cdnjs.cloudflare.com/ajax/libs/highlight.js/10.0.2/styles/monokai-sublime.min.css
200 OK 276 B URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/highlight.js/10.0.2/styles/monokai-sublime.min.css
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (779), with no line terminators
Hash b4787837acf01460e08a4d14b0db08ac
15a9ea1eca87399bf41b5d80964776e49589d4c5
9dfb904a624cffcc1633f4b5d4b666c6ccd2bf61e0807d76f08aa6183d219f2f
GET /ajax/libs/highlight.js/10.0.2/styles/monokai-sublime.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:31:56 GMT
content-type: text/css; charset=utf-8
content-length: 276
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e7a-30b"
last-modified: Mon, 04 May 2020 16:10:34 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 190979
expires: Fri, 29 Nov 2024 04:31:56 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MTTdnfxzk2YWPdKe5VQiY5vM8jaNMB2uI5n3RJwbJFhRHNB4Nwzu0wDL1aWa77mkxhP9YzLHNj%2B7kk2Qrqj4E6ZQDBVFyuaVJDUb0xIp19mhkxbSRbl9Oj8W44uBklbwROZ%2Bjz0N"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8332c2dbca595687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
webextrasite.com/t/category/40/website-phim/
200 OK 13 kB URL User Request GET HTTP/2 webextrasite.com/t/category/40/website-phim/
IP
ASN #131353 NhanHoa Software company
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type HTML document text
- HTML document text
- HTML document text
- HTML document text
- HTML document text
- exported SGML document text
- exported SGML document, Unicode text, UTF-8 text, with very long lines (678), with CRLF, LF line terminators
Hash d78d2786751776c4090c7e0a3ecfe9c5
6adc903c286a7edfdd2e814a3f17a11e49568408
d447ede28d1b119864b61b62fb88043f34fbde1f8043f9028b443794252bdec4
GET /t/category/40/website-phim/ HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:23 GMT
server: Apache/2
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12737
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-155030866-1
200 OK 69 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-155030866-1
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT
File type ASCII text, with very long lines (4179)
Hash a2afdc918223923aeac66a8710f72c65
9748c7e7d205514ff1f6d4b056e3fbf904bb77ee
a93c0566128781b213d207948e18883291a336deafd6eb7ba80f244636e509f8
GET /gtag/js?id=UA-155030866-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 10 Dec 2023 04:31:56 GMT
expires: Sun, 10 Dec 2023 04:31:56 GMT
cache-control: private, max-age=900
last-modified: Sun, 10 Dec 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69070
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
webextrasite.com/teamplate/css/bootstrap.min.css
200 OK 20 kB URL GET HTTP/2 webextrasite.com/teamplate/css/bootstrap.min.css
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type ASCII text, with very long lines (65371)
Hash 81fd0b7ecf047e3ff2658757f0a708e8
dc2eb20ba3f14b01836761d3a21584fd3819342f
145fbb3129c1dea565b6c4a147473aa7671ad025f50b029ab342d433223459d7
GET /teamplate/css/bootstrap.min.css HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:32:12 GMT
etag: "1d95e-58f5c388bc300-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 19741
content-type: text/css
X-Firefox-Spdy: h2
webextrasite.com/teamplate/css/viewbox.css
200 OK 718 B URL GET HTTP/2 webextrasite.com/teamplate/css/viewbox.css
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
Hash 8b01ed64e3d7228ea7a518536125fdf8
75c720425101e275d8e0704f1ae2fc5ca0927637
31e56dacac4e361047059f9db7f4f7c1a5ea8273d038b7422b5af3060c2fc040
GET /teamplate/css/viewbox.css HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:32:12 GMT
etag: "8e7-58f5c388bc300-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 718
content-type: text/css
X-Firefox-Spdy: h2
webextrasite.com/teamplate/css/slick.css
200 OK 569 B URL GET HTTP/2 webextrasite.com/teamplate/css/slick.css
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
Hash f38b2db10e01b1572732a3191d538707
a94a059b3178b4adec09e3281ace2819a30095a4
de1e399b07289f3b0a8d35142e363e128124a1185770e214e25e58030dad48e5
GET /teamplate/css/slick.css HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:32:12 GMT
etag: "6f0-58f5c388bc300-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 569
content-type: text/css
X-Firefox-Spdy: h2
webextrasite.com/teamplate/css/slick-theme.css
200 OK 867 B URL GET HTTP/2 webextrasite.com/teamplate/css/slick-theme.css
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
Hash d4dd3feb667dc517b5eee87e325d841a
2289df62c9df23a6c91166b8b841a4a70c202734
dc5fefc98e73d82bcc11f8abcb355beea7c34eabf13878fb26c7df8bf400db77
GET /teamplate/css/slick-theme.css HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Fri, 23 Aug 2019 05:36:24 GMT
etag: "c47-590c22fd38600-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 867
content-type: text/css
X-Firefox-Spdy: h2
webextrasite.com/teamplate/css/desert.css
200 OK 652 B URL GET HTTP/2 webextrasite.com/teamplate/css/desert.css
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
Hash 789c9b1f5670abc6ef92307bb32f0a59
f5afc41f545b9e9c05a390a57966503df0c71eef
5d3e2c472c02d38943c954d3388cf6f808270172e843c9d8aa280c0a23ee4893
GET /teamplate/css/desert.css HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:32:12 GMT
etag: "64b-58f5c388bc300-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 652
content-type: text/css
X-Firefox-Spdy: h2
webextrasite.com/teamplate/css/stellarnav.css
200 OK 1.5 kB URL GET HTTP/2 webextrasite.com/teamplate/css/stellarnav.css
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type ASCII text, with very long lines (7638), with no line terminators
Hash 2d0dbff6be63cec176866cb247f15240
c0c66abd6cc512a62b95d30e583896e5d8a687c0
d94c2c90f3ea9c4ce574c6b6176e643166f60da8736e95f35ae71837879aec8e
GET /teamplate/css/stellarnav.css HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:32:12 GMT
etag: "1dd6-58f5c388bc300-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1540
content-type: text/css
X-Firefox-Spdy: h2
webextrasite.com/teamplate/css/stylerespon.css
200 OK 1.6 kB URL GET HTTP/2 webextrasite.com/teamplate/css/stylerespon.css
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type ASCII text, with very long lines (420)
Hash 69941fd993010c9e08f81a37f4bfc249
27174859cf76cc6ea1794577984213193d26eaaf
87bca6c3a6788809a68a8065c9825744fb9d15969d68c7aec35cb193d4de00fd
GET /teamplate/css/stylerespon.css HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Fri, 30 Aug 2019 04:46:30 GMT
etag: "1700-5914e4e425580-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1554
content-type: text/css
X-Firefox-Spdy: h2
webextrasite.com/teamplate/css/style.css
200 OK 7.4 kB URL GET HTTP/2 webextrasite.com/teamplate/css/style.css
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type assembler source, ASCII text, with very long lines (329)
Hash 9543faa522481d109c77155a21aa9311
f031b658ed81db50984b5a13e2b18c6dd39358d8
e89e67dfedf4019a0def5b3d891ac2196fc41d3b33c877313a54693ce15be3f1
GET /teamplate/css/style.css HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 29 Mar 2021 07:38:24 GMT
etag: "7b24-5bea7f774dc00-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7398
content-type: text/css
X-Firefox-Spdy: h2
webextrasite.com/teamplate/css/jquery.modal.min.css
200 OK 1.8 kB URL GET HTTP/2 webextrasite.com/teamplate/css/jquery.modal.min.css
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type ASCII text, with very long lines (3209), with no line terminators
Hash 65746add7c96954d486aa9093f78738f
0d9b749f442fc7ecc1e3d21ba024076e5e3745a3
9d8b66f7a795cd785af31f8ba63edbf9ca53ffc14cf413587b9b66522d80bc6e
GET /teamplate/css/jquery.modal.min.css HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:32:12 GMT
etag: "c89-58f5c388bc300-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1776
content-type: text/css
X-Firefox-Spdy: h2
webextrasite.com/teamplate/css/font-awesome.min.css
200 OK 7.0 kB URL GET HTTP/2 webextrasite.com/teamplate/css/font-awesome.min.css
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type ASCII text, with very long lines (30819)
Hash f1084ded2cf974f6314f2df6f00c53d4
f5224569701f68e04ac1df9da357ccc101e753a5
5cfcdebf8f38725bebe6f58ff39a6d044806bca0220a1e0b7e3257f9ad7392d1
GET /teamplate/css/font-awesome.min.css HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:32:12 GMT
etag: "7906-58f5c388bc300-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7049
content-type: text/css
X-Firefox-Spdy: h2
webextrasite.com/teamplate/css/sliderjossor.css
200 OK 401 B URL GET HTTP/2 webextrasite.com/teamplate/css/sliderjossor.css
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
Hash 45d17dde437cde01fed5213a6de51724
c23d5e0031d0baa2122f9709da81f19ff5ee2f5e
97a83189b0ffc6f700811a6569dd6253a682372a85ecb5170a3f39029739e72e
GET /teamplate/css/sliderjossor.css HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:32:12 GMT
etag: "4b6-58f5c388bc300-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 401
content-type: text/css
X-Firefox-Spdy: h2
webextrasite.com/teamplate/js/stellarnav.min.js
200 OK 1.2 kB URL GET HTTP/2 webextrasite.com/teamplate/js/stellarnav.min.js
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type HTML document, ASCII text, with very long lines (3900)
Hash 0626c3ffe4c85fd4ebc5f612e2e9526e
4cfa4c5f5a55fe1846a1647b78905e99045ad696
90bda8599b350118d888e1179c63894aa55ddb9263b8790ea49687a8c1985e0e
GET /teamplate/js/stellarnav.min.js HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:33:04 GMT
etag: "f3d-58f5c3ba53800-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1183
content-type: application/javascript
X-Firefox-Spdy: h2
webextrasite.com/teamplate/js/backtotop.js
200 OK 270 B URL GET HTTP/2 webextrasite.com/teamplate/js/backtotop.js
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
Hash 44782fbce2f606dbe68bc58a70814219
d175d7ff7bfc3ea258bf203d7e010994953a2f24
61beb1e555ce6a5e226382617405bf0998154dbfe0b135a1e8d52911a68f7f91
GET /teamplate/js/backtotop.js HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:33:04 GMT
etag: "1e3-58f5c3ba53800-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 270
content-type: application/javascript
X-Firefox-Spdy: h2
webextrasite.com/teamplate/js/popup_register.js
200 OK 189 B URL GET HTTP/2 webextrasite.com/teamplate/js/popup_register.js
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
Hash 6824e1853068f2d177af77165ee574d0
772704994e7b3ff254de6f07920ab53f2f211e63
ad6a2e450750750ba415009d88b4ef17d7a31ce1c16ae98dc502812df379cf46
GET /teamplate/js/popup_register.js HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:33:04 GMT
etag: "f2-58f5c3ba53800-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 189
content-type: application/javascript
X-Firefox-Spdy: h2
webextrasite.com/teamplate/js/jquery.viewbox.min.js
200 OK 1.4 kB URL GET HTTP/2 webextrasite.com/teamplate/js/jquery.viewbox.min.js
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type ASCII text, with very long lines (3216)
Hash f01f4453e976b11c0ec65c2cb7787beb
3e266e31c70a8cc0852a5c1321f665923b318a1b
9190729117e1e4090a4be3b46304529aefa6bdae86c6734e155d827a182b107d
GET /teamplate/js/jquery.viewbox.min.js HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:33:04 GMT
etag: "cc9-58f5c3ba53800-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1387
content-type: application/javascript
X-Firefox-Spdy: h2
webextrasite.com/teamplate/image/addr.gif
200 OK 1.0 kB URL GET HTTP/2 webextrasite.com/teamplate/image/addr.gif
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type GIF image data, version 89a, 16 x 16
- data
Hash e6f523bab4cd7021517cde5b1c940a31
a1ff26521870a588571dc3c226d6ae2aff244061
262dd39e1e106afbf275e9458e0ab450f7b97efc91cc132cb60908465b3b6ec7
GET /teamplate/image/addr.gif HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 05:05:34 GMT
etag: "403-58f57a86a0380"
accept-ranges: bytes
content-length: 1027
content-type: image/gif
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:57:34 GMT
expires: Fri, 06 Dec 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 257663
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0
- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:57:09 GMT
expires: Fri, 06 Dec 2024 15:57:09 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 218088
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2
200 OK 5.6 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 5604, version 1.0
- data
Hash 7cda2cfee99d697daf8c14819d9004eb
76f4002863493c93454a9f17424942f321287cba
0948409a22b5979aa7e1ec20da9e61f12e7d403800b541ece053881bd2542b70
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 23:21:58 GMT
expires: Fri, 06 Dec 2024 23:21:58 GMT
cache-control: public, max-age=31536000
age: 191399
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
iclickcdn.com/tag.min.js
200 OK 39 kB IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint69:5A:9D:95:E5:36:A5:18:E0:04:11:44:FA:AD:14:94:26:BD:9D:39
ValiditySat, 12 Aug 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 89db423572db9fc9a9d05744cc8f3311
6abebfc29ef9482a13c86bcae4ba97917d0ce83f
d30f02bc7f12210b8f45388e88c7049b591293829a62ec1e5bcf8410eb262f9b
GET /tag.min.js HTTP/1.1
Host: iclickcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:31:57 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: 0990fb8b1d617918e03542a1ddb01981
cache-control: max-age=86400
last-modified: Fri, 08 Dec 2023 18:35:04 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
expires: Sun, 10 Dec 2023 06:43:45 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 78492
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1OcoENujMtmVJWZwuRNouHSWgZJDf9qKfa7d3y7%2FB%2BnYhnu6WW0oIE24G8m5WJXwGhjIIn05gg8BVT3l1RDaUNnm1hrKUt1Ckb02p%2FbI9uV%2F1NO%2BJ3%2BlxA51MR0%2BZVs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8332c2dfccfd569f-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2
200 OK 5.6 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 5560, version 1.0
- data
Hash ca3b09b62fda648a4511700413313fd0
109cd4c5435bd6614391bb8722c47c287c96b2ec
77b24796a3d4ab521f66765651875338ed50cb9306cfe4603a3e79618e429cec
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5560
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 05:05:19 GMT
expires: Fri, 06 Dec 2024 05:05:19 GMT
cache-control: public, max-age=31536000
age: 257198
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:46:25 GMT
expires: Fri, 06 Dec 2024 15:46:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 218732
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
200 OK 12 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 11872, version 1.0
- data
Hash 87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:42:59 GMT
expires: Fri, 06 Dec 2024 15:42:59 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
age: 218938
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2
200 OK 5.5 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 5548, version 1.0
- data
Hash cdaab83619fcacd4027a77c99dd51e69
9e6eae8554f8cc2309b2dae2d9fa217e34eed6a4
4ec57f2a80b91090971b83970230ca09ab3568c5f5b224896ca9aa6180a76aa9
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5548
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 23:22:12 GMT
expires: Fri, 06 Dec 2024 23:22:12 GMT
cache-control: public, max-age=31536000
age: 191385
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
webextrasite.com/teamplate/image/facebook.png
200 OK 888 B URL GET HTTP/2 webextrasite.com/teamplate/image/facebook.png
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
- data
Hash 2ff29ad93f974aed1282a6614cc7344f
4b8233c3eb59d633eacdc5dbd8b98be769b9386d
32e6c249ab0ed89a4757599ae658aa8b375dd0b293def707512c1c304cdd1d04
GET /teamplate/image/facebook.png HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 05:05:56 GMT
etag: "378-58f57a9b9b500"
accept-ranges: bytes
content-length: 888
content-type: image/png
X-Firefox-Spdy: h2
webextrasite.com/teamplate/image/youtube.png
200 OK 2.4 kB URL GET HTTP/2 webextrasite.com/teamplate/image/youtube.png
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
- data
Hash e17e023f8916407ba479acf10e694896
72066c6e17f1adb108043e442bcd6d3ef3c943cc
cdfbac5e95fe3abe029c6ab87aa5071cbf4ba67b2ffbd429b47aa6de94dcf71f
GET /teamplate/image/youtube.png HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 05:06:10 GMT
etag: "946-58f57aa8f5480"
accept-ranges: bytes
content-length: 2374
content-type: image/png
X-Firefox-Spdy: h2
webextrasite.com/teamplate/image/support_online.gif
200 OK 8.8 kB URL GET HTTP/2 webextrasite.com/teamplate/image/support_online.gif
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type GIF image data, version 89a, 201 x 86
- data
Hash fd4d1152f6d8555943ea80dbae0a1188
86af2f6ab6720ba632b903e1eaba107a2af97685
ca23497055efbabbb39036bc454b234053bbfa6262c4a5f7c2028e336231002c
GET /teamplate/image/support_online.gif HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 05:06:10 GMT
etag: "2279-58f57aa8f5480"
accept-ranges: bytes
content-length: 8825
content-type: image/gif
X-Firefox-Spdy: h2
webextrasite.com/teamplate/image/logo.png
200 OK 17 kB URL GET HTTP/2 webextrasite.com/teamplate/image/logo.png
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type PNG image data, 400 x 250, 8-bit/color RGBA, non-interlaced
- data
Hash 98e9ed8c3aec5b10bd5765c96da9d52e
73fd6e1f54e45d2af8bfeb3cdc3e6623a1112ad6
1cef4ffe3d74592713498a4865ec93414c546ecc1ac78f00ae8e671dceaf9d31
GET /teamplate/image/logo.png HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 05:06:02 GMT
etag: "42b9-58f57aa154280"
accept-ranges: bytes
content-length: 17081
content-type: image/png
X-Firefox-Spdy: h2
webextrasite.com/teamplate/js/jquery.modal.min.js
200 OK 1.6 kB URL GET HTTP/2 webextrasite.com/teamplate/js/jquery.modal.min.js
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type HTML document, ASCII text, with very long lines (4862)
Hash c8f50397e0560719c62a35318f413e16
a643db87287e6e940fbabe6d8cfee5a8775692d8
a7e8ed2d7bbdbcaeeee81c3433f057d64a32c000112bbd09b5969fc658d0a655
GET /teamplate/js/jquery.modal.min.js HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:33:04 GMT
etag: "1359-58f5c3ba53800-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1643
content-type: application/javascript
X-Firefox-Spdy: h2
webextrasite.com/teamplate/js/run_prettify.js
200 OK 8.0 kB URL GET HTTP/2 webextrasite.com/teamplate/js/run_prettify.js
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type ASCII text, with very long lines (577)
Hash f69331a445e49771f22cdfc73db6aff3
a0c922eaea4cebbd4c289ba52ce352898b18fb2b
ee6004d01c301d4ab596efa1e14a077e549efa7b3fc9133864510446e2790b1d
GET /teamplate/js/run_prettify.js HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:33:04 GMT
etag: "47fb-58f5c3ba53800-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8008
content-type: application/javascript
X-Firefox-Spdy: h2
webextrasite.com/teamplate/js/bootstrap.min.js
200 OK 9.8 kB URL GET HTTP/2 webextrasite.com/teamplate/js/bootstrap.min.js
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type ASCII text, with very long lines (32033)
Hash 5869c96cc8f19086aee625d670d741f9
430a443d74830fe9be26efca431f448c1b3740f9
53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef
GET /teamplate/js/bootstrap.min.js HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:33:04 GMT
etag: "90b5-58f5c3ba53800-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9833
content-type: application/javascript
X-Firefox-Spdy: h2
webextrasite.com/teamplate/js/jquery.form-validator.min.js
200 OK 9.4 kB URL GET HTTP/2 webextrasite.com/teamplate/js/jquery.form-validator.min.js
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type ASCII text, with very long lines (29177)
Hash 65d26571933bceaf63fb8cc76e7cbee3
ced024e4ee91e3b87f0d068c35008118c7fb60e8
f1264020dbe3f8813dceb1e15a7d5f4a48f2142e413cb310e7a256f4999d949a
GET /teamplate/js/jquery.form-validator.min.js HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:33:04 GMT
etag: "72c7-58f5c3ba53800-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9371
content-type: application/javascript
X-Firefox-Spdy: h2
webextrasite.com/teamplate/js/slick.min.js
200 OK 11 kB URL GET HTTP/2 webextrasite.com/teamplate/js/slick.min.js
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type ASCII text, with very long lines (32026)
Hash 22f75416148991671e580d8f4d2a2387
f5071717b9e5e3fe5d3aef69f9f20acf753bc1f8
357452f2a55c999ddd3afdcbce2c339d41cf7a01613d9d45ff88a753bb82f21d
GET /teamplate/js/slick.min.js HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:33:04 GMT
etag: "ab69-58f5c3ba53800-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10753
content-type: application/javascript
X-Firefox-Spdy: h2
webextrasite.com/teamplate/js/jssor.slider.min.js
200 OK 21 kB URL GET HTTP/2 webextrasite.com/teamplate/js/jssor.slider.min.js
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type Unicode text, UTF-8 (with BOM) text, with very long lines (50569)
Hash 59eec36c0b154010e2a93842f237bf5b
857c63e30bcb0b8fc8d76b83ec26d21818a8fb74
10d8fa9bec2d741bcbdd2130fd4f8a1f89c06c3d3453a806c99583559241698b
GET /teamplate/js/jssor.slider.min.js HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Fri, 30 Aug 2019 03:30:12 GMT
etag: "c5c3-5914d3d639900-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 21337
content-type: application/javascript
X-Firefox-Spdy: h2
webextrasite.com/teamplate/js/jquery-3.2.1.min.js
200 OK 30 kB URL GET HTTP/2 webextrasite.com/teamplate/js/jquery-3.2.1.min.js
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type ASCII text, with very long lines (32058)
Hash c9f5aeeca3ad37bf2aa006139b935f0a
1055018c28ab41087ef9ccefe411606893dabea2
87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de
GET /teamplate/js/jquery-3.2.1.min.js HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:33:04 GMT
etag: "15283-58f5c3ba53800-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 30138
content-type: application/javascript
X-Firefox-Spdy: h2
webextrasite.com/teamplate/image/bgfooter.png
200 OK 144 B URL GET HTTP/2 webextrasite.com/teamplate/image/bgfooter.png
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type PNG image data, 10 x 28, 8-bit/color RGB, non-interlaced
- data
Hash 33d61eb9315253ec86ceef8d007ae09e
6f1c4462d90e161420904fb5d6c70d5bb14fc03a
b3aa831e30c776c2cd9b20878034a0d76acb591e985a0b5a7448926e16f8dcf2
GET /teamplate/image/bgfooter.png HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/teamplate/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 05:05:38 GMT
etag: "90-58f57a8a70c80"
accept-ranges: bytes
content-length: 144
content-type: image/png
X-Firefox-Spdy: h2
rooptawu.net/5/4232002/?oo=1&js_build=iclick-v1.642.1-auto
403 Forbidden 7 B URL GET HTTP/2 rooptawu.net/5/4232002/?oo=1&js_build=iclick-v1.642.1-auto
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectrooptawu.net
Fingerprint52:E8:61:D6:15:85:E6:B8:B1:6F:67:A1:9F:95:09:E0:60:10:C7:81
ValidityFri, 08 Dec 2023 14:28:13 GMT - Thu, 07 Mar 2024 14:28:12 GMT
File type ASCII text, with no line terminators
Hash 758ff964ee78d0c90f3a14d8d4af8ab3
f248d30ac9849b0ead400537632beb02c9c703d1
00e3fbbf542561da72fdc5ea89cfd1405c17739dd49210252e611c3122018efe
GET /5/4232002/?oo=1&js_build=iclick-v1.642.1-auto HTTP/1.1
Host: rooptawu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
server: nginx
date: Sun, 10 Dec 2023 04:31:57 GMT
content-type: text/plain; charset=utf-8
content-length: 7
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://webextrasite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
webextrasite.com/teamplate/css/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL GET HTTP/2 webextrasite.com/teamplate/css/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /teamplate/css/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/teamplate/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:24 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 10:33:04 GMT
etag: "12d68-58f5c3ba53800"
accept-ranges: bytes
content-length: 77160
vary: Accept-Encoding,User-Agent
X-Firefox-Spdy: h2
cdn.rawgit.com/google/code-prettify/master/loader/prettify.css
200 OK 29 kB URL GET HTTP/2 cdn.rawgit.com/google/code-prettify/master/loader/prettify.css
IP
ASN #34989 ServeTheWorld AS
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectcdn.rawgit.com
Fingerprint43:EF:51:CA:1E:5A:ED:B6:86:04:D3:7D:F3:D8:33:03:D7:ED:44:C6
ValidityMon, 04 Dec 2023 00:14:59 GMT - Sun, 03 Mar 2024 00:14:58 GMT
Hash ba51e59b533a7043978a28923fdb671a
dc99151d592bb66838c417b83fb414a2efd4014e
8395ba74e8c9237fa8d14ff2b849d7d002c8a457060416a33457a175ef9e4973
GET /google/code-prettify/master/loader/prettify.css HTTP/1.1
Host: cdn.rawgit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:31:57 GMT
server: BunnyCDN-NO1-830
cdn-pullzone: 201235
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: NO
vary: Accept-Encoding
cache-control: public, max-age=2592000
cdn-cachedat: 11/30/2023 17:51:47
cdn-requestpullsuccess: True
cdn-status: 200
cdn-requestpullcode: 200
cdn-edgestorageid: 830
cdn-proxyver: 1.04
cdn-requestid: 844d1e767d48ce1d46ad05417f3a9fdd
cdn-cache: HIT
X-Firefox-Spdy: h2
syndication.exdynsrv.com/splash.php?idzone=4279146&orientation=landscape&screen_resolution=1280x1024&p=https%3A%2F%2Fwebextrasite.com%2Ft%2Fcategory%2F40%2Fwebsite-phim%2F&cookieconsent=true
200 OK 20 B URL GET HTTP/1.1 syndication.exdynsrv.com/splash.php?idzone=4279146&orientation=landscape&screen_resolution=1280x1024&p=https%3A%2F%2Fwebextrasite.com%2Ft%2Fcategory%2F40%2Fwebsite-phim%2F&cookieconsent=true
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectexdynsrv.com
Fingerprint8D:40:F0:75:CC:6E:55:85:E3:CD:04:C6:BF:F5:9F:81:74:ED:C3:24
ValidityThu, 05 Oct 2023 15:23:51 GMT - Wed, 03 Jan 2024 15:23:50 GMT
File type gzip compressed data, max speed, from Unix
- data
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /splash.php?idzone=4279146&orientation=landscape&screen_resolution=1280x1024&p=https%3A%2F%2Fwebextrasite.com%2Ft%2Fcategory%2F40%2Fwebsite-phim%2F&cookieconsent=true HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 10 Dec 2023 04:31:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://webextrasite.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-CH-VALUES
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%2265753f3e03c748.29670345899641939%22%3B%7D; expires=Tue, 09 Dec 2025 04:31:58 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
syndication.exdynsrv.com/venor.php
200 OK 21 B URL GET HTTP/1.1 syndication.exdynsrv.com/venor.php
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectexdynsrv.com
Fingerprint8D:40:F0:75:CC:6E:55:85:E3:CD:04:C6:BF:F5:9F:81:74:ED:C3:24
ValidityThu, 05 Oct 2023 15:23:51 GMT - Wed, 03 Jan 2024 15:23:50 GMT
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
GET /venor.php HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 10 Dec 2023 04:31:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Accept-CH:
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
bytogeticr.com/split_track?action=error_track&zone=4232002&branch=undefined&error=SyntaxError:%20JSON.parse:%20unexpected%20non-whitespace%20character%20after%20JSON%20data%20at%20line%201%20column%202%20of%20the%20JSON%20data&trp=3
200 OK 0 B URL GET HTTP/2 bytogeticr.com/split_track?action=error_track&zone=4232002&branch=undefined&error=SyntaxError:%20JSON.parse:%20unexpected%20non-whitespace%20character%20after%20JSON%20data%20at%20line%201%20column%202%20of%20the%20JSON%20data&trp=3
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerGoogle Trust Services LLC
Subjectbytogeticr.com
Fingerprint2D:28:CA:AA:05:F0:64:01:4D:7D:C6:25:AB:74:80:B2:C0:D8:91:A8
ValidityThu, 12 Oct 2023 10:34:02 GMT - Wed, 10 Jan 2024 10:34:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /split_track?action=error_track&zone=4232002&branch=undefined&error=SyntaxError:%20JSON.parse:%20unexpected%20non-whitespace%20character%20after%20JSON%20data%20at%20line%201%20column%202%20of%20the%20JSON%20data&trp=3 HTTP/1.1
Host: bytogeticr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://webextrasite.com/
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:31:58 GMT
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E8c8BFFDi6fQdTlkzevoNse8T6crbUYjpmRTU55IFqZBErE8JqKb5VaeZSuJap1EO4jERpMT1azqmRNcQkctvLdNiEbOggawMc0vT6BA9j0RY1rYGmlJwstpyzEos23bew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8332c2e40ba956cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-6T76RLHJJZ&l=dataLayer&cx=c
200 OK 82 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-6T76RLHJJZ&l=dataLayer&cx=c
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT
File type ASCII text, with very long lines (5955)
Hash fa2e8b82dd81b24ae4f5eab4ec72b420
25745692f67ee887de928b0a99da6c5a0f74eac0
bcc65a9e07ded5b1ed112a892e0bb90aaaa7ff5758c333a892c7aa926b06f50f
GET /gtag/js?id=G-6T76RLHJJZ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 10 Dec 2023 04:31:58 GMT
expires: Sun, 10 Dec 2023 04:31:58 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81776
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.googletagmanager.com/gtag/js?id=UA-128671426-1&l=dataLayer&cx=c
200 OK 69 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=UA-128671426-1&l=dataLayer&cx=c
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT
File type ASCII text, with very long lines (4179)
Hash a50ccd494c5d47b6d50766abda7e0e32
1a3162c236928bc216901baa9e4ac44de03b2363
361df42a33d03d1f20b78028344766d2e48ea266b2934a5f3eabe114c2723e4a
GET /gtag/js?id=UA-128671426-1&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 10 Dec 2023 04:31:58 GMT
expires: Sun, 10 Dec 2023 04:31:58 GMT
cache-control: private, max-age=900
last-modified: Sun, 10 Dec 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68897
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
choupsee.com/pfe/current/universal.min.js?v=3.1.471
200 OK 33 kB URL GET HTTP/2 choupsee.com/pfe/current/universal.min.js?v=3.1.471
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectchoupsee.com
FingerprintB2:40:23:B2:5C:CC:41:16:F5:A5:9C:9B:55:F9:7C:32:4A:11:A4:1D
ValidityThu, 19 Oct 2023 06:04:21 GMT - Wed, 17 Jan 2024 06:04:20 GMT
File type gzip compressed data, max speed, from Unix
- data
Hash b8721cd1fd953c2276e16b963c268380
6f422c5c542a47fe5279b2d44cf2cf8e0b64eadc
07e09296bc911c68fb91066e496e7734fb1d671ae2241e8ef5b3fc84c7e6c224
GET /pfe/current/universal.min.js?v=3.1.471 HTTP/1.1
Host: choupsee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://webextrasite.com/
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:31:57 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 13:38:02 GMT
etag: W/"65649bba-1572c"
access-control-allow-origin: https://webextrasite.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
choupsee.com/custom
200 OK 0 B IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectchoupsee.com
FingerprintB2:40:23:B2:5C:CC:41:16:F5:A5:9C:9B:55:F9:7C:32:4A:11:A4:1D
ValidityThu, 19 Oct 2023 06:04:21 GMT - Wed, 17 Jan 2024 06:04:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: choupsee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://webextrasite.com/
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:31:58 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://webextrasite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
choupsee.com/custom
200 OK 0 B IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectchoupsee.com
FingerprintB2:40:23:B2:5C:CC:41:16:F5:A5:9C:9B:55:F9:7C:32:4A:11:A4:1D
ValidityThu, 19 Oct 2023 06:04:21 GMT - Wed, 17 Jan 2024 06:04:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: choupsee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://webextrasite.com/
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:31:58 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://webextrasite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
bytogeticr.com/split_track?action=error_track&zone=4234944&branch=undefined&error=SyntaxError:%20JSON.parse:%20unexpected%20non-whitespace%20character%20after%20JSON%20data%20at%20line%201%20column%202%20of%20the%20JSON%20data&trp=3
200 OK 0 B URL GET HTTP/2 bytogeticr.com/split_track?action=error_track&zone=4234944&branch=undefined&error=SyntaxError:%20JSON.parse:%20unexpected%20non-whitespace%20character%20after%20JSON%20data%20at%20line%201%20column%202%20of%20the%20JSON%20data&trp=3
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerGoogle Trust Services LLC
Subjectbytogeticr.com
Fingerprint2D:28:CA:AA:05:F0:64:01:4D:7D:C6:25:AB:74:80:B2:C0:D8:91:A8
ValidityThu, 12 Oct 2023 10:34:02 GMT - Wed, 10 Jan 2024 10:34:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /split_track?action=error_track&zone=4234944&branch=undefined&error=SyntaxError:%20JSON.parse:%20unexpected%20non-whitespace%20character%20after%20JSON%20data%20at%20line%201%20column%202%20of%20the%20JSON%20data&trp=3 HTTP/1.1
Host: bytogeticr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://webextrasite.com/
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:31:58 GMT
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ChIAmfuz1efX7OU2u4Yr1N9NnRxYAfOFqq64FN8ytAeUTyWc%2BCwPfNF07CSQ9eUl%2BsQ90am6Thy8gvYgSjJvsxWMmg1chvV9ZpB8THW8M8ApJDiutnS%2BRiGqm%2BlnCILKGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8332c2e4cbd456cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
choupsee.com/event
200 OK 0 B IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectchoupsee.com
FingerprintB2:40:23:B2:5C:CC:41:16:F5:A5:9C:9B:55:F9:7C:32:4A:11:A4:1D
ValidityThu, 19 Oct 2023 06:04:21 GMT - Wed, 17 Jan 2024 06:04:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /event HTTP/1.1
Host: choupsee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://webextrasite.com/
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:31:58 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://webextrasite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
choupsee.com/custom
200 OK 39 B IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectchoupsee.com
FingerprintB2:40:23:B2:5C:CC:41:16:F5:A5:9C:9B:55:F9:7C:32:4A:11:A4:1D
ValidityThu, 19 Oct 2023 06:04:21 GMT - Wed, 17 Jan 2024 06:04:20 GMT
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: choupsee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://webextrasite.com/
Content-Type: application/json
Content-Length: 706
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:31:58 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 60b91b2f6c474fb10ca81c2fe074ca20
access-control-allow-origin: https://webextrasite.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
choupsee.com/custom
200 OK 39 B IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectchoupsee.com
FingerprintB2:40:23:B2:5C:CC:41:16:F5:A5:9C:9B:55:F9:7C:32:4A:11:A4:1D
ValidityThu, 19 Oct 2023 06:04:21 GMT - Wed, 17 Jan 2024 06:04:20 GMT
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: choupsee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://webextrasite.com/
Content-Type: application/json
Content-Length: 343
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:31:58 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: bf21301b40746e54a31ebdcec5926035
access-control-allow-origin: https://webextrasite.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
choupsee.com/event
200 OK 94 B IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectchoupsee.com
FingerprintB2:40:23:B2:5C:CC:41:16:F5:A5:9C:9B:55:F9:7C:32:4A:11:A4:1D
ValidityThu, 19 Oct 2023 06:04:21 GMT - Wed, 17 Jan 2024 06:04:20 GMT
Hash 5b60c974592d8da5898a28f6f3c4d12e
9e0e8093531671d1a43900f991bfbfcd686811dd
07126539d8cee2e475f4d0b8fd24ca816dbfdf83c51f4ea83e1028e7d9650832
POST /event HTTP/1.1
Host: choupsee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://webextrasite.com/
Content-Type: application/json
Content-Length: 1662
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:31:58 GMT
content-type: application/json; charset=utf-8
content-length: 94
access-control-allow-origin: https://webextrasite.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-HW1RZFS4RS&l=dataLayer&cx=c
200 OK 81 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-HW1RZFS4RS&l=dataLayer&cx=c
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT
File type ASCII text, with very long lines (5955)
Hash 898ad4a66d2695639eaf939a7ce6220a
b0173c739bfba448ef633c6b5acc4a8f507a6311
fbc25d5ad70443ddd07713161f07a82df24c8c2086fd8364189559f58b1e851d
GET /gtag/js?id=G-HW1RZFS4RS&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 10 Dec 2023 04:31:58 GMT
expires: Sun, 10 Dec 2023 04:31:58 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81224
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
amunfezanttor.com/event
200 OK 0 B IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://webextrasite.com/
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:31:58 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://webextrasite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
amunfezanttor.com/event
200 OK 94 B IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT
Hash 11646ff818e2d3d86d4cda16f2da9ce5
59e59bdf0ecadc43de5610f316e57e5f81303974
66ee1ae7956a1654be5c8bf5f6e59c55c01ff0ca901f92679a6fd0c91cb6f3e7
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://webextrasite.com/
Content-Type: application/json
Content-Length: 528
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:31:58 GMT
content-type: application/json; charset=utf-8
content-length: 94
access-control-allow-origin: https://webextrasite.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
webextrasite.com/Customer/fetchbinhluan
200 OK 38 B URL POST HTTP/2 webextrasite.com/Customer/fetchbinhluan
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type ASCII text, with CRLF line terminators
Hash e115a083865ccd7b6b7cce6b6d8dceb3
9949df3ace3fe699c37f43883b897a60583ab20c
adb4d6950b221f0a05cae0426ec1d87d76bbebc04fced2a574faee2d4138acc5
POST /Customer/fetchbinhluan HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:25 GMT
server: Apache/2
vary: User-Agent
content-length: 38
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
webextrasite.com/teamplate/image/logo-icon.jpg
200 OK 7.7 kB URL GET HTTP/2 webextrasite.com/teamplate/image/logo-icon.jpg
IP
ASN #131353 NhanHoa Software company
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectwebextrasite.com
Fingerprint3E:AC:B2:45:D2:45:0E:97:7F:3C:9E:56:87:CF:17:19:30:79:62:17
ValidityMon, 30 Oct 2023 16:10:33 GMT - Sun, 28 Jan 2024 16:10:32 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 320x320, components 3
- data
Hash 1a955c109f81d6ad5a8a31602b1d2e74
2480db8a171d2aec053738a59f3a2d407a31a322
2a73d49e3dfa189ff53cf111b505e2018e1e1ce5ec3b4eacc412e57cd7385600
GET /teamplate/image/logo-icon.jpg HTTP/1.1
Host: webextrasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/t/category/40/website-phim/
Cookie: _ga_6T76RLHJJZ=GS1.1.1702182725.1.0.1702182725.0.0.0; _ga=GA1.1.76183503.1702182725; _ga_HW1RZFS4RS=GS1.1.1702182725.1.0.1702182725.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:33:25 GMT
server: Apache/2
last-modified: Mon, 05 Aug 2019 05:06:02 GMT
etag: "1dfc-58f57aa154280"
accept-ranges: bytes
content-length: 7676
content-type: image/jpeg
X-Firefox-Spdy: h2
a.exdynsrv.com/fp-interstitial.js
200 OK 18 kB URL GET HTTP/2 a.exdynsrv.com/fp-interstitial.js
IP
ASN #60068 Datacamp Limited
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subject1852405956.rsc.cdn77.org
Fingerprint70:E7:66:FF:72:DA:77:1C:94:EB:B3:1E:35:41:9B:99:60:39:0D:EF
ValidityMon, 23 Oct 2023 10:06:24 GMT - Sun, 21 Jan 2024 10:06:23 GMT
File type ASCII text, with very long lines (18387), with no line terminators
Hash 7391f8f7f575f93a48fabcea20d5a548
9918176c11dab2dbbf0d8ecd5c6d1693bec74fec
00638a343cf8538f55eacd919df75f102d3d4b97c35d90dd16137b53fa6a2556
GET /fp-interstitial.js HTTP/1.1
Host: a.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:31:56 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-credentials: true
etag: W/"9918176c11dab2dbbf0d8ecd5c6"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
expires: Tue, 05 Dec 2023 18:55:29 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *, *
x-77-nzt: EwwBuUwJFAH3vwYAAAwBuUwKCQH3dQAAAAwB1GY4CQH3CQAAAA
x-77-nzt-ray: af58563054c7af773c3f7565b913b63a
x-accel-expires: @1702191385
x-accel-date: 1702180989
x-77-cache: HIT
x-77-age: 1853
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 117, 1727
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
a.exdynsrv.com/popunder1000.js
200 OK 99 kB URL GET HTTP/2 a.exdynsrv.com/popunder1000.js
IP
ASN #60068 Datacamp Limited
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subject1852405956.rsc.cdn77.org
Fingerprint70:E7:66:FF:72:DA:77:1C:94:EB:B3:1E:35:41:9B:99:60:39:0D:EF
ValidityMon, 23 Oct 2023 10:06:24 GMT - Sun, 21 Jan 2024 10:06:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /popunder1000.js HTTP/1.1
Host: a.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 10 Dec 2023 04:31:56 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"c24dbe58d3213f7ab3dd73fe718"
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
expires: Tue, 05 Dec 2023 18:55:28 GMT
cache-control: max-age=10800
x-robots-tag: noindex, follow
access-control-allow-origin: *
x-77-nzt: EwwBuUwJFAH3OAYAAAwBuUwKCQH3wwMAAAwB1GY4CQH3EQAAAA
x-77-nzt-ray: af58563054c7af773c3f7565d28bac3a
x-accel-expires: @1702191427
x-accel-date: 1702181124
x-77-cache: HIT
x-77-age: 2572
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 963, 1592
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
rooptawu.net/5/4234944/?oo=1&js_build=iclick-v1.642.1-auto
403 Forbidden 7 B URL GET HTTP/2 rooptawu.net/5/4234944/?oo=1&js_build=iclick-v1.642.1-auto
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectrooptawu.net
Fingerprint52:E8:61:D6:15:85:E6:B8:B1:6F:67:A1:9F:95:09:E0:60:10:C7:81
ValidityFri, 08 Dec 2023 14:28:13 GMT - Thu, 07 Mar 2024 14:28:12 GMT
File type ASCII text, with no line terminators
Hash 758ff964ee78d0c90f3a14d8d4af8ab3
f248d30ac9849b0ead400537632beb02c9c703d1
00e3fbbf542561da72fdc5ea89cfd1405c17739dd49210252e611c3122018efe
GET /5/4234944/?oo=1&js_build=iclick-v1.642.1-auto HTTP/1.1
Host: rooptawu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
server: nginx
date: Sun, 10 Dec 2023 04:31:58 GMT
content-type: text/plain; charset=utf-8
content-length: 7
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://webextrasite.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
200 OK 12 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 11824, version 1.0
- data
Hash deb26e9b1a25438118e5d39d741ae6b6
a2801defb4c8bed8e4083dfde0b2a5a9c0537020
fc66f942651a9fe1a598770d3d896529dcd7a03d02f40655451513093103e61b
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 23:21:50 GMT
expires: Fri, 06 Dec 2024 23:21:50 GMT
cache-control: public, max-age=31536000
age: 191407
last-modified: Wed, 11 May 2022 19:24:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:100,300,400,500,700,900
200 OK 13 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:100,300,400,500,700,900
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT
Hash cab222f7a352cb95160ade2bbba39be2
e0e5635227481ab966c10c7bc8a015c6132dda53
d175185dc8199dc8531d2c25a84073ad93a7c605a921b0168ed6106a193d21ee
GET /css?family=Roboto:100,300,400,500,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 10 Dec 2023 04:31:56 GMT
date: Sun, 10 Dec 2023 04:31:56 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
choupsee.com/zone?pub=0&zone_id=4231991&is_mobile=false&domain=webextrasite.com&var=&ymid=&var_3=&tg=0&sw=3.1.471
200 OK 180 B URL GET HTTP/2 choupsee.com/zone?pub=0&zone_id=4231991&is_mobile=false&domain=webextrasite.com&var=&ymid=&var_3=&tg=0&sw=3.1.471
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectchoupsee.com
FingerprintB2:40:23:B2:5C:CC:41:16:F5:A5:9C:9B:55:F9:7C:32:4A:11:A4:1D
ValidityThu, 19 Oct 2023 06:04:21 GMT - Wed, 17 Jan 2024 06:04:20 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash b59b63f241f048d6671716d3dc9d7f95
a1798b9a8ac4527ce2fea7bdb6f126132c3cb4dd
c5f7d7b0f8221a520cc9310d340da7fd2a4b3be9f46ffefb888957839865036e
GET /zone?pub=0&zone_id=4231991&is_mobile=false&domain=webextrasite.com&var=&ymid=&var_3=&tg=0&sw=3.1.471 HTTP/1.1
Host: choupsee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://webextrasite.com/
Origin: https://webextrasite.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:31:57 GMT
content-type: application/json; charset=utf-8
content-length: 180
x-trace-id: 5ab158eda9afb4873e425830f1eb88cc
access-control-allow-origin: https://webextrasite.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
choupsee.com/pfe/current/tag.min.js?z=4231991
200 OK 13 kB URL GET HTTP/2 choupsee.com/pfe/current/tag.min.js?z=4231991
IP
Requested by https://webextrasite.com/t/category/40/website-phim/
Certificate IssuerLet's Encrypt
Subjectchoupsee.com
FingerprintB2:40:23:B2:5C:CC:41:16:F5:A5:9C:9B:55:F9:7C:32:4A:11:A4:1D
ValidityThu, 19 Oct 2023 06:04:21 GMT - Wed, 17 Jan 2024 06:04:20 GMT
File type C source, ASCII text, with very long lines (13300), with no line terminators
Hash 258578af3c107ccb907f73c3a2f4c25f
7a192edea829968fb7f57f2a2fc4cb5b612598be
1f945c9c46c47a2b0e867b0d09c3e4559cd768a2d3747abf28d1d65667733b75
GET /pfe/current/tag.min.js?z=4231991 HTTP/1.1
Host: choupsee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://webextrasite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 10 Dec 2023 04:31:57 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 13:38:02 GMT
etag: W/"65649bba-33f4"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
103.179.190.117
142.250.74.168
139.45.197.250
104.17.25.14
95.211.229.245
185.76.9.23
194.242.11.186
0.0.0.0