cf2ff682ecc6db1083149 fbdcc44d9683e0e208279e261c47028c7facd231 5dc056f8ee807c1223dacec5a56c3252c1dc668c244788760c86ea53ef304b23
GET /api/users/424503?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-74zqgcm7xbe5.html&sid=e6591c13-e14a-4753-897d-47892558f47e&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=107428 HTTP/1.1
Host: tr.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 18:05:09 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: nauid=uIPHGTYeyVHA8XggromY; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| hoddlegamey.com/itLmTlMrHisAt/67652 | 23.109.170.115 | 200 OK | 61 B |
URL GET HTTP/1.1hoddlegamey.com/itLmTlMrHisAt/67652 IP23.109.170.115:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjecthoddlegamey.com Fingerprint07:BD:B4:24:F4:70:EB:F5:60:F8:9F:61:E8:65:29:7E:9B:54:8C:D2 ValidityMon, 22 Apr 2024 23:02:12 GMT - Sun, 21 Jul 2024 23:02:11 GMT
File typeHTML document, ASCII text, with no line terminators Hash86733bb66fb84b851592d733e51f0cbd 42eaf19a5ca195667a9212b0ea3557eee76954a8 927676bdf7f1bdcd71f06cc0d9fa573791b12c905629d806851624687c4b4a0d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /itLmTlMrHisAt/67652 HTTP/1.1
Host: hoddlegamey.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animewatch.onionlive.workers.dev/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 18:05:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sat, 27-Apr-2024 18:05:10 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Sat, 27-Apr-2024 18:05:10 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
|
|
| xmlclick.adokutrtb.com/nrtb/click?bid=01onGr3SWUvyM0UgoWPrI07BLF_X-GLKWD-4ZzRT9_z2RQWn2RodWjB8EwR1984u_0_5 | 23.226.122.79 | 302 Found | 76 B |
URL GET HTTP/2xmlclick.adokutrtb.com/nrtb/click?bid=01onGr3SWUvyM0UgoWPrI07BLF_X-GLKWD-4ZzRT9_z2RQWn2RodWjB8EwR1984u_0_5 IP23.226.122.79:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerUnizeto Technologies S.A. Subject*.adokutrtb.com FingerprintFE:8D:59:6C:AC:C6:8C:40:28:AE:A4:B8:B8:6C:4B:B0:1F:1D:1E:AC ValidityTue, 19 Mar 2024 12:12:32 GMT - Wed, 19 Mar 2025 12:12:31 GMT
File typeHTML document, ASCII text Hash68e6afa22d567e47ce273da4ac9e54e2 f015eb104b0460b5eeccd02db9b9ca33814db586 e7bf777457df22828248b055ca11729dc9bb21ff90856ed7bb589441c869d0a4
GET /nrtb/click?bid=01onGr3SWUvyM0UgoWPrI07BLF_X-GLKWD-4ZzRT9_z2RQWn2RodWjB8EwR1984u_0_5 HTTP/1.1
Host: xmlclick.adokutrtb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 18:05:10 GMT
content-type: text/html; charset=utf-8
content-length: 76
location: https://xml-v4.onemediawork.com/click?i=Y-KX1FIxtiU_0
X-Firefox-Spdy: h2
|
|
| herma-tor.com/zclkvisitor/84d39940-03f7-11ef-b182-0affcad5bb41/919af160-92fb-11ec-937b-0a3311c5e6b7?campaignid=b9792a50-4807-11ed-8e2b-128084d1ce51 | 34.198.252.166 | 302 Found | 0 B |
URL GET HTTP/2herma-tor.com/zclkvisitor/84d39940-03f7-11ef-b182-0affcad5bb41/919af160-92fb-11ec-937b-0a3311c5e6b7?campaignid=b9792a50-4807-11ed-8e2b-128084d1ce51 IP34.198.252.166:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerAmazon Subjectherma-tor.com FingerprintAB:65:97:4C:0F:5A:C8:D3:B7:B1:FB:B5:B7:88:A4:02:B6:C5:3F:1C ValidityMon, 22 Apr 2024 00:00:00 GMT - Wed, 21 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zclkvisitor/84d39940-03f7-11ef-b182-0affcad5bb41/919af160-92fb-11ec-937b-0a3311c5e6b7?campaignid=b9792a50-4807-11ed-8e2b-128084d1ce51 HTTP/1.1
Host: herma-tor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://r.mylot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 26 Apr 2024 18:05:10 GMT
content-length: 0
location: https://shopde.pricedeals.shop/go.php?market=no&zr84d3994003f711efb1820affcad5bb41d26f2f93276f4c689155f6a5cbc299fa08169013735457c57d
access-control-allow-origin: *
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
cache-control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-webkit-csp: default-src 'self'; script-src 'self' 'unsafe-inline'
X-Firefox-Spdy: h2
|
|
| herma-tor.com/zclkvisitor/84cdf3f3-03f7-11ef-939e-1241679bd7e9/919af160-92fb-11ec-937b-0a3311c5e6b7?campaignid=b9792a50-4807-11ed-8e2b-128084d1ce51 | 34.198.252.166 | 302 Found | 0 B |
URL GET HTTP/2herma-tor.com/zclkvisitor/84cdf3f3-03f7-11ef-939e-1241679bd7e9/919af160-92fb-11ec-937b-0a3311c5e6b7?campaignid=b9792a50-4807-11ed-8e2b-128084d1ce51 IP34.198.252.166:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerAmazon Subjectherma-tor.com FingerprintAB:65:97:4C:0F:5A:C8:D3:B7:B1:FB:B5:B7:88:A4:02:B6:C5:3F:1C ValidityMon, 22 Apr 2024 00:00:00 GMT - Wed, 21 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zclkvisitor/84cdf3f3-03f7-11ef-939e-1241679bd7e9/919af160-92fb-11ec-937b-0a3311c5e6b7?campaignid=b9792a50-4807-11ed-8e2b-128084d1ce51 HTTP/1.1
Host: herma-tor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://r.mylot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 Apr 2024 18:05:10 GMT
content-length: 0
location: https://shopde.pricedeals.shop/go.php?market=no&zr84cdf3f303f711ef939e1241679bd7e9c7f62fa1713e49698a11e83b10d98761081690a32de0eb4ee8
access-control-allow-origin: *
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
cache-control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-webkit-csp: default-src 'self'; script-src 'self' 'unsafe-inline'
X-Firefox-Spdy: h2
|
|
| herma-tor.com/zclkvisitor/84cc9461-03f7-11ef-a8e1-126a9653f5bb/919af160-92fb-11ec-937b-0a3311c5e6b7?campaignid=b9792a50-4807-11ed-8e2b-128084d1ce51 | 34.198.252.166 | 302 Found | 0 B |
URL GET HTTP/2herma-tor.com/zclkvisitor/84cc9461-03f7-11ef-a8e1-126a9653f5bb/919af160-92fb-11ec-937b-0a3311c5e6b7?campaignid=b9792a50-4807-11ed-8e2b-128084d1ce51 IP34.198.252.166:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerAmazon Subjectherma-tor.com FingerprintAB:65:97:4C:0F:5A:C8:D3:B7:B1:FB:B5:B7:88:A4:02:B6:C5:3F:1C ValidityMon, 22 Apr 2024 00:00:00 GMT - Wed, 21 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zclkvisitor/84cc9461-03f7-11ef-a8e1-126a9653f5bb/919af160-92fb-11ec-937b-0a3311c5e6b7?campaignid=b9792a50-4807-11ed-8e2b-128084d1ce51 HTTP/1.1
Host: herma-tor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://r.mylot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 Apr 2024 18:05:10 GMT
content-length: 0
location: https://shopde.pricedeals.shop/go.php?market=no&zr84cc946103f711efa8e1126a9653f5bb85ac9a73cef54b98b3d6511e750e77370816907dcbe76cbf0a
access-control-allow-origin: *
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
cache-control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-webkit-csp: default-src 'self'; script-src 'self' 'unsafe-inline'
X-Firefox-Spdy: h2
|
|
| herma-tor.com/zclkvisitor/84d45c91-03f7-11ef-9380-0affe396c329/2b23d770-f59c-11e4-816f-0afe289da1cd?campaignid=a93b2d60-71ae-11ee-95e8-123af5e664ff | 34.198.252.166 | 302 Found | 0 B |
URL GET HTTP/2herma-tor.com/zclkvisitor/84d45c91-03f7-11ef-9380-0affe396c329/2b23d770-f59c-11e4-816f-0afe289da1cd?campaignid=a93b2d60-71ae-11ee-95e8-123af5e664ff IP34.198.252.166:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerAmazon Subjectherma-tor.com FingerprintAB:65:97:4C:0F:5A:C8:D3:B7:B1:FB:B5:B7:88:A4:02:B6:C5:3F:1C ValidityMon, 22 Apr 2024 00:00:00 GMT - Wed, 21 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zclkvisitor/84d45c91-03f7-11ef-9380-0affe396c329/2b23d770-f59c-11e4-816f-0afe289da1cd?campaignid=a93b2d60-71ae-11ee-95e8-123af5e664ff HTTP/1.1
Host: herma-tor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://r.mylot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 Apr 2024 18:05:10 GMT
content-length: 0
location: http://www.ewoss.com?clickid=84d45c91-03f7-11ef-9380-0affe396c329
access-control-allow-origin: *
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
cache-control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-webkit-csp: default-src 'self'; script-src 'self' 'unsafe-inline'
X-Firefox-Spdy: h2
|
|
| shopde.pricedeals.shop/go.php?market=no&zr84d3994003f711efb1820affcad5bb41d26f2f93276f4c689155f6a5cbc299fa08169013735457c57d | 135.181.6.240 | 200 OK | 644 B |
URL GET HTTP/1.1shopde.pricedeals.shop/go.php?market=no&zr84d3994003f711efb1820affcad5bb41d26f2f93276f4c689155f6a5cbc299fa08169013735457c57d IP135.181.6.240:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectshopde.pricedeals.shop Fingerprint90:0F:E8:D2:5A:53:A2:54:BD:E6:E6:02:01:DB:5D:32:91:11:0B:79 ValiditySun, 18 Feb 2024 08:55:40 GMT - Sat, 18 May 2024 08:55:39 GMT
File typeHTML document, ASCII text, with very long lines (556) Hashe88f32dffd7e41094f64829cc967c91f 812eecb0f52db9d0d7c8b01374826a8208642592 7f45c5021db6361b592c80e7e54cd4a3254467a6fec8e3b83c5eb657860499ad
GET /go.php?market=no&zr84d3994003f711efb1820affcad5bb41d26f2f93276f4c689155f6a5cbc299fa08169013735457c57d HTTP/1.1
Host: shopde.pricedeals.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://r.mylot.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 18:05:10 GMT
Server: Apache/2.4.56 (Debian)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 644
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| shopde.pricedeals.shop/go.php?market=no&zr84cdf3f303f711ef939e1241679bd7e9c7f62fa1713e49698a11e83b10d98761081690a32de0eb4ee8 | 135.181.6.240 | 200 OK | 642 B |
URL GET HTTP/1.1shopde.pricedeals.shop/go.php?market=no&zr84cdf3f303f711ef939e1241679bd7e9c7f62fa1713e49698a11e83b10d98761081690a32de0eb4ee8 IP135.181.6.240:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectshopde.pricedeals.shop Fingerprint90:0F:E8:D2:5A:53:A2:54:BD:E6:E6:02:01:DB:5D:32:91:11:0B:79 ValiditySun, 18 Feb 2024 08:55:40 GMT - Sat, 18 May 2024 08:55:39 GMT
File typeHTML document, ASCII text, with very long lines (554) Hashc95410b30752a370ecea454d31b2a976 a0faec0349a94883e98f741ee8b4be4ca041836c cdbbcc35ea2b6e5b017d0e536538d6b92ec9114dcd862c81ee2d1253f62dbd02
GET /go.php?market=no&zr84cdf3f303f711ef939e1241679bd7e9c7f62fa1713e49698a11e83b10d98761081690a32de0eb4ee8 HTTP/1.1
Host: shopde.pricedeals.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://r.mylot.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 18:05:10 GMT
Server: Apache/2.4.56 (Debian)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 642
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| tr.7vid.net/api/settings/59846 | 135.181.208.216 | 200 OK | 968 B |
URL GET HTTP/2tr.7vid.net/api/settings/59846 IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjecta.gatwins.site Fingerprint66:D4:C4:E9:BC:6E:82:9E:D0:2F:00:69:9A:DF:C2:6D:18:04:0B:1B ValidityWed, 10 Apr 2024 10:27:11 GMT - Tue, 09 Jul 2024 10:27:10 GMT
File typegzip compressed data, from Unix Hashbc09fdc2a82320efab626f652ac78832 12eab079b177755d4b00a82cf7d88839d9cd44f3 8cab1f9bb7b89d746f610c97acb5ea6d1337b0d41e344afc50dce3b951768fc4
GET /api/settings/59846 HTTP/1.1
Host: tr.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| my.rtmark.net/gid.js?userId=00804aa0f9fc4b84f9c82661309282f0 | 139.45.195.8 | 200 OK | 65 B |
URL GET HTTP/2my.rtmark.net/gid.js?userId=00804aa0f9fc4b84f9c82661309282f0 IP139.45.195.8:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectrtmark.net FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT
Hash682e34f0fc7a5f9b08b3f38450167f30 a553981db134f9d3133482ebc1731426dd0f3014 a30ba9486b9523fd5286de71bee7bccdf253733dff52ec265fd163bdba3ba7bb
GET /gid.js?userId=00804aa0f9fc4b84f9c82661309282f0 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 18:05:10 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://videzz.net
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=00804aa0f9fc4b84f9c82661309282f0; expires=Sat, 26 Apr 2025 18:05:10 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| xml-v4.onemediawork.com/click?i=SVIBHBwO8zA_0 | 173.239.53.20 | 302 Found | 0 B |
URL GET HTTP/1.1xml-v4.onemediawork.com/click?i=SVIBHBwO8zA_0 IP173.239.53.20:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectonemediawork.com Fingerprint66:01:8B:AA:C3:B8:76:8F:0A:00:4A:E2:91:90:E8:06:29:B2:08:FD ValidityFri, 23 Feb 2024 07:39:53 GMT - Thu, 23 May 2024 07:39:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?i=SVIBHBwO8zA_0 HTTP/1.1
Host: xml-v4.onemediawork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 18:05:10 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://track.jajaloop.com/717a0983-e961-4ed5-98dc-35fbb30c40f8?banner=6354964&pubfeed=583790&siteid=656833&cost=0.0006&conversion=w8ofK66glYE
|
|
| shopde.pricedeals.shop/go.php?market=no&zr84cc946103f711efa8e1126a9653f5bb85ac9a73cef54b98b3d6511e750e77370816907dcbe76cbf0a | 135.181.6.240 | 200 OK | 639 B |
URL GET HTTP/1.1shopde.pricedeals.shop/go.php?market=no&zr84cc946103f711efa8e1126a9653f5bb85ac9a73cef54b98b3d6511e750e77370816907dcbe76cbf0a IP135.181.6.240:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectshopde.pricedeals.shop Fingerprint90:0F:E8:D2:5A:53:A2:54:BD:E6:E6:02:01:DB:5D:32:91:11:0B:79 ValiditySun, 18 Feb 2024 08:55:40 GMT - Sat, 18 May 2024 08:55:39 GMT
File typeHTML document, ASCII text, with very long lines (548) Hash5c6ab2a76b9b07c451f0c6e90d185cd1 9d442deb016b2cf736db0ca15ca32cf87376ff1d a87d82fc75d03f8e1222ec1020def5d2e01319fc5a09348c693218fa64b32b8a
GET /go.php?market=no&zr84cc946103f711efa8e1126a9653f5bb85ac9a73cef54b98b3d6511e750e77370816907dcbe76cbf0a HTTP/1.1
Host: shopde.pricedeals.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://r.mylot.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 18:05:10 GMT
Server: Apache/2.4.56 (Debian)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 639
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| xml-v4.onemediawork.com/click?i=Y-KX1FIxtiU_0 | 173.239.53.20 | 302 Found | 0 B |
URL GET HTTP/1.1xml-v4.onemediawork.com/click?i=Y-KX1FIxtiU_0 IP173.239.53.20:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectonemediawork.com Fingerprint66:01:8B:AA:C3:B8:76:8F:0A:00:4A:E2:91:90:E8:06:29:B2:08:FD ValidityFri, 23 Feb 2024 07:39:53 GMT - Thu, 23 May 2024 07:39:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?i=Y-KX1FIxtiU_0 HTTP/1.1
Host: xml-v4.onemediawork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 18:05:11 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://track.jajaloop.com/717a0983-e961-4ed5-98dc-35fbb30c40f8?banner=6354964&pubfeed=568190&siteid=639576&cost=0.0006&conversion=ohf1NQiFSOA
|
|
| track.jajaloop.com/717a0983-e961-4ed5-98dc-35fbb30c40f8?banner=6354964&pubfeed=583790&siteid=656833&cost=0.0006&conversion=w8ofK66glYE | 143.204.55.107 | 302 Found | 0 B |
URL GET HTTP/2track.jajaloop.com/717a0983-e961-4ed5-98dc-35fbb30c40f8?banner=6354964&pubfeed=583790&siteid=656833&cost=0.0006&conversion=w8ofK66glYE IP143.204.55.107:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerAmazon Subjecttrack.jajaloop.com FingerprintB2:8B:F7:DA:FA:DB:BD:98:DB:88:6D:5F:F8:30:A6:60:19:63:73:FE ValidityWed, 17 Apr 2024 00:00:00 GMT - Fri, 16 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /717a0983-e961-4ed5-98dc-35fbb30c40f8?banner=6354964&pubfeed=583790&siteid=656833&cost=0.0006&conversion=w8ofK66glYE HTTP/1.1
Host: track.jajaloop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-length: 0
location: https://www.linkbux.com/track/5688a24WID8UxvMohYseQZhAkydyNmU8CLVEZrksGrHD8ZY6E9i8jRNlxzN2w68kFf9qTtonRw_c_c?url=http%3A%2F%2Fwww.barbershop.no&uid=w9j2tem9khhfhas03gu25lg8&uid2=6354964
date: Fri, 26 Apr 2024 18:05:11 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: 717a0983-e961-4ed5-98dc-35fbb30c40f8-v4=lYoaHQq1DXj7Y3uIz9zs99jA-V5j3sEZDqutz55bGbs; Max-Age=86400; Expires=Sat, 27-Apr-2024 18:05:11 GMT; Domain=track.jajaloop.com; Path=/; Secure; HttpOnly;SameSite=None
voluum-cid-v4=%7B%22cid%22%3A%22w9j2tem9khhfhas03gu25lg8%22%2C%22caid%22%3A%22717a0983-e961-4ed5-98dc-35fbb30c40f8%22%7D; Max-Age=31536000; Expires=Sat, 26-Apr-2025 18:05:11 GMT; Domain=track.jajaloop.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0-zMU0DP2TWUfAQ1uPtopLudSURuDXW8EH5Jfck6aAGEzRCp-3Su3w==
X-Firefox-Spdy: h2
|
|
| track.jajaloop.com/717a0983-e961-4ed5-98dc-35fbb30c40f8?banner=6354964&pubfeed=568190&siteid=639576&cost=0.0006&conversion=ohf1NQiFSOA | 143.204.55.107 | 302 Found | 0 B |
URL GET HTTP/2track.jajaloop.com/717a0983-e961-4ed5-98dc-35fbb30c40f8?banner=6354964&pubfeed=568190&siteid=639576&cost=0.0006&conversion=ohf1NQiFSOA IP143.204.55.107:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerAmazon Subjecttrack.jajaloop.com FingerprintB2:8B:F7:DA:FA:DB:BD:98:DB:88:6D:5F:F8:30:A6:60:19:63:73:FE ValidityWed, 17 Apr 2024 00:00:00 GMT - Fri, 16 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /717a0983-e961-4ed5-98dc-35fbb30c40f8?banner=6354964&pubfeed=568190&siteid=639576&cost=0.0006&conversion=ohf1NQiFSOA HTTP/1.1
Host: track.jajaloop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-length: 0
location: https://www.linkbux.com/track/5688a24WID8UxvMohYseQZhAkydyNmU8CLVEZrksGrHD8ZY6E9i8jRNlxzN2w68kFf9qTtonRw_c_c?url=http%3A%2F%2Fwww.barbershop.no&uid=wbja0arrg3gchas03rqlerg4&uid2=6354964
date: Fri, 26 Apr 2024 18:05:11 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: 717a0983-e961-4ed5-98dc-35fbb30c40f8-v4=N2R8SAbAumDZAM9nhN_iErAOwXX_hIBlc4rLUAvH35U; Max-Age=86400; Expires=Sat, 27-Apr-2024 18:05:11 GMT; Domain=track.jajaloop.com; Path=/; Secure; HttpOnly;SameSite=None
voluum-cid-v4=%7B%22cid%22%3A%22wbja0arrg3gchas03rqlerg4%22%2C%22caid%22%3A%22717a0983-e961-4ed5-98dc-35fbb30c40f8%22%7D; Max-Age=31536000; Expires=Sat, 26-Apr-2025 18:05:11 GMT; Domain=track.jajaloop.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0pMf6CaHlx5tMSWyChro1VnNWGubidUXqKTFkxtdxwMpJqjvMf1vcQ==
X-Firefox-Spdy: h2
|
|
| fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=0e2ba2a8-1917-4073-aabf-b032b6865c84 | 139.45.195.254 | 200 OK | 12 B |
URL POST HTTP/1.1fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=0e2ba2a8-1917-4073-aabf-b032b6865c84 IP139.45.195.254:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerSectigo Limited Subjectfleraprt.com Fingerprint32:DB:C5:24:21:ED:1D:C3:40:C3:46:9F:CF:EE:98:4D:72:29:4C:3C ValidityTue, 09 Jan 2024 00:00:00 GMT - Mon, 13 Jan 2025 23:59:59 GMT
Hashadb4650bfc9d2a73d4dd69583b0ceb14 1ce399d6e936232aaf2192cd7903a279c5015f22 21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=0e2ba2a8-1917-4073-aabf-b032b6865c84 HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1403
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Fri, 26 Apr 2024 18:05:11 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://videzz.net
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
|
|
| shopde.pricedeals.shop/redirect.php?u=aHR0cHM6Ly9uby1nby5rZWxrb29ncm91cC5uZXQvb2ZmZXJzZWFyY2hHbz8udHM9MTcxNDA5NzUyMDMzNiYuc2lnPVVhcWxGXzVsdE1WR3hUalQ1QVBJalZiU2tWYy0mYWZmaWxpYXRpb25JZD05Njk3OTcxNCZjb21JZD0xMTM5MzQyMyZjb3VudHJ5PW5vJm9mZmVySWQ9YjVjY2ExM2NmMGRlNGQxZmMwNzc4MGEwYjk2ZTY1YjMmc2VydmljZT0zNyZ0b2tlbklkPTVlYjM0ZWNmLWE0MmYtNGFiMy05OGVkLWI5YjBiOGJjOTgxOCZ3YWl0PXRydWUmYWRkZWRQYXJhbXM9dHJ1ZSZjdXN0b20xPTUyJm9yaWdpblJlZmVyZXI9c2hvcHBpbmdkZWFsLm9ubGluZSZwdWJsaXNoZXJTdWJJZD0xMDAzJnB1Ymxpc2hlclRyYWZmaWNUeXBlPXNlYXJjaGVuZ2luZQ | 135.181.6.240 | 200 OK | 514 B |
URL GET HTTP/1.1shopde.pricedeals.shop/redirect.php?u=aHR0cHM6Ly9uby1nby5rZWxrb29ncm91cC5uZXQvb2ZmZXJzZWFyY2hHbz8udHM9MTcxNDA5NzUyMDMzNiYuc2lnPVVhcWxGXzVsdE1WR3hUalQ1QVBJalZiU2tWYy0mYWZmaWxpYXRpb25JZD05Njk3OTcxNCZjb21JZD0xMTM5MzQyMyZjb3VudHJ5PW5vJm9mZmVySWQ9YjVjY2ExM2NmMGRlNGQxZmMwNzc4MGEwYjk2ZTY1YjMmc2VydmljZT0zNyZ0b2tlbklkPTVlYjM0ZWNmLWE0MmYtNGFiMy05OGVkLWI5YjBiOGJjOTgxOCZ3YWl0PXRydWUmYWRkZWRQYXJhbXM9dHJ1ZSZjdXN0b20xPTUyJm9yaWdpblJlZmVyZXI9c2hvcHBpbmdkZWFsLm9ubGluZSZwdWJsaXNoZXJTdWJJZD0xMDAzJnB1Ymxpc2hlclRyYWZmaWNUeXBlPXNlYXJjaGVuZ2luZQ IP135.181.6.240:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectshopde.pricedeals.shop Fingerprint90:0F:E8:D2:5A:53:A2:54:BD:E6:E6:02:01:DB:5D:32:91:11:0B:79 ValiditySun, 18 Feb 2024 08:55:40 GMT - Sat, 18 May 2024 08:55:39 GMT
File typeHTML document, ASCII text, with very long lines (442) Hashb0f8d495c8ef4608759a28602825ceb0 19f072554878cb282b08ec86a6dc17cfae489be7 d5587847f5aa992ffc8104059af389105978255001ecd08964a5d2ee992156d1
GET /redirect.php?u=aHR0cHM6Ly9uby1nby5rZWxrb29ncm91cC5uZXQvb2ZmZXJzZWFyY2hHbz8udHM9MTcxNDA5NzUyMDMzNiYuc2lnPVVhcWxGXzVsdE1WR3hUalQ1QVBJalZiU2tWYy0mYWZmaWxpYXRpb25JZD05Njk3OTcxNCZjb21JZD0xMTM5MzQyMyZjb3VudHJ5PW5vJm9mZmVySWQ9YjVjY2ExM2NmMGRlNGQxZmMwNzc4MGEwYjk2ZTY1YjMmc2VydmljZT0zNyZ0b2tlbklkPTVlYjM0ZWNmLWE0MmYtNGFiMy05OGVkLWI5YjBiOGJjOTgxOCZ3YWl0PXRydWUmYWRkZWRQYXJhbXM9dHJ1ZSZjdXN0b20xPTUyJm9yaWdpblJlZmVyZXI9c2hvcHBpbmdkZWFsLm9ubGluZSZwdWJsaXNoZXJTdWJJZD0xMDAzJnB1Ymxpc2hlclRyYWZmaWNUeXBlPXNlYXJjaGVuZ2luZQ HTTP/1.1
Host: shopde.pricedeals.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopde.pricedeals.shop/go.php?market=no&zr84d3994003f711efb1820affcad5bb41d26f2f93276f4c689155f6a5cbc299fa08169013735457c57d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 18:05:11 GMT
Server: Apache/2.4.56 (Debian)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 514
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| shopde.pricedeals.shop/redirect.php?u=aHR0cHM6Ly9uby1nby5rZWxrb29ncm91cC5uZXQvb2ZmZXJzZWFyY2hHbz8udHM9MTcxNDA5NzUyMDM4NyYuc2lnPUwuc2pVdURKYmVOaTdOMzZhLjlYSkhfTlJxdy0mYWZmaWxpYXRpb25JZD05Njk3OTcxNCZjb21JZD0xMDU1MTQyMyZjb3VudHJ5PW5vJm9mZmVySWQ9Y2QwMTRjMDVmYTdmYzcwYTgxMGM2NzQ4Zjg5MTkxMjYmc2VydmljZT0zNyZ0b2tlbklkPTVlYjM0ZWNmLWE0MmYtNGFiMy05OGVkLWI5YjBiOGJjOTgxOCZ3YWl0PXRydWUmYWRkZWRQYXJhbXM9dHJ1ZSZjdXN0b20xPTUzJm9yaWdpblJlZmVyZXI9c2hvcHBpbmdkZWFsLm9ubGluZSZwdWJsaXNoZXJTdWJJZD0xMDAyJnB1Ymxpc2hlclRyYWZmaWNUeXBlPXJldGFyZ2V0aW5n | 135.181.6.240 | 200 OK | 512 B |
URL GET HTTP/1.1shopde.pricedeals.shop/redirect.php?u=aHR0cHM6Ly9uby1nby5rZWxrb29ncm91cC5uZXQvb2ZmZXJzZWFyY2hHbz8udHM9MTcxNDA5NzUyMDM4NyYuc2lnPUwuc2pVdURKYmVOaTdOMzZhLjlYSkhfTlJxdy0mYWZmaWxpYXRpb25JZD05Njk3OTcxNCZjb21JZD0xMDU1MTQyMyZjb3VudHJ5PW5vJm9mZmVySWQ9Y2QwMTRjMDVmYTdmYzcwYTgxMGM2NzQ4Zjg5MTkxMjYmc2VydmljZT0zNyZ0b2tlbklkPTVlYjM0ZWNmLWE0MmYtNGFiMy05OGVkLWI5YjBiOGJjOTgxOCZ3YWl0PXRydWUmYWRkZWRQYXJhbXM9dHJ1ZSZjdXN0b20xPTUzJm9yaWdpblJlZmVyZXI9c2hvcHBpbmdkZWFsLm9ubGluZSZwdWJsaXNoZXJTdWJJZD0xMDAyJnB1Ymxpc2hlclRyYWZmaWNUeXBlPXJldGFyZ2V0aW5n IP135.181.6.240:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectshopde.pricedeals.shop Fingerprint90:0F:E8:D2:5A:53:A2:54:BD:E6:E6:02:01:DB:5D:32:91:11:0B:79 ValiditySun, 18 Feb 2024 08:55:40 GMT - Sat, 18 May 2024 08:55:39 GMT
File typeHTML document, ASCII text, with very long lines (441) Hash8af5fdcb865c15c1af714415ec349ecc a2474b4bbf475c068058a187e5501d785f098d54 5776a0aedcb2cf9c2810188d2e874f47248a92fe415e035a82d11f4ff8935835
GET /redirect.php?u=aHR0cHM6Ly9uby1nby5rZWxrb29ncm91cC5uZXQvb2ZmZXJzZWFyY2hHbz8udHM9MTcxNDA5NzUyMDM4NyYuc2lnPUwuc2pVdURKYmVOaTdOMzZhLjlYSkhfTlJxdy0mYWZmaWxpYXRpb25JZD05Njk3OTcxNCZjb21JZD0xMDU1MTQyMyZjb3VudHJ5PW5vJm9mZmVySWQ9Y2QwMTRjMDVmYTdmYzcwYTgxMGM2NzQ4Zjg5MTkxMjYmc2VydmljZT0zNyZ0b2tlbklkPTVlYjM0ZWNmLWE0MmYtNGFiMy05OGVkLWI5YjBiOGJjOTgxOCZ3YWl0PXRydWUmYWRkZWRQYXJhbXM9dHJ1ZSZjdXN0b20xPTUzJm9yaWdpblJlZmVyZXI9c2hvcHBpbmdkZWFsLm9ubGluZSZwdWJsaXNoZXJTdWJJZD0xMDAyJnB1Ymxpc2hlclRyYWZmaWNUeXBlPXJldGFyZ2V0aW5n HTTP/1.1
Host: shopde.pricedeals.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopde.pricedeals.shop/go.php?market=no&zr84cdf3f303f711ef939e1241679bd7e9c7f62fa1713e49698a11e83b10d98761081690a32de0eb4ee8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 18:05:11 GMT
Server: Apache/2.4.56 (Debian)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 512
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| www.linkbux.com/track/5688a24WID8UxvMohYseQZhAkydyNmU8CLVEZrksGrHD8ZY6E9i8jRNlxzN2w68kFf9qTtonRw_c_c?url=http%3A%2F%2Fwww.barbershop.no&uid=w9j2tem9khhfhas03gu25lg8&uid2=6354964 | 163.181.1.225 | 200 OK | 558 B |
URL GET HTTP/1.1www.linkbux.com/track/5688a24WID8UxvMohYseQZhAkydyNmU8CLVEZrksGrHD8ZY6E9i8jRNlxzN2w68kFf9qTtonRw_c_c?url=http%3A%2F%2Fwww.barbershop.no&uid=w9j2tem9khhfhas03gu25lg8&uid2=6354964 IP163.181.1.225:443 ASN#24429 Zhejiang Taobao Network Co.,Ltd
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerDigiCert Inc Subject*.linkbux.com Fingerprint85:43:2D:A8:86:CB:B4:03:47:26:A7:87:5A:80:9D:1E:E1:55:C2:92 ValidityWed, 26 Jul 2023 00:00:00 GMT - Thu, 08 Aug 2024 23:59:59 GMT
File typeHTML document, ASCII text Hash5964af4ed25994b179349b5203b38cfc 6cbd7b959eb020ed40b1a217c0706cd08213c7e8 b19c7ecb6ad4adce088712279eaaf60bd0bcbf0a04598619ccaeb907d6b5f5cf
GET /track/5688a24WID8UxvMohYseQZhAkydyNmU8CLVEZrksGrHD8ZY6E9i8jRNlxzN2w68kFf9qTtonRw_c_c?url=http%3A%2F%2Fwww.barbershop.no&uid=w9j2tem9khhfhas03gu25lg8&uid2=6354964 HTTP/1.1
Host: www.linkbux.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Fri, 26 Apr 2024 18:05:11 GMT
Vary: Accept-Encoding
Set-Cookie: discuz_2132_saltkey=qf4Usxhc; expires=Sun, 26-May-2024 18:05:11 GMT; Max-Age=2592000; path=/; httponly
discuz_2132_lang=en; path=/
discuz_2132_lang=en; path=/
Content-Encoding: gzip
Via: cache7.l2us2[99,0], cache1.ru6[270,0]
Timing-Allow-Origin: *
EagleId: a3b5019517141547115746042e
|
|
| www.linkbux.com/track/5688a24WID8UxvMohYseQZhAkydyNmU8CLVEZrksGrHD8ZY6E9i8jRNlxzN2w68kFf9qTtonRw_c_c?url=http%3A%2F%2Fwww.barbershop.no&uid=wbja0arrg3gchas03rqlerg4&uid2=6354964 | 163.181.1.225 | 200 OK | 558 B |
URL GET HTTP/1.1www.linkbux.com/track/5688a24WID8UxvMohYseQZhAkydyNmU8CLVEZrksGrHD8ZY6E9i8jRNlxzN2w68kFf9qTtonRw_c_c?url=http%3A%2F%2Fwww.barbershop.no&uid=wbja0arrg3gchas03rqlerg4&uid2=6354964 IP163.181.1.225:443 ASN#24429 Zhejiang Taobao Network Co.,Ltd
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerDigiCert Inc Subject*.linkbux.com Fingerprint85:43:2D:A8:86:CB:B4:03:47:26:A7:87:5A:80:9D:1E:E1:55:C2:92 ValidityWed, 26 Jul 2023 00:00:00 GMT - Thu, 08 Aug 2024 23:59:59 GMT
File typeHTML document, ASCII text Hashaef754d35ea0a36e2c2c65126e2a6366 7a500c96c48c19cdb195414c6f700a020cba7cce fa88e07bfefa2c97aa50a3475b77fd4b48d3654011a2abb72639978806eacd99
GET /track/5688a24WID8UxvMohYseQZhAkydyNmU8CLVEZrksGrHD8ZY6E9i8jRNlxzN2w68kFf9qTtonRw_c_c?url=http%3A%2F%2Fwww.barbershop.no&uid=wbja0arrg3gchas03rqlerg4&uid2=6354964 HTTP/1.1
Host: www.linkbux.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Fri, 26 Apr 2024 18:05:11 GMT
Vary: Accept-Encoding
Set-Cookie: discuz_2132_saltkey=U8SPhjS9; expires=Sun, 26-May-2024 18:05:11 GMT; Max-Age=2592000; path=/; httponly
discuz_2132_lang=en; path=/
discuz_2132_lang=en; path=/
Content-Encoding: gzip
Via: cache14.l2us2[102,0], cache10.ru6[291,0]
Timing-Allow-Origin: *
EagleId: a3b5019e17141547115758899e
|
|
| shopde.pricedeals.shop/redirect.php?u=aHR0cHM6Ly9uby1nby5rZWxrb29ncm91cC5uZXQvb2ZmZXJzZWFyY2hHbz8udHM9MTcxNDA5NzUyMDM0NCYuc2lnPWhwYTRwcDA2ak82Mzhzck5kQlQ4aFlyWmtBZy0mYWZmaWxpYXRpb25JZD05Njk3OTcxNCZjb21JZD0xMDU1MTQyMyZjb3VudHJ5PW5vJm9mZmVySWQ9ZDhiNzliZTBlZmRjZGNhOThmYzkxMmQ4YWQyNmU0MjAmc2VydmljZT0zNyZ0b2tlbklkPTVlYjM0ZWNmLWE0MmYtNGFiMy05OGVkLWI5YjBiOGJjOTgxOCZ3YWl0PXRydWUmYWRkZWRQYXJhbXM9dHJ1ZSZjdXN0b20xPTU0Jm9yaWdpblJlZmVyZXI9c2hvcHBpbmdkZWFsLm9ubGluZSZwdWJsaXNoZXJTdWJJZD0xMDAxJnB1Ymxpc2hlclRyYWZmaWNUeXBlPWRvbWFpbg | 135.181.6.240 | 200 OK | 504 B |
URL GET HTTP/1.1shopde.pricedeals.shop/redirect.php?u=aHR0cHM6Ly9uby1nby5rZWxrb29ncm91cC5uZXQvb2ZmZXJzZWFyY2hHbz8udHM9MTcxNDA5NzUyMDM0NCYuc2lnPWhwYTRwcDA2ak82Mzhzck5kQlQ4aFlyWmtBZy0mYWZmaWxpYXRpb25JZD05Njk3OTcxNCZjb21JZD0xMDU1MTQyMyZjb3VudHJ5PW5vJm9mZmVySWQ9ZDhiNzliZTBlZmRjZGNhOThmYzkxMmQ4YWQyNmU0MjAmc2VydmljZT0zNyZ0b2tlbklkPTVlYjM0ZWNmLWE0MmYtNGFiMy05OGVkLWI5YjBiOGJjOTgxOCZ3YWl0PXRydWUmYWRkZWRQYXJhbXM9dHJ1ZSZjdXN0b20xPTU0Jm9yaWdpblJlZmVyZXI9c2hvcHBpbmdkZWFsLm9ubGluZSZwdWJsaXNoZXJTdWJJZD0xMDAxJnB1Ymxpc2hlclRyYWZmaWNUeXBlPWRvbWFpbg IP135.181.6.240:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectshopde.pricedeals.shop Fingerprint90:0F:E8:D2:5A:53:A2:54:BD:E6:E6:02:01:DB:5D:32:91:11:0B:79 ValiditySun, 18 Feb 2024 08:55:40 GMT - Sat, 18 May 2024 08:55:39 GMT
File typeHTML document, ASCII text, with very long lines (436) Hash13849faef4764c9e1645bd76fb35b8cd 3a3a002a354b983aaceaa290ba5efc9052099350 6d16ec5018ade43405191633b30d35508a9937cba6884b56cfbe4bc79277c08e
GET /redirect.php?u=aHR0cHM6Ly9uby1nby5rZWxrb29ncm91cC5uZXQvb2ZmZXJzZWFyY2hHbz8udHM9MTcxNDA5NzUyMDM0NCYuc2lnPWhwYTRwcDA2ak82Mzhzck5kQlQ4aFlyWmtBZy0mYWZmaWxpYXRpb25JZD05Njk3OTcxNCZjb21JZD0xMDU1MTQyMyZjb3VudHJ5PW5vJm9mZmVySWQ9ZDhiNzliZTBlZmRjZGNhOThmYzkxMmQ4YWQyNmU0MjAmc2VydmljZT0zNyZ0b2tlbklkPTVlYjM0ZWNmLWE0MmYtNGFiMy05OGVkLWI5YjBiOGJjOTgxOCZ3YWl0PXRydWUmYWRkZWRQYXJhbXM9dHJ1ZSZjdXN0b20xPTU0Jm9yaWdpblJlZmVyZXI9c2hvcHBpbmdkZWFsLm9ubGluZSZwdWJsaXNoZXJTdWJJZD0xMDAxJnB1Ymxpc2hlclRyYWZmaWNUeXBlPWRvbWFpbg HTTP/1.1
Host: shopde.pricedeals.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopde.pricedeals.shop/go.php?market=no&zr84cc946103f711efa8e1126a9653f5bb85ac9a73cef54b98b3d6511e750e77370816907dcbe76cbf0a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 18:05:12 GMT
Server: Apache/2.4.56 (Debian)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 504
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| cdn.itskiddien.club/?rb=kZg2dAQNBL7Gj1QYC96KNLstcdwbFznUehlvXD00j6QPaVWi1XVkK7AQuXplZBILloFZQqNtdN2kRASDjapo-FB2RDIKQkhjafYAH_aPGNdI8hQhAw6L0cYunsqOfU_XUSUwMPyLe-MQw6pWscmC7HuSU6zqRum0H96wTOTsRt9dGJW9pw5pa0QcAyoXc-4mxz3nn1sFNj-BWvkEz6YOhQi9O1zF9VmwzFgLqC24KdoA1lT-Wdsbgh_LqjsJlOI6LJaGPucC33z3pqJJ&request_ab2=0&zoneid=5902452&js_build=iclick-v1.785.1-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=11&pl=https%3A%2F%2Fvidezz.net%2Fembed-74zqgcm7xbe5.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.785.1-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=06e65a06-226c-44b3-bdbf-476739893337&userId=00804aa0f9fc4b84f9c82661309282f0&m=link | 139.45.197.236 | 200 OK | 2.4 kB |
URL GET HTTP/2cdn.itskiddien.club/?rb=kZg2dAQNBL7Gj1QYC96KNLstcdwbFznUehlvXD00j6QPaVWi1XVkK7AQuXplZBILloFZQqNtdN2kRASDjapo-FB2RDIKQkhjafYAH_aPGNdI8hQhAw6L0cYunsqOfU_XUSUwMPyLe-MQw6pWscmC7HuSU6zqRum0H96wTOTsRt9dGJW9pw5pa0QcAyoXc-4mxz3nn1sFNj-BWvkEz6YOhQi9O1zF9VmwzFgLqC24KdoA1lT-Wdsbgh_LqjsJlOI6LJaGPucC33z3pqJJ&request_ab2=0&zoneid=5902452&js_build=iclick-v1.785.1-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=11&pl=https%3A%2F%2Fvidezz.net%2Fembed-74zqgcm7xbe5.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.785.1-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=06e65a06-226c-44b3-bdbf-476739893337&userId=00804aa0f9fc4b84f9c82661309282f0&m=link IP139.45.197.236:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectitskiddien.club FingerprintF8:F5:E1:2A:73:41:2E:21:C2:B1:A0:A3:DE:9D:2D:B2:87:3F:8E:5D ValidityFri, 29 Mar 2024 21:36:27 GMT - Thu, 27 Jun 2024 21:36:26 GMT
File typegzip compressed data, max speed, from Unix Hashb3f3f8d230be5409cf914a9e8832cf58 ca5aa6bc3cd73dfd91cb6921e1b5be33708f7c69 be08b8aa70d1829dff34789aafe4de76e6e05af6d567defd964aa0b815c5830b
GET /?rb=kZg2dAQNBL7Gj1QYC96KNLstcdwbFznUehlvXD00j6QPaVWi1XVkK7AQuXplZBILloFZQqNtdN2kRASDjapo-FB2RDIKQkhjafYAH_aPGNdI8hQhAw6L0cYunsqOfU_XUSUwMPyLe-MQw6pWscmC7HuSU6zqRum0H96wTOTsRt9dGJW9pw5pa0QcAyoXc-4mxz3nn1sFNj-BWvkEz6YOhQi9O1zF9VmwzFgLqC24KdoA1lT-Wdsbgh_LqjsJlOI6LJaGPucC33z3pqJJ&request_ab2=0&zoneid=5902452&js_build=iclick-v1.785.1-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=11&pl=https%3A%2F%2Fvidezz.net%2Fembed-74zqgcm7xbe5.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.785.1-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=06e65a06-226c-44b3-bdbf-476739893337&userId=00804aa0f9fc4b84f9c82661309282f0&m=link HTTP/1.1
Host: cdn.itskiddien.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Cookie: OAID=00804a83c1f64877fc196ef4c84b043f; oaidts=1714154711
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 18:05:11 GMT
content-type: application/json
x-trace-id: d3af891b734ceb265b92ca8a4ab26ac7
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://videzz.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00804aa0f9fc4b84f9c82661309282f0; expires=Sat, 26 Apr 2025 18:05:11 GMT; path=/; secure; SameSite=None
oaidts=1714154711; expires=Sat, 26 Apr 2025 18:05:11 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 03 May 2024 18:05:11 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| r.secprf.com/v1/redirect?url=http%3A%2F%2Fwww.barbershop.no&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Fbid.bidclickmedia.com%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_41c4ot7 | 18.202.86.139 | 403 Forbidden | 64 B |
URL GET HTTP/2r.secprf.com/v1/redirect?url=http%3A%2F%2Fwww.barbershop.no&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Fbid.bidclickmedia.com%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_41c4ot7 IP18.202.86.139:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectlinksprf.com Fingerprint7E:D9:A0:4D:90:12:E1:21:0E:82:44:FD:FA:D4:CA:8A:3D:B8:9D:49 ValidityMon, 22 Apr 2024 10:08:23 GMT - Sun, 21 Jul 2024 10:08:22 GMT
Hashc342d5ea648ac78f43d1cccaf4f22da5 cc9e55f929780a6975a04ff38c388326c9901c71 f0e54e90a61e876e7bdd9e271c4f8885681fc7062f2e4363e9b9e14f6e0bf271
GET /v1/redirect?url=http%3A%2F%2Fwww.barbershop.no&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Fbid.bidclickmedia.com%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_41c4ot7 HTTP/1.1
Host: r.secprf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkbux.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Fri, 26 Apr 2024 18:05:12 GMT
content-type: application/json
content-length: 64
set-cookie: ykuid=31a4432e8dcd442eae1d4431af488937; Path=/; Secure; Domain=.secprf.com; Max-Age=31536000; SameSite=None
JSESSIONID=4084A5F440A66E2187D894EAF50659EB; Path=/; HttpOnly
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| r.secprf.com/v1/redirect?url=http%3A%2F%2Fwww.barbershop.no&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Fbid.bidclickmedia.com%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_4197oo7 | 18.202.86.139 | 403 Forbidden | 64 B |
URL GET HTTP/2r.secprf.com/v1/redirect?url=http%3A%2F%2Fwww.barbershop.no&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Fbid.bidclickmedia.com%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_4197oo7 IP18.202.86.139:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectlinksprf.com Fingerprint7E:D9:A0:4D:90:12:E1:21:0E:82:44:FD:FA:D4:CA:8A:3D:B8:9D:49 ValidityMon, 22 Apr 2024 10:08:23 GMT - Sun, 21 Jul 2024 10:08:22 GMT
Hashc3af6e84d4970e8a645fc330250103fc 9cad8d58aff45ea772e8a971bfe01e556447c27d 8754092da9401d809ba3ab813ec1447ec80088ff009708585e2e19dd286b6cb8
GET /v1/redirect?url=http%3A%2F%2Fwww.barbershop.no&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Fbid.bidclickmedia.com%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_4197oo7 HTTP/1.1
Host: r.secprf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkbux.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Fri, 26 Apr 2024 18:05:12 GMT
content-type: application/json
content-length: 64
set-cookie: ykuid=9c4a2d6184094a6fb0f79f4b6b080776; Path=/; Secure; Domain=.secprf.com; Max-Age=31536000; SameSite=None
JSESSIONID=F569AF735D5CC956EFA2FD2A2B104C38; Path=/; HttpOnly
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319 | 174.137.133.17 | 302 Found | 0 B |
URL GET HTTP/1.1xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerSectigo Limited Subject*.zeusadx.com FingerprintAA:67:88:35:5F:BC:20:3C:44:9B:00:BD:4F:E1:C0:5F:62:D0:69:C0 ValidityMon, 23 Oct 2023 00:00:00 GMT - Wed, 23 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=531847&auth=KhbHhS&pubid=162319 HTTP/1.1
Host: xml.zeusadx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 18:05:13 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://r.mylot.com/p.aspx?u=5f0704d3-a95b-499f-a5b5-50919f8a6f58
|
|
| no-go.kelkoogroup.net/offersearchGo?.ts=1714097520344&.sig=hpa4pp06jO638srNdBT8hYrZkAg-&affiliationId=96979714&comId=10551423&country=no&offerId=d8b79be0efdcdca98fc912d8ad26e420&service=37&tokenId=5eb34ecf-a42f-4ab3-98ed-b9b0b8bc9818&wait=true&addedParams=true&custom1=54&originReferer=shoppingdeal.online&publisherSubId=1001&publisherTrafficType=domain | 95.211.116.26 | 200 OK | 3.8 kB |
URL GET HTTP/1.1no-go.kelkoogroup.net/offersearchGo?.ts=1714097520344&.sig=hpa4pp06jO638srNdBT8hYrZkAg-&affiliationId=96979714&comId=10551423&country=no&offerId=d8b79be0efdcdca98fc912d8ad26e420&service=37&tokenId=5eb34ecf-a42f-4ab3-98ed-b9b0b8bc9818&wait=true&addedParams=true&custom1=54&originReferer=shoppingdeal.online&publisherSubId=1001&publisherTrafficType=domain IP95.211.116.26:443 ASN#60781 LeaseWeb Netherlands B.V.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerDigiCert Inc Subject*.kelkoogroup.net Fingerprint92:CE:2F:80:FF:8A:8D:05:3F:58:B8:E3:0D:81:B0:D9:A0:56:9C:2A ValidityThu, 14 Sep 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (2199) Hash7a160d3f8ed4dfa5875c95a9af12f1c4 a170b11017c28d175327813e8351ced4cfee135a 0bcc8e3d88cf77a6f7bceccb0331b9845fdd44a36cd7dd57297c87f8f8a79dc2
GET /offersearchGo?.ts=1714097520344&.sig=hpa4pp06jO638srNdBT8hYrZkAg-&affiliationId=96979714&comId=10551423&country=no&offerId=d8b79be0efdcdca98fc912d8ad26e420&service=37&tokenId=5eb34ecf-a42f-4ab3-98ed-b9b0b8bc9818&wait=true&addedParams=true&custom1=54&originReferer=shoppingdeal.online&publisherSubId=1001&publisherTrafficType=domain HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopde.pricedeals.shop/
Cookie: kelkooID=a4c6295-18f1b952f7e-70b24
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
leadId: 62A901HWDSAC3K5C15ZY3C2FCY78CF
clickId: 107698111_1714154713189_6149456
country: no
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=oaKFvlIEzo2UdsLoNfhqDJ4YdyyycaC1j6jXaXkgTnUIJIUB6CvOiaxUcjmyHy6DscgJmOX9ry3hm4YMO5SFyHqoOUpxWrlI5KAuDlBEA5YcfBfPiHdl1Rp0tHhZXwp7; Max-Age=31104000; Expires=Mon, 21 Apr 2025 18:05:13 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
kelkooID=a4c6295-18f1b952f7e-70b24; Max-Age=31536000; Expires=Sat, 26 Apr 2025 18:05:13 GMT; SameSite=None; Path=/; Domain=kelkoogroup.net; Secure; HTTPOnly
X-DataDome: protected
Request-Time: PT0.037219S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: frame-ancestors 'none'
X-Permitted-Cross-Domain-Policies: master-only
Date: Fri, 26 Apr 2024 18:05:13 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 31616
|
|
| herma-tor.com/zclkvisitor/84ce6925-03f7-11ef-be9d-12005019a09d/919af160-92fb-11ec-937b-0a3311c5e6b7?campaignid=b9792a50-4807-11ed-8e2b-128084d1ce51 | 34.198.252.166 | 302 Found | 0 B |
URL GET HTTP/2herma-tor.com/zclkvisitor/84ce6925-03f7-11ef-be9d-12005019a09d/919af160-92fb-11ec-937b-0a3311c5e6b7?campaignid=b9792a50-4807-11ed-8e2b-128084d1ce51 IP34.198.252.166:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerAmazon Subjectherma-tor.com FingerprintAB:65:97:4C:0F:5A:C8:D3:B7:B1:FB:B5:B7:88:A4:02:B6:C5:3F:1C ValidityMon, 22 Apr 2024 00:00:00 GMT - Wed, 21 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zclkvisitor/84ce6925-03f7-11ef-be9d-12005019a09d/919af160-92fb-11ec-937b-0a3311c5e6b7?campaignid=b9792a50-4807-11ed-8e2b-128084d1ce51 HTTP/1.1
Host: herma-tor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://r.mylot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 26 Apr 2024 18:05:13 GMT
content-length: 0
location: https://shopde.pricedeals.shop/go.php?market=no&zr84ce692503f711efbe9d12005019a09d1de130e5bfaa48f389cc8ca299cd0de4081690bf38ab6cfdc6
access-control-allow-origin: *
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
cache-control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-webkit-csp: default-src 'self'; script-src 'self' 'unsafe-inline'
X-Firefox-Spdy: h2
|
|
| shopde.pricedeals.shop/go.php?market=no&zr84ce692503f711efbe9d12005019a09d1de130e5bfaa48f389cc8ca299cd0de4081690bf38ab6cfdc6 | 135.181.6.240 | 200 OK | 639 B |
URL GET HTTP/1.1shopde.pricedeals.shop/go.php?market=no&zr84ce692503f711efbe9d12005019a09d1de130e5bfaa48f389cc8ca299cd0de4081690bf38ab6cfdc6 IP135.181.6.240:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectshopde.pricedeals.shop Fingerprint90:0F:E8:D2:5A:53:A2:54:BD:E6:E6:02:01:DB:5D:32:91:11:0B:79 ValiditySun, 18 Feb 2024 08:55:40 GMT - Sat, 18 May 2024 08:55:39 GMT
File typeHTML document, ASCII text, with very long lines (548) Hashfba520e8eb8d85b5fd1d9455508aa91e af4a2b2ed6acece83561504bfd510b3c65edfc9d 2ad30fa5f17fd06ad58a803fd3135c5532586117e5feaa9ee20a23abd14453a9
GET /go.php?market=no&zr84ce692503f711efbe9d12005019a09d1de130e5bfaa48f389cc8ca299cd0de4081690bf38ab6cfdc6 HTTP/1.1
Host: shopde.pricedeals.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://r.mylot.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 18:05:13 GMT
Server: Apache/2.4.56 (Debian)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 639
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| shopde.pricedeals.shop/redirect.php?u=aHR0cHM6Ly9uby1nby5rZWxrb29ncm91cC5uZXQvb2ZmZXJzZWFyY2hHbz8udHM9MTcxNDA5NzUyMDMzNiYuc2lnPXhoQjJNTW9WZkxhTndxckFoTU9tTFZGbmx0MC0mYWZmaWxpYXRpb25JZD05Njk3OTcxNCZjb21JZD0xMDU1MTQyMyZjb3VudHJ5PW5vJm9mZmVySWQ9ZDJlZmI0ZWJjMTZhNmY5MzFhOTdkYTIxODQ3OWIzMzMmc2VydmljZT0zNyZ0b2tlbklkPTVlYjM0ZWNmLWE0MmYtNGFiMy05OGVkLWI5YjBiOGJjOTgxOCZ3YWl0PXRydWUmYWRkZWRQYXJhbXM9dHJ1ZSZjdXN0b20xPTUzJm9yaWdpblJlZmVyZXI9c2hvcHBpbmdkZWFsLm9ubGluZSZwdWJsaXNoZXJTdWJJZD0xMDAxJnB1Ymxpc2hlclRyYWZmaWNUeXBlPWRvbWFpbg | 135.181.6.240 | 200 OK | 508 B |
URL GET HTTP/1.1shopde.pricedeals.shop/redirect.php?u=aHR0cHM6Ly9uby1nby5rZWxrb29ncm91cC5uZXQvb2ZmZXJzZWFyY2hHbz8udHM9MTcxNDA5NzUyMDMzNiYuc2lnPXhoQjJNTW9WZkxhTndxckFoTU9tTFZGbmx0MC0mYWZmaWxpYXRpb25JZD05Njk3OTcxNCZjb21JZD0xMDU1MTQyMyZjb3VudHJ5PW5vJm9mZmVySWQ9ZDJlZmI0ZWJjMTZhNmY5MzFhOTdkYTIxODQ3OWIzMzMmc2VydmljZT0zNyZ0b2tlbklkPTVlYjM0ZWNmLWE0MmYtNGFiMy05OGVkLWI5YjBiOGJjOTgxOCZ3YWl0PXRydWUmYWRkZWRQYXJhbXM9dHJ1ZSZjdXN0b20xPTUzJm9yaWdpblJlZmVyZXI9c2hvcHBpbmdkZWFsLm9ubGluZSZwdWJsaXNoZXJTdWJJZD0xMDAxJnB1Ymxpc2hlclRyYWZmaWNUeXBlPWRvbWFpbg IP135.181.6.240:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectshopde.pricedeals.shop Fingerprint90:0F:E8:D2:5A:53:A2:54:BD:E6:E6:02:01:DB:5D:32:91:11:0B:79 ValiditySun, 18 Feb 2024 08:55:40 GMT - Sat, 18 May 2024 08:55:39 GMT
File typeHTML document, ASCII text, with very long lines (436) Hash2370d1c1d74690aa7b0e88221e065716 dc493fa2f843ffe477c65514ba763ca84430d4e5 10c50fea80b3bcde2f44249529fd84816cba6357c299850f6cae8084928c6e2e
GET /redirect.php?u=aHR0cHM6Ly9uby1nby5rZWxrb29ncm91cC5uZXQvb2ZmZXJzZWFyY2hHbz8udHM9MTcxNDA5NzUyMDMzNiYuc2lnPXhoQjJNTW9WZkxhTndxckFoTU9tTFZGbmx0MC0mYWZmaWxpYXRpb25JZD05Njk3OTcxNCZjb21JZD0xMDU1MTQyMyZjb3VudHJ5PW5vJm9mZmVySWQ9ZDJlZmI0ZWJjMTZhNmY5MzFhOTdkYTIxODQ3OWIzMzMmc2VydmljZT0zNyZ0b2tlbklkPTVlYjM0ZWNmLWE0MmYtNGFiMy05OGVkLWI5YjBiOGJjOTgxOCZ3YWl0PXRydWUmYWRkZWRQYXJhbXM9dHJ1ZSZjdXN0b20xPTUzJm9yaWdpblJlZmVyZXI9c2hvcHBpbmdkZWFsLm9ubGluZSZwdWJsaXNoZXJTdWJJZD0xMDAxJnB1Ymxpc2hlclRyYWZmaWNUeXBlPWRvbWFpbg HTTP/1.1
Host: shopde.pricedeals.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopde.pricedeals.shop/go.php?market=no&zr84ce692503f711efbe9d12005019a09d1de130e5bfaa48f389cc8ca299cd0de4081690bf38ab6cfdc6
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 18:05:14 GMT
Server: Apache/2.4.56 (Debian)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 508
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| videzz.net/sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 42 kB |
URL GET HTTP/2videzz.net/sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typeJavaScript source, ASCII text, with very long lines (42324), with no line terminators Hash764aafd976dd9cd9f33279bfafa02908 e9ad856ec00bccfdcbe17b79113681685c943b8d 2c20e295faeb1ef24dae1e26caa5089fdb2ba5a36a86a6a26780b8a515ca99aa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-74zqgcm7xbe5.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:39 GMT
vary: Accept-Encoding
etag: W/"66163917-a554"
expires: Sun, 26 May 2024 17:57:55 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/twitter.js | 172.67.39.148 | 200 OK | 645 B |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/twitter.js IP172.67.39.148:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (655), with no line terminators Hash671b3272826b2e03f7f5ecc6846a4f83 bcd620154cd6381ddf84b4e17e53ad716f3acbea b743f6ed35f2a170860cfb010577cd000ee695dc23b850d3b3e479ef1178bb22
GET /menu/svg/icons/twitter.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"af2b829f9b79fabec7c0148a8b7e444b"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=no0s8wf%2B47RtY8CEer2btpxxEiQg64a2epQXM1gVeuJI2MFbat7D2FpnM2CTnrpqF8xhWPrS4hZNCEW3DGu0x8AI7gl43a8FCrFs3fa3QDBL33XfcQ%2F%2Bao27VUMmVJ9PHZZcsnwPTuha9DeAmuHyZVOg"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 19386
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a87fcf6f41b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tr.7vid.net/api/users/59846?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-74zqgcm7xbe5.html&sid=e6591c13-e14a-4753-897d-47892558f47e&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=107428 | 135.181.208.216 | 200 OK | 638 B |
URL GET HTTP/2tr.7vid.net/api/users/59846?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-74zqgcm7xbe5.html&sid=e6591c13-e14a-4753-897d-47892558f47e&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=107428 IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjecta.gatwins.site Fingerprint66:D4:C4:E9:BC:6E:82:9E:D0:2F:00:69:9A:DF:C2:6D:18:04:0B:1B ValidityWed, 10 Apr 2024 10:27:11 GMT - Tue, 09 Jul 2024 10:27:10 GMT
File typeASCII text, with very long lines (774), with no line terminators Hasheac6d7249a9c37071e4486de51303084 e4368c5a9c59166673e6ea64ae41ecf6ecce8209 ea5a4e67d2e91c70bb1caee63fb215d0c96261ca37c9be091ae459fbe28e2194
GET /api/users/59846?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-74zqgcm7xbe5.html&sid=e6591c13-e14a-4753-897d-47892558f47e&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=107428 HTTP/1.1
Host: tr.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 18:05:10 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: nauid=tr1NbEsBVQDoO2A4w0VK; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/sub/31bV2Jy | 104.21.37.74 | 200 OK | 239 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/31bV2Jy IP104.21.37.74:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashd5b23342c3da61ad8cb32c85b5a9a6ca 3ca89fd68565941a5f5dec87720a2164c9b860ae 53073b03453dec44b400acecc549d6446aba803406a391777a94cc2504173bbb
GET /sub/31bV2Jy HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K%2BngmNqP%2BC9quXjjmhWUp9fcYy9pVmo233tdCFpbZ1ZaVPIV1ocJSlgwDGPTIJbc5Y7lAV9n8sqAM1DG%2FwELJ7XvtS%2BszTGWMAT%2BJTn4EgwJQJxSAErFx%2FrpDoQ12F1HXTq2GaOr5CA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a87fcd9e07569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| myliveforyoudreder.com/vidozza.js | 104.21.40.134 | 200 OK | 1.6 kB |
URL GET HTTP/2myliveforyoudreder.com/vidozza.js IP104.21.40.134:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectmyliveforyoudreder.com FingerprintD6:1F:6C:5C:81:FF:C4:D3:4D:C9:A9:22:DD:0B:D4:18:59:4E:58:B7 ValidityWed, 20 Mar 2024 02:24:57 GMT - Tue, 18 Jun 2024 02:24:56 GMT
File typeJavaScript source, ASCII text, with very long lines (1742), with no line terminators Hash1b10623dcc365c3e40aa543ee9be6c3d ee99261cffbbf896eba3c60d867480042fbaadc5 54dec89c60117fd15b96d376c1dba2de2f333009f2ba0847fa71fa0a969f863f
GET /vidozza.js HTTP/1.1
Host: myliveforyoudreder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: application/javascript
last-modified: Mon, 24 Oct 2022 14:14:49 GMT
etag: W/"63569dd9-64f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1560
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Whzwg5qE3j4dztllbkg60023dVcWi7Q42l1X%2FVlQQ7WTltHxCqoXKxXmvFw4AanqbhiMd4tS%2FDv5H5T8xg0or2ZqplYYhrYusderhh4qhKyK%2BZweYeOj5Mhf63NiCz2FCYda5gMuo6vz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a87fcf785d1c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/facebook.js | 172.67.39.148 | 200 OK | 429 B |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/facebook.js IP172.67.39.148:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (439), with no line terminators Hash874e1638740e061f9fa55eda3180724c 108a7e30fa0f7d50b961845ec970a2745f3c821f d1bf990d09417220fcb615079a569e0a403c75beef0eac536e5976b7751c0370
GET /menu/svg/icons/facebook.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"68925fa8e347041c6006837e73c518bc"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6GJdn8sjfSnuFPLDtJ%2FQfURHSV9%2BVKFPN%2BoVMIE1WLd%2FjnFWUFJ2yQt7T11BUY%2FmaD3PEQ7eEP6%2Bz96%2BX%2BOzAKq%2BjuM95%2B0V1zYfujak10jOE9EJBhjR6qVVwcABhbLdH5ABU1D%2FXBghUl5L%2FyVYWLhC"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 19386
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a87fcf4ee5b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| allvideometrika.com/f.php?sid=212515 | 104.21.83.61 | 200 OK | 0 B |
URL GET HTTP/2allvideometrika.com/f.php?sid=212515 IP104.21.83.61:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectallvideometrika.com Fingerprint0F:3F:B1:7E:F7:3C:77:24:1C:85:B2:89:15:11:43:1A:AD:64:DF:13 ValidityTue, 23 Apr 2024 13:34:13 GMT - Mon, 22 Jul 2024 13:34:12 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /f.php?sid=212515 HTTP/1.1
Host: allvideometrika.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.1.33
cache-control: no-store, no-cache, must-revalidate, max-age=0
x-robots-tag: noindex
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UlTzE2IwQtWnrsKuzU9fcP5MnkDFwdKlirieJXEkAifsQhvi5h1gsfxk8qQrVlZxu3w5oMZ0slRjw1W75LdzLeG1gRQQxJcSOvXRKKA4FIpcnHbMF%2FuBuyRm0KZXaKaR1PFXZCBN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a87fd0db6756c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183 | 174.137.133.17 | 302 Found | 526 B |
URL GET HTTP/1.1xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerSectigo Limited Subject*.xmlking.com Fingerprint61:F0:9B:53:D2:DF:03:A0:08:09:BE:79:B1:70:10:34:65:07:7B:6D ValidityWed, 26 Jul 2023 00:00:00 GMT - Fri, 26 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=591364&auth=oodr9S&pubid=195183 HTTP/1.1
Host: xml.xmlking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 18:05:09 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://r.mylot.com/p.aspx?u=cbc7de46-7c3d-45c1-ae2d-8a0809ccc52d
|
|
| xmlclick.adokutrtb.com/nrtb/click?bid=KbRiC5iWntxpu-qM7ta8bWQ_BQ1alhjOCTvGZYfrpwhikENFkO-WC2h8hoAQJr49_0_5 | 23.226.122.79 | 302 Found | 1.3 kB |
URL GET HTTP/2xmlclick.adokutrtb.com/nrtb/click?bid=KbRiC5iWntxpu-qM7ta8bWQ_BQ1alhjOCTvGZYfrpwhikENFkO-WC2h8hoAQJr49_0_5 IP23.226.122.79:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerUnizeto Technologies S.A. Subject*.adokutrtb.com FingerprintFE:8D:59:6C:AC:C6:8C:40:28:AE:A4:B8:B8:6C:4B:B0:1F:1D:1E:AC ValidityTue, 19 Mar 2024 12:12:32 GMT - Wed, 19 Mar 2025 12:12:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /nrtb/click?bid=KbRiC5iWntxpu-qM7ta8bWQ_BQ1alhjOCTvGZYfrpwhikENFkO-WC2h8hoAQJr49_0_5 HTTP/1.1
Host: xmlclick.adokutrtb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 18:05:10 GMT
content-type: text/html; charset=utf-8
content-length: 76
location: https://xml-v4.onemediawork.com/click?i=SVIBHBwO8zA_0
X-Firefox-Spdy: h2
|
|
| xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183 | 174.137.133.17 | 302 Found | 1.3 kB |
URL GET HTTP/1.1xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerSectigo Limited Subject*.xmlking.com Fingerprint61:F0:9B:53:D2:DF:03:A0:08:09:BE:79:B1:70:10:34:65:07:7B:6D ValidityWed, 26 Jul 2023 00:00:00 GMT - Fri, 26 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=591364&auth=oodr9S&pubid=195183 HTTP/1.1
Host: xml.xmlking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 18:05:09 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://xmlclick.adokutrtb.com/nrtb/click?bid=01onGr3SWUvyM0UgoWPrI07BLF_X-GLKWD-4ZzRT9_z2RQWn2RodWjB8EwR1984u_0_5
|
|
| r.mylot.com/p.aspx?u=5f0704d3-a95b-499f-a5b5-50919f8a6f58 | 18.233.59.62 | 200 OK | 526 B |
URL GET HTTP/2r.mylot.com/p.aspx?u=5f0704d3-a95b-499f-a5b5-50919f8a6f58 IP18.233.59.62:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerAmazon Subject*.mylot.com Fingerprint81:6A:9D:DF:7B:03:C9:DC:EE:3A:40:EA:60:8A:17:66:07:6C:3E:6C ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (528), with no line terminators Hash2516c10338b6f3ec85a2f9b848870510 522dc84f75dee737ad4392236ac23c334522f0f6 ad021e0708d24e91022f5b900488e299f75a7dd8b432c2e33ef73ba459ac369c
GET /p.aspx?u=5f0704d3-a95b-499f-a5b5-50919f8a6f58 HTTP/1.1
Host: r.mylot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:13 GMT
content-type: text/html; charset=utf-8
content-length: 526
cache-control: private
set-cookie: ASP.NET_SessionId=5vvjnjaz1llloix5npghq1pz; path=/; HttpOnly; SameSite=Lax
X-Firefox-Spdy: h2
|
|
| videzz.net/js/videojs.stm.5.min.js?0.43773181197567 | 78.142.18.54 | 200 OK | 7.2 kB |
URL GET HTTP/2videzz.net/js/videojs.stm.5.min.js?0.43773181197567 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typeJavaScript source, ASCII text, with very long lines (7493), with no line terminators Hash559fdbbfb2f700ef277f69b35a097d54 df1d4bf430b37e066e4e3187d621c954d581c160 d30c79b738e33d406468f33a059c11238995e485cad39bb31a721f370baa05c5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/videojs.stm.5.min.js?0.43773181197567 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-74zqgcm7xbe5.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:18 GMT
vary: Accept-Encoding
etag: W/"66163902-1c25"
expires: Sun, 26 May 2024 18:05:07 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: MISS
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 104.18.10.207 | 200 OK | 31 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP104.18.10.207:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 03/18/2024 12:28:12
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 2ab8316fdef76f530c15e660f59a896d
cdn-cache: HIT
cf-cache-status: HIT
age: 2806151
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a87fc8daf156c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/sub/Zj8D76R | 104.21.37.74 | 200 OK | 234 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/Zj8D76R IP104.21.37.74:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashaa39ce14ee4ef59a81b3b1ccc7c20cfb 4037f87db53a18212b896cbe7dc03404833bd9f4 5e96980309ab1a029fa20a02fb9aca51a5967df4e6ab8aaab5f0373d4ebd4f68
GET /sub/Zj8D76R HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z8s6AnsWrMU%2FLmYpDh6zRZ5asyLw3d%2FmSlO6H1w%2BZaxL4kO%2BKOlnNUkb8deJYyHp8UNC6FxOmB2YrfNuVXhQbL9I4STXSbuUSu4Lf%2BvgL1uD0Son%2FAMb2k059lx7XRVCek55F9huec4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a87fcd4d7d569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/reddit.js | 172.67.39.148 | 200 OK | 893 B |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/reddit.js IP172.67.39.148:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (903), with no line terminators Hash1f5dd30051ff637ea1d19ce73aced89c bfdd1d1c07492ba397bdcf13e262edcfd8692a5e c1bf0dd12b2f71de1e7e154b309caa18d2f1c2a8dc077beba23b89432ad72a81
GET /menu/svg/icons/reddit.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"1fe5b5008de689ce6464d7bcb07e742c"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BKI8JfGHLgDLQMxgjIu6uq9y5sFahBx8LFeIv85H4LGXkFnp9HWSnK6sZVx299a1mbU%2BjomK2FHlABBJnwQDJeYe4yJMdIkipFw6Yt2WeRGl5RDOvuaLloy6P%2F%2BRZw9yvyADzctlodc7WNv6iH7eoGMR"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 19386
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a87fcf4ee9b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| videzz.net/embed-74zqgcm7xbe5.html | 78.142.18.54 | 200 OK | 32 kB |
URL User Request GET HTTP/2videzz.net/embed-74zqgcm7xbe5.html IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typeHTML document, ASCII text, with very long lines (1934), with CRLF, LF line terminators Hash03756f89800710e29a6b6f662798956c 29e782b8fb4f69c0a99f99da10455aa523029c47 58b32e832d340522a101f561a62b0d8663302d38f21df080ece1a99528c0c528
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /embed-74zqgcm7xbe5.html HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 25 Apr 2024 18:05:07 GMT
x-frame-options: 1
set-cookie: lang=1; domain=.videzz.net; path=/; HttpOnly
xfsts=; domain=.videzz.net; path=/; expires=Thu, 27-Apr-2023 18:05:07 GMT; HttpOnly
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/sub/Pj8pz0z | 104.21.37.74 | 200 OK | 234 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/Pj8pz0z IP104.21.37.74:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashec45c51dfcbeb0d487d6d2ccf0cd9a23 eadd83e9b3def654d52e1b93ae5f5c13d8a69c99 3a5e0788bab23d00613d25c36fabb29d38bb3e51af54bf370854620392a249ce
GET /sub/Pj8pz0z HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zgDildcQR38iszfcKemqzmUjPA1P6YweIi0CJxwn5mtY3qvpPdImFeZin9WMlHLeV5xp%2B2EWuekePvuarmVaDTY7o2m0SKtMcdIruuPwNEzZqg3dnKHmmucMT4v0gmQZj0li11KkCvk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a87fcd4d76569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| veepteero.com/?rb=EwJIO-vM-64sqnB2dKtzr-qMv68PngGrefy3lf7qLdB8TlqB-qvkQhFlp3WY9WEMDBN4r0DCuF204XJ0HmxPM7s-pA__e0Sd3pJnLGgZySoB_uuwQB2Zy3cRV9UPDDE4SM17BMwdVFzzbHgYs4hzMUuBETuOGuE64I8aeWIMa5XhZYpJqjEKBJxSenIePD_YWDkip2c5XrvrGeAq5nxuXDHPD2QsvaLJkJ1eHy4Ju1c3J3j-3Z5Cz0yRY4PPRYqBeswfgA%3D%3D&request_ab2=0&zoneid=5708417&js_build=iclick-v1.782.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=11&pl=https%3A%2F%2Fvidezz.net%2Fembed-74zqgcm7xbe5.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.782.0&navlng=en-US&pnt=0&pnrc=0&bs=5e5b8d84-7e9b-476e-84d0-9ebb7d70a35a&wasm=1&userId=00804aa0f9fc4b84f9c82661309282f0&m=link | 139.45.197.242 | 200 OK | 2.3 kB |
URL GET HTTP/2veepteero.com/?rb=EwJIO-vM-64sqnB2dKtzr-qMv68PngGrefy3lf7qLdB8TlqB-qvkQhFlp3WY9WEMDBN4r0DCuF204XJ0HmxPM7s-pA__e0Sd3pJnLGgZySoB_uuwQB2Zy3cRV9UPDDE4SM17BMwdVFzzbHgYs4hzMUuBETuOGuE64I8aeWIMa5XhZYpJqjEKBJxSenIePD_YWDkip2c5XrvrGeAq5nxuXDHPD2QsvaLJkJ1eHy4Ju1c3J3j-3Z5Cz0yRY4PPRYqBeswfgA%3D%3D&request_ab2=0&zoneid=5708417&js_build=iclick-v1.782.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=11&pl=https%3A%2F%2Fvidezz.net%2Fembed-74zqgcm7xbe5.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.782.0&navlng=en-US&pnt=0&pnrc=0&bs=5e5b8d84-7e9b-476e-84d0-9ebb7d70a35a&wasm=1&userId=00804aa0f9fc4b84f9c82661309282f0&m=link IP139.45.197.242:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectveepteero.com Fingerprint13:68:56:48:EC:67:A6:93:BE:E0:36:BC:FA:04:75:6D:6E:D2:C1:91 ValiditySat, 23 Mar 2024 05:18:36 GMT - Fri, 21 Jun 2024 05:18:35 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (2337), with no line terminators Hash275210bd1d8371981f76602b6ee12da9 3682b4bee14e7426351a87affbe1b9f8d7169f8c 08ec3afb4057909f12db93ad3453e0bf276f543fcca3d642b117c18f55c2fe70
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /?rb=EwJIO-vM-64sqnB2dKtzr-qMv68PngGrefy3lf7qLdB8TlqB-qvkQhFlp3WY9WEMDBN4r0DCuF204XJ0HmxPM7s-pA__e0Sd3pJnLGgZySoB_uuwQB2Zy3cRV9UPDDE4SM17BMwdVFzzbHgYs4hzMUuBETuOGuE64I8aeWIMa5XhZYpJqjEKBJxSenIePD_YWDkip2c5XrvrGeAq5nxuXDHPD2QsvaLJkJ1eHy4Ju1c3J3j-3Z5Cz0yRY4PPRYqBeswfgA%3D%3D&request_ab2=0&zoneid=5708417&js_build=iclick-v1.782.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=11&pl=https%3A%2F%2Fvidezz.net%2Fembed-74zqgcm7xbe5.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.782.0&navlng=en-US&pnt=0&pnrc=0&bs=5e5b8d84-7e9b-476e-84d0-9ebb7d70a35a&wasm=1&userId=00804aa0f9fc4b84f9c82661309282f0&m=link HTTP/1.1
Host: veepteero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 18:05:11 GMT
content-type: application/json
x-trace-id: 5172313c5372eecdb524a76c7f428512
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://videzz.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00804aa0f9fc4b84f9c82661309282f0; expires=Sat, 26 Apr 2025 18:05:11 GMT; path=/; secure; SameSite=None
oaidts=1714154711; expires=Sat, 26 Apr 2025 18:05:11 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 03 May 2024 18:05:11 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| videzz.net/js/jquery.min.js | 78.142.18.54 | 200 OK | 96 kB |
URL GET HTTP/2videzz.net/js/jquery.min.js IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typeJavaScript source, ASCII text, with very long lines (32086) Hash8101d596b2b8fa35fe3a634ea342d7c3 d6c1f41972de07b09bfa63d2e50f9ab41ec372bd 540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/jquery.min.js HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-74zqgcm7xbe5.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:25 GMT
vary: Accept-Encoding
etag: W/"66163909-1762a"
expires: Sun, 26 May 2024 18:04:34 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| videzz.net/css/videojs.5.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 170 kB |
URL GET HTTP/2videzz.net/css/videojs.5.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typeASCII text, with very long lines (50421) Size170 kB (169541 bytes) Hashbf9af199b5ef61988f82fa239ebf61da d3b9c5ef294f2ef0942a8bf1e62085b72b2e07cc e8e86d55656a068d5bb43e7b65e474162b6dff2c57f314cfc90d25f16708048d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/videojs.5.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-74zqgcm7xbe5.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: text/css
last-modified: Wed, 10 Apr 2024 07:00:17 GMT
vary: Accept-Encoding
etag: W/"66163901-29645"
expires: Sun, 26 May 2024 18:04:54 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| videzz.net/favicon.ico?v=2 | 78.142.18.54 | 200 OK | 1.2 kB |
URL GET HTTP/2videzz.net/favicon.ico?v=2 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash07075ddac650ad1577e310576f4ac231 1c8f551262fac5a047a268b82fa932c405ab13ff c5f2d482ae4405a8e9f16a7ab09c5d04380283eb0cb0a9b237b32bc1bca47901
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico?v=2 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-74zqgcm7xbe5.html
Cookie: lang=1; file_id=37990031; aff=107428; _ga_HEX1BG8H46=GS1.1.1714154708.1.0.1714154708.60.0.0; _ga=GA1.1.1269327869.1714154709
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: image/x-icon
last-modified: Wed, 10 Apr 2024 07:00:32 GMT
vary: Accept-Encoding
etag: W/"66163910-47e"
expires: Sun, 26 May 2024 17:55:35 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| videzz.net/css/embed.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 618 kB |
URL GET HTTP/2videzz.net/css/embed.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typeASCII text, with very long lines (63495) Size618 kB (618399 bytes) Hashffba0e4b3edaa1a4c6bc7ef04bcf0ba9 3507ae56cc30b273cf17d0cf4de234dafa4db0eb 57291457f6bd1dc724ab0cc7d5d9def8fceafc52263d72d0b3f6c6ae2dd8286c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/embed.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-74zqgcm7xbe5.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: text/css
last-modified: Wed, 10 Apr 2024 07:00:32 GMT
vary: Accept-Encoding
etag: W/"66163910-96f9f"
expires: Sun, 26 May 2024 17:55:18 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/sm.25.html | 172.67.39.148 | 200 OK | 716 B |
URL GET HTTP/3static.addtoany.com/menu/sm.25.html IP172.67.39.148:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeHTML document, ASCII text, with very long lines (744), with no line terminators Hashc3c97893ca5c74e7504aa4ec474ea41b cdccb12d7e73682e0e807107243ede7d5e14c962 b79f65e9ffe3bad9bd9cdcffed0758430f7eb1a630c368dc173eecdeb2821f00
GET /menu/sm.25.html HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5XqYdf3zT6f5djRXIIJwMp9CmOr869HlwkvaSLOezMHs8bCNXKhchHrxUkAX8VobSQtGTx9av1ds6j%2BrAMbeIHt6gjCWQ%2F0%2FDDuSz%2BYQMTMfH9cMBRVSXt9wfmQ0xD6qcBrOg5iLUMVJymypfmtsURYC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 28598
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a87fcc9a9cb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| no-go.kelkoogroup.net/offersearchGo?.ts=1714097520387&.sig=L.sjUuDJbeNi7N36a.9XJH_NRqw-&affiliationId=96979714&comId=10551423&country=no&offerId=cd014c05fa7fc70a810c6748f8919126&service=37&tokenId=5eb34ecf-a42f-4ab3-98ed-b9b0b8bc9818&wait=true&addedParams=true&custom1=53&originReferer=shoppingdeal.online&publisherSubId=1002&publisherTrafficType=retargeting | 95.211.116.26 | 200 OK | 0 B |
URL GET HTTP/1.1no-go.kelkoogroup.net/offersearchGo?.ts=1714097520387&.sig=L.sjUuDJbeNi7N36a.9XJH_NRqw-&affiliationId=96979714&comId=10551423&country=no&offerId=cd014c05fa7fc70a810c6748f8919126&service=37&tokenId=5eb34ecf-a42f-4ab3-98ed-b9b0b8bc9818&wait=true&addedParams=true&custom1=53&originReferer=shoppingdeal.online&publisherSubId=1002&publisherTrafficType=retargeting IP95.211.116.26:443 ASN#60781 LeaseWeb Netherlands B.V.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerDigiCert Inc Subject*.kelkoogroup.net Fingerprint92:CE:2F:80:FF:8A:8D:05:3F:58:B8:E3:0D:81:B0:D9:A0:56:9C:2A ValidityThu, 14 Sep 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /offersearchGo?.ts=1714097520387&.sig=L.sjUuDJbeNi7N36a.9XJH_NRqw-&affiliationId=96979714&comId=10551423&country=no&offerId=cd014c05fa7fc70a810c6748f8919126&service=37&tokenId=5eb34ecf-a42f-4ab3-98ed-b9b0b8bc9818&wait=true&addedParams=true&custom1=53&originReferer=shoppingdeal.online&publisherSubId=1002&publisherTrafficType=retargeting HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopde.pricedeals.shop/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
leadId: 629D01HWDSABWA0V4K8261GZ55842G
clickId: 107698147_1714154712962_8069646
country: no
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=kSuURUS84tQ0e4X_d~NaFw5mHc_11Gr_8KOaayfS1kiozFMAo6sldD3ZtJx~St_H2mvA7LEocEmBytGNTRPhLmH1mOkznXHIpCsnW8MDHid1JmoxYZrICnrPwGv00sN1; Max-Age=31104000; Expires=Mon, 21 Apr 2025 18:05:12 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
kelkooID=a4c6293-18f1b952f83-71c97; Max-Age=31536000; Expires=Sat, 26 Apr 2025 18:05:12 GMT; SameSite=None; Path=/; Domain=kelkoogroup.net; Secure; HTTPOnly
X-DataDome: protected
Request-Time: PT0.017619S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: frame-ancestors 'none'
X-Permitted-Cross-Domain-Policies: master-only
Date: Fri, 26 Apr 2024 18:05:12 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 31525
|
|
| static.addtoany.com/menu/svg/icons/telegram.js | 172.67.39.148 | 200 OK | 360 B |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/telegram.js IP172.67.39.148:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (370), with no line terminators Hashd455b7099e753a3680d5e481a7b56a9d 146fdec3f2e51dabdd15fc8acda6d73823b0d44d 4eb7a6d1a684e68473de0e8854499206b2f512a3815a8114068636dd38aa197a
GET /menu/svg/icons/telegram.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"fb47b4f6548b6499923a1beed7472419"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rS6p7wFnFl7fkJw7fLG2A4znYwIH3MQ0wRM8iq4hiAUKTt95h0HUv0gE1X%2BxhNFe5NpA65SxgDVKQH2MWG8Tn0P%2BjYr297yGtzRJc%2FzpKzNH1%2BOg75hSsVnjZj9iezTg3kCEOC9X8UOzN6i49HViMtne"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 19386
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a87fcf5f02b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tzegilo.com/stattag.js | 104.21.11.245 | 200 OK | 19 kB |
IP104.21.11.245:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subjecttzegilo.com Fingerprint28:2E:D0:DF:04:78:60:5A:D2:5B:1F:EA:59:80:9C:2F:89:C1:9D:D1 ValiditySat, 30 Mar 2024 15:54:48 GMT - Fri, 28 Jun 2024 15:54:47 GMT
File typeJavaScript source, ASCII text, with very long lines (18486) Hash70ebd404c2e1e7bad13998538b56887c 86e57af8ba3cfc2c004da3311835f6b54ba6d848 d71ea61938136a384e4c53c5a7a3c36e68fcc70a68bae691e270987d5d2eb11f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:11 GMT
content-type: application/javascript
last-modified: Wed, 07 Feb 2024 12:51:13 GMT
etag: W/"65c37cc1-4ac0"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 6914
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9MalyS9LdXJ6Um1oJb%2B8hZlREqYhbPWNBbCKmx4GGz6hrbKxX%2Fw%2B9WZ3Q%2BJr1X42PfkD2WC%2Bdi%2BBjLz4eZ9qHLqiw7tr4oZTdW%2FjxcB0Sb7xApTOezD2Tfzw7ssHxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a87fdfb894b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.itskiddien.club/apu.php?zoneid=5902452&var=5708419 | 139.45.197.236 | 200 OK | 93 kB |
URL GET HTTP/2cdn.itskiddien.club/apu.php?zoneid=5902452&var=5708419 IP139.45.197.236:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectitskiddien.club FingerprintF8:F5:E1:2A:73:41:2E:21:C2:B1:A0:A3:DE:9D:2D:B2:87:3F:8E:5D ValidityFri, 29 Mar 2024 21:36:27 GMT - Thu, 27 Jun 2024 21:36:26 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash50414d4021b13f47ac1bae56ce77e127 881502f7ff8f07613ee23b30f6af60bf5cd30ce3 ada1a27d95430659a0079f8a455cc387dfdd6198796986c5658dc3ed94832a46
GET /apu.php?zoneid=5902452&var=5708419 HTTP/1.1
Host: cdn.itskiddien.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 18:05:11 GMT
content-type: application/javascript
x-trace-id: 29e0d215c64c2a3052b598dbeb446d9c
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00804a83c1f64877fc196ef4c84b043f; expires=Sat, 26 Apr 2025 18:05:11 GMT; path=/; secure; SameSite=None
oaidts=1714154711; expires=Sat, 26 Apr 2025 18:05:11 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| videzz.net/js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 416 kB |
URL GET HTTP/2videzz.net/js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
Size416 kB (416358 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-74zqgcm7xbe5.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:32 GMT
vary: Accept-Encoding
etag: W/"66163910-65a66"
expires: Sun, 26 May 2024 17:57:23 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| str38.vidoza.net/nvl4gvazpqfeieno3ueqnxp2ouq7rlpyuesd6qcacyihcxejhl47p33ifrwa/v.mp4 | 213.152.167.138 | 206 Partial Content | 1.7 MB |
URL GET HTTP/2str38.vidoza.net/nvl4gvazpqfeieno3ueqnxp2ouq7rlpyuesd6qcacyihcxejhl47p33ifrwa/v.mp4 IP213.152.167.138:443 ASN#49453 Global Layer B.V.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectvidoza.net FingerprintDD:9C:2A:D1:7E:90:60:D1:BE:1C:39:29:07:29:9C:34:6A:76:A6:C6 ValidityWed, 14 Feb 2024 01:21:54 GMT - Tue, 14 May 2024 01:21:53 GMT
Size1.7 MB (1703936 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /nvl4gvazpqfeieno3ueqnxp2ouq7rlpyuesd6qcacyihcxejhl47p33ifrwa/v.mp4 HTTP/1.1
Host: str38.vidoza.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
server: nginx/1.20.1
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: video/mp4
content-length: 964929253
last-modified: Fri, 26 Apr 2024 09:45:42 GMT
etag: "662b77c6-3983a6e5"
content-range: bytes 0-964929252/964929253
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/sub/Pj8pz0z | 104.21.37.74 | 200 OK | 234 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/Pj8pz0z IP104.21.37.74:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashec45c51dfcbeb0d487d6d2ccf0cd9a23 eadd83e9b3def654d52e1b93ae5f5c13d8a69c99 3a5e0788bab23d00613d25c36fabb29d38bb3e51af54bf370854620392a249ce
GET /sub/Pj8pz0z HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dpdSXT0h85nOZluTh0ESLHllN5sVUxdQ8faANB%2BeRdJM7UsjcIGSmOzV%2BrkfKHNYfkMP6Pf36Ra6IRv0b9PjAl8mfdSdW8twTAfUdScGPmQjJ7ux01kN8CLujHpdbVxP9j5jpbpVVn4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a87fcd4d7f569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183 | 174.137.133.17 | 200 OK | 0 B |
URL GET HTTP/1.1xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerSectigo Limited Subject*.xmlking.com Fingerprint61:F0:9B:53:D2:DF:03:A0:08:09:BE:79:B1:70:10:34:65:07:7B:6D ValidityWed, 26 Jul 2023 00:00:00 GMT - Fri, 26 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=591364&auth=oodr9S&pubid=195183 HTTP/1.1
Host: xml.xmlking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 18:05:09 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
|
|
| cdn.o333o.com/vast-im.js | 143.204.55.90 | 200 OK | 310 kB |
IP143.204.55.90:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerSectigo Limited Subjectcdn.o333o.com Fingerprint61:0E:6A:7F:7E:40:48:40:58:0F:EF:89:DB:CF:AD:C2:FB:52:F1:AC ValidityThu, 09 Nov 2023 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT
Size310 kB (310487 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /vast-im.js HTTP/1.1
Host: cdn.o333o.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 11 Apr 2024 09:31:31 GMT
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
etag: W/"65fd69b1-4bcd7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: LnVNOkqiL_MUfaOnG8CIwLKBGp3Ljk9MQ0jpZYkPu1ezkca5t452Zw==
age: 1326816
X-Firefox-Spdy: h2
|
|
| aistekso.net/401/5708419 | 139.45.197.244 | 200 OK | 91 kB |
IP139.45.197.244:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectaistekso.net Fingerprint3E:A5:CE:35:F4:D9:45:6B:A1:3B:2E:9C:B3:9E:78:4D:8A:4B:51:BB ValiditySun, 24 Mar 2024 05:08:27 GMT - Sat, 22 Jun 2024 05:08:26 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash39673bec263667d370fe163fdee0d199 3a6baf69901ae5d716cc3e64edcc115cdcf6e892 a91c1d837da89123eb1410cb29db4153763c22c3b69212c8d162d42dca4d5990
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /401/5708419 HTTP/1.1
Host: aistekso.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 18:05:10 GMT
content-type: application/javascript
x-trace-id: 65898df8c7b6e6331a7c23b771fd8978
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=03004a6ed8d2434ffe6aa0b91beb7bba; expires=Sat, 26 Apr 2025 18:05:10 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| videzz.net/js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 4.5 kB |
URL GET HTTP/2videzz.net/js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typeJavaScript source, ASCII text, with very long lines (4724), with no line terminators Hashf3ccae55608834d0e7acfde8a7235903 16cd94840b9d0105558c5f8b26ac51845d84bb2e 8d950b465b8cb006d19d702a1d15e209cb10b861f5ead615e7f9625469605ef2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-74zqgcm7xbe5.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:32 GMT
vary: Accept-Encoding
etag: W/"66163910-1183"
expires: Sun, 26 May 2024 17:58:05 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| animewatch.onionlive.workers.dev/ | 172.67.141.108 | 200 OK | 1.8 kB |
URL GET HTTP/2animewatch.onionlive.workers.dev/ IP172.67.141.108:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subjectonionlive.workers.dev Fingerprint15:4B:F2:93:81:D8:8E:E8:03:9A:C3:E3:2F:78:10:77:9B:80:FD:9F ValiditySun, 03 Mar 2024 23:51:41 GMT - Sat, 01 Jun 2024 23:51:40 GMT
File typeHTML document, ASCII text, with very long lines (1795), with no line terminators Hash9dc1e04cc7affd8cf80ad5feefa89210 4c11c71a6f83138bd24602a1c996ad82364573b1 654082713403f7d1acc1d1fdfb9fca90222fd0a411be1fb02f64e973cdf054b5
GET / HTTP/1.1
Host: animewatch.onionlive.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:09 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BXiG7h9gzpGFlbQuvX9vsOooNcazfS8jD%2Fm%2BpbKANAhCDpKqBDbVJ722EHTCltznEBXeaA0SG7Gf7aZ2zA0UXOvGWi92Dm5nh%2FnOA%2B3ISvb1mX4gIsknW%2Bu6C5UpV7UfLoADJloqAuukimGXM79KkM7etQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a87fd7a88a712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| no-go.kelkoogroup.net/offersearchGo?.ts=1714097520336&.sig=UaqlF_5ltMVGxTjT5APIjVbSkVc-&affiliationId=96979714&comId=11393423&country=no&offerId=b5cca13cf0de4d1fc07780a0b96e65b3&service=37&tokenId=5eb34ecf-a42f-4ab3-98ed-b9b0b8bc9818&wait=true&addedParams=true&custom1=52&originReferer=shoppingdeal.online&publisherSubId=1003&publisherTrafficType=searchengine | 95.211.116.26 | 200 OK | 0 B |
URL GET HTTP/1.1no-go.kelkoogroup.net/offersearchGo?.ts=1714097520336&.sig=UaqlF_5ltMVGxTjT5APIjVbSkVc-&affiliationId=96979714&comId=11393423&country=no&offerId=b5cca13cf0de4d1fc07780a0b96e65b3&service=37&tokenId=5eb34ecf-a42f-4ab3-98ed-b9b0b8bc9818&wait=true&addedParams=true&custom1=52&originReferer=shoppingdeal.online&publisherSubId=1003&publisherTrafficType=searchengine IP95.211.116.26:443 ASN#60781 LeaseWeb Netherlands B.V.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerDigiCert Inc Subject*.kelkoogroup.net Fingerprint92:CE:2F:80:FF:8A:8D:05:3F:58:B8:E3:0D:81:B0:D9:A0:56:9C:2A ValidityThu, 14 Sep 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /offersearchGo?.ts=1714097520336&.sig=UaqlF_5ltMVGxTjT5APIjVbSkVc-&affiliationId=96979714&comId=11393423&country=no&offerId=b5cca13cf0de4d1fc07780a0b96e65b3&service=37&tokenId=5eb34ecf-a42f-4ab3-98ed-b9b0b8bc9818&wait=true&addedParams=true&custom1=52&originReferer=shoppingdeal.online&publisherSubId=1003&publisherTrafficType=searchengine HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopde.pricedeals.shop/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
leadId: 62A901HWDSABW7HSXPWHYK8XKJ4SHT
clickId: 107698149_1714154712957_8004054
country: no
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=T26zDMgfAaLBsurP6_gfkJ7BK4xhR9AfhVX5hLVXxi6UPLZtVvYhflAp98yDjakXQcHH55Mm6VGUnvbfuROuCldHHsm~EI8pKWezwS8ethg6~TCZ5A5~U7lH5PFZhh61; Max-Age=31104000; Expires=Mon, 21 Apr 2025 18:05:12 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
kelkooID=a4c6295-18f1b952f7e-70b24; Max-Age=31536000; Expires=Sat, 26 Apr 2025 18:05:12 GMT; SameSite=None; Path=/; Domain=kelkoogroup.net; Secure; HTTPOnly
X-DataDome: protected
Request-Time: PT0.023883S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: frame-ancestors 'none'
X-Permitted-Cross-Domain-Policies: master-only
Date: Fri, 26 Apr 2024 18:05:12 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 30249
|
|
| videzz.net/js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 140 kB |
URL GET HTTP/2videzz.net/js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
Size140 kB (140132 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-74zqgcm7xbe5.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:25 GMT
vary: Accept-Encoding
etag: W/"66163909-22364"
expires: Sun, 26 May 2024 17:57:07 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/sub/Pj8pz0z | 104.21.37.74 | 200 OK | 234 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/Pj8pz0z IP104.21.37.74:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashec45c51dfcbeb0d487d6d2ccf0cd9a23 eadd83e9b3def654d52e1b93ae5f5c13d8a69c99 3a5e0788bab23d00613d25c36fabb29d38bb3e51af54bf370854620392a249ce
GET /sub/Pj8pz0z HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pQRAeE%2Bz49NU3qJFfccbgcv7x6zg%2Fq9xzXiPwOvCu3ORDB871oQr6FYqMqHgSgh11WpTIGKksLvz%2F1KORHR6VNuVrLTYJk6qzGCmW316CpSMuku02l2268J3An%2FFNBijkNocXf2oO88%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a87fcd4d72569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/whatsapp.js | 172.67.39.148 | 200 OK | 1.1 kB |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/whatsapp.js IP172.67.39.148:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (1122), with no line terminators Hashd822c46f36a55fdbfcc5029e62e19937 c575da68fa99eeb33863f281395755cbf20004d4 062ec1f7c3acea435122961b771eb2e4d136a3e870b17d3e811413f5aa78ed3e
GET /menu/svg/icons/whatsapp.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"83af4df8173e43227812296bb8542dcf"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jWKI1OdsgbKSSTP8GoOtOhOKwQZxTKwLszgx9k%2BDMGmsGKC5miCWXMTCDxhml1%2BDIyezqjP%2F1TFlvruSrPSHWyFchgoghrBAuphUoHmG9VP4ODKiD5REkfluPD1gVIjmFYN898HTH2wMXNp45zD%2BhTqy"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 19386
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a87fcf6f49b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ossgogoaton.com/tag.min.js | 172.67.184.45 | 200 OK | 80 kB |
URL GET HTTP/2ossgogoaton.com/tag.min.js IP172.67.184.45:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subjectossgogoaton.com FingerprintB8:1E:A6:C4:2B:2A:31:03:63:B7:B8:7D:1A:4D:46:B1:54:80:C7:C6 ValidityWed, 06 Mar 2024 10:18:26 GMT - Tue, 04 Jun 2024 10:18:25 GMT
File typeJavaScript source, ASCII text, with very long lines (65494) Hashe626b1b1b8fc699da4fae64ad40da4f2 c64067e839adcb349365d3481a849a21402cf75e 9c7092236c535021882784bd3fad9e0156a6b07541671807d82db1d59240392b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /tag.min.js HTTP/1.1
Host: ossgogoaton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:10 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: d7ae6a65c3cd7cfb3245fe14fe88ce5f
cache-control: max-age=86400
last-modified: Thu, 25 Apr 2024 13:54:40 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Fri, 26 Apr 2024 19:00:32 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 83078
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xI13P9ooQzRjmFh%2BRf25aVP9sBPLu0aR2FHPwhORqgcwtLh7AZ0AbeSZApAh58Rhe%2FGGIQGUbsGr62OE6QqcMBJsWjuuKn%2FrjTuvBlaXTpiy0oK8zC5%2BjXImYCqatSpwsNw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a87fdaacb3569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| no-go.kelkoogroup.net/offersearchGo?.ts=1714097520336&.sig=xhB2MMoVfLaNwqrAhMOmLVFnlt0-&affiliationId=96979714&comId=10551423&country=no&offerId=d2efb4ebc16a6f931a97da218479b333&service=37&tokenId=5eb34ecf-a42f-4ab3-98ed-b9b0b8bc9818&wait=true&addedParams=true&custom1=53&originReferer=shoppingdeal.online&publisherSubId=1001&publisherTrafficType=domain | 95.211.116.26 | 200 OK | 0 B |
URL GET HTTP/1.1no-go.kelkoogroup.net/offersearchGo?.ts=1714097520336&.sig=xhB2MMoVfLaNwqrAhMOmLVFnlt0-&affiliationId=96979714&comId=10551423&country=no&offerId=d2efb4ebc16a6f931a97da218479b333&service=37&tokenId=5eb34ecf-a42f-4ab3-98ed-b9b0b8bc9818&wait=true&addedParams=true&custom1=53&originReferer=shoppingdeal.online&publisherSubId=1001&publisherTrafficType=domain IP95.211.116.26:443 ASN#60781 LeaseWeb Netherlands B.V.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerDigiCert Inc Subject*.kelkoogroup.net Fingerprint92:CE:2F:80:FF:8A:8D:05:3F:58:B8:E3:0D:81:B0:D9:A0:56:9C:2A ValidityThu, 14 Sep 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /offersearchGo?.ts=1714097520336&.sig=xhB2MMoVfLaNwqrAhMOmLVFnlt0-&affiliationId=96979714&comId=10551423&country=no&offerId=d2efb4ebc16a6f931a97da218479b333&service=37&tokenId=5eb34ecf-a42f-4ab3-98ed-b9b0b8bc9818&wait=true&addedParams=true&custom1=53&originReferer=shoppingdeal.online&publisherSubId=1001&publisherTrafficType=domain HTTP/1.1
Host: no-go.kelkoogroup.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopde.pricedeals.shop/
Cookie: kelkooID=a4c6295-18f1b952f7e-70b24
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
leadId: 62A901HWDSAEM1VE1JYV8TYZ88S87H
clickId: 107698154_1714154715761_7980116
country: no
Accept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-Memory
Set-Cookie: datadome=osPqGWklAbSR08kd9RzfzvAP23ODIcjrQA2ZZwJuuZzVn4jtChB87iJa8i6~ae_p~a89C1LCCOkKgtVPw07uNAZmqmRTWcA8gPQyJfKGjBf2Nu57oW47j~i7q81u4HvI; Max-Age=31104000; Expires=Mon, 21 Apr 2025 18:05:15 GMT; SameSite=Lax; Path=/; Domain=.kelkoogroup.net; Secure
kelkooID=a4c6295-18f1b952f7e-70b24; Max-Age=31536000; Expires=Sat, 26 Apr 2025 18:05:15 GMT; SameSite=None; Path=/; Domain=kelkoogroup.net; Secure; HTTPOnly
X-DataDome: protected
Request-Time: PT0.038792S
X-Robots-Tag: noindex,nofollow
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: frame-ancestors 'none'
X-Permitted-Cross-Domain-Policies: master-only
Date: Fri, 26 Apr 2024 18:05:15 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 31707
|
|
| static.addtoany.com/menu/svg/icons/viber.js | 172.67.39.148 | 200 OK | 1.0 kB |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/viber.js IP172.67.39.148:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (1027), with no line terminators Hashb216786a6e2822572e4c78284416fd02 b3a072140d798b6734431ff6a890da7cb8c701ce 265af7156e77fce7638988053d5b3f4894c92ae2bdacac504131a96cf6a0d370
GET /menu/svg/icons/viber.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"ab1da422605fdb35fd02440984d36475"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jdllmjIIRPRO2sHETKfzSGgQqV%2B5f6wC121kOiSfff%2FleOBxlgQKvNn%2B2DUe%2Fr5kpz9KGft%2FRsHDcGcIpGt%2F42uj0Qb%2BUMIa9aqfRrxL31k1iZW4bD4Y1%2BVj76SQGbCP3FxdALOTUrcyP3H539%2BTGVdC"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 19386
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a87fcf6f45b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| videzz.net/js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 159 kB |
URL GET HTTP/2videzz.net/js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint13:3A:F4:CA:71:F0:8F:F1:2E:3A:7E:2B:6D:8E:E4:7A:E9:9D:A6:B5 ValidityMon, 04 Mar 2024 08:24:34 GMT - Sun, 02 Jun 2024 08:24:33 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size159 kB (158902 bytes) Hash7c33538390b466ae717449d729bb32ea 49ea1eb1dc06467f516eae28e09863a23b244a31 a2f37fa7aee9e9248856735b807b028c93be60eb6bb9916595ba123690513f02
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-74zqgcm7xbe5.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2024 07:00:18 GMT
vary: Accept-Encoding
etag: W/"66163902-26cb6"
expires: Sun, 26 May 2024 18:04:36 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/sub/Pj8pz0z | 104.21.37.74 | 200 OK | 234 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/Pj8pz0z IP104.21.37.74:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashec45c51dfcbeb0d487d6d2ccf0cd9a23 eadd83e9b3def654d52e1b93ae5f5c13d8a69c99 3a5e0788bab23d00613d25c36fabb29d38bb3e51af54bf370854620392a249ce
GET /sub/Pj8pz0z HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mh9fPPud%2Fv0YBrfV02F%2F8ZfFrdZIW6CCCk0j7Fb3H12NtM%2Bf1Cf1FJP%2FstYO3E9g84veP9ZQ%2FAsCkiCWQ5kLCqn9PoBtW%2FuUh7UomimYFDJEw%2Bk7C0VtvR2lXJMdBNj10x1cfDVX1cg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a87fcd9e03569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183 | 174.137.133.17 | 302 Found | 526 B |
URL GET HTTP/1.1xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerSectigo Limited Subject*.xmlking.com Fingerprint61:F0:9B:53:D2:DF:03:A0:08:09:BE:79:B1:70:10:34:65:07:7B:6D ValidityWed, 26 Jul 2023 00:00:00 GMT - Fri, 26 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=591364&auth=oodr9S&pubid=195183 HTTP/1.1
Host: xml.xmlking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 18:05:10 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://r.mylot.com/p.aspx?u=a1ba9857-f9ef-44b9-93b6-19994844ae60
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-HEX1BG8H46&cid=1269327869.1714154709>m=45je44o0v9104348843za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&z=1894013102 | 142.250.74.67 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-HEX1BG8H46&cid=1269327869.1714154709>m=45je44o0v9104348843za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&z=1894013102 IP142.250.74.67:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerGoogle Trust Services LLC Subject*.google.no FingerprintDE:35:DD:F6:8A:FF:6F:9D:0E:3D:27:DD:E2:B8:DE:CE:A4:6A:C8:C9 ValidityMon, 08 Apr 2024 07:44:18 GMT - Mon, 01 Jul 2024 07:44:17 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-HEX1BG8H46&cid=1269327869.1714154709>m=45je44o0v9104348843za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&z=1894013102 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 26 Apr 2024 18:05:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/page.js | 172.67.39.148 | 200 OK | 3.0 kB |
URL GET HTTP/2static.addtoany.com/menu/page.js IP172.67.39.148:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeJavaScript source, ASCII text, with very long lines (3132), with no line terminators Hash40486591ae8ea6d1423aeb13f1fd509b f847af56588642de93c6fe0d2ce182303f312455 16a6753a1de5c5602b0ca4afe3d17b95e2cb18d6b79bf7cdccedba3a733c1138
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=86400, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"e346c2841e4abbb66ee259e9540abb61"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i2AC7bE2UDFKM7qC5jDQxDxGBrcVDlnPDaJpMnzeeMpH%2BWmJ3duBGtVLq6wxk1QIfxp7e6MatgiRO5LypYWukV0nng7cUXW9aran8y9cwM8v0JAzIBzS1YQZ9pyCABT%2BXorAHEebwrAhbk61YRrQnUdl"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 28608
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a87fc9192eb51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/modules/core.BRQnzO8v.js | 172.67.39.148 | 200 OK | 72 kB |
URL GET HTTP/3static.addtoany.com/menu/modules/core.BRQnzO8v.js IP172.67.39.148:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash629401c31553d2f42a6ca46e58c2a97b 0ab6084caa72f90913c7e4119f491838726ec5c2 91b9b24f0aa59668e4d0a770ee7a294b9baa361a76a20ade8128cd0482a5d805
GET /menu/modules/core.BRQnzO8v.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 18:05:07 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
cf-bgj: minify
etag: W/"25da5432b1057724b8210f17e9b9db05"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B%2FN7klxF7wXP63HcRl%2BjCdei7MZiQdLbHTqz87Q9U8JynkbiNBMS1rbdVtmUknMMTPAEW9DWd2%2FJRR1gRNn7DGNrqap17XCipxcat6ZwNX7wMVLUN3VPJR8WgR5HpxT%2BapjjIqHt"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 21106
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a87fcc9ab3b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| str38.vidoza.net/nvl4gvazpqfeieno3ueqnxp2ouq7rlpyuesd6qcacyihcxejhl47p33ifrwa/v.mp4 | 0.0.0.0 | | 0 B |
URL GET str38.vidoza.net/nvl4gvazpqfeieno3ueqnxp2ouq7rlpyuesd6qcacyihcxejhl47p33ifrwa/v.mp4 IP0.0.0.0:0
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectvidoza.net FingerprintDD:9C:2A:D1:7E:90:60:D1:BE:1C:39:29:07:29:9C:34:6A:76:A6:C6 ValidityWed, 14 Feb 2024 01:21:54 GMT - Tue, 14 May 2024 01:21:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /nvl4gvazpqfeieno3ueqnxp2ouq7rlpyuesd6qcacyihcxejhl47p33ifrwa/v.mp4 HTTP/1.1
Host: str38.vidoza.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
server: nginx/1.20.1
date: Fri, 26 Apr 2024 18:05:08 GMT
content-type: video/mp4
content-length: 964929253
last-modified: Fri, 26 Apr 2024 09:45:42 GMT
etag: "662b77c6-3983a6e5"
content-range: bytes 0-964929252/964929253
X-Firefox-Spdy: h2
|
|
| veepteero.com/88/104 | 139.45.197.242 | 200 OK | 2.9 kB |
IP139.45.197.242:443
Requested byhttps://videzz.net/embed-74zqgcm7xbe5.html CertificateIssuerLet's Encrypt Subjectveepteero.com Fingerprint13:68:56:48:EC:67:A6:93:BE:E0:36:BC:FA:04:75:6D:6E:D2:C1:91 ValiditySat, 23 Mar 2024 05:18:36 GMT - Fri, 21 Jun 2024 05:18:35 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (3203), with no line terminators Hashb8e61a0afefed247251792d0fe5e7623 89719a1cba69da05710e3032dd84ebe0886bb297 21632b9e82946fa2b0fccc83955b1d0fb239ee8dbeb73c5d29268091b9198f9d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /88/104 HTTP/1.1
Host: veepteero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 18:05:10 GMT
content-type: application/json
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://videzz.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|