| cdnjs.cloudflare.com/ajax/libs/jquery/1.9.0/jquery.min.js | 104.17.24.14 | 200 OK | 30 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/1.9.0/jquery.min.js IP104.17.24.14:443
Requested byhttps://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32132) Hash0652da382b6fceb033dfe2b6c06d4d11 002da8cbe90fcf32fbdebb72386125079e3805ee 7fa0d5c3f538c76f878e012ac390597faecaabfe6fb9d459b919258e76c5df8e
GET /ajax/libs/jquery/1.9.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid41c.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:08:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 29505
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-16b8c"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 831013
expires: Wed, 30 Apr 2025 07:08:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y3ZGrlFFh5moRYkzuS224vlwRQUtIusa9MTtPPCLy%2Fk418e%2ByLLP%2FCwza8pCT%2Bga12ktgRlh3xzFEXj8kfp2SeSwH%2FeX6hdXoV0h7qb9mlBhtKg%2BPk5jSlusvo%2FmwFMzAqZuchyu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881818832c070b55-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| valueslinear.com/4c/d3/8a/4cd38af8ed350d889011791b1ea993c1.js | 192.243.61.225 | 200 OK | 17 kB |
URL GET HTTP/1.1valueslinear.com/4c/d3/8a/4cd38af8ed350d889011791b1ea993c1.js IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== CertificateIssuerLet's Encrypt Subjectvalueslinear.com Fingerprint1B:5F:42:9F:A7:B8:88:69:0E:18:50:43:65:11:E1:69:A0:24:C0:4E ValidityTue, 02 Apr 2024 11:12:23 GMT - Mon, 01 Jul 2024 11:12:22 GMT
File typeJavaScript source, ASCII text, with very long lines (40632), with no line terminators Hash1459ae15137c805a5acaba34442c11fd ef155ae41178b171d34f654dfdb87744629684a6 303a2ac56b9e212671b0308acd2cde008c51e42d9be4329d135cfe6e1533de9c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /4c/d3/8a/4cd38af8ed350d889011791b1ea993c1.js HTTP/1.1
Host: valueslinear.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid41c.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 07:08:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 966a9135d6d7402174ac949a60408eb6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| ocsp.r2m03.amazontrust.com/ | 54.230.218.11 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP54.230.218.11:0
Hashc1ae368dfcd18c3fe0a38f18783ecfe1 591b78d8c937af6063def58fa5d376d07e7d005e 58ceb2cb03a41de3ae12171e7359276ed8fcbc1881b071c2783b782667cf124b
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 10 May 2024 07:08:03 GMT
Last-Modified: Fri, 10 May 2024 05:43:18 GMT
Server: ECAcc (ska/F757)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: G_BmRPkDZ-0cEs1-Ra_pP56dmiQrjEEhfgAI3jPRBtcmJhXiXEEWzg==
Age: 5085
|
|
| proftrafficcounter.com/stats | 18.185.9.67 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.185.9.67:443
Requested byhttps://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashcb15b311990f4945a477a87642638865 845dd6cb222f3190ca9fdcab22d8c0483b5a6f44 ecf0b7c4ecdc6cf2f36290993cb49452864ce452ef96dc38ee0aa675ea37fc47
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vid41c.site
DNT: 1
Connection: keep-alive
Referer: https://vid41c.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:08:03 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://vid41c.site
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=44f4d536-65f6-454b-a3b2-a0f74226c397:1:1; expires=Mon, 08 May 2034 07:08:03 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 18.185.9.67 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.185.9.67:443
Requested byhttps://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashcb15b311990f4945a477a87642638865 845dd6cb222f3190ca9fdcab22d8c0483b5a6f44 ecf0b7c4ecdc6cf2f36290993cb49452864ce452ef96dc38ee0aa675ea37fc47
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vid41c.site
DNT: 1
Connection: keep-alive
Referer: https://vid41c.site/
Cookie: uid_id2=44f4d536-65f6-454b-a3b2-a0f74226c397:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 07:08:03 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://vid41c.site
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| vid41c.site/favicon.ico | 104.21.39.85 | 200 OK | 0 B |
IP104.21.39.85:443
Requested byhttps://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== CertificateIssuerLet's Encrypt Subjectvid41c.site Fingerprint27:AD:70:31:01:B9:4B:4C:9D:2A:E6:B5:5D:33:B4:01:B2:07:27:75 ValidityWed, 10 Apr 2024 03:07:06 GMT - Tue, 09 Jul 2024 03:07:05 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: vid41c.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg==
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=44f4d536-65f6-454b-a3b2-a0f74226c397%3A1%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 07:08:03 GMT
content-type: image/x-icon
content-length: 0
cache-control: max-age=14400
cf-cache-status: HIT
age: 4721
last-modified: Fri, 10 May 2024 05:49:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OuvXLJTZsJLBdn4aAAYGtE73bSYXTUOmdorTFSCqdpkvyxQhhj0qz2tayVDIUi1yMppdubWl9rmV3f0C2T3qQc94wrvvFdBDDaYc7JNcpX8Wv315wxVvEluM1jGdZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881818893eeb56c6-OSL
alt-svc: h3=":443"; ma=86400
|
|
| pdrz.mv35df500.site/_v2-akxm/12a3c523fb105800ed8c394685aeeb0b962efb5c14bde3ef43037baea93ece832257df1a4b6125fcfa38c35da05dee86aad28d46d73fc4e9d4e5a13d5070f1d6378246f6054aef0e16c5b4bc6e4e7e146466d13410043fc694d3e01397e6299d2c47a249522ba10eabbb/h/thumbnails.jpg | 172.67.71.154 | 200 OK | 149 kB |
URL GET HTTP/2pdrz.mv35df500.site/_v2-akxm/12a3c523fb105800ed8c394685aeeb0b962efb5c14bde3ef43037baea93ece832257df1a4b6125fcfa38c35da05dee86aad28d46d73fc4e9d4e5a13d5070f1d6378246f6054aef0e16c5b4bc6e4e7e146466d13410043fc694d3e01397e6299d2c47a249522ba10eabbb/h/thumbnails.jpg IP172.67.71.154:443
Requested byhttps://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== CertificateIssuerGoogle Trust Services LLC Subjectmv35df500.site FingerprintE9:59:C3:E7:22:D1:A2:07:EE:A6:4B:2A:E9:25:6F:B9:03:65:B2:39 ValiditySat, 23 Mar 2024 06:07:55 GMT - Fri, 21 Jun 2024 06:07:54 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 3200x3231, segment length 16, comment: "Lavc60.27.100", baseline, precision 8, 1080x700, components 3 Size149 kB (148684 bytes) Hash37bdd6e16638683a88d6d2171325c41d 220de5731b10f13ae9d83c3619bb556995949611 2e3749d2404d5521129736ebd9dce2536b951276657d6662ecd40a228a0d68e8
GET /_v2-akxm/12a3c523fb105800ed8c394685aeeb0b962efb5c14bde3ef43037baea93ece832257df1a4b6125fcfa38c35da05dee86aad28d46d73fc4e9d4e5a13d5070f1d6378246f6054aef0e16c5b4bc6e4e7e146466d13410043fc694d3e01397e6299d2c47a249522ba10eabbb/h/thumbnails.jpg HTTP/1.1
Host: pdrz.mv35df500.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid41c.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:08:03 GMT
content-type: image/jpg
content-length: 148684
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: h2pri
etag: "663d6e4d-244cc"
last-modified: Fri, 10 May 2024 00:46:05 GMT
x-cache: MISS
x-proxy-cache: MISS
cf-cache-status: HIT
age: 22386
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FSG1RyF4bFql5p9%2Fo3kUCOiAcL81Z%2FyZWnVHB5%2BkqaBqhGbrbbBqdH%2F1VSL9ztEaKqQZZjhWF6l9dGHub3yD6zu92DVE%2B2TLhSQea0JJ0rQVMg7DTH7qfsgizxOJzwm1y0NWfh0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8818188c0b2656c6-OSL
X-Firefox-Spdy: h2
|
|
| capaciousdrewreligion.com/advertisers.js | 172.240.127.234 | 200 OK | 0 B |
URL GET HTTP/1.1capaciousdrewreligion.com/advertisers.js IP172.240.127.234:443
Requested byhttps://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== CertificateIssuerLet's Encrypt Subjectcapaciousdrewreligion.com FingerprintBB:9C:12:88:24:43:D4:47:71:3F:F0:A4:BB:E1:85:65:CE:E7:92:E4 ValidityMon, 06 May 2024 02:35:23 GMT - Sun, 04 Aug 2024 02:35:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid41c.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 07:08:03 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a5776ad5fb1e107cdc15726e8451cdba
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| downstairsnegotiatebarren.com/sfp.js | 188.114.96.1 | 200 OK | 28 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP188.114.96.1:443
Requested byhttps://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators Hashf4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid41c.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:08:03 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 583cf836a5d66c6bb12076a74d7165aa
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 10 May 2024 07:08:02 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z9sbtl8ndJV7BzaKcrPfVoyaBs5W5ay4ULVUqXZyj5pYL4AvdSJK48UHJUinVsyYxUq5dcYOEvicGI1zNDSi03ccwx9dd83xPmEmGi4B5gx0IxUCQywxKmvRxebIppjy4eLQkxvZw5extHwgpCmRsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881818872ae4b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== | 104.21.39.85 | 200 OK | 1.0 kB |
URL User Request GET HTTP/2vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== IP104.21.39.85:443
CertificateIssuerLet's Encrypt Subjectvid41c.site Fingerprint27:AD:70:31:01:B9:4B:4C:9D:2A:E6:B5:5D:33:B4:01:B2:07:27:75 ValidityWed, 10 Apr 2024 03:07:06 GMT - Tue, 09 Jul 2024 03:07:05 GMT
File typeHTML document, ASCII text, with very long lines (1082), with no line terminators Hash961f691311a09fea1d2955b6f27a32a7 1e7b52cc926d153fd055d3dd020d349ef5384db6 7b1f5a7e80c5a94949a6a9b8ddd665132be375398eb5cbe4f6c4c77189efd13d
GET /e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== HTTP/1.1
Host: vid41c.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:08:02 GMT
content-type: text/html; charset=UTF-8
m-cache: HIT
x-cache: BYPASS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OuX4%2FxhxRIOhb7DY2U%2BIsn0VQEbZCjWYUc59jWo2p0m1f7mujuWX%2Fz%2BsVACuWf0GUkp7JQZQkMrwJEjiYu1iTVLRAnYcI2uZpY4AOocDsrX3UzYnLOhuv1A3hwFGsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88181880ea201bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| vid41c.site/assets/mcloud/min/embed.js?v=6630dcfc | 104.21.39.85 | 200 OK | 193 kB |
URL GET HTTP/3vid41c.site/assets/mcloud/min/embed.js?v=6630dcfc IP104.21.39.85:443
Requested byhttps://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== CertificateIssuerLet's Encrypt Subjectvid41c.site Fingerprint27:AD:70:31:01:B9:4B:4C:9D:2A:E6:B5:5D:33:B4:01:B2:07:27:75 ValidityWed, 10 Apr 2024 03:07:06 GMT - Tue, 09 Jul 2024 03:07:05 GMT
Size193 kB (192577 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/mcloud/min/embed.js?v=6630dcfc HTTP/1.1
Host: vid41c.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:08:02 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 11:58:51 GMT
etag: W/"6630dcfb-2f041"
content-encoding: gzip
m-cache: HIT
expires: Thu, 30 May 2024 20:11:56 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 816966
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iTdwCKqXhFyUZ89gCajaZ8kLrv27LwuPJCnhjft0a8SHxOTmBDmGPEYTiVkZr4FknywCNM7uwQm3Yvy2eYO1zixzYWJQRH8cqjlpGDDyBnepSl4wbWde4w5ondnQEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881818830e4456c6-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vid41c.site/assets/players/jwplayer-8.26.9/provider.hlsjs.js | 104.21.39.85 | 200 OK | 393 kB |
URL GET HTTP/3vid41c.site/assets/players/jwplayer-8.26.9/provider.hlsjs.js IP104.21.39.85:443
Requested byhttps://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== CertificateIssuerLet's Encrypt Subjectvid41c.site Fingerprint27:AD:70:31:01:B9:4B:4C:9D:2A:E6:B5:5D:33:B4:01:B2:07:27:75 ValidityWed, 10 Apr 2024 03:07:06 GMT - Tue, 09 Jul 2024 03:07:05 GMT
Size393 kB (393168 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/players/jwplayer-8.26.9/provider.hlsjs.js HTTP/1.1
Host: vid41c.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg==
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=44f4d536-65f6-454b-a3b2-a0f74226c397%3A1%3A1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:08:03 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 22:03:52 GMT
etag: W/"6508c948-5ffd0"
content-encoding: gzip
m-cache: MISS
expires: Thu, 30 May 2024 16:17:59 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 831003
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Le6hjss6Xd34mSorjPj5Rfv5LxPT6tf5qVCBOjIlzMrZ5F4nqOPPrZgtjTSVqIR3%2B8kr7dTGkaM3pldPHs7fANd7mjZiv29bnZt9bNhFH9gDplNCK5YqZ37%2BZ5PFSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88181889af7656c6-OSL
alt-svc: h3=":443"; ma=86400
|
|
| pdrz.mv35df500.site/_v2-akxm/12a3c523fb105800ed8c394685aeeb0b962efb5c14bde3ef43037baea93ece832257df1a4b6125fcfa38c35da05dee86aad28d46d73fc4e9d4e5a13d5070f1d6378246f6054aef0e16c5b4bc6e4e7e146466d13410043fc694d3e01397e6299d2c47a249522ba10eabbb/h/thumbnails.vtt | 172.67.71.154 | 200 OK | 2.8 kB |
URL GET HTTP/2pdrz.mv35df500.site/_v2-akxm/12a3c523fb105800ed8c394685aeeb0b962efb5c14bde3ef43037baea93ece832257df1a4b6125fcfa38c35da05dee86aad28d46d73fc4e9d4e5a13d5070f1d6378246f6054aef0e16c5b4bc6e4e7e146466d13410043fc694d3e01397e6299d2c47a249522ba10eabbb/h/thumbnails.vtt IP172.67.71.154:443
Requested byhttps://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== CertificateIssuerGoogle Trust Services LLC Subjectmv35df500.site FingerprintE9:59:C3:E7:22:D1:A2:07:EE:A6:4B:2A:E9:25:6F:B9:03:65:B2:39 ValiditySat, 23 Mar 2024 06:07:55 GMT - Fri, 21 Jun 2024 06:07:54 GMT
File typeWebVTT subtitles, ASCII text, with very long lines (2924), with no line terminators Hash1fac89d0831502e5f2c6bce17683be8c 8d78bd1d972dcb4d1fc6c398ec7dec0c758e5075 5a069d9197bf3fbda540287893d6bb8142fa2b7b88916f727c0822fbcc489659
GET /_v2-akxm/12a3c523fb105800ed8c394685aeeb0b962efb5c14bde3ef43037baea93ece832257df1a4b6125fcfa38c35da05dee86aad28d46d73fc4e9d4e5a13d5070f1d6378246f6054aef0e16c5b4bc6e4e7e146466d13410043fc694d3e01397e6299d2c47a249522ba10eabbb/h/thumbnails.vtt HTTP/1.1
Host: pdrz.mv35df500.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vid41c.site
DNT: 1
Connection: keep-alive
Referer: https://vid41c.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:08:03 GMT
content-type: text/vtt
last-modified: Fri, 10 May 2024 00:46:05 GMT
etag: W/"663d6e4d-aec"
x-cache: MISS
x-proxy-cache: MISS
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-cache-status: HIT
age: 22386
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tsweifh4IasZZ5Miv%2BDIm1bZpMAP9Ffyhd4ePvTFDZFbCyJy9%2FCvNFtQQSaEPAgDwggyRC44%2BzTf%2F2NVLQnTnLtlUMhXHJXfGiIzFLFkoOUZFVtBm2ybDYM6EBGlmWX8HkEN7So%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8818188bad375687-OSL
X-Firefox-Spdy: h2
|
|
| vid41c.site/assets/mcloud/min/embed.css?v=6630dcfc | 104.21.39.85 | 200 OK | 8.5 kB |
URL GET HTTP/3vid41c.site/assets/mcloud/min/embed.css?v=6630dcfc IP104.21.39.85:443
Requested byhttps://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== CertificateIssuerLet's Encrypt Subjectvid41c.site Fingerprint27:AD:70:31:01:B9:4B:4C:9D:2A:E6:B5:5D:33:B4:01:B2:07:27:75 ValidityWed, 10 Apr 2024 03:07:06 GMT - Tue, 09 Jul 2024 03:07:05 GMT
File typeASCII text, with very long lines (8532), with no line terminators Hash18049c2b04cd6ed86be6844b36b28b5e 422fb6b1b0335cbbd45c0f8495d70ef39ccfc696 83dd4a0a093dfe32c6ea13157c9479c3b76faded4a7ae38a38e3dff9d6541d7b
GET /assets/mcloud/min/embed.css?v=6630dcfc HTTP/1.1
Host: vid41c.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:08:02 GMT
content-type: text/css
last-modified: Mon, 08 Apr 2024 02:37:41 GMT
etag: W/"66135875-2152"
content-encoding: gzip
m-cache: MISS
expires: Thu, 30 May 2024 18:38:11 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 822591
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F1b8kzyzCtG0o1sBKpRecHZNAWVJ%2BUw%2FiywqOSuYiXb9TFmm3I6miJAPWqNdm2vMeBqb9PJdEgVvInaUfbhuPHFDnhA1zgu3BQPehxUEQ4Qd%2Fhz3Arj8dTjf2ojrXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881818830e3856c6-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vid41c.site/views/4623383 | 104.21.39.85 | 200 OK | 4 B |
URL GET HTTP/3vid41c.site/views/4623383 IP104.21.39.85:443
Requested byhttps://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== CertificateIssuerLet's Encrypt Subjectvid41c.site Fingerprint27:AD:70:31:01:B9:4B:4C:9D:2A:E6:B5:5D:33:B4:01:B2:07:27:75 ValidityWed, 10 Apr 2024 03:07:06 GMT - Tue, 09 Jul 2024 03:07:05 GMT
File typeASCII text, with no line terminators Hash588feb86166660394f0347694e1c3c10 b11194a83a78dae934bd9296c2d288446678cb2b 37d8b098bc5468ac3a3439ebeb2fd80b0663e888831ba9456f9954c3418a32fc
GET /views/4623383 HTTP/1.1
Host: vid41c.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:08:03 GMT
content-type: text/html
m-cache: BYPASS
x-cache: BYPASS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xmCUrvOxt5qNqtq9W%2FO3fAy1d%2Boq%2B62JXea7piTs4UN6vGp7JnVkQu596uCsTRCky%2FA2knQtJT1kiZVpZIfSQXlvznfDB0UVd1fJdiYfz%2BRUbCqPcf2a3ZS52tGnJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881818884d8556c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vid41c.site/assets/players/jwplayer-8.26.9/jwplayer.core.controls.js | 104.21.39.85 | 200 OK | 324 kB |
URL GET HTTP/3vid41c.site/assets/players/jwplayer-8.26.9/jwplayer.core.controls.js IP104.21.39.85:443
Requested byhttps://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== CertificateIssuerLet's Encrypt Subjectvid41c.site Fingerprint27:AD:70:31:01:B9:4B:4C:9D:2A:E6:B5:5D:33:B4:01:B2:07:27:75 ValidityWed, 10 Apr 2024 03:07:06 GMT - Tue, 09 Jul 2024 03:07:05 GMT
Size324 kB (323494 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/players/jwplayer-8.26.9/jwplayer.core.controls.js HTTP/1.1
Host: vid41c.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg==
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=44f4d536-65f6-454b-a3b2-a0f74226c397%3A1%3A1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:08:03 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 22:03:52 GMT
etag: W/"6508c948-4efa6"
content-encoding: gzip
m-cache: HIT
expires: Thu, 30 May 2024 17:26:55 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 826868
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CJQuOabjo6o3QXa4oqVkfkybS2wzv6bH7Y%2F5Ne2IS41fBQ6HKjrdMYz8a89I4VcHzdktwQNAdLY46u3MSJwPYqtO04LDQAlEq%2FChIGB3ut%2BoKKwhzA%2Bz5oqkuubVlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88181889af7456c6-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vid41c.site/futoken | 104.21.39.85 | 200 OK | 257 B |
IP104.21.39.85:443
Requested byhttps://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== CertificateIssuerLet's Encrypt Subjectvid41c.site Fingerprint27:AD:70:31:01:B9:4B:4C:9D:2A:E6:B5:5D:33:B4:01:B2:07:27:75 ValidityWed, 10 Apr 2024 03:07:06 GMT - Tue, 09 Jul 2024 03:07:05 GMT
File typeJavaScript source, ASCII text, with no line terminators Hashc695312864a672bf1a6492e4cba3d6ab f058a434528e3d84e55d2829e9e81861966c6a48 07d3b0f3e8d0d4052a0424a642ab22a0e2da7d7794db10b237d0fc94da16c81e
GET /futoken HTTP/1.1
Host: vid41c.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:08:02 GMT
m-cache: MISS
x-cache: BYPASS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qOn%2F7%2B9EjPkYZngFl4imgtkjER%2F3K%2BuoUPu0i%2BolAs6WtrwgvP17xq43eqomItBH%2B%2FaCLaK3x%2BpswS5diZwPx1tQNr3G4nmbFFWnd86yRr7WSAePZGlSEIx7XmBeOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881818830e3b56c6-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vid41c.site/assets/players/jwplayer-8.26.9/jwplayer.js?v1 | 104.21.39.85 | 200 OK | 110 kB |
URL GET HTTP/3vid41c.site/assets/players/jwplayer-8.26.9/jwplayer.js?v1 IP104.21.39.85:443
Requested byhttps://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== CertificateIssuerLet's Encrypt Subjectvid41c.site Fingerprint27:AD:70:31:01:B9:4B:4C:9D:2A:E6:B5:5D:33:B4:01:B2:07:27:75 ValidityWed, 10 Apr 2024 03:07:06 GMT - Tue, 09 Jul 2024 03:07:05 GMT
Size110 kB (109779 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/players/jwplayer-8.26.9/jwplayer.js?v1 HTTP/1.1
Host: vid41c.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:08:02 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 22:03:52 GMT
etag: W/"6508c948-1acd3"
content-encoding: gzip
m-cache: MISS
expires: Thu, 30 May 2024 18:38:11 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 822591
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zGdqPAlavxgM7GZ%2B3I4RC21bQZRM20pcCV7xFHGenne03i2xJIwUIw88slbLB9yXddIrUhBkLw%2B73NuHwdC0K6BOMETV8f4YDbRd2cOXrBkNYOVkgH1sG8KBkrHGHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881818830e4256c6-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vid41c.site/mediainfo/XXFPuqkC5oLQroElKbttTTXFJfwXmwk=,199,173,122,200,218,210,161,156,150,189,130,133,163,217,183,192?autostart=true&t=4xjRDPYkAF0Mzg== | 104.21.39.85 | 200 OK | 680 B |
URL GET HTTP/3vid41c.site/mediainfo/XXFPuqkC5oLQroElKbttTTXFJfwXmwk=,199,173,122,200,218,210,161,156,150,189,130,133,163,217,183,192?autostart=true&t=4xjRDPYkAF0Mzg== IP104.21.39.85:443
Requested byhttps://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== CertificateIssuerLet's Encrypt Subjectvid41c.site Fingerprint27:AD:70:31:01:B9:4B:4C:9D:2A:E6:B5:5D:33:B4:01:B2:07:27:75 ValidityWed, 10 Apr 2024 03:07:06 GMT - Tue, 09 Jul 2024 03:07:05 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (712), with no line terminators Hash3425af89864d2757dca093e2d376d798 b83b1d6f790d95499b5035fa01d86733247295f3 8c67570332b305779946390727afe4f7a2189a5ec4d1a4286a6fed4f5dd79a0c
GET /mediainfo/XXFPuqkC5oLQroElKbttTTXFJfwXmwk=,199,173,122,200,218,210,161,156,150,189,130,133,163,217,183,192?autostart=true&t=4xjRDPYkAF0Mzg== HTTP/1.1
Host: vid41c.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:08:03 GMT
content-type: application/json
content-encoding: gzip
x-cache: BYPASS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MEBOB7qPHHcF3W43jcLxz6m2s0sOFabcQC%2B66jbxNXMsC6Y5ISEOMXRFIhGeODGkHVrannWFrGKoPgRWeHJ60lVkiz6OQ9lUj6eCe0ix%2BqxFu8WtmeONUlIPYq95VA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881818888de056c6-OSL
alt-svc: h3=":443"; ma=86400
|
|
| unseenreport.com/pxf.gif?uuid=44f4d536-65f6-454b-a3b2-a0f74226c397&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=4cd38af8ed350d889011791b1ea993c1&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=7 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=44f4d536-65f6-454b-a3b2-a0f74226c397&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=4cd38af8ed350d889011791b1ea993c1&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=7 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://vid41c.site/e/0DY8XLGE1JR4?autostart=true&t=4xjRDPYkAF0Mzg== CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=44f4d536-65f6-454b-a3b2-a0f74226c397&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=4cd38af8ed350d889011791b1ea993c1&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=7 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid41c.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 10 May 2024 07:08:04 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: cc53c167c5fc893d4b8c8f62d2e424c4
Strict-Transport-Security: max-age=0; includeSubdomains
|
|