Overview

URL www.speedvid.net/embed-p4dbpmuhwzrh.html
IP104.25.111.6
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2018-05-26 13:32:19 CEST
StatusLoading report..
urlQuery Alerts Crypto currency mining script


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-05-26 13:31:49 CEST 1  104.25.110.6 Client IP ET INFO Suspicious Darkwave Popads Pop Under Redirect


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-05-26 2 coinhive.com/lib/coinhive.min.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.25.111.6

Date UQ / IDS / BL URL IP
2018-10-16 02:25:37 +0200
2 - 0 - 0 www.speedvid.net/embed-y6kg96mx5d1k 104.25.111.6
2018-10-12 09:14:38 +0200
2 - 1 - 1 www.speedvid.net/kisbpj550sfb 104.25.111.6
2018-10-10 07:29:25 +0200
2 - 0 - 1 www.speedvid.net/ps9s0v65vj67 104.25.111.6
2018-10-10 04:08:53 +0200
2 - 0 - 1 www.speedvid.net/5z95lptu8wtk 104.25.111.6
2018-10-08 23:38:01 +0200
2 - 0 - 1 www.speedvid.net/0yfupj4bxenm 104.25.111.6
2018-10-04 17:45:44 +0200
2 - 1 - 1 www.speedvid.net/6u6toucou1rh 104.25.111.6
2018-10-03 17:45:49 +0200
2 - 0 - 1 www.speedvid.net/f26crfo1p0pl 104.25.111.6
2018-10-03 08:09:02 +0200
2 - 0 - 1 www.speedvid.net/r809o8017xrm 104.25.111.6
2018-10-03 04:20:33 +0200
2 - 1 - 1 www.speedvid.net/5w2iyrctw750 104.25.111.6
2018-10-02 00:26:21 +0200
2 - 1 - 1 www.speedvid.net/5z7kuixpos7p 104.25.111.6

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2018-10-17 16:41:09 +0200
0 - 0 - 0 104.19.151.85 104.19.151.85
2018-10-17 16:38:33 +0200
0 - 0 - 0 https://www.lepotcommun.fr/pot/mafuphkt 104.25.53.104
2018-10-17 16:38:31 +0200
0 - 0 - 0 https://whatismyipaddress.com/ 104.16.20.96
2018-10-17 16:37:35 +0200
0 - 0 - 0 https://www.lepotcommun.fr/pot/429ocy4l 104.25.53.104
2018-10-17 16:30:10 +0200
0 - 0 - 0 https://www.lepotcommun.fr/pot/03to7spb 104.25.53.104
2018-10-17 16:15:55 +0200
0 - 0 - 0 track.cordial.io 104.18.82.131
2018-10-17 16:15:24 +0200
0 - 0 - 0 www.lowerblood.pro/provided-infatuate/D304j23 (...) 104.28.21.43
2018-10-17 16:14:00 +0200
0 - 3 - 0 as.khq528lvuc.pw/ 104.31.71.246
2018-10-17 16:09:57 +0200
0 - 0 - 0 events-handling-svc.cordial.io 104.18.83.131
2018-10-17 16:08:54 +0200
2 - 0 - 0 https://eu.bestcardreaderforipad.icu/uk_amazo (...) 104.27.159.103

No other reports on domain: speedvid.net



JavaScript

Executed Scripts (26)


Executed Evals (6)

#1 JavaScript::Eval (size: 823, repeated: 1) - SHA256: 58ed7c00e64481f090d1d4e2509b09382dc07212d3d3ab4d23a3dec1e1bf1efc

                                        createCookie('ma', '20263248261', 1);
jwplayer.key = "Ywok59g9j93GtuSU7+axNzjIp/TBfiK4s0vvYg==";
jwplayer('layer').setup({
    file: 'http://s35.speedvid.net:8777/4lamitmpu7rwim52w5yxyfugtf3tt5dzrbquaf5j4436ptxxx3xvndpf5bma/v.mp4',
    image: 'http://s35.speedvid.net:8777/i/03/00118/5ol83dcscb2q.jpg',
    duration: '2553',
    preload: "none",
    primary: primary,
    id: "8954",
    height: "100%",
    skin: {
        name: "flat"
    },
    logo: {
        file: 'http://www.speedvid.net/images/logo_small.png',
        hide: true,
        position: 'top-left',
        link: 'http://www.speedvid.net/'
    },
    sharing: {
        link: 'http://www.speedvid.net/hgcd06yxp6hf',
        code: '<IFRAME SRC="http://www.speedvid.net/embed-hgcd06yxp6hf-640x360.html" FRAMEBORDER=0 MARGINWIDTH=0 MARGINHEIGHT=0 SCROLLING=NO WIDTH=66 HEIGHT=89> ALLOWFULLSCREEN></IFRAME>'
    },
    abouttext: "SpeedVid.net",
    aboutlink: "http://www.speedvid.net/",
});
var file_code = "rg485ftgi84d";
                                    

#2 JavaScript::Eval (size: 763, repeated: 1) - SHA256: f936d974dd83521121dbc9bb2bd66ee276186f589bcb668ced6b8a96f658bc96

                                        jwplayer.key = "Ywok59g9j93GtuSU7+axNzjIp/TBfiK4s0vvYg==";
jwplayer('layer').setup({
    file: 'http://s04.speedvid.net:8777/4lamitmpu7rwim52w5yxyfugtf3tt5dzrbquaf5j4436ptxxx3xvndpf5bma/v.mp4',
    image: 'http://s04.speedvid.net:8777/i/03/00118/5ol83dcscb2q.jpg',
    duration: '2553',
    preload: "none",
    primary: primary,
    width: "100%",
    height: "100%",
    skin: {
        name: "flat"
    },
    logo: {
        file: 'http://www.speedvid.net/images/logo_small.png',
        hide: true,
        position: 'top-left',
        link: 'http://www.speedvid.net/'
    },
    sharing: {
        link: 'http://www.speedvid.net/hgcd06yxp6hf',
        code: '<IFRAME SRC="http://www.speedvid.net/embed-hgcd06yxp6hf-640x360.html" FRAMEBORDER=0 MARGINWIDTH=0 MARGINHEIGHT=0 SCROLLING=NO WIDTH=640 HEIGHT=360 ALLOWFULLSCREEN></IFRAME>'
    },
    abouttext: "SpeedVid.net",
    aboutlink: "http://www.speedvid.net/",
});
                                    

#3 JavaScript::Eval (size: 769, repeated: 1) - SHA256: 7f8bfe841d469618f62d5cfa6044a5c3f4ca46d666e0149cfc68d8ca5f23dc29

                                        jwplayer.key = "Ywok59g9j93GtuSU7+axNzjIp/TBfiK4s0vvYg==";
jwplayer('layer').setup({
    file: 'http://s15-HD.speedvid.net:8777/4lamitmpu7rwim52w5yxyfugtf3tt5dzrbquaf5j4436ptxxx3xvndpf5bma/v.mp4',
    image: 'http://s15-HD.speedvid.net:8777/i/03/00118/5ol83dcscb2q.jpg',
    duration: '2553',
    preload: "none",
    primary: primary,
    width: "100%",
    height: "100%",
    skin: {
        name: "flat"
    },
    logo: {
        file: 'http://www.speedvid.net/images/logo_small.png',
        hide: true,
        position: 'top-left',
        link: 'http://www.speedvid.net/'
    },
    sharing: {
        link: 'http://www.speedvid.net/hgcd06yxp6hf',
        code: '<IFRAME SRC="http://www.speedvid.net/embed-hgcd06yxp6hf-640x360.html" FRAMEBORDER=0 MARGINWIDTH=0 MARGINHEIGHT=0 SCROLLING=NO WIDTH=640 HEIGHT=360 ALLOWFULLSCREEN></IFRAME>'
    },
    abouttext: "SpeedVid.net",
    aboutlink: "http://www.speedvid.net/",
});
                                    

#4 JavaScript::Eval (size: 856, repeated: 1) - SHA256: 5feb2c3cb6e14a4febc3f0b9e7776d50f7d9dfa65fe4115ca62193fe71941725

                                        var file_code = "rg485ftgi84d";
var id = ((Math.floor((900 - 100) * Math.random()) + 100) * (new Date()) * (128 / 4));
jwplayer.key = "Ywok59g9j93GtuSU7+axNzjIp/TBfiK4s0vvYg==";
jwplayer('layer').setup({
    file: 'http://s35.speedvid.net:8777/4lamitmpu7rwim52w5yxyfugtf3tt5dzrbquaf5j4436ptxxx3xvndpf5bma/v.mp4',
    image: 'http://s35.speedvid.net:8777/i/03/00118/5ol83dcscb2q.jpg',
    duration: '2553',
    preload: "none",
    primary: primary,
    id: id,
    height: "100%",
    skin: {
        name: "flat"
    },
    logo: {
        file: 'http://www.speedvid.net/images/logo_small.png',
        hide: true,
        position: 'top-left',
        link: 'http://www.speedvid.net/'
    },
    sharing: {
        link: 'http://www.speedvid.net/hgcd06yxp6hf',
        code: '<IFRAME SRC="http://www.speedvid.net/embed-hgcd06yxp6hf-640x360.html" FRAMEBORDER=0 MARGINWIDTH=0 MARGINHEIGHT=0 SCROLLING=NO WIDTH=66 HEIGHT=89> ALLOWFULLSCREEN></IFRAME>'
    },
    abouttext: "SpeedVid.net",
    aboutlink: "http://www.speedvid.net/",
});
                                    

#5 JavaScript::Eval (size: 856, repeated: 1) - SHA256: dd5f69bc0e029cf68a79dc6e861dda754046311b2669f74dba97ff8f75297d9a

                                        var file_code = "rg485ftgi84d";
var id = ((Math.floor((900 - 100) * Math.random()) + 100) * (new Date()) * (128 / 8));
jwplayer.key = "Ywok59g9j93GtuSU7+axNzjIp/TBfiK4s0vvYg==";
jwplayer('layer').setup({
    file: 'http://s35.speedvid.net:8777/4lamitmpu7rwim52w5yxyfugtf3tt5dzrbquaf5j4436ptxxx3xvndpf5bma/v.mp4',
    image: 'http://s35.speedvid.net:8777/i/03/00118/5ol83dcscb2q.jpg',
    duration: '2553',
    preload: "none",
    primary: primary,
    id: id,
    height: "100%",
    skin: {
        name: "flat"
    },
    logo: {
        file: 'http://www.speedvid.net/images/logo_small.png',
        hide: true,
        position: 'top-left',
        link: 'http://www.speedvid.net/'
    },
    sharing: {
        link: 'http://www.speedvid.net/hgcd06yxp6hf',
        code: '<IFRAME SRC="http://www.speedvid.net/embed-hgcd06yxp6hf-640x360.html" FRAMEBORDER=0 MARGINWIDTH=0 MARGINHEIGHT=0 SCROLLING=NO WIDTH=66 HEIGHT=89> ALLOWFULLSCREEN></IFRAME>'
    },
    abouttext: "SpeedVid.net",
    aboutlink: "http://www.speedvid.net/",
});
                                    

#6 JavaScript::Eval (size: 623, repeated: 1) - SHA256: 629f2e5e8b80dc32426e2e4f614d76969187bca145fed93c5dbe1acdf0417bd1

                                        var id = 4785145896571;

function createCookie(name, value, days) {
    if (days) {
        var date = new Date();
        date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
        var expires = "; expires=" + date.toGMTString()
    } else var expires = "";
    document.cookie = name + "=" + id + expires + "; path=/"
}
jwplayer.key = "Ywok59g9j93GtuSU7+axNzjIp/TBfiK4s0vvYg==";
jwplayer('layer').setup({
    file: 'http://s35.speedvid.net:8777/4lamitmpu7rwim52w5yxyfugtf3tt5dzrbquaf5j4436ptxxx3xvndpf5bma/v.mp4',
    image: 'http://s35.speedvid.net:8777/i/03/00118/5ol83dcscb2q.jpg',
    primary: primary,
    width: "100%",
    id: "78578",
    skin: {
        name: "flat"
    },
    abouttext: "SpeedVid.net",
    aboutlink: "http://www.speedvid.net/",
});
                                    

Executed Writes (0)



HTTP Transactions (41)


Request Response
                                        
                                            GET /embed-p4dbpmuhwzrh.html HTTP/1.1 
Host: www.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 26 May 2018 11:31:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=df2147e0b36e2f0b183ad2d20004664831527334306; expires=Sun, 26-May-19 11:31:46 GMT; path=/; domain=.speedvid.net; HttpOnly ref_url=%28E%29++; expires=Sat, 26-May-2018 17:28:52 GMT ma=1714670665
X-Powered-By: PHP/5.3.3
Server: cloudflare
CF-RAY: 420fead764fc429d-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5340
Md5:    11b9a8a4880ed24537d88d3df2677fcd
Sha1:   460638aaeb6bce2f9b6f1563387029cec103a85e
Sha256: c882ed5d33cc168254be8968e98e9f146defe92b825f0036c97016f1ed409477
                                        
                                            GET /cdn-cgi/apps/head/Epv-XBnsqK1iimfHm62woRI6bJE.js HTTP/1.1 
Host: www.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/embed-p4dbpmuhwzrh.html
Cookie: __cfduid=df2147e0b36e2f0b183ad2d20004664831527334306; ref_url=%28E%29++; ma=1714670665

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Sat, 26 May 2018 11:31:46 GMT
Content-Length: 2357
Connection: keep-alive
x-amz-id-2: Vd4XILayIr3QPWnk6H4CFnTt68dAvTYk0jxfi6HLXnxBYU0xsahhhrZR5WCeSR3c3cIfWQvC4NY=
x-amz-request-id: 468B3F1036A79A4D
Cache-Control: public, max-age=31536000
Content-Encoding: gzip
Last-Modified: Sat, 19 Aug 2017 09:14:11 GMT
x-amz-version-id: 3.xRdTeUDPBZilKRKsABDImZKxFUWyas
Etag: "f5498a66ec00b61e0fccc2f35d99faa0"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Sun, 26 May 2019 11:31:46 GMT
Server: cloudflare
CF-RAY: 420fead82514429d-OSL


--- Additional Info ---
Magic:  gzip compressed data
Size:   2357
Md5:    f5498a66ec00b61e0fccc2f35d99faa0
Sha1:   129bfe5c19eca8ad628a67c79badb0a1123a6c91
Sha256: babaeef5c95da8e9f52da58b25279a132d154524d0a69abf265c201bd4c04e4d
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=df2147e0b36e2f0b183ad2d20004664831527334306; ref_url=%28E%29++; ma=10361435937378688

                                         
                                         104.25.110.6
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sat, 26 May 2018 11:31:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Sat, 02 Jun 2018 11:31:46 GMT
Cache-Control: public, max-age=604800
Server: cloudflare
CF-RAY: 420fead9c569429d-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   293
Md5:    f9204a8d83e5584ba9434c2a818d656a
Sha1:   f239ac8144485986cfd4fe391509e5ef602b456d
Sha256: f4905568c7b1874c8dcfad24e1ef211cec6ea1f14e1e4bfb92327a942f182b24
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 May 2018 11:31:46 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    e1e28f5b50f17f32d8dbf3bca76d40f9
Sha1:   032fcde2843e98b8f448df9f700e364d8f98060f
Sha256: 8dbbb3332225d62b36325729a2799427923df21a99cebbf5aa557d29cb612982
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 May 2018 11:31:46 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    6bf50ec404fb4a8b4a94be8390d11938
Sha1:   0caaab7704d6221abc5e0342909a4928cee50b1c
Sha256: 63b592179b1e9a528344ce1d430b9479fc55f43420a468ec35aaeaa9dff911cf
                                        
                                            GET /jw7/bin/skins/flat.min.css HTTP/1.1 
Host: www.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/sn-p4dbpmuhwzrh-42-58.html
Cookie: __cfduid=df2147e0b36e2f0b183ad2d20004664831527334306; ref_url=%28E%29++; ma=10361435937378688; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 26 May 2018 11:31:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2016 19:35:59 GMT
Etag: W/"30001c-2caa-53fddd9e85878"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Mon, 11 Jun 2018 11:31:47 GMT
Cache-Control: public, max-age=1382400
Server: cloudflare
CF-RAY: 420feadc15c7429d-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2589
Md5:    e3e0f68539323275a77dc09a6822d69f
Sha1:   d3b7ca09c15c2031ed4a616afcd565dee29cd212
Sha256: 46dc3b42ceecc58381ecbda07d34ba6d712df937e069e95371826a47ee7d8d8a
                                        
                                            GET /cdn/css/main.css HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/sn-p4dbpmuhwzrh-42-58.html
Cookie: __cfduid=df2147e0b36e2f0b183ad2d20004664831527334306; lang=1

                                         
                                         104.25.111.6
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 26 May 2018 11:31:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=30209
Etag: W/"1320a30-7601-54ba67a204012"
Last-Modified: Sun, 26 Mar 2017 18:34:29 GMT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Mon, 11 Jun 2018 11:31:47 GMT
Cache-Control: public, max-age=1382400
Server: cloudflare
CF-RAY: 420feadc24cc4297-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6237
Md5:    b8f4db1e5925a976212cf9cf2ba0247c
Sha1:   475db0d28482fd6114ce2b15a8e7aa89772d2d0a
Sha256: fe7a914c0de4bf3fa0b0c2c5cce41fbc3f469f9361ecf6852fed81c4372c5cc3
                                        
                                            GET /cdn/jw7/bin/jwplayer-7.7.1/jwplayer.js HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/sn-p4dbpmuhwzrh-42-58.html
Cookie: __cfduid=df2147e0b36e2f0b183ad2d20004664831527334306; lang=1

                                         
                                         104.25.111.6
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Sat, 26 May 2018 11:31:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=210424
Etag: W/"1320b92-335f8-54ba6886c9ec1"
Last-Modified: Sun, 26 Mar 2017 18:38:29 GMT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Mon, 11 Jun 2018 11:31:47 GMT
Cache-Control: public, max-age=1382400
Server: cloudflare
CF-RAY: 420feadc2737427f-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   59480
Md5:    b71538b58c8e08939f3e11800939c7b0
Sha1:   65bd17aa8494eb6bbd67a937a6620843a26c9452
Sha256: 50c024f24ef993df19bb880ea8ee1cd001c3a92bc418b3fdd8de3cb26e6b5208
                                        
                                            GET /sn-p4dbpmuhwzrh-42-58.html HTTP/1.1 
Host: www.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/embed-p4dbpmuhwzrh.html
Cookie: __cfduid=df2147e0b36e2f0b183ad2d20004664831527334306; ref_url=%28E%29++; ma=10361435937378688

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 26 May 2018 11:31:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 25 May 2018 17:26:53 GMT
Set-Cookie: lang=1; domain=.speedvid.net; path=/; HttpOnly
Server: cloudflare
CF-RAY: 420fead9e60e42b5-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   189995
Md5:    6e31596fa42fa4815dc4fd04a82acf18
Sha1:   75d23c6840df3b11f275c04a56389440bbf2242d
Sha256: bd530cd378e77d7b5e97ab4f05de44955bc31e079f9060b9517f5b9f9415ee30

Alerts:
  IDS:
    - ET INFO Suspicious Darkwave Popads Pop Under Redirect
                                        
                                            GET /cdn/images/close_gray.png HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/sn-p4dbpmuhwzrh-42-58.html
Cookie: __cfduid=df2147e0b36e2f0b183ad2d20004664831527334306; lang=1

                                         
                                         104.25.111.6
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 26 May 2018 11:31:47 GMT
Content-Length: 445
Connection: keep-alive
Cf-Bgj: imgq:85
Cf-Polished: origSize=3327
Etag: "1320a68-cff-54ba67bc2c89a"
Last-Modified: Sun, 26 Mar 2017 18:34:56 GMT
Vary: Accept
CF-Cache-Status: HIT
Expires: Mon, 11 Jun 2018 11:31:47 GMT
Cache-Control: public, max-age=1382400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 420feadf354d4297-OSL


--- Additional Info ---
Magic:  PNG image, 32 x 32, 8-bit gray+alpha, non-interlaced
Size:   445
Md5:    c05993f25481d042fbdb63faf117fae0
Sha1:   bf487171ddb8fd8c922133b1f7d06e3254735a43
Sha256: 3504d2f17628695a4c46506a459ab2794ced33c361045911e79467a6bfc28e59
                                        
                                            GET /images/broken.png HTTP/1.1 
Host: www.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/sn-p4dbpmuhwzrh-42-58.html
Cookie: __cfduid=df2147e0b36e2f0b183ad2d20004664831527334306; ref_url=%28E%29++; ma=10361435937378688; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 26 May 2018 11:31:47 GMT
Content-Length: 4261
Connection: keep-alive
Last-Modified: Fri, 02 Jan 2015 15:48:00 GMT
Etag: "2a0337-10a5-50bad43e6cc00"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Mon, 11 Jun 2018 11:31:47 GMT
Cache-Control: public, max-age=1382400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 420feadf365a429d-OSL


--- Additional Info ---
Magic:  PNG image, 57 x 57, 8-bit/color RGBA, non-interlaced
Size:   4261
Md5:    54069d968b9197f77ef85d43da2c6681
Sha1:   41267b5e30d329eafd4fed9082ef5bedbb18223a
Sha256: 08143131ca18f2e648b0b27060de562919882db853d81fe508f86ce3470a39c5
                                        
                                            GET /cdn/js/dwo.js HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/sn-p4dbpmuhwzrh-42-58.html
Cookie: __cfduid=df2147e0b36e2f0b183ad2d20004664831527334306; lang=1

                                         
                                         104.25.111.6
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Sat, 26 May 2018 11:31:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=11445
Etag: W/"1320183-2cb5-56933d2c51711"
Last-Modified: Fri, 06 Apr 2018 20:23:03 GMT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Mon, 11 Jun 2018 11:31:47 GMT
Cache-Control: public, max-age=1382400
Server: cloudflare
CF-RAY: 420feadf37e0427f-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6385
Md5:    f1c3a6edfb788cd3ff51d63167e58611
Sha1:   12bc0e5fb8b73e3fc18d9159e50aeb44b91c708a
Sha256: a2a4fe3377a56aed1bf3466a3525e07196efef580fa970047eed28e4fd83def8
                                        
                                            GET /pop.js HTTP/1.1 
Host: c1.popads.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/sn-p4dbpmuhwzrh-42-58.html

                                         
                                         185.76.9.13
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 26 May 2018 11:31:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 15 Apr 2018 14:16:47 GMT
Etag: W/"5ad35ecf-1108b"
Expires: Sun, 22 Apr 2018 14:20:58 GMT
Cache-Control: max-age=604800
Access-Control-Allow-Origin: *
Server: CDN77-Turbo
X-Edge-IP: 185.76.9.10
X-Edge-Location: stockholmSE
X-Cache: HIT
X-Age: 508244
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   28304
Md5:    0e22a3b06faf69618a2107eb1932665d
Sha1:   d584688330d0c96f6bdd2c2b5e5eb27566e9e2e2
Sha256: 808a7097e87ec3abc9ac976ec31bbf8478c05281d9bb7461f6d47861af3247e0
                                        
                                            GET /webservice/ifr-call HTTP/1.1 
Host: l.adxcore.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/sn-p4dbpmuhwzrh-42-58.html

                                         
                                         5.39.39.165
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sat, 26 May 2018 11:31:47 GMT
Server: Apache
Cache-Control: no-cache, max-age=2592000
Expires: Mon, 25 Jun 2018 11:31:47 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 57
Connection: close
Set-Cookie: LOG=LOG11; path=/


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   57
Md5:    375ddfe47fd0cdb9a3784b21e6f70d23
Sha1:   b8cbeaa3ced994bda8972d75763347ef7ed52294
Sha256: c8fefff181e369ec1ef66238695147565493cea783088770056c98a178600c1a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Fri, 25 May 2018 15:54:43 GMT
Etag: 3F51344E746A02A59DAFE6A4AA3740A7280F3EA5
X-OCSP-Responder-ID: rmdccaocsp29
Content-Length: 472
Cache-Control: public, no-transform, must-revalidate, max-age=526
Expires: Sat, 26 May 2018 11:40:33 GMT
Date: Sat, 26 May 2018 11:31:47 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   472
Md5:    eccfb44d2570f7662787e883646d995f
Sha1:   3f51344e746a02a59dafe6a4aa3740a7280f3ea5
Sha256: 6b31faa5c676bd5bc141736accef899dfb4b853296a2aff8fdc5873ba989b236
                                        
                                            GET /view/9D13B7EBDA0E HTTP/1.1 
Host: mellowads.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/sn-p4dbpmuhwzrh-42-58.html

                                         
                                         104.17.163.12
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Sat, 26 May 2018 11:31:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d5eac4408f8de50dbf332409564e813441527334307; expires=Sun, 26-May-19 11:31:47 GMT; path=/; domain=.mellowads.com; HttpOnly user=referrer=; expires=Fri, 24-Aug-2018 11:31:49 GMT; path=/
Cache-Control: private
Vary: Accept-Encoding
X-AspNet-Version: 4.0.30319
Server: cloudflare
CF-RAY: 420feadf631b42a9-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1253
Md5:    4d9c5262cfe9cc2e89a811f077494824
Sha1:   43eb66524a2d1eb718d75ee9bcd4d73ff1c04ac8
Sha256: e4580fcc8746623719ae36a6cb746452b5ade65e5906b2a8f857146ec1ffa432
                                        
                                            GET /css/size4.css?v17 HTTP/1.1 
Host: mellowads.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mellowads.com/view/9D13B7EBDA0E
Cookie: __cfduid=d5eac4408f8de50dbf332409564e813441527334307; user=referrer=

                                         
                                         104.17.163.12
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 26 May 2018 11:31:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=1482
Etag: W/"c94eff72150d21:0"
Last-Modified: Tue, 06 Dec 2016 20:43:50 GMT
Vary: Accept-Encoding
CF-Cache-Status: HIT
Expires: Tue, 26 Jun 2018 11:31:48 GMT
Cache-Control: public, max-age=2678400
Server: cloudflare
CF-RAY: 420feae1336a42a9-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   381
Md5:    610c051c3ca26fdc4fabffcbf1b489be
Sha1:   1156b5eb144786b621d31b3a6e96e24f101b4d2c
Sha256: 0789f0b2f72d51efccc311b19df56da3c9d53d63714a7a4069d737b86397c090
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Fri, 25 May 2018 21:10:02 GMT
Etag: C3694309759155D3EAA18087DC13E710F0F54F85
X-OCSP-Responder-ID: rmdccaocsp15
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=316
Expires: Sat, 26 May 2018 11:37:04 GMT
Date: Sat, 26 May 2018 11:31:48 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    a6277e172cc64a0413609d484ecc09ad
Sha1:   c3694309759155d3eaa18087dc13e710f0f54f85
Sha256: c9e62617df4d891ed6aea2308050ce3be503879a66f858c80f8999f8b94a4186
                                        
                                            GET /img/minibrand.png HTTP/1.1 
Host: mellowads.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mellowads.com/view/9D13B7EBDA0E
Cookie: __cfduid=d5eac4408f8de50dbf332409564e813441527334307; user=referrer=

                                         
                                         104.17.163.12
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 26 May 2018 11:31:48 GMT
Content-Length: 793
Connection: keep-alive
Cache-Control: public, max-age=2678400
Cf-Bgj: imgq:100
Cf-Polished: pngoptimizer, origSize=880
Etag: "133ce561ff3fd21:0"
Last-Modified: Wed, 16 Nov 2016 11:48:43 GMT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Tue, 26 Jun 2018 11:31:48 GMT
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 420feae1659d4291-OSL


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   793
Md5:    10fb5f1f0e594c697babacbed8d6c1d3
Sha1:   f340c1eedcfd9403bbaa5cbc6aa696d90fbbc0d4
Sha256: 66489c05a269764cb6fadf75e017542c61c09da471799242f39e9bd00363eb7e
                                        
                                            GET /i/?l=http%3A%2F%2Fwww.speedvid.net%2Fsn-p4dbpmuhwzrh-42-58.html&j=http%3A%2F%2Fwww.speedvid.net%2Fembed-p4dbpmuhwzrh.html HTTP/1.1 
Host: t.dtscout.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/sn-p4dbpmuhwzrh-42-58.html

                                         
                                         107.182.233.217
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Sat, 26 May 2018 11:31:48 GMT
Transfer-Encoding: chunked
Connection: close
X-Z: I
Expires: Sat, 26 May 2018 11:31:47 GMT
Cache-Control: no-cache
Set-Cookie: l=a7bp2VsJRaSvAkfTh3NIAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.dtscout.com; path=/


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   17
Md5:    1423358bac98dd731f0494f37862af07
Sha1:   e13b287e8655bfebb0f144ff37515049f69eb900
Sha256: 37c5cbe8ad795a530c7ad3e2a3574a4f9038c3fc10fc48ca4c1c74ed9ffdc6a4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 May 2018 11:31:48 GMT
Server: Apache
Last-Modified: Fri, 25 May 2018 21:10:02 GMT
Expires: Fri, 01 Jun 2018 21:10:02 GMT
Etag: 3661FA59AA38A41AF971A2554DD22C31FD1F3F96
Cache-Control: max-age=552493,public,no-transform,must-revalidate
X-OCSP-Responder-ID: rmdccaocsp15
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    e08c5d1a99e0420b69c8dbb6e3796060
Sha1:   3661fa59aa38a41af971a2554dd22c31fd1f3f96
Sha256: eaaf7ce43c94fbefd7f62068d7ae06bb400e665aeedf317db5bdffb9b25de11f
                                        
                                            GET /lib/coinhive.min.js HTTP/1.1 
Host: coinhive.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/sn-p4dbpmuhwzrh-42-58.html

                                         
                                         104.20.209.59
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Sat, 26 May 2018 11:31:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=db048efa4ec1ff2bf2948710921ae63931527334308; expires=Sun, 26-May-19 11:31:48 GMT; path=/; domain=.coinhive.com; HttpOnly
Last-Modified: Wed, 11 Apr 2018 09:53:07 GMT
Etag: W/"5acddb03-40063"
Expires: Sat, 26 May 2018 19:31:48 GMT
Cache-Control: public, max-age=28800
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 420feae24b594285-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   68258
Md5:    aace5e5a34519cdd9c971d57f21e5d82
Sha1:   ceecd09dbe85c771648f2ce6942fe9707c6f31f4
Sha256: ef2f23c272fb07e8e93f26cf6051bd2c3d377cf54e2431f9fdd6666852749e62

Alerts:
  urlquery:
    - Crypto currency mining script
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /c?r=1527334308&v=3&siteId=1126853&minBid=&popundersPerIP=&blockedCountries=&documentRef=http%3A%2F%2Fwww.speedvid.net%2Fembed-p4dbpmuhwzrh.html&s=1176,885,1,1176,885 HTTP/1.1 
Host: serve.popads.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/sn-p4dbpmuhwzrh-42-58.html

                                         
                                         216.21.13.16
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=UTF-8
                                        
Access-Control-Allow-Origin: *
Set-Cookie: PP_CV=yes; expires=Sat, 26-May-2018 12:31:48 GMT; Max-Age=3600
Cache-Control: private, no-store, no-cache, must-revalidate, no-transform, max-age=0
Pragma: no-cache
PopAds-EC: PS2
Content-Length: 239
Date: Sat, 26 May 2018 11:31:48 GMT
Accept-Ranges: bytes
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   239
Md5:    c35ae8c6afdbd0f4f6a7c631cb7b5eb0
Sha1:   d5b1ac0f069e6c87ab30d05873956c34d71bb44a
Sha256: e35f8967dbee927f6435f31bc2975234634c009e949f4d29fd30cb01c851d115
                                        
                                            GET / HTTP/1.1 
Host: c.adsco.re
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/sn-p4dbpmuhwzrh-42-58.html

                                         
                                         104.17.166.186
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Sat, 26 May 2018 11:31:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d749976f9bb8caa68b688b3ca82ce51821527334308; expires=Sun, 26-May-19 11:31:48 GMT; path=/; domain=.adsco.re; HttpOnly
Cache-Control: public, max-age=172800
Link: <//adsco.re>;rel=preconnect,<//6.adsco.re>;rel=prefetch
Expires: Mon, 28 May 2018 11:31:48 GMT
Etag: "CUXhxIyD91rfkpN/GmhP4Q=="
Content-Encoding: gzip
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 420feae2d5f64297-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max compression
Size:   10061
Md5:    493369e5f6bf20c14165c90877040358
Sha1:   fe72b8ade9149457b287295c5ecbd15bbfac08fc
Sha256: 686370a65d1b79b42040616decda5928a6e38aa0627da0da25f6ccdb9f413d15
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         54.192.98.94
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=161700
Date: Sat, 26 May 2018 11:31:48 GMT
Etag: "5b090af3-1d7"
Expires: Mon, 28 May 2018 08:07:01 GMT
Last-Modified: Sat, 26 May 2018 07:21:23 GMT
Server: ECS (lga/1386)
X-Cache: Miss from cloudfront
Via: 1.1 9c3701a40f5e4766165113d719972734.cloudfront.net (CloudFront)
X-Amz-Cf-Id: if4kOoETfDKhd38GSRfgm4qqNTI7sFaLu1dwdKTyB8yyrc9t9K3jRA==


--- Additional Info ---
Magic:  data
Size:   471
Md5:    4aa812a0100fd7f38cae36e6c1172124
Sha1:   e3335fdad4eaab100d5905806bc9fec63ae15b37
Sha256: c784bc1699b6d96b9476875a86143c8e49b40084e4e219909a621f484aa4bce9
                                        
                                            POST / HTTP/1.1 
Host: ocsp.rootca1.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request

                                         
                                         54.192.98.36
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1426
Connection: keep-alive
Date: Sat, 26 May 2018 11:31:48 GMT
Server: WEBrick/1.3.1 (Ruby/2.3.6/2017-12-14)
X-Cache: Miss from cloudfront
Via: 1.1 210fa10efb175d891774d170436663b1.cloudfront.net (CloudFront)
X-Amz-Cf-Id: MtboFAmqJ_wX7Pn6iRmwLrZTjrnAbPqu80zgwdsd7doe8fglNrOMWg==


--- Additional Info ---
Magic:  data
Size:   1426
Md5:    980efe380d6a45758542cf905049b8eb
Sha1:   91516a5069b7081fd2e7030a5f8be9331fe85dc3
Sha256: dce896f51df9692b23903b857a4d5d42fd245d7324d6ed969bad1d49e6965469
                                        
                                            GET /b01sUUtALgFuORtwHDgmAjgYNDlBLgM8 HTTP/1.1 
Host: boudja.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/sn-p4dbpmuhwzrh-42-58.html

                                         
                                         205.251.219.59
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 4136
Connection: keep-alive
Date: Sat, 26 May 2018 11:31:48 GMT
Cache-Control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
Content-Encoding: gzip
P3P: CP="NID DSP ALL COR"
Pragma: no-cache
Set-Cookie: csu=98390c5e-93c9-415a-afe3-42edd8790e64
X-Cache: Miss from cloudfront
Via: 1.1 fe38ad2e075af619b54de9dd6980c5ea.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 0e1yUFwreg0wAdNVhwO3otBACa7jmKxj6v-BSik_GCQT5UwIph5gpg==


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   4136
Md5:    855498ad31229bad5b54b6ffc1dad544
Sha1:   fe21d5799c77ee3f9070553240bd1bb414c68e65
Sha256: 706ab7eeff6635070f63c667fb042ab8d17b1c74c8091c0ce21d2bd72cfd5676
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         54.192.98.94
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=161092
Date: Sat, 26 May 2018 11:31:48 GMT
Etag: "5b090d82-1d7"
Expires: Mon, 28 May 2018 07:50:11 GMT
Last-Modified: Sat, 26 May 2018 07:32:18 GMT
Server: ECS (lga/1378)
X-Cache: Miss from cloudfront
Via: 1.1 9c3701a40f5e4766165113d719972734.cloudfront.net (CloudFront)
X-Amz-Cf-Id: tARTesL3AQwQUGnMDPJPiCEd2KS_8HldQ4XwpY-mtO99l6hBcNGFeg==


--- Additional Info ---
Magic:  data
Size:   471
Md5:    7544212e65df44e551568a534e021d7e
Sha1:   93bb03291da0d91c4fe930fdfb0e985fc2cf886d
Sha256: fdc49513b317188ddf7447afc6b76acf86b8a0d0bf8a3c6d26c3187f4b23e429
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         54.192.98.94
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=167042
Date: Sat, 26 May 2018 11:31:49 GMT
Etag: "5b09261d-1d7"
Expires: Mon, 28 May 2018 09:29:12 GMT
Last-Modified: Sat, 26 May 2018 09:17:17 GMT
Server: ECS (lga/13AD)
X-Cache: Miss from cloudfront
Via: 1.1 9c3701a40f5e4766165113d719972734.cloudfront.net (CloudFront)
X-Amz-Cf-Id: jXUTeHUI-tqqJXcfIz1T31dMZmP9RskSlxzssMkd87ats2SOvMd58A==


--- Additional Info ---
Magic:  data
Size:   471
Md5:    96296cfaa2ef3b13a5f416b53926dd89
Sha1:   820d205906d5e68ea05e299dba1488e0551daf75
Sha256: 3d8c3fb01421aefee20300d5a1d861e1d0ff461d6410621d27c2d3edad440972
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         54.192.98.94
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=161651
Date: Sat, 26 May 2018 11:31:49 GMT
Etag: "5b0904c8-1d7"
Expires: Mon, 28 May 2018 08:04:16 GMT
Last-Modified: Sat, 26 May 2018 06:55:04 GMT
Server: ECS (lga/1385)
X-Cache: Miss from cloudfront
Via: 1.1 9c3701a40f5e4766165113d719972734.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 5KcGk7PKP9dO7WmmHYCoL46A6iJpj37u08ciuXScwtxnq60dfiZ75Q==


--- Additional Info ---
Magic:  data
Size:   471
Md5:    f758ac926433a70f2b1a259ce3a489c2
Sha1:   2c96105602d20d8e76e713f011fea6299c69f894
Sha256: 8d34a878694e7ef30ec0269f63f069ce56c30b7966149914c810877b43acbbf3
                                        
                                            GET /sc?u=98390c5e-93c9-415a-afe3-42edd8790e64&csr=1 HTTP/1.1 
Host: pimmuter.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://boudja.com/b01sUUtALgFuORtwHDgmAjgYNDlBLgM8

                                         
                                         205.251.219.33
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Content-Length: 0
Connection: keep-alive
Date: Sat, 26 May 2018 11:31:49 GMT
Cache-Control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
P3P: CP="NID DSP ALL COR"
Pragma: no-cache
Set-Cookie: csu=98390c5e-93c9-415a-afe3-42edd8790e64
X-Cache: Miss from cloudfront
Via: 1.1 d945a5fbc073d46145c31f513978802d.cloudfront.net (CloudFront)
X-Amz-Cf-Id: sEEAm8xYZbMqnV00YW3BISqELvqqMZdK9CpmLZgtg1Tf_g8M1CG5_A==


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=161185
Date: Sat, 26 May 2018 11:31:49 GMT
Etag: "5b08e9e6-1d7"
Expires: Mon, 28 May 2018 07:51:10 GMT
Last-Modified: Sat, 26 May 2018 05:00:22 GMT
Server: ECS (arn/46A2)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    efe99c89d6d9aa3dcdd1888c11689625
Sha1:   32055c353ec3d2596c7fc3633ce8104bca97566f
Sha256: fed6407e6b6bfad31dd3eb8343ae92bd1e842881c10309a1124b2e2327a19a44
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=160892
Date: Sat, 26 May 2018 11:31:49 GMT
Etag: "5b090773-1d7"
Expires: Mon, 28 May 2018 08:09:27 GMT
Last-Modified: Sat, 26 May 2018 07:06:27 GMT
Server: ECS (arn/46D1)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    7c3b5ef8a382030d59808edbac6b6c0a
Sha1:   972a6e9abcb1744fb5aa0af200a712b48dada32e
Sha256: 38f633a452a0d3b989ee6c861c43143645ab671a227f3f097ba027ef820bbacc
                                        
                                            GET /sc?u=98390c5e-93c9-415a-afe3-42edd8790e64 HTTP/1.1 
Host: lucklayed.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://boudja.com/b01sUUtALgFuORtwHDgmAjgYNDlBLgM8

                                         
                                         205.251.219.101
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Content-Length: 0
Connection: keep-alive
Date: Sat, 26 May 2018 11:31:49 GMT
Cache-Control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
P3P: CP="NID DSP ALL COR"
Pragma: no-cache
Set-Cookie: csu=98390c5e-93c9-415a-afe3-42edd8790e64
X-Cache: Miss from cloudfront
Via: 1.1 f9a0ddc3860252ab6c4d02ab024b4891.cloudfront.net (CloudFront)
X-Amz-Cf-Id: Hn0ZxiABHjKT2hA8z-L0649-h8ckguzieS_sv6uh9l9eLDh2--RkdA==


--- Additional Info ---
                                        
                                            GET /sc?u=98390c5e-93c9-415a-afe3-42edd8790e64 HTTP/1.1 
Host: croissed.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://boudja.com/b01sUUtALgFuORtwHDgmAjgYNDlBLgM8

                                         
                                         205.251.219.113
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Content-Length: 0
Connection: keep-alive
Date: Sat, 26 May 2018 11:31:49 GMT
Cache-Control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
P3P: CP="NID DSP ALL COR"
Pragma: no-cache
Set-Cookie: csu=98390c5e-93c9-415a-afe3-42edd8790e64
X-Cache: Miss from cloudfront
Via: 1.1 208ed8b46a45d58d14b6e0be1aab3dad.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 11srXFxnvqwIAHMyJKF0Fh1vvAarSZc6IMDJKgyXUcGJvlb0CHwHtw==


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=df2147e0b36e2f0b183ad2d20004664831527334306; ref_url=%28E%29++; ma=10361435937378688; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sat, 26 May 2018 11:31:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Sat, 02 Jun 2018 11:31:49 GMT
Cache-Control: public, max-age=604800
Server: cloudflare
CF-RAY: 420feae9d0ff42b5-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   293
Md5:    f9204a8d83e5584ba9434c2a818d656a
Sha1:   f239ac8144485986cfd4fe391509e5ef602b456d
Sha256: f4905568c7b1874c8dcfad24e1ef211cec6ea1f14e1e4bfb92327a942f182b24
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=df2147e0b36e2f0b183ad2d20004664831527334306; ref_url=%28E%29++; ma=10361435937378688; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sat, 26 May 2018 11:31:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Sat, 02 Jun 2018 11:31:49 GMT
Cache-Control: public, max-age=604800
Server: cloudflare
CF-RAY: 420feaec8061429d-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   293
Md5:    f9204a8d83e5584ba9434c2a818d656a
Sha1:   f239ac8144485986cfd4fe391509e5ef602b456d
Sha256: f4905568c7b1874c8dcfad24e1ef211cec6ea1f14e1e4bfb92327a942f182b24
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=df2147e0b36e2f0b183ad2d20004664831527334306; ref_url=%28E%29++; ma=10361435937378688; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Sat, 26 May 2018 11:31:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Sat, 02 Jun 2018 11:31:49 GMT
Cache-Control: public, max-age=604800
Server: cloudflare
CF-RAY: 420feaec816f42b5-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   293
Md5:    f9204a8d83e5584ba9434c2a818d656a
Sha1:   f239ac8144485986cfd4fe391509e5ef602b456d
Sha256: f4905568c7b1874c8dcfad24e1ef211cec6ea1f14e1e4bfb92327a942f182b24
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/sn-p4dbpmuhwzrh-42-58.html

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /d/px/?_pid=15261&_psign=2bf069f9d9a7a84e2904dfa3d3b805bd&_puuid=98390c5e-93c9-415a-afe3-42edd8790e64&_rand=1527334308838 HTTP/1.1 
Host: p.adsymptotic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://boudja.com/b01sUUtALgFuORtwHDgmAjgYNDlBLgM8

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /pingjs/?k=vlzjncb8t4hw&t=Speedvid&c=d&y=http%3A%2F%2Fwww.speedvid.net%2Fembed-p4dbpmuhwzrh.html&a=0&r=2840 HTTP/1.1 
Host: whos.amung.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/sn-p4dbpmuhwzrh-42-58.html

                                         
                                         0.0.0.0
                                        


--- Additional Info ---