| cdnjs.cloudflare.com/ajax/libs/jquery/1.9.0/jquery.min.js | 104.17.25.14 | 200 OK | 30 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/1.9.0/jquery.min.js IP104.17.25.14:443
Requested byhttps://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32132) Hash0652da382b6fceb033dfe2b6c06d4d11 002da8cbe90fcf32fbdebb72386125079e3805ee 7fa0d5c3f538c76f878e012ac390597faecaabfe6fb9d459b919258e76c5df8e
GET /ajax/libs/jquery/1.9.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid142.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:48:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 29505
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-16b8c"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 372667
expires: Thu, 24 Apr 2025 23:48:56 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SAXKu1oqFWQsfOU7l8%2Bd7SRULK%2F4RCEDLNHxD0tYDVUkdLM2Ll3kRHc4OYGOZ%2FOxSCCC1dev1FUdp7NlgQs5mmQ4N4JMyzOlZ3yFiSg8YYN78LniKABL8ZrAkvnY4ta6uI6XokUJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87ec626e3d085695-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| valueslinear.com/52/ba/41/52ba419ba307b72ff4090aea25de5317.js | 172.240.108.68 | 200 OK | 17 kB |
URL GET HTTP/1.1valueslinear.com/52/ba/41/52ba419ba307b72ff4090aea25de5317.js IP172.240.108.68:443
Requested byhttps://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== CertificateIssuerLet's Encrypt Subjectvalueslinear.com Fingerprint1B:5F:42:9F:A7:B8:88:69:0E:18:50:43:65:11:E1:69:A0:24:C0:4E ValidityTue, 02 Apr 2024 11:12:23 GMT - Mon, 01 Jul 2024 11:12:22 GMT
File typeJavaScript source, ASCII text, with very long lines (40661), with no line terminators Hashaa8453bebae7bcec42c97c74f6e135d5 77fdd70911b51fafcdf96da785c443667798d760 1ec919ec9bba8d060aecd246101338ca78fdf5d8ead577f54486c7374af9fb24
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /52/ba/41/52ba419ba307b72ff4090aea25de5317.js HTTP/1.1
Host: valueslinear.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid142.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 23:48:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9f459eda2aa316d338fda29b4cde2dc3
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| vid142.site/assets/players/jwplayer-8.26.9/jwplayer.js?v1 | 172.67.199.60 | 200 OK | 42 kB |
URL GET HTTP/3vid142.site/assets/players/jwplayer-8.26.9/jwplayer.js?v1 IP172.67.199.60:443
Requested byhttps://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== CertificateIssuerGoogle Trust Services LLC Subjectvid142.site Fingerprint30:DB:E2:03:25:AC:A4:38:4A:78:31:91:FF:C7:16:43:11:A9:4C:DD ValidityWed, 10 Apr 2024 03:06:57 GMT - Tue, 09 Jul 2024 03:06:56 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65147) Hasha27042e4168b8224e40c7f36c3a36d1e ba1f8b5fc524e8e96a57682a00bb689d174fb600 a37e9266fd7dad068329b7af30e5c3c4982611b2be7cceb649aa9b61f4fc68cf
GET /assets/players/jwplayer-8.26.9/jwplayer.js?v1 HTTP/1.1
Host: vid142.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 23:48:56 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 22:03:52 GMT
etag: W/"6508c948-1acd3"
m-cache: MISS
expires: Thu, 30 May 2024 16:17:36 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 372680
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=laDp6HC65r5YKH53w4zR9PcGBr8qT%2BSEr0HLfNd9nCh8rH%2BK72Ffy3DUZba6oaIAWm%2Bi2%2BjWa7%2BetgQlX%2Fz728RHyP40b%2Fw0%2Bx0MbbEZur0hY3t5qpSPbo5cJaZVWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec626e2bf456b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| proftrafficcounter.com/stats | 18.185.9.67 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.185.9.67:443
Requested byhttps://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash6523c395643b8b5c8cf8ce2bb7123863 a33ab87079b4bcc2fd93c164e7e3256002180cb9 090c9cc6d962bf9868f86ec358518e7d4d48fd863705c010eefb4102a4c982bc
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vid142.site
DNT: 1
Connection: keep-alive
Referer: https://vid142.site/
Cookie: uid_id2=d006e51b-1a7c-42d9-94c9-81e031ab5a55:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 23:48:57 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://vid142.site
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| vid142.site/favicon.ico | 172.67.199.60 | 200 OK | 0 B |
IP172.67.199.60:443
Requested byhttps://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== CertificateIssuerGoogle Trust Services LLC Subjectvid142.site Fingerprint30:DB:E2:03:25:AC:A4:38:4A:78:31:91:FF:C7:16:43:11:A9:4C:DD ValidityWed, 10 Apr 2024 03:06:57 GMT - Tue, 09 Jul 2024 03:06:56 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: vid142.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA==
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=d006e51b-1a7c-42d9-94c9-81e031ab5a55%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 23:48:57 GMT
content-type: image/x-icon
content-length: 0
cache-control: max-age=14400
cf-cache-status: HIT
age: 2958
last-modified: Sat, 04 May 2024 22:59:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tyK95Wm0sEDKPiKVbmDGCqoHKxVK3vIwYHci1qzfPdnBSfJeWHxQOZO6lEqnaJOuCt7QXXGaG5NPsPBvytAkoJ99eacIlHhaZqQtEp8%2F65eY0oiwmkDGbzKPsd7AoA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec6274c8de56b1-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ewal.an3087959.site/_v2-bkdx/12a3c523fe105800ed8c394685aeeb0b972efc5c02bde2f44b1a7baea93ece832257df1a4b6125fcfa38c35da05dee86a6d39242d76ad3eadbbba13c5535a3876fc051f40c16ef4d4195afef31176759616e842145556690cc85fe548ef5/h/thumbnails.vtt | 104.21.90.186 | 200 OK | 388 kB |
URL GET HTTP/2ewal.an3087959.site/_v2-bkdx/12a3c523fe105800ed8c394685aeeb0b972efc5c02bde2f44b1a7baea93ece832257df1a4b6125fcfa38c35da05dee86a6d39242d76ad3eadbbba13c5535a3876fc051f40c16ef4d4195afef31176759616e842145556690cc85fe548ef5/h/thumbnails.vtt IP104.21.90.186:443
Requested byhttps://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== CertificateIssuerLet's Encrypt Subjectan3087959.site Fingerprint36:8B:0E:21:67:9D:C8:7D:03:B6:CC:F7:65:61:39:2E:64:97:AC:44 ValidityTue, 12 Mar 2024 01:32:09 GMT - Mon, 10 Jun 2024 01:32:08 GMT
Size388 kB (387583 bytes) Hash73cf389055e3de6145ef31dc1db3664d 80ecbc63937108b1dd4b5b76cd415726ca31b9c1 26dfd94ea40265a7f1be6b1401ebf6368dee46ebf72b864d0b13ad79cfb88817
GET /_v2-bkdx/12a3c523fe105800ed8c394685aeeb0b972efc5c02bde2f44b1a7baea93ece832257df1a4b6125fcfa38c35da05dee86a6d39242d76ad3eadbbba13c5535a3876fc051f40c16ef4d4195afef31176759616e842145556690cc85fe548ef5/h/thumbnails.vtt HTTP/1.1
Host: ewal.an3087959.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vid142.site
DNT: 1
Connection: keep-alive
Referer: https://vid142.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:48:58 GMT
content-type: text/vtt
last-modified: Fri, 03 May 2024 15:49:31 GMT
etag: W/"6635078b-19f3"
x-cache: MISS
x-proxy-cache: MISS
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-cache-status: HIT
age: 114958
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FnR9qfG5VH0Lu1RuW7%2Bft8PdFLeJ7aYcHuGEAtxkh8d4sFzBVW0%2FG9drSrKxwRCdSeisKymn2ZhExVN%2FFdF10s0AwNGid2TtFOUbu1k22UnEX%2F%2BR6zTWy%2B0CRiX57HU3UjFWWQ62"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec62771c12569f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| vid142.site/assets/mcloud/min/embed.js?v=6630dcfc | 172.67.199.60 | 200 OK | 89 kB |
URL GET HTTP/3vid142.site/assets/mcloud/min/embed.js?v=6630dcfc IP172.67.199.60:443
Requested byhttps://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== CertificateIssuerGoogle Trust Services LLC Subjectvid142.site Fingerprint30:DB:E2:03:25:AC:A4:38:4A:78:31:91:FF:C7:16:43:11:A9:4C:DD ValidityWed, 10 Apr 2024 03:06:57 GMT - Tue, 09 Jul 2024 03:06:56 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (8563) Hash0b66ac6d092165002afdc2bcb4c0f1b2 a9533b9985316f336dee778c26fe84bec2398a0c bfc43acbafa7b1c61bad5ff20742680c28d6856cc72c4d742d44aa37ae866d0c
GET /assets/mcloud/min/embed.js?v=6630dcfc HTTP/1.1
Host: vid142.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 23:48:56 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 11:58:51 GMT
etag: W/"6630dcfb-2f041"
m-cache: HIT
expires: Thu, 30 May 2024 18:38:13 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 364243
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ltzBP%2BKY5UeZQOAfs5S5M%2FZ9PYu%2BT0wz%2FNo%2BYdpLt6eQGBH9lD0o8MXcEpwlHNxeU5uwHxRwjBoAkhCbc4DA%2Bu3sNDeemWElyy52RsnJR0k8VPj13AzhEUXYAYzWVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec626e2bf556b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| capaciousdrewreligion.com/advertisers.js | 192.243.61.227 | 200 OK | 0 B |
URL GET HTTP/1.1capaciousdrewreligion.com/advertisers.js IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== CertificateIssuerLet's Encrypt Subjectcapaciousdrewreligion.com Fingerprint53:B6:ED:C6:B5:B6:60:3E:6D:02:5A:92:2E:C3:12:74:64:A1:23:DC ValidityWed, 06 Mar 2024 11:57:32 GMT - Tue, 04 Jun 2024 11:57:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid142.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 23:48:58 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8586db2f784e5ff3890b6293a375ead3
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| unseenreport.com/pxf.gif?uuid=d006e51b-1a7c-42d9-94c9-81e031ab5a55&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=52ba419ba307b72ff4090aea25de5317&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23 | 192.243.61.225 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=d006e51b-1a7c-42d9-94c9-81e031ab5a55&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=52ba419ba307b72ff4090aea25de5317&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23 IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=d006e51b-1a7c-42d9-94c9-81e031ab5a55&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=52ba419ba307b72ff4090aea25de5317&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid142.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 23:48:58 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: cb1d3b65e9053305af0b7f8e933e5df5
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| vid142.site/views/4592976 | 172.67.199.60 | 200 OK | 6.7 kB |
URL GET HTTP/3vid142.site/views/4592976 IP172.67.199.60:443
Requested byhttps://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== CertificateIssuerGoogle Trust Services LLC Subjectvid142.site Fingerprint30:DB:E2:03:25:AC:A4:38:4A:78:31:91:FF:C7:16:43:11:A9:4C:DD ValidityWed, 10 Apr 2024 03:06:57 GMT - Tue, 09 Jul 2024 03:06:56 GMT
Hashefbee88936baf542944c202883908b20 496fc533df5659d1e6533feb156e221eadcaa431 479b533952f8ff9e362271398dbf1a3ed48069636ed64b6f205135c3068c73b0
GET /views/4592976 HTTP/1.1
Host: vid142.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 23:48:57 GMT
content-type: text/html
m-cache: BYPASS
x-cache: BYPASS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1Q6mkzlVvCB%2FvhYJmsabZrNzEhZSOoEC5ZEmkODzhus0KJrPqqDOXIzaltvzOvfawBIRxefnmxnWLc2UUeGewvHaCWFbiVHubQ2XDmMw1kP8O4zgUM9ZAZH67V3o0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec6273f82e56b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vid142.site/assets/players/jwplayer-8.26.9/jwplayer.core.controls.js | 172.67.199.60 | 200 OK | 324 kB |
URL GET HTTP/3vid142.site/assets/players/jwplayer-8.26.9/jwplayer.core.controls.js IP172.67.199.60:443
Requested byhttps://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== CertificateIssuerGoogle Trust Services LLC Subjectvid142.site Fingerprint30:DB:E2:03:25:AC:A4:38:4A:78:31:91:FF:C7:16:43:11:A9:4C:DD ValidityWed, 10 Apr 2024 03:06:57 GMT - Tue, 09 Jul 2024 03:06:56 GMT
Size324 kB (323494 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/players/jwplayer-8.26.9/jwplayer.core.controls.js HTTP/1.1
Host: vid142.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA==
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=d006e51b-1a7c-42d9-94c9-81e031ab5a55%3A3%3A1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 23:48:57 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 22:03:52 GMT
etag: W/"6508c948-4efa6"
m-cache: MISS
expires: Thu, 30 May 2024 16:17:37 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 372680
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EHljwjfyfnP6TcmayDctLDkQeWgNMGcJLNLbTV1kszMZqp8xiamskvvk5rUjjX1IhJt0wvDDycUtIFytScrRZWwaxJ6OgeRQIlR09SaNKwIU%2BZ20mo8sT6%2BK79XrWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec6275b98956b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vid142.site/mediainfo/XXFPuqkC5oLQroElKbttTTTOIf4akA0=,137,172,185,200,184,227,183,172,153,211,159,134,163,216,166,228?autostart=true&t=4xjRDf0gAlYMzA== | 172.67.199.60 | 200 OK | 632 B |
URL GET HTTP/3vid142.site/mediainfo/XXFPuqkC5oLQroElKbttTTTOIf4akA0=,137,172,185,200,184,227,183,172,153,211,159,134,163,216,166,228?autostart=true&t=4xjRDf0gAlYMzA== IP172.67.199.60:443
Requested byhttps://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== CertificateIssuerGoogle Trust Services LLC Subjectvid142.site Fingerprint30:DB:E2:03:25:AC:A4:38:4A:78:31:91:FF:C7:16:43:11:A9:4C:DD ValidityWed, 10 Apr 2024 03:06:57 GMT - Tue, 09 Jul 2024 03:06:56 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (664), with no line terminators Hash18f10f61325eac0b59d99b6e1d2bfb5c c7c5dff649ca0dbf6a50d2a3de5a869d6af0af80 1e1aee4dd9d7ee798059441372471b1841bdbeafc5177a4c1705b384f5c49c13
GET /mediainfo/XXFPuqkC5oLQroElKbttTTTOIf4akA0=,137,172,185,200,184,227,183,172,153,211,159,134,163,216,166,228?autostart=true&t=4xjRDf0gAlYMzA== HTTP/1.1
Host: vid142.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 23:48:57 GMT
content-type: application/json
x-cache: BYPASS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U%2Fx0f7gRUWIpkCv6SZBlNU1Z5GQ2BxdeXFirkpBJxZQ2aV%2FefV497ly2U63vgzEQ58LRaHXQJWiHuMBq0yJt8Oio%2Fal2aFqd%2F16FtiRnj%2BFz1idrmL1a0yejGm%2B5cg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec6274184c56b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vid142.site/assets/mcloud/min/embed.css?v=6630dcfc | 172.67.199.60 | 200 OK | 8.5 kB |
URL GET HTTP/3vid142.site/assets/mcloud/min/embed.css?v=6630dcfc IP172.67.199.60:443
Requested byhttps://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== CertificateIssuerGoogle Trust Services LLC Subjectvid142.site Fingerprint30:DB:E2:03:25:AC:A4:38:4A:78:31:91:FF:C7:16:43:11:A9:4C:DD ValidityWed, 10 Apr 2024 03:06:57 GMT - Tue, 09 Jul 2024 03:06:56 GMT
File typeASCII text, with very long lines (8532), with no line terminators Hash18049c2b04cd6ed86be6844b36b28b5e 422fb6b1b0335cbbd45c0f8495d70ef39ccfc696 83dd4a0a093dfe32c6ea13157c9479c3b76faded4a7ae38a38e3dff9d6541d7b
GET /assets/mcloud/min/embed.css?v=6630dcfc HTTP/1.1
Host: vid142.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 23:48:56 GMT
content-type: text/css
last-modified: Mon, 08 Apr 2024 02:37:41 GMT
etag: W/"66135875-2152"
m-cache: HIT
expires: Thu, 30 May 2024 18:38:13 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 364243
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NP5bR7HFGQBR2WaktXCLrxFhNVF%2F2FHudaslaUfEehRPMMFEthuKLsSbBokbpqE7qCJpVHWbSREvybQAMoeoV1lSK7eRVt%2B8CW0hBiOXNUbnsO53gnmo4wAEiYAldw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec626e2beb56b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vid142.site/futoken | 172.67.199.60 | 200 OK | 257 B |
IP172.67.199.60:443
Requested byhttps://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== CertificateIssuerGoogle Trust Services LLC Subjectvid142.site Fingerprint30:DB:E2:03:25:AC:A4:38:4A:78:31:91:FF:C7:16:43:11:A9:4C:DD ValidityWed, 10 Apr 2024 03:06:57 GMT - Tue, 09 Jul 2024 03:06:56 GMT
File typeJavaScript source, ASCII text, with no line terminators Hash8eea72cc4190c328df6c7888c4451536 3c56b86d50b2dc1f4112614b502178b67560cf7a f3d133ed43ad06e319be74a27bd98d82785b4146620eecd4363f275f4d8a9857
GET /futoken HTTP/1.1
Host: vid142.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 23:48:56 GMT
m-cache: MISS
x-cache: BYPASS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EAxoB1y2duc2BnFHNPURDdU3iX3ahV%2FAVb42Vk6TzMA88kBHKmleEHUHo5jrcXb4qvurcvzy%2BPVS1t0XuN7dflNtWbZKZsE7jtZRlF7hTKzIoWW1OdTIarMnMiDEbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec626e2bee56b1-OSL
alt-svc: h3=":443"; ma=86400
|
|
| downstairsnegotiatebarren.com/sfp.js | 172.67.180.87 | 200 OK | 86 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP172.67.180.87:443
Requested byhttps://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid142.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:48:57 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 5870056454174abaae772d2bb48ec4ad
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 04 May 2024 23:48:56 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dnDpVYV528xL4GgorL1orF%2FwUlqh6RROpteKCbrRNiKnmtM04V9kzj32L21WC%2FyqyX8TbsXVDUE9EZOJBWtHomVryts%2BT2f32eRflTpdV0a2tfbNEMYIaIJiSiZPg%2B1Y5EUiKv%2FeGHwhSBB3ird1fA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec6272ca4e56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== | 172.67.199.60 | 200 OK | 1.1 kB |
URL User Request GET HTTP/2vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== IP172.67.199.60:443
CertificateIssuerGoogle Trust Services LLC Subjectvid142.site Fingerprint30:DB:E2:03:25:AC:A4:38:4A:78:31:91:FF:C7:16:43:11:A9:4C:DD ValidityWed, 10 Apr 2024 03:06:57 GMT - Tue, 09 Jul 2024 03:06:56 GMT
File typeHTML document, ASCII text, with very long lines (1111), with no line terminators Hash69e54726ac1a82b81b4aa9191a0dbdf8 be56c1eb29a681ebd87a41cd18a0d89a4fc8a5fc 26514cd30f891a69a4e09e3ff4213e43192ebc38c231d3305d4e756d204dd013
GET /e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== HTTP/1.1
Host: vid142.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:48:56 GMT
content-type: text/html; charset=UTF-8
m-cache: HIT
x-cache: BYPASS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1EDz0sYmBY%2B2ja%2BRyMMbV8ibseVRFevaXXOGdnU7q0mHmvJto5AFq21ddTGlvyYi%2F9YTBYAJtdfe1%2FCjlx8yEREpZrEDuZvVLtXSyqf6EBegj567ykwemCvpdehT1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec626b3f4bb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| vid142.site/assets/players/jwplayer-8.26.9/provider.hlsjs.js | 172.67.199.60 | 200 OK | 393 kB |
URL GET HTTP/3vid142.site/assets/players/jwplayer-8.26.9/provider.hlsjs.js IP172.67.199.60:443
Requested byhttps://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== CertificateIssuerGoogle Trust Services LLC Subjectvid142.site Fingerprint30:DB:E2:03:25:AC:A4:38:4A:78:31:91:FF:C7:16:43:11:A9:4C:DD ValidityWed, 10 Apr 2024 03:06:57 GMT - Tue, 09 Jul 2024 03:06:56 GMT
Size393 kB (393168 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/players/jwplayer-8.26.9/provider.hlsjs.js HTTP/1.1
Host: vid142.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA==
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=d006e51b-1a7c-42d9-94c9-81e031ab5a55%3A3%3A1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 23:48:57 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 22:03:52 GMT
etag: W/"6508c948-5ffd0"
m-cache: MISS
expires: Thu, 30 May 2024 18:38:24 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 364233
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6gLiQy3PkmX7SbfKAAQnguRKz3BsmvK3bT%2BdGhh6zmLACLcn7qFOHk8QE58sGM3Pa5qQxZvi8KF45Q7mrgi6uXCXStXo5AnFzRoPS4p0ECbtquRbZj725nGJjrLl4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec6275b98c56b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ewal.an3087959.site/_v2-bkdx/12a3c523fe105800ed8c394685aeeb0b972efc5c02bde2f44b1a7baea93ece832257df1a4b6125fcfa38c35da05dee86a6d39242d76ad3eadbbba13c5535a3876fc051f40c16ef4d4195afef31176759616e842145556690cc85fe548ef5/h/thumbnails.jpg | 104.21.90.186 | 200 OK | 381 kB |
URL GET HTTP/3ewal.an3087959.site/_v2-bkdx/12a3c523fe105800ed8c394685aeeb0b972efc5c02bde2f44b1a7baea93ece832257df1a4b6125fcfa38c35da05dee86a6d39242d76ad3eadbbba13c5535a3876fc051f40c16ef4d4195afef31176759616e842145556690cc85fe548ef5/h/thumbnails.jpg IP104.21.90.186:443
Requested byhttps://vid142.site/e/D1YKD6ZO0JNV?autostart=true&t=4xjRDf0gAlYMzA== CertificateIssuerLet's Encrypt Subjectan3087959.site Fingerprint36:8B:0E:21:67:9D:C8:7D:03:B6:CC:F7:65:61:39:2E:64:97:AC:44 ValidityTue, 12 Mar 2024 01:32:09 GMT - Mon, 10 Jun 2024 01:32:08 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 404x405, segment length 16, comment: "Lavc60.27.100", baseline, precision 8, 1620x1111, components 3 Size381 kB (380940 bytes) Hash3c7f3844c06ac884d4ace94bd7cf5030 39001d0d67a6cc76bc0e60aeb7d96788be996dfa 34b90a5ab9b26b3f000cc197143963f908213142529a70d460ea8a61fa702671
GET /_v2-bkdx/12a3c523fe105800ed8c394685aeeb0b972efc5c02bde2f44b1a7baea93ece832257df1a4b6125fcfa38c35da05dee86a6d39242d76ad3eadbbba13c5535a3876fc051f40c16ef4d4195afef31176759616e842145556690cc85fe548ef5/h/thumbnails.jpg HTTP/1.1
Host: ewal.an3087959.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vid142.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 23:48:58 GMT
content-type: image/jpg
content-length: 380940
last-modified: Fri, 03 May 2024 15:49:31 GMT
etag: "6635078b-5d00c"
x-cache: HIT
x-proxy-cache: MISS
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-cache-status: HIT
age: 114958
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kfg8hjcCecJxZ7PFdz9fO40smijyNJoDukiz9ZR0M3rImEyBe33SS3flACyQWj2iCwWzzEpo6cC3ZdRzlonwFfgK4Zz7mJdgyR5bWD8sr48HpZCkUnM9g5M4r5%2FerjfjcyeJB1Hw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec62776f6d56c7-OSL
alt-svc: h3=":443"; ma=86400
|
|