Overview

URL www.speedvid.net/y1s1vt9co76j
IP104.25.111.6
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2018-11-15 02:58:33 CET
StatusLoading report..
urlquery Alerts Crypto currency mining script


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-11-15 02:57:57 CET 1  104.20.209.59 Client IP ETPRO CURRENT_EVENTS Observed Malicious SSL Cert (CoinHive Mining Domain)
2018-11-15 02:57:57 CET 2 Client IP  198.134.112.243 ET INFO HTTP Request to a *.top domain


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-11-15 2 coinhive.com/lib/coinhive.min.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.25.111.6

Date UQ / IDS / BL URL IP
2019-01-22 18:38:08 +0100
0 - 2 - 0 www.speedvid.net/4cedup7cmb54 104.25.111.6
2019-01-17 19:21:17 +0100
0 - 1 - 0 www.speedvid.net/qupgwmbmyyxu 104.25.111.6
2019-01-17 19:20:10 +0100
0 - 1 - 0 www.speedvid.net/jlbryl89rapd 104.25.111.6
2018-12-14 22:24:22 +0100
2 - 0 - 1 www.speedvid.net/hffoe8ikvg5s 104.25.111.6
2018-12-14 22:24:19 +0100
2 - 0 - 1 www.speedvid.net/4cedup7cmb54 104.25.111.6
2018-12-12 02:23:38 +0100
2 - 1 - 1 www.speedvid.net/4ie59o8t0qth 104.25.111.6
2018-12-09 06:00:44 +0100
2 - 1 - 1 www.speedvid.net/ufytap784nyw 104.25.111.6
2018-12-01 02:25:30 +0100
2 - 0 - 1 www.speedvid.net/876mnelbpr97 104.25.111.6
2018-11-27 09:42:01 +0100
0 - 0 - 0 www.speedvid.net/sn-kawprm2108pp-33-64.html 104.25.111.6
2018-11-23 02:24:26 +0100
2 - 1 - 1 www.speedvid.net/ujlvsq0xvvwp 104.25.111.6

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2019-02-22 18:33:31 +0100
0 - 0 - 2 dl.softservers.net/191001648/OptimizerPro.exe 104.24.106.203
2019-02-22 18:32:24 +0100
0 - 0 - 1 d0.waper.ru/f/766340/58/u_nldxIZ9uEORKG8xLLYW (...) 104.31.12.154
2019-02-22 18:32:07 +0100
0 - 0 - 1 hehthere.com/work/Scans46.zip 104.18.53.253
2019-02-22 18:30:19 +0100
0 - 0 - 0 https://2weekdiet.com/url/2weekdiets.php 104.20.226.8
2019-02-22 18:25:57 +0100
0 - 0 - 1 get.desktopanimated.com/download/Apocalypse_A (...) 104.27.142.146
2019-02-22 18:25:49 +0100
0 - 0 - 0 https://adevarul-stiri.com/ 104.18.55.186
2019-02-22 18:22:42 +0100
0 - 0 - 2 dl.softservers.net/121000809/driverpro.exe 104.24.106.203
2019-02-22 18:22:02 +0100
0 - 0 - 10 dvayen.com/fgg/dark.exe 104.24.107.223
2019-02-22 18:22:02 +0100
0 - 0 - 8 www.dvayen.com/fgg/dark.exe 104.24.107.223
2019-02-22 18:17:55 +0100
0 - 0 - 1 greatengine.com/download/getools45.exe 162.159.209.55

No other reports on domain: speedvid.net



JavaScript

Executed Scripts (41)


Executed Evals (2)

#1 JavaScript::Eval (size: 769, repeated: 1) - SHA256: fb0878d5fcc03c83a10928bdbaa7188c5188dbc8fc49f8a95134b281c686f381

                                        jwplayer.key = "Ywok59g9j93GtuSU7+axNzjIp/TBfiK4s0vvYg==";
jwplayer('layer').setup({
    file: 'http://s13-HD.speedvid.net:8777/4lamitmpu7rwim52w5yxyfugtf3tt5dzrbquaf5j4436ptxxx3xvndpf5bma/v.mp4',
    image: 'http://s13-HD.speedvid.net:8777/i/03/00118/5ol83dcscb2q.jpg',
    duration: '2553',
    preload: "none",
    primary: primary,
    width: "100%",
    height: "100%",
    skin: {
        name: "flat"
    },
    logo: {
        file: 'http://www.speedvid.net/images/logo_small.png',
        hide: true,
        position: 'top-left',
        link: 'http://www.speedvid.net/'
    },
    sharing: {
        link: 'http://www.speedvid.net/hgcd06yxp6hf',
        code: '<IFRAME SRC="http://www.speedvid.net/embed-hgcd06yxp6hf-640x360.html" FRAMEBORDER=0 MARGINWIDTH=0 MARGINHEIGHT=0 SCROLLING=NO WIDTH=640 HEIGHT=360 ALLOWFULLSCREEN></IFRAME>'
    },
    abouttext: "SpeedVid.net",
    aboutlink: "http://www.speedvid.net/",
});
                                    

#2 JavaScript::Eval (size: 763, repeated: 1) - SHA256: fd2cb329e5608f0b3f67646cb095ad914836394e736d6a1be5dace1ade13bce1

                                        jwplayer.key = "Ywok59g9j93GtuSU7+axNzjIp/TBfiK4s0vvYg==";
jwplayer('layer').setup({
    file: 'http://s13.speedvid.net:8777/4lamitmpu7rwim52w5yxyfugtf3tt5dzrbquaf5j4436ptxxx3xvndpf5bma/v.mp4',
    image: 'http://s13.speedvid.net:8777/i/03/00118/5ol83dcscb2q.jpg',
    duration: '2553',
    preload: "none",
    primary: primary,
    width: "100%",
    height: "100%",
    skin: {
        name: "flat"
    },
    logo: {
        file: 'http://www.speedvid.net/images/logo_small.png',
        hide: true,
        position: 'top-left',
        link: 'http://www.speedvid.net/'
    },
    sharing: {
        link: 'http://www.speedvid.net/hgcd06yxp6hf',
        code: '<IFRAME SRC="http://www.speedvid.net/embed-hgcd06yxp6hf-640x360.html" FRAMEBORDER=0 MARGINWIDTH=0 MARGINHEIGHT=0 SCROLLING=NO WIDTH=640 HEIGHT=360 ALLOWFULLSCREEN></IFRAME>'
    },
    abouttext: "SpeedVid.net",
    aboutlink: "http://www.speedvid.net/",
});
                                    

Executed Writes (5)

#1 JavaScript::Write (size: 109, repeated: 1) - SHA256: c20050ddcceecbb6d60855e6ad4208136a2ed04684276a1c40ab16fd30a5a42c

                                        < SCRIPT language = 'Javascript'
src = '//server.cpmstar.com/view.aspx?poolid=77926&script=1&rnd=564575' > < /SCRIPT>
                                    

#2 JavaScript::Write (size: 28, repeated: 1) - SHA256: d9745c7bbfb780002808f8e9c4901355b880e3b9b528b5611b40e86c8db5319c

                                        < div class = "l163op21" > < /div>
                                    

#3 JavaScript::Write (size: 28, repeated: 1) - SHA256: 5f25534ef5b15f56f42f9d54b0706a0ab4ac8d7edc6a6e7347a0078b30964314

                                        < div class = "q163op1y" > < /div>
                                    

#4 JavaScript::Write (size: 717, repeated: 1) - SHA256: 6964e994e6ec1bd9ee34a81769212bc4efc4ef34ae74376c1ed0b5779cd43485

                                        < script type = "text/javascript" > function adloaded() {
    var chkRdyInterval;
    var chkBodyRdy = function() {
        if (document.getElementsByTagName('body')[0]) {
            clearInterval(chkRdyInterval);
            parent.cpmstar_anchorad.anchorReady();
        }
    };
    var adReady = function() {
        chkRdyInterval = setInterval(function() {
            chkBodyRdy();
        }, 10);
    };
    adReady();
}

function ieLoadBugFix(scriptElement, callback) {
    if (scriptElement.readyState == "loaded" || scriptElement.readyState == "complete") {
        callback();
    } else {
        setTimeout(function() {
            ieLoadBugFix(scriptElement, callback);
        }, 100);
    }
} < /script><script type="text/javascript
" id='adscript' name='adscript' src="
http: //server.cpmstar.com/view.aspx?poolid=77929&subpoolid=0&script=1&rnd=2083" onload='adloaded();'></script>
                                    

#5 JavaScript::Write (size: 53, repeated: 1) - SHA256: 21c0856a56a17c859ff93b4d2c5745ccb222225299fc660116d592a707ad6f4f

                                        < style type = "text/css" > .tabber {
    display: none;
} < /style>
                                    


HTTP Transactions (74)


Request Response
                                        
                                            GET /cdn-cgi/apps/head/Epv-XBnsqK1iimfHm62woRI6bJE.js HTTP/1.1 
Host: www.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.111.6
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Content-Length: 2357
Connection: keep-alive
x-amz-id-2: niM8kl0njZSz9gI93Hyz0ALbQN2W4wEqdpOU97GdWWEYDpCDHLdaYQJXWzM+5jxFk4fHUkkIODY=
x-amz-request-id: 6457574984124D86
Cache-Control: public, max-age=31536000
Content-Encoding: gzip
Last-Modified: Sat, 19 Aug 2017 09:14:11 GMT
x-amz-version-id: 3.xRdTeUDPBZilKRKsABDImZKxFUWyas
Etag: "f5498a66ec00b61e0fccc2f35d99faa0"
CF-Cache-Status: HIT
Expires: Fri, 15 Nov 2019 01:57:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 479e1c245249428b-OSL


--- Additional Info ---
Magic:  gzip compressed data
Size:   2357
Md5:    f5498a66ec00b61e0fccc2f35d99faa0
Sha1:   129bfe5c19eca8ad628a67c79badb0a1123a6c91
Sha256: babaeef5c95da8e9f52da58b25279a132d154524d0a69abf265c201bd4c04e4d
                                        
                                            GET /y1s1vt9co76j HTTP/1.1 
Host: www.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.25.111.6
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; expires=Fri, 15-Nov-19 01:57:56 GMT; path=/; domain=.speedvid.net; HttpOnly lang=1; domain=.speedvid.net; path=/; HttpOnly
Expires: Wed, 14 Nov 2018 01:58:27 GMT
Server: cloudflare
CF-RAY: 479e1c2212404285-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   133586
Md5:    ca9f982a00a56697f706425fab1683af
Sha1:   719037dd2faeb89c9e1dd525956521ed249e5d44
Sha256: f24dc44f61235831ec5e524dd7fd799e9b76f66e59d3451a9524e168b4bea666
                                        
                                            GET /jw7/bin/skins/flat.min.css HTTP/1.1 
Host: www.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.111.6
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2016 13:35:00 GMT
Etag: W/"a60710-2caa-53fd8cee2a900"
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 479e1c26128c428b-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2589
Md5:    e3e0f68539323275a77dc09a6822d69f
Sha1:   d3b7ca09c15c2031ed4a616afcd565dee29cd212
Sha256: 46dc3b42ceecc58381ecbda07d34ba6d712df937e069e95371826a47ee7d8d8a
                                        
                                            GET /cdn/css/main.css HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=30209
Etag: W/"1320a30-7601-54ba67a204012"
Last-Modified: Sun, 26 Mar 2017 18:34:29 GMT
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 479e1c264295428b-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6247
Md5:    8834f7a45c56a4880ba2deedabec3eb6
Sha1:   a13277294b0041933e6f7c75e50dcd348d6969d2
Sha256: f2b69e084795d86f8eaec0d9ed2a37f3c49b93d20f19293442cdba46716cb6b9
                                        
                                            GET /cdn/css/reset.css HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=817
Etag: W/"1320a32-331-54ba67a29f472"
Last-Modified: Sun, 26 Mar 2017 18:34:29 GMT
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 479e1c26431642a3-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   320
Md5:    f986a8d890d939b345428037de0e6290
Sha1:   51fd5e59c82d9b067f4a24a7683745e42e88f3a0
Sha256: 2cd18d2b7c111d7298817861e679c3e5af8747fdd98eb1fc3dab224c9102b6c8
                                        
                                            GET /cdn/css/dataurl.css HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=1591
Etag: W/"1320a26-637-54ba679d1222a"
Last-Modified: Sun, 26 Mar 2017 18:34:23 GMT
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 479e1c2646964255-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   355
Md5:    69fe60678df599c62bd71407086cd69f
Sha1:   766231ff32893ef5a1a48bceead721ee02a684c4
Sha256: c288c8c978a30bb88a4cdbceb0bb9fc7c2ba31f9557a85d5879252a7a1f83578
                                        
                                            GET /cdn/js/xupload.js HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=6272
Etag: W/"1320ad1-1880-54ba67f0ed2d2"
Last-Modified: Sun, 26 Mar 2017 18:35:51 GMT
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 479e1c2655d74261-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2072
Md5:    1ad054ed240d12d2c398c9d788e6acf4
Sha1:   eb8368143ca914a9ec3e1ddbc488ff25735fe0b9
Sha256: 327804baa400fc21e4c8e12e6722ac139a7069632dcd839bfee890b58c6bcc13
                                        
                                            GET /cdn/js/jquery.min.js HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 26 Mar 2017 18:35:46 GMT
Etag: W/"1320ac5-17278-54ba67ebe073a"
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 479e1c2652bf4285-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   33733
Md5:    d84913548440d1eb9086fd06a90ef574
Sha1:   e918fcbaecd78cdad42fc472eb022597bdef78cd
Sha256: 1ce4db28e4ef125e64717c133f12f1957841675b173e53a33c0861125065f047
                                        
                                            GET /cdn/css/mycloud.css HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=6035
Etag: W/"1320a31-1793-566951b031de0"
Last-Modified: Sun, 04 Mar 2018 12:11:12 GMT
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 479e1c26629b428b-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1483
Md5:    9052c98c741ee099461613f94f06a335
Sha1:   e9ade27551428c3620bcafc5c4dac3e089f21dce
Sha256: 1b7597627726d395b66206f2da4646e36134aac8126157294ff54ec45c24a89b
                                        
                                            GET /cdn/js/pace.min.js HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 26 Mar 2017 18:35:48 GMT
Etag: W/"1320ac9-304b-54ba67ed7cce2"
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 479e1c26573042c1-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4284
Md5:    8adfe942dc30cb1722fa35a352cfe079
Sha1:   cb5e748f28affb65041d3247bd8f652d0234dfce
Sha256: 2872f6aabccce25627436ac75f308abc3caf69b70651e9455f07719853b991c6
                                        
                                            GET /cdn/js/jquery.cookie.js HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=4331
Etag: W/"1320abe-10eb-54ba67e62faa2"
Last-Modified: Sun, 26 Mar 2017 18:35:40 GMT
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 479e1c26631d42a3-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   462
Md5:    8b4ca0a657e9b9a4903bb0cdf3da2cbc
Sha1:   1d930815bc27076300c7eeb057458d030c12a0d7
Sha256: 4ace8a01912484487705e6f4825d9dd15e4c7911f045d3e767029ec5fd77804a
                                        
                                            GET /cdn/js/tabber.js HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=6147
Etag: W/"1320acc-1803-54ba67eeea0a2"
Last-Modified: Sun, 26 Mar 2017 18:35:49 GMT
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 479e1c26669c4255-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1854
Md5:    ea9476b08c21b19b56d2695f0fac6d02
Sha1:   2ebd501476198753a99f5098efda9015ba8a9814
Sha256: 9fbf6179694887f881062f8141c78fef0ec92790f77baec804cfdeb64f75a86c
                                        
                                            GET /cdn/images/logo.png HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Content-Length: 2873
Connection: keep-alive
Cf-Bgj: imgq:85
Cf-Polished: origSize=2899
Etag: "1320a94-b53-54ba67cec353a"
Last-Modified: Sun, 26 Mar 2017 18:35:16 GMT
Vary: Accept
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 479e1c2672c84285-OSL


--- Additional Info ---
Magic:  PNG image, 199 x 41, 8-bit/color RGBA, non-interlaced
Size:   2873
Md5:    77ad4e9a822020526ecc411348cc72e6
Sha1:   a8d8bd99f051f667627ec321ba490c2263051c97
Sha256: 8e19b5d8d6e497fbad95a3aec1be231768c4bd9665ec3d3e2f4833f512fd5f91
                                        
                                            GET /cdn/images/button/cinemaon.png HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Content-Length: 771
Connection: keep-alive
Cf-Bgj: imgq:85
Cf-Polished: origSize=1240
Etag: "1320b2c-4d8-54ba682825681"
Last-Modified: Sun, 26 Mar 2017 18:36:49 GMT
Vary: Accept
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 479e1c26731e42a3-OSL


--- Additional Info ---
Magic:  PNG image, 111 x 31, 8-bit/color RGB, non-interlaced
Size:   771
Md5:    d7dbd41f20bbbb907a6e84ab3f2c8961
Sha1:   ddcda475c8adb04f973c50656330cb3c1edf9195
Sha256: 3978079fc10564670819d81fc790283bd0e03160d1624c2ae185eb514541ec7d
                                        
                                            GET /cdn/images/io.gif HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Content-Length: 43
Connection: keep-alive
Cf-Bgj: imgq:85
Cf-Polished: status=not_needed
Etag: "1320be7-2b-54bb939ab4b20"
Last-Modified: Mon, 27 Mar 2017 16:56:32 GMT
Vary: Accept
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 479e1c2672a0428b-OSL


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    6f81c41597d3f5a336f458822cc0c32a
Sha1:   8cd77a54b38f1fb376b45af2eaab8f5982523b8d
Sha256: 5704a2e9f2f7ce43a79f9b407f1aedcfd50223cbe8bd2f71ff8c5c819e469cbc
                                        
                                            GET /cdn/images/button/cinemaoff.png HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Content-Length: 778
Connection: keep-alive
Cf-Bgj: imgq:85
Cf-Polished: origSize=1276
Etag: "1320b2b-4fc-54ba682804b11"
Last-Modified: Sun, 26 Mar 2017 18:36:49 GMT
Vary: Accept
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 479e1c2676a14255-OSL


--- Additional Info ---
Magic:  PNG image, 112 x 31, 8-bit/color RGB, non-interlaced
Size:   778
Md5:    17328f90d9401eb831ad90d38c4c3fe2
Sha1:   2e1818e39bf1ae1074c9ee1c4b12b55fe99f8136
Sha256: 77dfccee0cbe30f2197cc0e68f29c09fbfa73e1c5d69d1c3120d59de0b4f423c
                                        
                                            GET /cdn/images/Flash.png HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Content-Length: 712
Connection: keep-alive
Cf-Bgj: imgq:85
Cf-Polished: origSize=1374
Etag: "1320a7c-55e-54ba67c4aa1f2"
Last-Modified: Sun, 26 Mar 2017 18:35:05 GMT
Vary: Accept
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 479e1c2672cb4285-OSL


--- Additional Info ---
Magic:  PNG image, 153 x 31, 8-bit/color RGB, non-interlaced
Size:   712
Md5:    7af8ccdaff07cde447a3a06386e4b062
Sha1:   eb60e4dbe17767231f4ed9756a56bb6e9534441d
Sha256: 77427a0dc372f4403ffc698f364b86770a678e34350a004a40d170e0c4635044
                                        
                                            GET /cdn/images/HTML5.png HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Content-Length: 755
Connection: keep-alive
Cf-Bgj: imgq:85
Cf-Polished: origSize=1462
Etag: "1320a88-5b6-54ba67c9ea5c2"
Last-Modified: Sun, 26 Mar 2017 18:35:10 GMT
Vary: Accept
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 479e1c26832142a3-OSL


--- Additional Info ---
Magic:  PNG image, 153 x 31, 8-bit/color RGB, non-interlaced
Size:   755
Md5:    8b0b130c5a7f935206fc483d4bcd2c0e
Sha1:   22b9ad21b6c9f6c4718f78f6c236c98bf310361c
Sha256: fbe739f64ce3fe182479655787340767402d303ca48401670dd4a4033c5e5f33
                                        
                                            GET /cdn/images/button/add.png HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Content-Length: 984
Connection: keep-alive
Cf-Bgj: imgq:85
Cf-Polished: origSize=1701
Etag: "1320b2a-6a5-54ba6827707f9"
Last-Modified: Sun, 26 Mar 2017 18:36:49 GMT
Vary: Accept
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 479e1c2686a24255-OSL


--- Additional Info ---
Magic:  PNG image, 160 x 31, 8-bit/color RGB, non-interlaced
Size:   984
Md5:    0c4922aade968e7386d671ebec89c4b4
Sha1:   5fe6d83a6519babe9f504ca2449f6c081aa457b2
Sha256: fe974bfcbcf8a93e76343139df73e9389ac8e28ff7fa84d3b4c3536b4857b946
                                        
                                            GET /cdn/jw7/bin/jwplayer-7.7.1/jwplayer.js HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=210424
Etag: W/"1320b92-335f8-54ba6886c9ec1"
Last-Modified: Sun, 26 Mar 2017 18:38:29 GMT
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 479e1c2675dc4261-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   59480
Md5:    b71538b58c8e08939f3e11800939c7b0
Sha1:   65bd17aa8494eb6bbd67a937a6620843a26c9452
Sha256: 50c024f24ef993df19bb880ea8ee1cd001c3a92bc418b3fdd8de3cb26e6b5208
                                        
                                            GET /cdn/images/button/embed.png HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Content-Length: 855
Connection: keep-alive
Cf-Bgj: imgq:85
Cf-Polished: origSize=1490
Etag: "1320b2f-5d2-54ba6829044e9"
Last-Modified: Sun, 26 Mar 2017 18:36:50 GMT
Vary: Accept
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 479e1c2692a4428b-OSL


--- Additional Info ---
Magic:  PNG image, 128 x 31, 8-bit/color RGB, non-interlaced
Size:   855
Md5:    c8ad3b445abfdf378a081bba83a5686f
Sha1:   ef8969d01d6d55969070fc75739fe322974b6483
Sha256: 88d8b250cfb002d94e4fc8aad106e244aba823e08af933f9b5e600abeb9dcf15
                                        
                                            GET /cdn/images/button/download.png HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Content-Length: 1003
Connection: keep-alive
Cf-Bgj: imgq:85
Cf-Polished: origSize=1708
Etag: "1320b2e-6ac-54ba6828dfee1"
Last-Modified: Sun, 26 Mar 2017 18:36:50 GMT
Vary: Accept
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 479e1c2682ce4285-OSL


--- Additional Info ---
Magic:  PNG image, 146 x 31, 8-bit/color RGB, non-interlaced
Size:   1003
Md5:    5c85abfb003468180158ff71278435fc
Sha1:   5f34342905102698ce75961535c8965225661b60
Sha256: c6366224dc6a77038b21ecdd75704ad3d9387c42aa2b4aca33ee2eaedfd90b23
                                        
                                            GET /cdn/images/close_gray.png HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Content-Length: 445
Connection: keep-alive
Cf-Bgj: imgq:85
Cf-Polished: origSize=3327
Etag: "1320a68-cff-54ba67bc2c89a"
Last-Modified: Sun, 26 Mar 2017 18:34:56 GMT
Vary: Accept
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 479e1c26773442c1-OSL


--- Additional Info ---
Magic:  PNG image, 32 x 32, 8-bit gray+alpha, non-interlaced
Size:   445
Md5:    c05993f25481d042fbdb63faf117fae0
Sha1:   bf487171ddb8fd8c922133b1f7d06e3254735a43
Sha256: 3504d2f17628695a4c46506a459ab2794ced33c361045911e79467a6bfc28e59
                                        
                                            GET /cdn/images/button/flag.png HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Content-Length: 524
Connection: keep-alive
Cf-Bgj: imgq:85
Cf-Polished: origSize=848
Etag: "1320b33-350-54ba682a5d859"
Last-Modified: Sun, 26 Mar 2017 18:36:52 GMT
Vary: Accept
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 479e1c26a32642a3-OSL


--- Additional Info ---
Magic:  PNG image, 78 x 31, 8-bit/color RGB, non-interlaced
Size:   524
Md5:    0dd483fa0e893e7da3a7c90dc42c8abf
Sha1:   6a43a252734b446f94b40c794bc04b8fe4e2d7ae
Sha256: 44433cf780496367d90d7e72780ea620fc2122645a98edc0d67344f865c06cb3
                                        
                                            GET /cdn/images/icon.ico HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 26 Mar 2017 18:35:12 GMT
Etag: W/"1320a8b-135e-54ba67caf43aa"
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:56 GMT
Cache-Control: public, max-age=1382400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 479e1c26b6a54255-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1654
Md5:    ee95e9d4ce7a4b4ca8bb32fad3357765
Sha1:   f19bbd73439b222171640b5ce6fabd6530820b74
Sha256: 2af4da5aaaa0e056a0e957cc5eeadaecd86c7a545d50ab859a6b9156ad95d4e9
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Nov 2018 01:57:56 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    d231e93c48f67c6c8c0d17bd326dc9d2
Sha1:   3fea4c4471503f2165c5f14faa2cb847e9ad7592
Sha256: 0683379ba1406065bbd65a8668a837a90d427ba871e0c7d1f6361a344b14b2f3
                                        
                                            GET /images/flags.png HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://meo.speedvid.net/cdn/css/main.css
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 15 Nov 2018 01:57:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:57 GMT
Cache-Control: public, max-age=1382400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 479e1c27b5f34261-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   244
Md5:    7d5b4e83397ce84ac31521d26fdc4fc6
Sha1:   682c1e0f60b0b8b93a9a3dbdae18433001ccbd5c
Sha256: 2e0244e67ee20a7be64a65f5f01dd33ecdab793a1b9943e9cadde7db111bcede
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.21.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Nov 2018 01:57:57 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /b0/15/9d/b0159d97ab661c1555e350067e939b2c.js HTTP/1.1 
Host: yim3eyv5.top
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         198.134.112.243
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.15.1
Date: Thu, 15 Nov 2018 01:57:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   13950
Md5:    2a7a1702624ce88093c72f33c02b53f6
Sha1:   d3cd424a9f1776189fc9a84fadf937a06b987e96
Sha256: 68ecff09c8421b66158e1f2067302776262cfd00d40ffdeef254279a98761af0

Alerts:
  IDS:
    - ET INFO HTTP Request to a *.top domain
                                        
                                            GET /cdn/images/button/facebook_icon.png HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 15 Nov 2018 01:57:57 GMT
Content-Length: 345
Connection: keep-alive
Cf-Bgj: imgq:85
Cf-Polished: origSize=512
Etag: "1320b30-200-54ba682987a79"
Last-Modified: Sun, 26 Mar 2017 18:36:51 GMT
Vary: Accept
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:57 GMT
Cache-Control: public, max-age=1382400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 479e1c2892e8428b-OSL


--- Additional Info ---
Magic:  PNG image, 32 x 32, 8-bit gray+alpha, non-interlaced
Size:   345
Md5:    a37e9ee71cab8470f4e33348256ee8ab
Sha1:   48197a860264fda21447083098b9b8c227f8147e
Sha256: f09188812a30f331be2ce905d6c3c65edece5a3cee912125ada4ad212f06b4f8
                                        
                                            GET /cdn/images/button/twitter_icon.png HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 15 Nov 2018 01:57:57 GMT
Content-Length: 508
Connection: keep-alive
Cf-Bgj: imgq:85
Cf-Polished: origSize=815
Etag: "1320b3d-32f-54ba682e19939"
Last-Modified: Sun, 26 Mar 2017 18:36:56 GMT
Vary: Accept
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:57 GMT
Cache-Control: public, max-age=1382400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 479e1c2893014285-OSL


--- Additional Info ---
Magic:  PNG image, 32 x 32, 8-bit gray+alpha, non-interlaced
Size:   508
Md5:    46ab992fc385fb8ffa6e3445e2028932
Sha1:   21b1f2ea1b141a88ea8e21831f310c9dc085db40
Sha256: ddc72ee9219e0feba4e3c0ef4f9824b0c2eb7f7f9be29d5872cb566344f240e6
                                        
                                            GET /cdn/js/dwo.js HTTP/1.1 
Host: meo.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.110.6
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Thu, 15 Nov 2018 01:57:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: origSize=11445
Etag: W/"1320183-2cb5-56933d2c51711"
Last-Modified: Fri, 06 Apr 2018 20:23:03 GMT
CF-Cache-Status: HIT
Expires: Sat, 01 Dec 2018 01:57:57 GMT
Cache-Control: public, max-age=1382400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 479e1c28978942c1-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6385
Md5:    f1c3a6edfb788cd3ff51d63167e58611
Sha1:   12bc0e5fb8b73e3fc18d9159e50aeb44b91c708a
Sha256: a2a4fe3377a56aed1bf3466a3525e07196efef580fa970047eed28e4fd83def8
                                        
                                            GET /%27+n.g+%27 HTTP/1.1 
Host: www.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1

                                         
                                         104.25.111.6
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 15 Nov 2018 01:57:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: cloudflare
CF-RAY: 479e1c2893004285-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   299
Md5:    814117554611806d422b7f3c3e1faef3
Sha1:   3faac768fe610186cb4ddfe98ab329ce7db4c76b
Sha256: 20c385ebff1fe6296918b53011016ad2df712e1779ea748a234f2d974e00be46
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 11 Nov 2018 01:21:34 GMT
Etag: 694CC5197B7BFBB4D756E3C959AC1D3905A3F40C
X-OCSP-Responder-ID: rmdccaocsp15
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=256410
Expires: Sun, 18 Nov 2018 01:11:27 GMT
Date: Thu, 15 Nov 2018 01:57:57 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    caaf815a162fb41be95ba1173e4b12ed
Sha1:   694cc5197b7bfbb4d756e3c959ac1d3905a3f40c
Sha256: 684a3e9f88ff66330bfc94d4350cc419032d949dfd0056c28c1c0271a700e994
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 08 Nov 2018 21:27:34 GMT
Etag: 57CCDD9892AD24566FD1BFEFE2C3876BC9D9EF9E
X-OCSP-Responder-ID: rmdccaocsp17
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=69517
Expires: Thu, 15 Nov 2018 21:16:34 GMT
Date: Thu, 15 Nov 2018 01:57:57 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    fb521fc407091468096101e82151391a
Sha1:   57ccdd9892ad24566fd1bfefe2c3876bc9d9ef9e
Sha256: 57d6c53de28e0822bd2a418b5b64c555c8249b0d26931ec61384f40f8176a1ac
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.18
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 08 Nov 2018 21:27:34 GMT
Etag: 52B08DA27AC7C6115961987B2C4F7E9CBF19E849
X-OCSP-Responder-ID: rmdccaocsp21
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=69522
Expires: Thu, 15 Nov 2018 21:16:39 GMT
Date: Thu, 15 Nov 2018 01:57:57 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    55c8029448bdeb7cddbdc180bf969536
Sha1:   52b08da27ac7c6115961987b2c4f7e9cbf19e849
Sha256: 1e7fc0a17968ce2ec6d603191a76a66ee9a0970041cb9b10d9891e43dbd0ef84
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         172.217.22.174
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Thu, 15 Nov 2018 01:01:53 GMT
Expires: Thu, 15 Nov 2018 03:01:53 GMT
Last-Modified: Mon, 05 Nov 2018 21:10:09 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17404
Cache-Control: public, max-age=7200
Age: 3364
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17404
Md5:    33586531225d561faadda61de818c510
Sha1:   9a3b5ffbdc4071557def3d9609eee6ad3c52d1e1
Sha256: 521d2fb506ca60463e914fd138e092f935579d31436dcff3cc6a1d216d06ef82
                                        
                                            GET /lib/coinhive.min.js HTTP/1.1 
Host: coinhive.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         104.20.209.59
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Thu, 15 Nov 2018 01:57:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=ded8a93743a9d5749ec9bb02112f060661542247078; expires=Fri, 15-Nov-19 01:57:58 GMT; path=/; domain=.coinhive.com; HttpOnly
Last-Modified: Mon, 15 Oct 2018 11:58:03 GMT
Etag: W/"5bc480cb-423b4"
Expires: Thu, 15 Nov 2018 09:57:58 GMT
Cache-Control: public, max-age=28800
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 479e1c308d724291-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   70162
Md5:    b6bb44f95a22a27e8b92d2ccbc591524
Sha1:   b5f4bf87301fb5291d70f392758d9c56ae374cc3
Sha256: e32b7829c99619bfa2c1de9e1ed9e9e515863b2d094e86c629c67c7350e8c96d

Alerts:
  urlquery:
    - Crypto currency mining script
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /r/collect?v=1&_v=j72&a=1829356857&t=pageview&_s=1&dl=http%3A%2F%2Fwww.speedvid.net%2Fy1s1vt9co76j&ul=en-us&de=UTF-8&dt=Watch&sd=24-bit&sr=1176x885&vp=1176x754&je=1&fl=10.0%20r45&_u=YEBAAUQ~&jid=1867711162&gjid=1343980344&cid=1767441800.1542247078&tid=UA-50452392-1&_gid=502240853.1542247078&_r=1&z=1373699856 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         172.217.22.174
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Thu, 15 Nov 2018 01:57:58 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /cached/js/anchorad_v100.pack.js HTTP/1.1 
Host: cdn.cpmstar.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         93.184.221.133
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
Date: Thu, 15 Nov 2018 01:57:58 GMT
Etag: "59c69e91873d41:0"
Last-Modified: Sat, 03 Nov 2018 00:02:54 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADM DEVa PSAa PSDa OUR OTR IND UNI NAV STA"
Server: ECAcc (ska/F6D7)
X-Cache: HIT
Content-Length: 6950


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   6950
Md5:    156749f482e07fcaac50cf9311f83aed
Sha1:   ae6dbe5ebe5debdc65ae05cfb782f17269cce446
Sha256: 88f51ca6297f3819394c26382b707d58b89e407487dd2115e1449e84b9679771
                                        
                                            GET /cached/x.png HTTP/1.1 
Host: cdn.cpmstar.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         93.184.221.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=259200
Date: Thu, 15 Nov 2018 01:57:58 GMT
Etag: "41f7181c393ed41:0"
Last-Modified: Mon, 27 Aug 2018 19:06:50 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADM DEVa PSAa PSDa OUR OTR IND UNI NAV STA"
Server: ECAcc (ska/F7B3)
X-Cache: HIT
Content-Length: 1477


--- Additional Info ---
Magic:  PNG image, 24 x 24, 8-bit/color RGBA, non-interlaced
Size:   1477
Md5:    cfc7f8bfe8359ec2a2a8faff27abbc36
Sha1:   0fc7b40a4d22d5d4a16eaab5198e40eca4ea5ab9
Sha256: ceb935663b3b51ae1d8d8b8f52a6a764df09ace3f143d519415035dd15784bf0
                                        
                                            GET /pop.js HTTP/1.1 
Host: c1.popads.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         185.76.9.13
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 15 Nov 2018 01:57:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 15 Apr 2018 14:16:47 GMT
Etag: W/"5ad35ecf-1108b"
Expires: Sun, 22 Apr 2018 14:20:58 GMT
Cache-Control: max-age=604800
Access-Control-Allow-Origin: *
Server: CDN77-Turbo
X-Edge-IP: 185.76.9.10
X-Edge-Location: stockholmSE
X-Cache: HIT
X-Age: 300986
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   28304
Md5:    0e22a3b06faf69618a2107eb1932665d
Sha1:   d584688330d0c96f6bdd2c2b5e5eb27566e9e2e2
Sha256: 808a7097e87ec3abc9ac976ec31bbf8478c05281d9bb7461f6d47861af3247e0
                                        
                                            GET /cached/js/lib.js HTTP/1.1 
Host: server.cpmstar.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: USER_ID=%f5%e9%0b%d4T%10%12Y%a2%de%01%b4%a6n%ed

                                         
                                         198.24.162.123
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Last-Modified: Tue, 30 Oct 2018 05:09:38 GMT
Accept-Ranges: bytes
Etag: "0d591c1e70d41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADM DEVa PSAa PSDa OUR OTR IND UNI NAV STA"
Date: Thu, 15 Nov 2018 01:57:59 GMT
Content-Length: 1702


--- Additional Info ---
Magic:  data
Size:   2424
Md5:    f55028b35238c44a1b54dd9be469ba09
Sha1:   2f4471d99dc71873bdefacc4e60f29c36afc65e9
Sha256: ee279559568821965ac1314feec987595547c27566d607eeb0a3d84848380b9a
                                        
                                            GET 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 HTTP/1.1 
Host: ihowed.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         54.85.167.236
HTTP/1.1 204 No Content
                                        
Date: Thu, 15 Nov 2018 01:57:59 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *


--- Additional Info ---
                                        
                                            GET /Q3Qzd0psS1AEdw4xR0cpFh9xESEJM1YAJjkyAyF+Ah1DPxgLH3JRPioQDkF4dkwDRGwzHVdKeGUHRxY+NgcORmwqGlUYd2UCDkZkdFoCWX1lAEMWLX5FFQc+NxgORn93RgFDfXNDCkB8dw HTTP/1.1 
Host: ihowed.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         54.85.167.236
HTTP/1.1 204 No Content
                                        
Date: Thu, 15 Nov 2018 01:57:59 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *


--- Additional Info ---
                                        
                                            GET /cached/zonefiles/58_48060_speedvid.js?v=17420 HTTP/1.1 
Host: server.cpmstar.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: USER_ID=%b0%ccT%90%ba%8c%3b%60%0d%7f2%256%9d%e9

                                         
                                         198.24.162.123
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Last-Modified: Wed, 24 Oct 2018 19:09:35 GMT
Accept-Ranges: bytes
Etag: "228a1e1acd6bd41:0"
Server: Microsoft-IIS/8.5
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADM DEVa PSAa PSDa OUR OTR IND UNI NAV STA"
Date: Thu, 15 Nov 2018 01:58:00 GMT
Content-Length: 2212


--- Additional Info ---
Magic:  ASCII English text, with CRLF, LF line terminators
Size:   2212
Md5:    fc142355992195974d03896ea5cc130d
Sha1:   3f906414c7f6d4d191db2405fbdcbb8561fb96b3
Sha256: 741d9a81c10293ea84c30f278030e3fe87118a2e2b5a64571577ff6f16fb8b85
                                        
                                            GET /%27+n.g+%27 HTTP/1.1 
Host: www.speedvid.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: __cfduid=d5c1509cc0752e469e9bbd77c0c6abe251542247076; lang=1; file_id=3641903; aff=5436; ref_url=; _ga=GA1.2.1767441800.1542247078; _gid=GA1.2.502240853.1542247078; _gat=1

                                         
                                         104.25.111.6
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 15 Nov 2018 01:58:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: cloudflare
CF-RAY: 479e1c3a54d6428b-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   299
Md5:    814117554611806d422b7f3c3e1faef3
Sha1:   3faac768fe610186cb4ddfe98ab329ce7db4c76b
Sha256: 20c385ebff1fe6296918b53011016ad2df712e1779ea748a234f2d974e00be46
                                        
                                            GET /cached/zonemasters/mobilemodules.js?ver=191 HTTP/1.1 
Host: cdn.cpmstar.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         93.184.221.133
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=259200
Date: Thu, 15 Nov 2018 01:58:00 GMT
Etag: "c371a289977bd41:0"
Last-Modified: Tue, 13 Nov 2018 21:26:27 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADM DEVa PSAa PSDa OUR OTR IND UNI NAV STA"
Server: ECAcc (ska/F6BA)
X-Cache: HIT
Content-Length: 42938


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   42938
Md5:    4c51754575c5cf801832d7698ced85ce
Sha1:   8233093faffed23dfe2e0100f63703714cf2ae4f
Sha256: c2ef44704a35003bd38c38c7ceaca503fb1b9301429589914f03aadf44bb9f32
                                        
                                            GET /i/?l=http%3A%2F%2Fwww.speedvid.net%2Fy1s1vt9co76j&j= HTTP/1.1 
Host: t.dtscout.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         107.182.231.45
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Thu, 15 Nov 2018 01:58:00 GMT
Transfer-Encoding: chunked
Connection: close
X-Z: I
Expires: Thu, 15 Nov 2018 01:57:59 GMT
Cache-Control: no-cache
Set-Cookie: l=a7bnLVvs0qgj/kylE8YwAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.dtscout.com; path=/


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   17
Md5:    1423358bac98dd731f0494f37862af07
Sha1:   e13b287e8655bfebb0f144ff37515049f69eb900
Sha256: 37c5cbe8ad795a530c7ad3e2a3574a4f9038c3fc10fc48ca4c1c74ed9ffdc6a4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         54.192.35.135
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=123702
Date: Thu, 15 Nov 2018 01:58:00 GMT
Etag: "5bebfb88-1d7"
Expires: Fri, 16 Nov 2018 12:19:42 GMT
Last-Modified: Wed, 14 Nov 2018 10:40:08 GMT
Server: ECS (dca/532C)
X-Cache: Miss from cloudfront
Via: 1.1 f6b224d80f8d0627a1d4feaeed2e53af.cloudfront.net (CloudFront)
X-Amz-Cf-Id: o5qYdBhL6TuI7jS8qYUIyd7GByZZeO_zfKniW1qTTeSqkZegn9dJqg==


--- Additional Info ---
Magic:  data
Size:   471
Md5:    8ade5ea1261d469cee4fb78ad64e48c6
Sha1:   f072742fc1b9fe160c20e3352579ca41d61b20a2
Sha256: 1757d98eac95452035d007e011c54d78512d64c43f603d1fdee214e3649543be
                                        
                                            GET /cached/js/lib.js HTTP/1.1 
Host: server.cpmstar.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: USER_ID=%b0%ccT%90%ba%8c%3b%60%0d%7f2%256%9d%e9

                                         
                                         198.24.162.123
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: max-age=14400
Content-Encoding: gzip
Last-Modified: Tue, 30 Oct 2018 05:00:12 GMT
Accept-Ranges: bytes
Etag: "0163570d70d41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADM DEVa PSAa PSDa OUR OTR IND UNI NAV STA"
Access-Control-Allow-Origin: *
Date: Thu, 15 Nov 2018 01:58:02 GMT
Content-Length: 1702


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   1702
Md5:    8e0c390071f16db929ef7b92c8112943
Sha1:   747459a468b17471890e57ddb211b820bd30113f
Sha256: 7620ffb448f790aaced129a0cad4be64760be9dff8a1ba7281729b5b0ce8096d
                                        
                                            GET /cached/zonefiles/58_48060_speedvid.js?v=276201 HTTP/1.1 
Host: server.cpmstar.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j
Cookie: USER_ID=%b0%ccT%90%ba%8c%3b%60%0d%7f2%256%9d%e9

                                         
                                         198.24.162.123
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: max-age=259200
Last-Modified: Wed, 24 Oct 2018 19:09:33 GMT
Accept-Ranges: bytes
Etag: "44de5319cd6bd41:0"
Server: Microsoft-IIS/8.5
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADM DEVa PSAa PSDa OUR OTR IND UNI NAV STA"
Access-Control-Allow-Origin: *
Date: Thu, 15 Nov 2018 01:58:00 GMT
Content-Length: 2212


--- Additional Info ---
Magic:  ASCII English text, with CRLF, LF line terminators
Size:   2212
Md5:    fc142355992195974d03896ea5cc130d
Sha1:   3f906414c7f6d4d191db2405fbdcbb8561fb96b3
Sha256: 741d9a81c10293ea84c30f278030e3fe87118a2e2b5a64571577ff6f16fb8b85
                                        
                                            POST / HTTP/1.1 
Host: ocsp.rootca1.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request

                                         
                                         54.192.35.167
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1426
Connection: keep-alive
Date: Thu, 15 Nov 2018 01:58:00 GMT
Server: WEBrick/1.3.1 (Ruby/2.3.7/2018-03-28)
X-Cache: Miss from cloudfront
Via: 1.1 5df88084d2e6c90392a3f4e5a634f39d.cloudfront.net (CloudFront)
X-Amz-Cf-Id: uT36jEVZGwnEt9Ekp3jhBglxQokVwaSIpdScmrmFYJvJo7xQpwEOrw==


--- Additional Info ---
Magic:  data
Size:   1426
Md5:    bfb7b801403a779b47cde8fc4ed35632
Sha1:   264bfe660b5b518e08c3a585597026f2191a5c12
Sha256: dd4613fcc5742ab2d8c5447e760aa5ed7a73e3550d581fa6688cd4ac1d0ecaa6
                                        
                                            GET /c?r=1542247080&v=3&siteId=1126853&minBid=&popundersPerIP=&blockedCountries=&documentRef=&s=1176,885,1,1176,885 HTTP/1.1 
Host: serve.popads.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         216.21.13.17
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Set-Cookie: PP_CV=yes; expires=Thu, 15-Nov-2018 02:58:00 GMT; Max-Age=3600 fraudcheck=5e31096583cfa8c75830e4854ad8350e; expires=Sat, 15-Dec-2018 01:58:00 GMT; Max-Age=2592000; path=/; domain=.popads.net PopAds_CF_Pass=1; expires=Thu, 15-Nov-2018 07:58:00 GMT; Max-Age=21600
Cache-Control: private, no-store, no-cache, must-revalidate, no-transform, max-age=0
Pragma: no-cache
Content-Length: 997
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Thu, 15 Nov 2018 01:58:00 GMT
Accept-Ranges: bytes
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   997
Md5:    c109b755e84bdd55f4d79285f3021481
Sha1:   5b3d4e917599a40b4767a1e426a4a9d0ad9d909b
Sha256: c2e15fd5bee8ec5ee310b9a2b49514fe8425e29535a8ff04485239a28b9b916b
                                        
                                            GET / HTTP/1.1 
Host: c.adsco.re
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         104.17.167.186
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Thu, 15 Nov 2018 01:58:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=dfd6cf0e0cf3f85e7f007fb13ea1947341542247080; expires=Fri, 15-Nov-19 01:58:00 GMT; path=/; domain=.adsco.re; HttpOnly
Content-Encoding: gzip
CF-Cache-Status: HIT
Cache-Control: max-age=259200,public,immutable
CF-RAY: 479e1c3e17644273-OSL
Etag: "2580477e7bab1514d7333dd449e13a43"
Expires: Tue, 13 Nov 2018 21:22:08 GMT
Link: <//adsco.re>;rel=preconnect,<//6.adsco.re>;rel=prefetch,<//ebb07c2aea2c3fd559b70c22b4a254bd.l.adsco.re>;rel=prefetch
Vary: Accept-Encoding
Server: cloudflare


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   11214
Md5:    d734b17d372a49ed87b5a088fb4c0d6b
Sha1:   0c29f3ee5911da8c95ac3f5625db622f942e08f9
Sha256: 0d4b84b1304c66dbb9c2630d8c6a1184deac4dd26b8825c20f22f84d75e42e2a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=121259
Date: Thu, 15 Nov 2018 01:58:00 GMT
Etag: "5bebed75-1d7"
Expires: Fri, 16 Nov 2018 11:38:59 GMT
Last-Modified: Wed, 14 Nov 2018 09:40:05 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    6710fa26ca1992bade0d8803a3a33785
Sha1:   0a6d9e062817f2c630cf31d8a547208b6c332f36
Sha256: cd7f5790845e53eb7e15d56295c70996480c0b65922f7fbfa765c80eef050981
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=92051
Date: Thu, 15 Nov 2018 01:58:00 GMT
Etag: "5beb7aa6-1d7"
Expires: Fri, 16 Nov 2018 03:32:11 GMT
Last-Modified: Wed, 14 Nov 2018 01:30:14 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    e934d04eefff621bd53f23edb8453610
Sha1:   bfed024cc0811c3b82a8fb9a1527e22f3669af36
Sha256: 38d5ed92c0594adfd4d06be96e35b253d22353e4c8808f3050b0341d080a3857
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: de.mytrkr.xyz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.28.12.198
HTTP/1.1 204 No Content
                                        
Date: Thu, 15 Nov 2018 01:58:00 GMT
Connection: keep-alive
Set-Cookie: __cfduid=de9000e8c252d341fa644b1d6ba3d74171542247080; expires=Fri, 15-Nov-19 01:58:00 GMT; path=/; domain=.mytrkr.xyz; HttpOnly
Server: cloudflare
CF-RAY: 479e1c3e66115b27-HEL


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: s.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.12.2
Content-Length: 1754
Content-Transfer-Encoding: binary
Cache-Control: max-age=321790, public, no-transform, must-revalidate
Last-Modified: Sun, 11 Nov 2018 19:17:19 GMT
Expires: Sun, 18 Nov 2018 19:17:19 GMT
Date: Thu, 15 Nov 2018 01:58:00 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1754
Md5:    4d627af818ed8fd5fd8eb85f1ded2209
Sha1:   a27ad3b44dc0a9bfccf2b8eb0179b6d8e2feff91
Sha256: 24d95155b3ff04ca3384df1e8fa5ffed68090af18ed1990eca979dbd6009fc70
                                        
                                            GET /V2NBbnV4ACxRByNeMRwQMwwiARsjBi8aETIPKBgQJRpvBxsxDA HTTP/1.1 
Host: boudja.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         13.33.51.48
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 4141
Connection: keep-alive
Date: Thu, 15 Nov 2018 01:58:00 GMT
Cache-Control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
Content-Encoding: gzip
P3P: CP="NID DSP ALL COR"
Pragma: no-cache
Set-Cookie: csu=6f8ec061-db33-4831-942b-56f0baa6f300
X-Cache: Miss from cloudfront
Via: 1.1 bb45ea5b3a4c19db9fecccf1bc9e803d.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 1n3zY_OAjSIKWd0t9F3TJNw1q4LBQNvSaIf3Fzgh08IiQnJLrGRZyA==


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   4141
Md5:    a18ea24355fc65bea0119c1e5bcf5551
Sha1:   cf49d1bbf8f5bbbb038afdda457c508b55fa6210
Sha256: a7ca1f9f15deaa6fce2a2d6c9a282d133ceaff7f84d8e09c2ccfc42e95e136c7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 11 Nov 2018 13:07:28 GMT
Etag: 5B6992EE137CF22BA5140EB7BD8643AFC2E3350C
X-OCSP-Responder-ID: rmdccaocsp18
Content-Length: 472
Cache-Control: public, no-transform, must-revalidate, max-age=298804
Expires: Sun, 18 Nov 2018 12:58:04 GMT
Date: Thu, 15 Nov 2018 01:58:00 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   472
Md5:    6ebdfbf3e0df5b3359bac069dd8f38bb
Sha1:   5b6992ee137cf22ba5140eb7bd8643afc2e3350c
Sha256: 6c55d2c86ec2158b0d4c4f1e9ac9cd72d17821d0e9771dd62cfa7d5a6febaf00
                                        
                                            GET /atrk.js HTTP/1.1 
Host: d31qbv1cthcecs.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         13.33.51.69
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 09 Oct 2018 23:36:18 GMT
Last-Modified: Tue, 09 Oct 2018 23:27:27 GMT
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 30037
X-Cache: Hit from cloudfront
Via: 1.1 3cbef567d2429dd14fe6247f2a3b54ef.cloudfront.net (CloudFront)
X-Amz-Cf-Id: Aq-gwtFwQhd9LYkZQ6cOiurVMK6oiKkH_FGxqRmdI_Mlss2zQiJ04w==


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1633
Md5:    38477cceca43e949d220c8e1e379b9c3
Sha1:   004b230f143b3f6eb8d7a42d4bc33703e3a30bef
Sha256: 4b95a1265a4f35dbaf572116b4d76a27c2fe99d7e5817c498366c8c69144f3fb
                                        
                                            GET /x.png HTTP/1.1 
Host: cloudfront-labs.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         72.21.202.25
HTTP/1.1 302 Found
                                        
Cache-Control: private
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Access-Control-Allow-Origin: *
Location: http://a7bf1d6a362bc0ad6fcd662af26af5571.profile.mia3-c2.cloudfront.net/test.png
Content-Length: 0
Date: Thu, 15 Nov 2018 01:58:00 GMT
Server: Server


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         54.192.35.135
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=125842
Date: Thu, 15 Nov 2018 01:58:01 GMT
Etag: "5bebf935-1d7"
Expires: Fri, 16 Nov 2018 12:55:23 GMT
Last-Modified: Wed, 14 Nov 2018 10:30:13 GMT
Server: ECS (dca/24A7)
X-Cache: Miss from cloudfront
Via: 1.1 7fd482036f1d27e37908b1f68a4b92b5.cloudfront.net (CloudFront)
X-Amz-Cf-Id: pE1_eTJprMieKgT-yDf2XQRpuW95axDztM_zK_Kh6-LOmgfF9chooQ==


--- Additional Info ---
Magic:  data
Size:   471
Md5:    4a0550eb8163408e9640e06d9dd8219d
Sha1:   24c1d957011176b69f971bb45c42e55c4c45ef9d
Sha256: 0088777aec26312a04cd0bd913f10b9bb5f945af47be0db5f073c43f2b6970c9
                                        
                                            GET /d/px/?_pid=15261&_psign=2bf069f9d9a7a84e2904dfa3d3b805bd&_puuid=6f8ec061-db33-4831-942b-56f0baa6f300&_rand=1542247080845 HTTP/1.1 
Host: p.adsymptotic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://boudja.com/V2NBbnV4ACxRByNeMRwQMwwiARsjBi8aETIPKBgQJRpvBxsxDA

                                         
                                         104.18.101.194
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 15 Nov 2018 01:58:00 GMT
Content-Length: 43
Connection: keep-alive
Set-Cookie: __cfduid=d22ba3273e383c05a581caef8306d1e7f1542247080; expires=Fri, 15-Nov-19 01:58:00 GMT; path=/; domain=.adsymptotic.com; HttpOnly
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 479e1c3fbf814255-OSL


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         54.192.35.135
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=151424
Date: Thu, 15 Nov 2018 01:58:01 GMT
Etag: "5bec70b5-1d7"
Expires: Fri, 16 Nov 2018 20:01:45 GMT
Last-Modified: Wed, 14 Nov 2018 19:00:05 GMT
Server: ECS (dca/2499)
X-Cache: Miss from cloudfront
Via: 1.1 7fd482036f1d27e37908b1f68a4b92b5.cloudfront.net (CloudFront)
X-Amz-Cf-Id: eehkdhNAVONPO18_Ku5_JLsqO9lyebP_n48XpD3aHqgASvpt5yYMYg==


--- Additional Info ---
Magic:  data
Size:   471
Md5:    997254935ea7e5ee7fb7f8ab2e1257f5
Sha1:   2bf6b15ca9a358a4177ddf5432dd9c7e1943d577
Sha256: 5e11366a08bc3c53b5fb78a8a354b09aa66d4b6b0483cd98c311e5807b36abb2
                                        
                                            GET /test.png HTTP/1.1 
Host: a7bf1d6a362bc0ad6fcd662af26af5571.profile.mia3-c2.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         13.35.112.154
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Server: CloudFront
Date: Thu, 15 Nov 2018 01:58:01 GMT
Content-Length: 58
Connection: keep-alive
Expires: Thu, 15 Nov 2018 01:58:01 GMT
Cache-Control: max-age=0
X-Amz-Cf-Id: 1zhfT2koqt1cHtr_YKMpwGdudhc21nFJD5Nd8ZGHgW8QSvOts3CsVA==
X-Cache: RoutingProfileExp from cloudfront
Via: 1.1 c3fb36940fb36cf227975bfb7c09ea6d.cloudfront.net (CloudFront)


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   58
Md5:    b1935f865a4eade8564b6ef4b022f27f
Sha1:   f42746792e52473c4d9e152aceb7080550d3c1e5
Sha256: 21c52b1622a4539bf82dbc7fd4a2638cdde3b8151697eb5c4d3dbb426576fbaa
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         54.192.35.135
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=171518
Date: Thu, 15 Nov 2018 01:58:01 GMT
Etag: "5becb963-1d7"
Expires: Sat, 17 Nov 2018 01:36:39 GMT
Last-Modified: Thu, 15 Nov 2018 00:10:11 GMT
Server: ECS (dca/2469)
X-Cache: Miss from cloudfront
Via: 1.1 7fd482036f1d27e37908b1f68a4b92b5.cloudfront.net (CloudFront)
X-Amz-Cf-Id: q6HLPFrJKtzn7cpkvcihJ_IJr1gy54k7Fuf-Z2Bq9cDuLMU3ox9b6g==


--- Additional Info ---
Magic:  data
Size:   471
Md5:    a40032f73519d255a51f278fa5d300bf
Sha1:   b0c2d8d11926fcdc45d4153acf674f48ed277d86
Sha256: c082a9987d882741bbf9159182aea1ae8427ca435f813e5dba490e20a32fa6bd
                                        
                                            GET /sc?u=6f8ec061-db33-4831-942b-56f0baa6f300 HTTP/1.1 
Host: lucklayed.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://boudja.com/V2NBbnV4ACxRByNeMRwQMwwiARsjBi8aETIPKBgQJRpvBxsxDA

                                         
                                         13.33.51.22
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Content-Length: 0
Connection: keep-alive
Date: Thu, 15 Nov 2018 01:58:01 GMT
Cache-Control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
P3P: CP="NID DSP ALL COR"
Pragma: no-cache
Set-Cookie: csu=6f8ec061-db33-4831-942b-56f0baa6f300
X-Cache: Miss from cloudfront
Via: 1.1 635db0e527ab702d529b0b2a9d329352.cloudfront.net (CloudFront)
X-Amz-Cf-Id: Wndv-7JKOIzrtx2VaNxIhwDNyBGfl3Bz0ezjoHmlIha9OYipA1hijw==


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         54.192.35.135
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=154423
Date: Thu, 15 Nov 2018 01:58:01 GMT
Etag: "5bec730f-1d7"
Expires: Fri, 16 Nov 2018 20:51:44 GMT
Last-Modified: Wed, 14 Nov 2018 19:10:07 GMT
Server: ECS (dca/53DB)
X-Cache: Miss from cloudfront
Via: 1.1 7fd482036f1d27e37908b1f68a4b92b5.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 5L2YqfDuUgTz3dwDz7XKPLkRpFYVxMZStL_u_iWsmJfRsOp4ZkCrfA==


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d65e3f27c1da45269258a4b3394df53a
Sha1:   600ae9c9bada0519c59a9c59f314fe754156ff80
Sha256: 7d6d2c8d16dfbfce230e9c3261f7308091d9756de893fd0c87448a0e9d7c95db
                                        
                                            GET /sc?u=6f8ec061-db33-4831-942b-56f0baa6f300 HTTP/1.1 
Host: croissed.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://boudja.com/V2NBbnV4ACxRByNeMRwQMwwiARsjBi8aETIPKBgQJRpvBxsxDA

                                         
                                         13.33.51.3
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Content-Length: 0
Connection: keep-alive
Date: Thu, 15 Nov 2018 01:58:01 GMT
Cache-Control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
P3P: CP="NID DSP ALL COR"
Pragma: no-cache
Set-Cookie: csu=6f8ec061-db33-4831-942b-56f0baa6f300
X-Cache: Miss from cloudfront
Via: 1.1 3d3ee9ac9259201582a00c837d82ae7b.cloudfront.net (CloudFront)
X-Amz-Cf-Id: VO4ujXAme7rspCT0chsFyLi8yis9L-IJQp8qQLqFhyCL0rScnhzsKw==


--- Additional Info ---
                                        
                                            GET /atrk.gif?frame_height=754&frame_width=1176&iframe=0&title=Watch&time=1542247080915&time_zone_offset=-60&screen_params=1176x885x24&java_enabled=1&cookie_enabled=1&ref_url=&host_url=http%3A%2F%2Fwww.speedvid.net%2Fy1s1vt9co76j&random_number=345260218&sess_cookie=976fbffe1671516e3d235baaf69&sess_cookie_flag=1&user_cookie=976fbffe1671516e3d235baaf69&user_cookie_flag=1&dynamic=true&domain=speedvid.net&account=JUS8m1a47E804B&jsv=20130128&user_lang=en-US HTTP/1.1 
Host: certify.alexametrics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         13.33.51.71
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 43
Connection: keep-alive
Date: Tue, 21 Nov 2017 22:04:22 GMT
Last-Modified: Mon, 17 Jan 2011 20:41:40 GMT
Etag: "221d8352905f2c38b3cb2bd191d630b0"
x-amz-meta-alexa-last-modified: 20110117123941
Accept-Ranges: bytes
Server: AmazonS3
Age: 77874
X-Cache: Hit from cloudfront
Via: 1.1 f6b224d80f8d0627a1d4feaeed2e53af.cloudfront.net (CloudFront)
X-Amz-Cf-Id: onENYIQSCm_Kvn4tevaAC_XCJTHYBE7kNItAtK6gh_BVIuVdoPwWVg==


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    221d8352905f2c38b3cb2bd191d630b0
Sha1:   d804b495cb9b84b9007a25b5d85f9ae674004cde
Sha256: 89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
                                        
                                            GET /view.aspx?poolid=77929&subpoolid=0&script=1&rnd=2083 HTTP/1.1 
Host: server.cpmstar.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.speedvid.net/y1s1vt9co76j

                                         
                                         198.24.162.123
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private,no-store, no-cache, must-revalidate
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Server: Microsoft-IIS/8.5
Set-Cookie: USER_ID=%b0%ccT%90%ba%8c%3b%60%0d%7f2%256%9d%e9; domain=.server.cpmstar.com; expires=Mon, 15-Nov-2038 01:58:00 GMT; path=/
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADM DEVa PSAa PSDa OUR OTR IND UNI NAV STA"
Date: Thu, 15 Nov 2018 01:57:59 GMT
Connection: close


--- Additional Info ---
                                        
                                            GET /sc?u=6f8ec061-db33-4831-942b-56f0baa6f300&csr=1 HTTP/1.1 
Host: predocontentdelivery.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://boudja.com/V2NBbnV4ACxRByNeMRwQMwwiARsjBi8aETIPKBgQJRpvBxsxDA

                                         
                                         0.0.0.0
                                        


--- Additional Info ---