Report - vidguardto.xyz/e/VqbX53Be0yBOQzp

Report Overview

Visited public
2025-05-15 08:15:57
Tags
Submit Tags
URL
vidguardto.xyz/e/VqbX53Be0yBOQzp
Finishing URL
vidguardto.xyz/e/VqbX53Be0yBOQzp
IP / ASN
172.67.199.128
#13335 CLOUDFLARENET
Title
RVG-230.mp4

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
i.guardstorage.net	unknown	2022-12-22	2023-02-27	2025-04-20	941 B	139 kB	104.21.64.1
pubtrky.com	unknown	2023-11-21	2023-11-21	2025-05-12	486 B	558 B	104.21.8.108
vidguardto.xyz	unknown	2025-05-02	2025-05-15	2025-05-15	3.8 kB	1.2 MB	172.67.199.128
js.srvtrck.com	178339	2015-02-19	2017-01-30	2025-04-20	488 B	41 kB	3.167.2.34
heardaccumulatebeans.com	unknown	2024-05-24	2024-05-28	2025-04-19	456 B	611 B	172.240.127.234
srvtrck.com	20500	2015-02-19	2019-12-14	2025-05-10	422 B	32 kB	54.154.136.171
n07ghaasti.guardstorage.net	unknown	2022-12-22	2025-05-15	2025-05-15	3.0 kB	123 kB	91.134.69.127
junkyadexchange.com	unknown	2024-07-29	2024-07-29	2025-05-11	2.5 kB	1.3 kB	104.21.31.39
youradexchange.com	273384	2012-11-09	2013-02-04	2025-05-15	3.7 kB	12 kB	172.67.177.214
acscdn.com	93608	2020-05-05	2020-05-06	2025-05-15	1.7 kB	417 kB	104.18.17.201
cdn.adligature.com	74048	2012-04-11	2017-02-22	2025-05-10	428 B	1.5 kB	172.67.199.100

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-05-15	medium	heardaccumulatebeans.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (20)

	URL	From	Size	First Seen	Last Seen
	vidguardto.xyz/e/VqbX53Be0yBOQzp	ScriptElement	77 B	2024-01-22	2025-07-03
Pretty URL vidguardto.xyz/e/VqbX53Be0yBOQzp IP 172.67.199.128 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-22 09:14 Last Seen2025-07-03 11:13 Times Seen58 Hash b5cdb3fb48157901ac97a5b90241bffb 0669ba024cb1a6fcc2270de34f57e32315fc3949 aeca2316a1f3548628f04b96af44da3ac3519b76bbe79f513c7195380e52d0d7 Loading...

	vidguardto.xyz/e/VqbX53Be0yBOQzp	ScriptElement	163 B	2024-01-22	2025-07-03
Pretty URL vidguardto.xyz/e/VqbX53Be0yBOQzp IP 172.67.199.128 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-22 09:14 Last Seen2025-07-03 11:13 Times Seen62 Hash 8c86115a74a05eab860602400b1bf55a d852d67127ab71ac875b26ff5d4e2b8b2ed006f5 a757611ec5dd52c76c6599caf7e64796d0b93116b7b70b352fdf506fc2178438 Loading...

	acscdn.com/script/inpagepush.js	ScriptElement	87 kB	2025-05-15	2025-05-18
Pretty URL acscdn.com/script/inpagepush.js IP 104.18.17.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-15 07:09 Last Seen2025-05-18 01:01 Times Seen6 Hash d4dcb470fd02e8c7684232b6ec73a2ab faf8f14861250730d97a0bad1e936d08711ddddd 877a9f244bf401b61ccfc8e9536fe4a4418610441d06563f8aa04916430d90c5 Loading...

	acscdn.com/script/aclib.js	ScriptElement	141 kB	2025-05-14	2025-05-19
Pretty URL acscdn.com/script/aclib.js IP 104.18.17.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-14 06:19 Last Seen2025-05-19 22:44 Times Seen25 Hash 8f8105e049e8586067d7dd2ee8043319 44b582dca2cc906137fbb6f5b1b9b68b41b8bb09 db44a91c57e0e5c8b6b9239f371feb4ad11c427f07e0efc662f3c27f62144434 Loading...

	vidguardto.xyz/assets/js/main.js?id=a2b24acc6c8d37de23098caa2f7907db	ScriptElement	106 kB	2025-01-03	2025-06-30
Pretty URL vidguardto.xyz/assets/js/main.js?id=a2b24acc6c8d37de23098caa2f7907db IP 172.67.199.128 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-03 17:03 Last Seen2025-06-30 02:51 Times Seen27 Hash 2600e0252870a20882319cf68fbe5260 27edc7b0bcfd4145510e3175a749f26de1f19048 07873ddc8c12db088b3bef80b0979ab082cdd92af545c2a1608574bf98f737e9 Loading...

	vidguardto.xyz/assets/jwplayer/8.36.4/jwplayer.js?id=2ec1cfc87408adedf85a8ebcbcd646f6	ScriptElement	148 kB	2025-03-25	2025-07-03
Pretty URL vidguardto.xyz/assets/jwplayer/8.36.4/jwplayer.js?id=2ec1cfc87408adedf85a8ebcbcd646f6 IP 172.67.199.128 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-25 21:34 Last Seen2025-07-03 11:13 Times Seen20 Hash 7d12e5f8255c527cbd563d0281a3e404 465a16f78ebb976f5599ee6a8f8665b5b7529564 a53bd1a0e458c9901eeb5c79b2a65c2ffe24225e424749b217e0f918d87b9086 Loading...

	vidguardto.xyz/e/VqbX53Be0yBOQzp	ScriptElement	2.5 kB	2025-05-15	2025-05-15
Pretty URL vidguardto.xyz/e/VqbX53Be0yBOQzp IP 172.67.199.128 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-15 08:16 Last Seen2025-05-15 08:16 Times Seen1 Hash 2f1e42cff78beba1096b4a6727bfd6bb c32601eb10dd934df6f7e8123910d4a67e5a6ab7 4828331820899bd06588dfd956f8565348afd5849ba48085a2bd3fe275e89b8b Loading...

	vidguardto.xyz/assets/jwplayer/8.36.4/provider.hlsjs.js	ScriptElement	461 kB	2025-03-25	2025-07-03
Pretty URL vidguardto.xyz/assets/jwplayer/8.36.4/provider.hlsjs.js IP 172.67.199.128 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-25 21:34 Last Seen2025-07-03 11:13 Times Seen19 Hash 53f377cf2bb36a2da25d07fa1b4b2b84 35ab3e3f9b2cb94860fd594fa2310187f8115d82 2ba7e35f6c4c9654a8a80a8476509c69526c1bc52b65cea7e98558d600f2e231 Loading...

	vidguardto.xyz/e/VqbX53Be0yBOQzp	Function	502 B	2025-05-15	2025-05-15
Pretty URL vidguardto.xyz/e/VqbX53Be0yBOQzp IP 172.67.199.128 ASN #13335 CLOUDFLARENET Introduced by Function Embedded in HTML false Observations First Seen2025-05-15 08:16 Last Seen2025-05-15 08:16 Times Seen1 Hash 5840b13b374f981bf7d597f079da3d37 94d37657d916d466ba9d3f7bea8895509faf0046 b69f123e3b52593a7bce423a809f8ac8e26852e215e47472ac51e7a2afb85707 Loading...

	vidguardto.xyz/assets/js/player.js?id=a9b24acc6c8d37de23098caa2f7907db	ScriptElement	14 kB	2023-03-07	2025-07-04
Pretty URL vidguardto.xyz/assets/js/player.js?id=a9b24acc6c8d37de23098caa2f7907db IP 172.67.199.128 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-07-04 01:05 Times Seen1401 Hash 19b624e7fe7a86b4c7851ed61e250626 760a6c0399930b96c61b6e18a6cbb0dbf0125f97 eaf266c920ef8297bf135324d4c6232d117d1eb849a082850b8d0520c1966c2e Loading...

	vidguardto.xyz/e/VqbX53Be0yBOQzp	Eval	32 kB	2025-05-15	2025-05-15
Pretty URL vidguardto.xyz/e/VqbX53Be0yBOQzp IP 172.67.199.128 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-05-15 08:16 Last Seen2025-05-15 08:16 Times Seen1 Hash 68271a714c836218d59764987ea7bb7c dd6611c5521b082cd49f144de9df76bd1a04d22a 10572f2d4ac1801507703e3460ee6c97156b83bb9b93effd5f6fa080ee9936c9 Loading...

	vidguardto.xyz/e/VqbX53Be0yBOQzp	ScriptElement	44 kB	2025-05-15	2025-05-15
Pretty URL vidguardto.xyz/e/VqbX53Be0yBOQzp IP 172.67.199.128 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-15 08:16 Last Seen2025-05-15 08:16 Times Seen1 Hash 15dc0dd125c76020ee67f208c3a91be0 f044c9ef291cf54b6759b56f9f3a238e0229671a f37b7df11cc575eae577a3845ab0b766d10cb55e36b3b839effd3177927d15bf Loading...

	vidguardto.xyz/e/VqbX53Be0yBOQzp	ScriptElement	2.2 kB	2023-05-22	2025-07-03
Pretty URL vidguardto.xyz/e/VqbX53Be0yBOQzp IP 172.67.199.128 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 10:53 Last Seen2025-07-03 11:13 Times Seen65 Hash 62a92dd510564854e07d8a6de701ed58 03e17a24753ced6bf9fa12b7aba90abb873d72f1 92b002ab80f8fdaac7bbb92f61853a089cf735188c7de0bd7417e65bd644bf13 Loading...

	vidguardto.xyz/assets/jwplayer/8.36.4/jwpsrv.js	ScriptElement	67 kB	2025-01-10	2025-07-03
Pretty URL vidguardto.xyz/assets/jwplayer/8.36.4/jwpsrv.js IP 172.67.199.128 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-10 15:16 Last Seen2025-07-03 13:09 Times Seen99 Hash 31401fbc0ab6b12a6501bd594be3a8f3 f83a4ddd2d63bb4466fd6af488c54a262228e34a 9a14bfe6376ee1c040735882769d97f12b8eda3620f214e70c4053166d64fc9a Loading...

	acscdn.com/script/interstitial.js	ScriptElement	89 kB	2025-05-15	2025-05-17
Pretty URL acscdn.com/script/interstitial.js IP 104.18.17.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-15 08:16 Last Seen2025-05-17 17:47 Times Seen2 Hash 6003cd236844f0b864dff7a415cc14e0 ca867a9b4b175339b3fb2595f707f9ff2c974d7b 139eb3609ac4ec3eebde26ac7a9ba8632376b898157a9ced10dd1e3a64de57c2 Loading...

	vidguardto.xyz/e/VqbX53Be0yBOQzp	Function	1.8 kB	2025-05-15	2025-05-15
Pretty URL vidguardto.xyz/e/VqbX53Be0yBOQzp IP 172.67.199.128 ASN #13335 CLOUDFLARENET Introduced by Function Embedded in HTML false Observations First Seen2025-05-15 08:16 Last Seen2025-05-15 08:16 Times Seen1 Hash 3220af9bfe894e6319219527aa7fd279 9721b323fe217d4771e42dc6b6d55183bb487bce 82e9a78b55693f0978d1fc8ec0191158b3a9929a07946ba0c04403830225e842 Loading...

	vidguardto.xyz/e/VqbX53Be0yBOQzp	ScriptElement	59 B	2025-01-27	2025-07-03
Pretty URL vidguardto.xyz/e/VqbX53Be0yBOQzp IP 172.67.199.128 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-01-27 03:46 Last Seen2025-07-03 11:13 Times Seen26 Hash cc13095b119ebfeac3a238961d349fd0 6d4f6763fd6813449cd38cd55f48408320fc0fdd 44f876dbb8ea470a6f40a4fea813d52aa9301194f2bb5d530455c0ef3d9fdcf4 Loading...

	vidguardto.xyz/e/VqbX53Be0yBOQzp	ScriptElement	110 B	2025-02-08	2025-07-03
Pretty URL vidguardto.xyz/e/VqbX53Be0yBOQzp IP 172.67.199.128 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-02-08 19:11 Last Seen2025-07-03 11:13 Times Seen22 Hash c2fe9d08d1049f99116a45f120963ba4 2ee1dba67c9b850582148adb9a48932c4cbedd3b 5823d152db2f403cfadd9747743c41569ddec36cc112fca5131a9ae4076bd52e Loading...

	acscdn.com/script/suv5.js	ScriptElement	96 kB	2025-05-14	2025-05-18
Pretty URL acscdn.com/script/suv5.js IP 104.18.17.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-14 06:19 Last Seen2025-05-18 17:01 Times Seen11 Hash 2da4397b2985f6204274c4395920cc39 bcc00806745a04b2fd6262eb970cdb822d8b9a8e 421dbe24ca9deca94f451fdb9c02f16838d1bd5cfab5d442cb8dc6fd888b22dd Loading...

	vidguardto.xyz/assets/jwplayer/8.36.4/jwplayer.core.controls.js	ScriptElement	332 kB	2025-01-02	2025-07-03
Pretty URL vidguardto.xyz/assets/jwplayer/8.36.4/jwplayer.core.controls.js IP 172.67.199.128 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-02 21:48 Last Seen2025-07-03 11:13 Times Seen121 Hash aa76c7bf8a702f02c4ec0fc973d698d6 cd8bd98969dd7167c8d99a5abcec4a07df4e63a2 7220be9e6db902dabf6a18a260e3a1d14a877aa9aeb113380dd3711c908eba0f Loading...

HTTP Transactions (31)

URL IP Response Size

GET srvtrck.com/assets/css/LineIcons.css

54.154.136.171

200 OK

31 kB

URL GET
srvtrck.com/assets/css/LineIcons.css
IP
54.154.136.171:443
ASN
#16509 AMAZON-02

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerLet's Encrypt
Subjectlinksprf.com
FingerprintF8:58:44:17:8B:1E:A0:F0:09:FB:F1:01:27:26:D6:FA:C3:91:89:CA
ValidityTue, 18 Mar 2025 05:28:52 GMT - Mon, 16 Jun 2025 05:28:51 GMT

File type
ASCII text
Size
31 kB (31420 bytes)
Hash
54d11756557f8f9affecd833c738e71f
86356e20574afa3de939a5d13a97b99b20648374
8e5d8c4e0949aad2439584e589448cbf1ae29f81ee6655fdc810c82248308dfe

HTTP Headers

GET /assets/css/LineIcons.css HTTP/1.1
Host: srvtrck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidguardto.xyz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 May 2025 08:15:35 GMT
content-type: text/css
content-length: 31420
accept-ranges: bytes
etag: W/"31420-1746603494000"
last-modified: Wed, 07 May 2025 07:38:14 GMT
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

GET i.guardstorage.net/posters/08VqbX53Be0yBOQzpl2D.poster.jpg

104.21.64.1

200 OK

138 kB

URL GET
i.guardstorage.net/posters/08VqbX53Be0yBOQzpl2D.poster.jpg
IP
104.21.64.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerLet's Encrypt
Subjecti.guardstorage.net
FingerprintB1:13:CA:4F:6B:63:3D:8A:24:22:B0:71:72:36:13:0E:B0:F6:3F:04
ValiditySun, 06 Apr 2025 03:13:13 GMT - Sat, 05 Jul 2025 03:13:12 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 852x476, components 3
Size
138 kB (137738 bytes)
Hash
ec65c99d1e5db16e76bf50cf476fa68a
67d158295cc95f8be760425edcc19b66dba7d00c
a698fe8a1d72da52a3aa820ad03de6537c80349961f2424e0f30994594b72098

HTTP Headers

GET /posters/08VqbX53Be0yBOQzpl2D.poster.jpg HTTP/1.1
Host: i.guardstorage.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 May 2025 08:15:35 GMT
content-type: image/jpeg
content-length: 137738
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Tue, 24 Dec 2024 20:14:09 GMT
etag: "676b1611-21a0a"
access-control-allow-origin: *
x-server: cdn2
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=hNKlPG3FeUVwtebVKWR1ThxRDXprbFFB3sziJoBNT6MtZIYmF2hjopd2GWscezksXs9ebJVxBtVTEBXeKH6B4rNRQh7wh6wMpD%2BmaERdM%2BwFIcL%2Bu9L1FZ41bxwpPVR9h7kJwnk%3D"}]}
cf-ray: 940130361849569c-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET n07ghaasti.guardstorage.net/hls_3/sdy_Jdk-bM_f_A5SvT50TNDOzvomFZcX4Sbs4EgN9GRP7UV5jdAgDYnIjg-fw4VnYliQWQBMvalkcMs9570gFg/master.m3u8?sig=Kv6lauYMT8Furdx6Cy1Q6Q&expires=1747305934

91.134.69.127

200 OK

1.9 kB

URL GET
n07ghaasti.guardstorage.net/hls_3/sdy_Jdk-bM_f_A5SvT50TNDOzvomFZcX4Sbs4EgN9GRP7UV5jdAgDYnIjg-fw4VnYliQWQBMvalkcMs9570gFg/master.m3u8?sig=Kv6lauYMT8Furdx6Cy1Q6Q&expires=1747305934
IP
91.134.69.127:443
ASN
#16276 OVH SAS

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerSectigo Limited
Subject*.guardstorage.net
FingerprintE1:0D:A0:4E:AC:1E:00:C1:5A:A6:31:64:0A:CE:0C:1A:C2:6A:2E:0B
ValiditySat, 04 Jan 2025 00:00:00 GMT - Wed, 04 Feb 2026 23:59:59 GMT

File type
M3U playlist, ASCII text, with very long lines (303)
Size
1.9 kB (1903 bytes)
Hash
d0038ac0a12243ce25347f558e7daedd
f6b4ef4f8fcd272b49989bf2837d1adce655bdf6
b06cdb05241352a9a8dba435f11b190d2b77d8413903d49db614eff05b319cbe

HTTP Headers

GET /hls_3/sdy_Jdk-bM_f_A5SvT50TNDOzvomFZcX4Sbs4EgN9GRP7UV5jdAgDYnIjg-fw4VnYliQWQBMvalkcMs9570gFg/master.m3u8?sig=Kv6lauYMT8Furdx6Cy1Q6Q&expires=1747305934 HTTP/1.1
Host: n07ghaasti.guardstorage.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vidguardto.xyz
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.3
date: Thu, 15 May 2025 08:15:37 GMT
content-type: application/vnd.apple.mpegurl
last-modified: Thu, 15 May 2025 08:15:37 GMT
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

GET junkyadexchange.com/script/i.php?t=1&c=23952154&stamat=m%257C%252C%252CwiMmY2P2oGU3BP-GH0dEdHP3xP.b11%252CP97tFO4XU7IzaWr8KonRGzHG0z1V3rRbtS-BYKhhkDyHE9KZ0JOdCUm_P16ElNcqJmQeu2x7ed83KMPdc064c0UFSAArD0NbuSkhR0mlzLmf_jfq_N-P5h4OsH_7DTevpNc1Luxv3C6mPp0180F2cBBGOsMamQhezv-cmZeLAdk0Rw-S0Y8t3UG5Mc3IDRa6cWo486nxtNftEEowliO1Axl-5Nw3cHIK9wDv1gdFmBKwX7ajOFTUMkfw9t3V2uTrYK2K-tDP7g_3R3oH7DM8TA0zVbuFO3geo-giScSkRRdMJiuLW8BfRrvgMtT0Vg2ZNdPFabxUdAniFFEx1ODTEaq8iDZTC9qqEDNELOw7UKE3ExKD4Mlcv8EQwQRWfk0fnkLmCiejknBo6kCmCAggpY6Tuy8hKspVSQrbXs6IDUwG-2RUBd9loTbL_sA0dgX38Fl1CsYymI8st4NuOtlxhAtypMNOjDEWlIdpfTJIFFeRIu7MJRetKDXnczCNX8m_QzBWzi17ai961eJzL1SJfKdjwGKS-UfDXey_R2ojL5ADmKA-P2iFi15uMI0xurawYiRYHwvavKrV8Oiz7p5Tun5fwrEdGHiU3qsI5w71xyu5wm2OQJWRKH8sPBCAuGud&utsid=e44a25ef64783241fe48d241cfa0fcc2&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&cbref=

104.21.31.39

204 No Content

0 B

URL GET
junkyadexchange.com/script/i.php?t=1&c=23952154&stamat=m%257C%252C%252CwiMmY2P2oGU3BP-GH0dEdHP3xP.b11%252CP97tFO4XU7IzaWr8KonRGzHG0z1V3rRbtS-BYKhhkDyHE9KZ0JOdCUm_P16ElNcqJmQeu2x7ed83KMPdc064c0UFSAArD0NbuSkhR0mlzLmf_jfq_N-P5h4OsH_7DTevpNc1Luxv3C6mPp0180F2cBBGOsMamQhezv-cmZeLAdk0Rw-S0Y8t3UG5Mc3IDRa6cWo486nxtNftEEowliO1Axl-5Nw3cHIK9wDv1gdFmBKwX7ajOFTUMkfw9t3V2uTrYK2K-tDP7g_3R3oH7DM8TA0zVbuFO3geo-giScSkRRdMJiuLW8BfRrvgMtT0Vg2ZNdPFabxUdAniFFEx1ODTEaq8iDZTC9qqEDNELOw7UKE3ExKD4Mlcv8EQwQRWfk0fnkLmCiejknBo6kCmCAggpY6Tuy8hKspVSQrbXs6IDUwG-2RUBd9loTbL_sA0dgX38Fl1CsYymI8st4NuOtlxhAtypMNOjDEWlIdpfTJIFFeRIu7MJRetKDXnczCNX8m_QzBWzi17ai961eJzL1SJfKdjwGKS-UfDXey_R2ojL5ADmKA-P2iFi15uMI0xurawYiRYHwvavKrV8Oiz7p5Tun5fwrEdGHiU3qsI5w71xyu5wm2OQJWRKH8sPBCAuGud&utsid=e44a25ef64783241fe48d241cfa0fcc2&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&cbref=
IP
104.21.31.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectjunkyadexchange.com
Fingerprint2C:13:41:58:19:15:A5:A1:EC:B1:72:AD:F8:8F:AF:6C:48:6B:02:7B
ValiditySat, 22 Mar 2025 11:06:14 GMT - Fri, 20 Jun 2025 12:04:26 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /script/i.php?t=1&c=23952154&stamat=m%257C%252C%252CwiMmY2P2oGU3BP-GH0dEdHP3xP.b11%252CP97tFO4XU7IzaWr8KonRGzHG0z1V3rRbtS-BYKhhkDyHE9KZ0JOdCUm_P16ElNcqJmQeu2x7ed83KMPdc064c0UFSAArD0NbuSkhR0mlzLmf_jfq_N-P5h4OsH_7DTevpNc1Luxv3C6mPp0180F2cBBGOsMamQhezv-cmZeLAdk0Rw-S0Y8t3UG5Mc3IDRa6cWo486nxtNftEEowliO1Axl-5Nw3cHIK9wDv1gdFmBKwX7ajOFTUMkfw9t3V2uTrYK2K-tDP7g_3R3oH7DM8TA0zVbuFO3geo-giScSkRRdMJiuLW8BfRrvgMtT0Vg2ZNdPFabxUdAniFFEx1ODTEaq8iDZTC9qqEDNELOw7UKE3ExKD4Mlcv8EQwQRWfk0fnkLmCiejknBo6kCmCAggpY6Tuy8hKspVSQrbXs6IDUwG-2RUBd9loTbL_sA0dgX38Fl1CsYymI8st4NuOtlxhAtypMNOjDEWlIdpfTJIFFeRIu7MJRetKDXnczCNX8m_QzBWzi17ai961eJzL1SJfKdjwGKS-UfDXey_R2ojL5ADmKA-P2iFi15uMI0xurawYiRYHwvavKrV8Oiz7p5Tun5fwrEdGHiU3qsI5w71xyu5wm2OQJWRKH8sPBCAuGud&utsid=e44a25ef64783241fe48d241cfa0fcc2&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&cbref= HTTP/1.1
Host: junkyadexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Thu, 15 May 2025 08:15:35 GMT
server: cloudflare
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=e8WnVq1K2OGvRcE6mUMSTbcndzxG8fDlRVs8ru9Jgizh4U7PPqKiOGoWUnapFEOL93X%2ByOEUt96p3dnF3EHltXZW4%2FeWzLqXX1tU0doxyB5aPGPIF2fyMqK53oXwT5McKY3Ynh8z"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cf-ray: 940130375aea5689-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET n07ghaasti.guardstorage.net/hls_3/sdy_Jdk-bM_f_A5SvT50TNDOzvomFZcX4Sbs4EgN9GRP7UV5jdAgDYnIjg-fw4VnYliQWQBMvalkcMs9570gFg/seg-1-f1-v1-a1.ts?sig=Kv6lauYMT8Furdx6Cy1Q6Q&expires=1747305934

91.134.69.127

502 Bad Gateway

163 B

URL GET
n07ghaasti.guardstorage.net/hls_3/sdy_Jdk-bM_f_A5SvT50TNDOzvomFZcX4Sbs4EgN9GRP7UV5jdAgDYnIjg-fw4VnYliQWQBMvalkcMs9570gFg/seg-1-f1-v1-a1.ts?sig=Kv6lauYMT8Furdx6Cy1Q6Q&expires=1747305934
IP
91.134.69.127:443
ASN
#16276 OVH SAS

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerSectigo Limited
Subject*.guardstorage.net
FingerprintE1:0D:A0:4E:AC:1E:00:C1:5A:A6:31:64:0A:CE:0C:1A:C2:6A:2E:0B
ValiditySat, 04 Jan 2025 00:00:00 GMT - Wed, 04 Feb 2026 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
163 B (163 bytes)
Hash
b95f0a03d541743c63c21e445ec554bd
62ca36dc37f349c46f6a141afbe12fabf6af03b1
6a4de2c14ca56c74b7eca5029477536858ceedc59d85cc8181776564a7630d69

HTTP Headers

GET /hls_3/sdy_Jdk-bM_f_A5SvT50TNDOzvomFZcX4Sbs4EgN9GRP7UV5jdAgDYnIjg-fw4VnYliQWQBMvalkcMs9570gFg/seg-1-f1-v1-a1.ts?sig=Kv6lauYMT8Furdx6Cy1Q6Q&expires=1747305934 HTTP/1.1
Host: n07ghaasti.guardstorage.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vidguardto.xyz
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 502 Bad Gateway
server: openresty/1.21.4.3
date: Thu, 15 May 2025 08:15:42 GMT
content-type: text/html
content-length: 163
X-Firefox-Spdy: h2

POST pubtrky.com/ut/hb.php?cb=0.36106968586815436&v=1

104.21.8.108

204 No Content

0 B

URL POST
pubtrky.com/ut/hb.php?cb=0.36106968586815436&v=1
IP
104.21.8.108:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectpubtrky.com
FingerprintD1:DF:C8:94:03:32:97:45:6F:1A:E3:AD:EE:EC:22:B8:E7:5C:6F:27
ValidityMon, 05 May 2025 10:34:21 GMT - Sun, 03 Aug 2025 11:31:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /ut/hb.php?cb=0.36106968586815436&v=1 HTTP/1.1
Host: pubtrky.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 834
Origin: https://vidguardto.xyz
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Thu, 15 May 2025 08:15:35 GMT
server: cloudflare
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=PgvE4Vv4bEiWiL9KnWhmvA9yDd8pc8kIEKtpXvMvx1ZV3u5RFORsUl2fwUm1ewzZdejbG%2FmYC7I1KEbOkUIZCUUTDiLOZ7OYrx8NslvA5qujc9Mfgbcx%2B0e1%2B4huvQ%3D%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cf-ray: 94013034ae4c56c3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET youradexchange.com/script/push.php?r=9502494&ipp=1&mads=2&position=top&srs=e44a25ef64783241fe48d241cfa0fcc2&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&atv=60.1&cbref=

172.67.177.214

200 OK

1.9 kB

URL GET
youradexchange.com/script/push.php?r=9502494&ipp=1&mads=2&position=top&srs=e44a25ef64783241fe48d241cfa0fcc2&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&atv=60.1&cbref=
IP
172.67.177.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectyouradexchange.com
Fingerprint15:B3:64:96:16:B0:F4:77:6F:50:C1:66:99:8E:A6:A8:90:64:AD:7E
ValidityThu, 03 Apr 2025 15:59:56 GMT - Wed, 02 Jul 2025 16:56:55 GMT

File type
JSON text data
Size
1.9 kB (1874 bytes)
Hash
71a833af2903e7c4a9e38b0196b13980
bc4fd03668418b04dc2b97717ab753fb49e393c3
80ccd9ee3853d95f9903aa49d547b8baa862533a1e9ccba7e5983f2dfc129837

HTTP Headers

GET /script/push.php?r=9502494&ipp=1&mads=2&position=top&srs=e44a25ef64783241fe48d241cfa0fcc2&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&atv=60.1&cbref= HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidguardto.xyz/
Origin: https://vidguardto.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 May 2025 08:15:35 GMT
content-type: application/json; charset=utf-8
server: cloudflare
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
vary: accept-encoding
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=T4d6tXd0ga7Dvk3LDfroHupAIYv34nX1Mj8%2BAMs1WKoYEYBYk7%2BpeL5kSdjkxsxln0ouY0AwyRP221LwMBouxAAkuSi0fBuEtLicOkQ2KAHvrs3mGLGh%2FMG2NKy5Ri2tfjMfINc%3D"}]}
cf-ray: 940130351e9bb4ff-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET youradexchange.com/script/interstitial.php?r=9830558&srs=e44a25ef64783241fe48d241cfa0fcc2&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&atv=60.1&cbref=&pblcz=9148982

172.67.177.214

200 OK

2.4 kB

URL GET
youradexchange.com/script/interstitial.php?r=9830558&srs=e44a25ef64783241fe48d241cfa0fcc2&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&atv=60.1&cbref=&pblcz=9148982
IP
172.67.177.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectyouradexchange.com
Fingerprint15:B3:64:96:16:B0:F4:77:6F:50:C1:66:99:8E:A6:A8:90:64:AD:7E
ValidityThu, 03 Apr 2025 15:59:56 GMT - Wed, 02 Jul 2025 16:56:55 GMT

File type
JSON text data
Size
2.4 kB (2423 bytes)
Hash
f16a0fe844e9bf6a7ec7a53270fd1c26
52aa500691281770e4fddb5d67d994dd54527f6a
28675b97bd3d61358f97bbe846a002ccaf3337204f6a05e4e965a7c318b81cb1

HTTP Headers

GET /script/interstitial.php?r=9830558&srs=e44a25ef64783241fe48d241cfa0fcc2&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&atv=60.1&cbref=&pblcz=9148982 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidguardto.xyz/
Origin: https://vidguardto.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 15 May 2025 08:15:35 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PtSwEFdsInWX77yROW0LylLvJeVITf2%2BCzPigEYh2c1soTqnmv%2FdUuF9g8P9XMRdf4fBV4NnazU6lrfxTHS09VCfK%2BscS4E0jO4f3kcSD2Yy%2BHHpCJlKTdmqNj3AEeJ1OhgYap4%3D"}],"group":"cf-nel","max_age":604800}
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
vary: accept-encoding
cf-ray: 940130375bdeb4f4-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4021&min_rtt=3725&rtt_var=1502&sent=12&recv=10&lost=0&retrans=0&sent_bytes=3765&recv_bytes=1459&delivery_rate=2314&cwnd=12000&unsent_bytes=0&cid=4986b6b451347544&ts=303&x=16"

GET n07ghaasti.guardstorage.net/hls_3/sdy_Jdk-bM_f_A5SvT50TNDOzvomFZcX4Sbs4EgN9GRP7UV5jdAgDYnIjg-fw4VnYliQWQBMvalkcMs9570gFg/index-f1-v1-a1.m3u8?sig=Kv6lauYMT8Furdx6Cy1Q6Q&expires=1747305934

91.134.69.127

200 OK

119 kB

URL GET
n07ghaasti.guardstorage.net/hls_3/sdy_Jdk-bM_f_A5SvT50TNDOzvomFZcX4Sbs4EgN9GRP7UV5jdAgDYnIjg-fw4VnYliQWQBMvalkcMs9570gFg/index-f1-v1-a1.m3u8?sig=Kv6lauYMT8Furdx6Cy1Q6Q&expires=1747305934
IP
91.134.69.127:443
ASN
#16276 OVH SAS

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerSectigo Limited
Subject*.guardstorage.net
FingerprintE1:0D:A0:4E:AC:1E:00:C1:5A:A6:31:64:0A:CE:0C:1A:C2:6A:2E:0B
ValiditySat, 04 Jan 2025 00:00:00 GMT - Wed, 04 Feb 2026 23:59:59 GMT

File type
M3U playlist, ASCII text
Size
119 kB (119126 bytes)
Hash
fd46285abbe4c9e50e85aa26c5be5d38
b1c6a391147f2d98bb673347ffa9e1fc6dcfcc48
60e569678df8b96e730dcbbfed8966bc69b11f0bbd6f445e33530fec56ef4223

HTTP Headers

GET /hls_3/sdy_Jdk-bM_f_A5SvT50TNDOzvomFZcX4Sbs4EgN9GRP7UV5jdAgDYnIjg-fw4VnYliQWQBMvalkcMs9570gFg/index-f1-v1-a1.m3u8?sig=Kv6lauYMT8Furdx6Cy1Q6Q&expires=1747305934 HTTP/1.1
Host: n07ghaasti.guardstorage.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vidguardto.xyz
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.3
date: Thu, 15 May 2025 08:15:37 GMT
content-type: application/vnd.apple.mpegurl
last-modified: Thu, 15 May 2025 08:15:37 GMT
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

GET n07ghaasti.guardstorage.net/hls_3/sdy_Jdk-bM_f_A5SvT50TNDOzvomFZcX4Sbs4EgN9GRP7UV5jdAgDYnIjg-fw4VnYliQWQBMvalkcMs9570gFg/seg-1-f1-v1-a1.ts?sig=Kv6lauYMT8Furdx6Cy1Q6Q&expires=1747305934

91.134.69.127

502 Bad Gateway

163 B

URL GET
n07ghaasti.guardstorage.net/hls_3/sdy_Jdk-bM_f_A5SvT50TNDOzvomFZcX4Sbs4EgN9GRP7UV5jdAgDYnIjg-fw4VnYliQWQBMvalkcMs9570gFg/seg-1-f1-v1-a1.ts?sig=Kv6lauYMT8Furdx6Cy1Q6Q&expires=1747305934
IP
91.134.69.127:443
ASN
#16276 OVH SAS

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerSectigo Limited
Subject*.guardstorage.net
FingerprintE1:0D:A0:4E:AC:1E:00:C1:5A:A6:31:64:0A:CE:0C:1A:C2:6A:2E:0B
ValiditySat, 04 Jan 2025 00:00:00 GMT - Wed, 04 Feb 2026 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
163 B (163 bytes)
Hash
b95f0a03d541743c63c21e445ec554bd
62ca36dc37f349c46f6a141afbe12fabf6af03b1
6a4de2c14ca56c74b7eca5029477536858ceedc59d85cc8181776564a7630d69

HTTP Headers

GET /hls_3/sdy_Jdk-bM_f_A5SvT50TNDOzvomFZcX4Sbs4EgN9GRP7UV5jdAgDYnIjg-fw4VnYliQWQBMvalkcMs9570gFg/seg-1-f1-v1-a1.ts?sig=Kv6lauYMT8Furdx6Cy1Q6Q&expires=1747305934 HTTP/1.1
Host: n07ghaasti.guardstorage.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vidguardto.xyz
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 502 Bad Gateway
server: openresty/1.21.4.3
date: Thu, 15 May 2025 08:15:51 GMT
content-type: text/html
content-length: 163
X-Firefox-Spdy: h2

GET acscdn.com/script/suv5.js

104.18.17.201

200 OK

96 kB

URL GET
acscdn.com/script/suv5.js
IP
104.18.17.201:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectacscdn.com
FingerprintE8:04:28:CD:40:56:EF:C8:19:07:48:1D:8F:83:82:58:38:D8:61:A1
ValidityTue, 13 May 2025 15:22:09 GMT - Mon, 11 Aug 2025 16:21:52 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65493), with no line terminators
Size
96 kB (96328 bytes)
Hash
2da4397b2985f6204274c4395920cc39
bcc00806745a04b2fd6262eb970cdb822d8b9a8e
421dbe24ca9deca94f451fdb9c02f16838d1bd5cfab5d442cb8dc6fd888b22dd

HTTP Headers

GET /script/suv5.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 15 May 2025 08:15:35 GMT
content-type: text/javascript
x-guploader-uploadid: AAO2VwpkDJ8N9jYdNIpofNzl_qiC51YkNLLUwJNtfcmwVHcLjRx-aqnyZkfobpdxKHMhdF8ANzSEGtI
x-goog-generation: 1747151554362564
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 96328
x-goog-hash: crc32c=nmRP1w==, md5=LaQ5eymF9iBCdMQ5WSDMOQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Thu, 15 May 2025 09:15:35 GMT
cache-control: public, max-age=3600
last-modified: Tue, 13 May 2025 15:52:34 GMT
etag: W/"2da4397b2985f6204274c4395920cc39"
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 3294
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 94013033ee4bb4fa-OSL
content-encoding: gzip
server-timing: cfExtPri

GET acscdn.com/script/interstitial.js

104.18.17.201

200 OK

89 kB

URL GET
acscdn.com/script/interstitial.js
IP
104.18.17.201:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectacscdn.com
FingerprintE8:04:28:CD:40:56:EF:C8:19:07:48:1D:8F:83:82:58:38:D8:61:A1
ValidityTue, 13 May 2025 15:22:09 GMT - Mon, 11 Aug 2025 16:21:52 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (33090), with NEL line terminators
Size
89 kB (88656 bytes)
Hash
6003cd236844f0b864dff7a415cc14e0
ca867a9b4b175339b3fb2595f707f9ff2c974d7b
139eb3609ac4ec3eebde26ac7a9ba8632376b898157a9ced10dd1e3a64de57c2

HTTP Headers

GET /script/interstitial.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 15 May 2025 08:15:35 GMT
content-type: text/javascript
x-guploader-uploadid: AAO2VwpRNcaTavYfrMP94HP0TNlVqDRz1S5Mf3NgUj038Vxp0Wy1PUa4VHJDUpTCfOtN_58x
x-goog-generation: 1747151358512485
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 88656
x-goog-hash: crc32c=/dRH4A==, md5=YAPNI2hE8Lhk3/ekFcwU4A==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Thu, 15 May 2025 09:15:35 GMT
cache-control: public, max-age=3600
last-modified: Tue, 13 May 2025 15:49:18 GMT
etag: W/"6003cd236844f0b864dff7a415cc14e0"
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 2513
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 94013036aa11b4fa-OSL
content-encoding: gzip
server-timing: cfExtPri

GET youradexchange.com/script/suurl5.php?r=9830554&cbur=0.42779557692470205&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=RVG-230.mp4&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&cbref=&cbdescription=&cbkeywords=&cbcdn=acscdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1747296935487&srs=e44a25ef64783241fe48d241cfa0fcc2&atv=60.1&pblcz=9502494

172.67.177.214

200 OK

1.1 kB

URL GET
youradexchange.com/script/suurl5.php?r=9830554&cbur=0.42779557692470205&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=RVG-230.mp4&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&cbref=&cbdescription=&cbkeywords=&cbcdn=acscdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1747296935487&srs=e44a25ef64783241fe48d241cfa0fcc2&atv=60.1&pblcz=9502494
IP
172.67.177.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectyouradexchange.com
Fingerprint15:B3:64:96:16:B0:F4:77:6F:50:C1:66:99:8E:A6:A8:90:64:AD:7E
ValidityThu, 03 Apr 2025 15:59:56 GMT - Wed, 02 Jul 2025 16:56:55 GMT

File type
JSON text data
Size
1.1 kB (1064 bytes)
Hash
61317f98cb2501fc0c6f5a104a80bd35
107dc5b5dedbe6b123f31951f9a2d342e3143c39
57ed3f117d71d0f6ca24a5be4ab055770c8d1ab67da11f13192f094872b2c615

HTTP Headers

GET /script/suurl5.php?r=9830554&cbur=0.42779557692470205&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=RVG-230.mp4&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&cbref=&cbdescription=&cbkeywords=&cbcdn=acscdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1747296935487&srs=e44a25ef64783241fe48d241cfa0fcc2&atv=60.1&pblcz=9502494 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidguardto.xyz/
Origin: https://vidguardto.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 May 2025 08:15:35 GMT
content-type: application/json; charset=utf-8
server: cloudflare
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
vary: accept-encoding
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ACIEASyWcxurb0OMb%2B8eiXnKE3zq593UBkZjOjqw5GxIArm1QAYfeIho9ytCALtTRXVcUcQa7oDiaBiTr4hM7yjv%2FwGbENmwGjj6LStfs%2FbZ3I5IqcR7EUbLfNlIQYR90d2xtLc%3D"}]}
cf-ray: 94013036e946b4ff-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET vidguardto.xyz/favicon.ico

172.67.199.128

404 Not Found

18 B

URL GET
vidguardto.xyz/favicon.ico
IP
172.67.199.128:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectvidguardto.xyz
FingerprintB9:98:90:E0:90:1E:1D:C4:19:47:4F:E3:0F:FE:E1:4E:B5:20:3F:49
ValidityFri, 02 May 2025 03:25:31 GMT - Thu, 31 Jul 2025 04:24:18 GMT

File type
ASCII text, with no line terminators
Size
18 B (18 bytes)
Hash
53af239ee5d3e261545dededcb6ffd57
04ca7e137e1e9feead96a7df45bb67d5ab3de190
99eb12f2ab3c4866a353e098ffa3cb7a967e617c49b98480394ec5d8ea92b094

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: vidguardto.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 15 May 2025 08:15:36 GMT
content-type: text/plain
content-length: 18
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5tmme7UPodq%2F4%2FLadJ%2B6jwSkWOP6%2FLk8IvvBJuwxNg8AuaAUv7D1EqYq%2Bn2qKim3Qkw6SGYlCWhNBoaXqgG3VrZsGe80cAxnBiWKBlJyqx0lam4FYSCwL13PnEag9IIJUA%3D%3D"}],"group":"cf-nel","max_age":604800}
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 9401303978ff7130-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3481&min_rtt=799&rtt_var=1757&sent=327&recv=206&lost=0&retrans=0&sent_bytes=262815&recv_bytes=12158&delivery_rate=9909358&cwnd=192000&unsent_bytes=0&cid=e6d21b83596ce18e&ts=1735&x=16"

GET n07ghaasti.guardstorage.net/hls_3/sdy_Jdk-bM_f_A5SvT50TNDOzvomFZcX4Sbs4EgN9GRP7UV5jdAgDYnIjg-fw4VnYliQWQBMvalkcMs9570gFg/seg-1-f1-v1-a1.ts?sig=Kv6lauYMT8Furdx6Cy1Q6Q&expires=1747305934

91.134.69.127

502 Bad Gateway

163 B

URL GET
n07ghaasti.guardstorage.net/hls_3/sdy_Jdk-bM_f_A5SvT50TNDOzvomFZcX4Sbs4EgN9GRP7UV5jdAgDYnIjg-fw4VnYliQWQBMvalkcMs9570gFg/seg-1-f1-v1-a1.ts?sig=Kv6lauYMT8Furdx6Cy1Q6Q&expires=1747305934
IP
91.134.69.127:443
ASN
#16276 OVH SAS

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerSectigo Limited
Subject*.guardstorage.net
FingerprintE1:0D:A0:4E:AC:1E:00:C1:5A:A6:31:64:0A:CE:0C:1A:C2:6A:2E:0B
ValiditySat, 04 Jan 2025 00:00:00 GMT - Wed, 04 Feb 2026 23:59:59 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
163 B (163 bytes)
Hash
b95f0a03d541743c63c21e445ec554bd
62ca36dc37f349c46f6a141afbe12fabf6af03b1
6a4de2c14ca56c74b7eca5029477536858ceedc59d85cc8181776564a7630d69

HTTP Headers

GET /hls_3/sdy_Jdk-bM_f_A5SvT50TNDOzvomFZcX4Sbs4EgN9GRP7UV5jdAgDYnIjg-fw4VnYliQWQBMvalkcMs9570gFg/seg-1-f1-v1-a1.ts?sig=Kv6lauYMT8Furdx6Cy1Q6Q&expires=1747305934 HTTP/1.1
Host: n07ghaasti.guardstorage.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vidguardto.xyz
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 502 Bad Gateway
server: openresty/1.21.4.3
date: Thu, 15 May 2025 08:15:38 GMT
content-type: text/html
content-length: 163
X-Firefox-Spdy: h2

GET vidguardto.xyz/assets/jwplayer/8.36.4/jwplayer.core.controls.js

172.67.199.128

200 OK

332 kB

URL GET
vidguardto.xyz/assets/jwplayer/8.36.4/jwplayer.core.controls.js
IP
172.67.199.128:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectvidguardto.xyz
FingerprintB9:98:90:E0:90:1E:1D:C4:19:47:4F:E3:0F:FE:E1:4E:B5:20:3F:49
ValidityFri, 02 May 2025 03:25:31 GMT - Thu, 31 Jul 2025 04:24:18 GMT

File type
JavaScript source, ASCII text, with very long lines (65143)
Size
332 kB (331835 bytes)
Hash
aa76c7bf8a702f02c4ec0fc973d698d6
cd8bd98969dd7167c8d99a5abcec4a07df4e63a2
7220be9e6db902dabf6a18a260e3a1d14a877aa9aeb113380dd3711c908eba0f

HTTP Headers

GET /assets/jwplayer/8.36.4/jwplayer.core.controls.js HTTP/1.1
Host: vidguardto.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 15 May 2025 08:15:35 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QbA5t9Qk%2FpakJoM5BUYzGGWxI3HVoi3WQ51JfsGVUpLgZiQd%2FLeacu992YGjZA%2BwzgjN2gJGe2F8TmAlRwLrUHkSGZn7GDbfLVzX2HZSli4DZMXDYDRY%2F6WHiyKVUXYMTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
last-modified: Mon, 17 Feb 2025 18:08:41 GMT
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 9401303418b77130-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3416&min_rtt=799&rtt_var=2559&sent=130&recv=200&lost=0&retrans=0&sent_bytes=30014&recv_bytes=11627&delivery_rate=93695&cwnd=24000&unsent_bytes=0&cid=e6d21b83596ce18e&ts=883&x=16"

GET acscdn.com/script/aclib.js

104.18.17.201

200 OK

141 kB

URL GET
acscdn.com/script/aclib.js
IP
104.18.17.201:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectacscdn.com
FingerprintE8:04:28:CD:40:56:EF:C8:19:07:48:1D:8F:83:82:58:38:D8:61:A1
ValidityTue, 13 May 2025 15:22:09 GMT - Mon, 11 Aug 2025 16:21:52 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65493), with no line terminators
Size
141 kB (141415 bytes)
Hash
8f8105e049e8586067d7dd2ee8043319
44b582dca2cc906137fbb6f5b1b9b68b41b8bb09
db44a91c57e0e5c8b6b9239f371feb4ad11c427f07e0efc662f3c27f62144434

HTTP Headers

GET /script/aclib.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 May 2025 08:15:34 GMT
content-type: text/javascript
x-guploader-uploadid: AAO2Vwq_NK57fukiSNR7uM6Tx5KpPQJ_3YmLVYjcO97bwItnWZ_G4Ui77FDl0ElMvVMClUyy
x-goog-generation: 1747151179744582
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 141415
x-goog-hash: crc32c=LGQWIg==, md5=j4EF4EnoWGBn190u6AQzGQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Thu, 15 May 2025 09:15:34 GMT
cache-control: public, max-age=3600
last-modified: Tue, 13 May 2025 15:46:19 GMT
etag: W/"8f8105e049e8586067d7dd2ee8043319"
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 3327
vary: Accept-Encoding
server: cloudflare
cf-ray: 9401303098665690-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

GET vidguardto.xyz/assets/js/player.js?id=a9b24acc6c8d37de23098caa2f7907db

172.67.199.128

200 OK

14 kB

URL GET
vidguardto.xyz/assets/js/player.js?id=a9b24acc6c8d37de23098caa2f7907db
IP
172.67.199.128:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectvidguardto.xyz
FingerprintB9:98:90:E0:90:1E:1D:C4:19:47:4F:E3:0F:FE:E1:4E:B5:20:3F:49
ValidityFri, 02 May 2025 03:25:31 GMT - Thu, 31 Jul 2025 04:24:18 GMT

File type
ASCII text, with very long lines (13852), with no line terminators
Size
14 kB (13852 bytes)
Hash
19b624e7fe7a86b4c7851ed61e250626
760a6c0399930b96c61b6e18a6cbb0dbf0125f97
eaf266c920ef8297bf135324d4c6232d117d1eb849a082850b8d0520c1966c2e

HTTP Headers

GET /assets/js/player.js?id=a9b24acc6c8d37de23098caa2f7907db HTTP/1.1
Host: vidguardto.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 May 2025 08:15:34 GMT
content-type: text/javascript; charset=utf-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
last-modified: Thu, 21 Mar 2024 07:00:22 GMT
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=FndUUPaDzuGUO1xaSvKtkYzGNugMv8Cm6LdI%2FfFnKMsoo87vH7%2BLQP7NMkZeaCn8uAR30fJNLzkYJPGKt8jXv5EfiFaBmvSUH2Gac1iNANoqaBQJRBARza15q5l4uPumPg%3D%3D"}]}
cf-ray: 940130307a0756aa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET acscdn.com/script/inpagepush.js

104.18.17.201

200 OK

87 kB

URL GET
acscdn.com/script/inpagepush.js
IP
104.18.17.201:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectacscdn.com
FingerprintE8:04:28:CD:40:56:EF:C8:19:07:48:1D:8F:83:82:58:38:D8:61:A1
ValidityTue, 13 May 2025 15:22:09 GMT - Mon, 11 Aug 2025 16:21:52 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (33238), with NEL line terminators
Size
87 kB (86793 bytes)
Hash
d4dcb470fd02e8c7684232b6ec73a2ab
faf8f14861250730d97a0bad1e936d08711ddddd
877a9f244bf401b61ccfc8e9536fe4a4418610441d06563f8aa04916430d90c5

HTTP Headers

GET /script/inpagepush.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 15 May 2025 08:15:35 GMT
content-type: text/javascript
x-guploader-uploadid: AAO2VwoWUCjWB80HbWOvCuZKM8htDNdSAcGc_1y1vjLAi7BNR4UYDsUu19aDNmvKAfJ6FqPb
x-goog-generation: 1747151351663444
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 86793
x-goog-hash: crc32c=apfSDQ==, md5=1Ny0cP0C6MdoQjK27HOiqw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Thu, 15 May 2025 09:15:35 GMT
cache-control: public, max-age=3600
last-modified: Tue, 13 May 2025 15:49:11 GMT
etag: W/"d4dcb470fd02e8c7684232b6ec73a2ab"
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 3135
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 94013033ee50b4fa-OSL
content-encoding: gzip
server-timing: cfExtPri

GET js.srvtrck.com/v1/js?api_key=40710abb89ad9e06874a667b2bc7dee7&site_id=1f10f78243674fcdba586e526cb8ef08

3.167.2.34

200 OK

40 kB

URL GET
js.srvtrck.com/v1/js?api_key=40710abb89ad9e06874a667b2bc7dee7&site_id=1f10f78243674fcdba586e526cb8ef08
IP
3.167.2.34:443
ASN
#0

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerAmazon
Subjectjs.srvtrck.com
Fingerprint8C:64:59:F5:6B:3D:BB:B3:77:03:09:22:D1:B9:E2:65:67:76:F4:F8
ValidityThu, 27 Mar 2025 00:00:00 GMT - Sun, 26 Apr 2026 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (9225)
Size
40 kB (40307 bytes)
Hash
af047ef68b60c31857befe748ec075cc
7a85592cbb5b6dd0f2fbe64ebf33d2f2d7e7c883
8d62c09b02de2028ccc0c15961be6ab4f535a12757665b45970f0b8e25f6534c

HTTP Headers

GET /v1/js?api_key=40710abb89ad9e06874a667b2bc7dee7&site_id=1f10f78243674fcdba586e526cb8ef08 HTTP/1.1
Host: js.srvtrck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidguardto.xyz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
content-length: 13602
date: Wed, 14 May 2025 09:44:10 GMT
set-cookie: ykuid=014d271635af442c81e29d3c38095d43; Path=/; Secure; Domain=.srvtrck.com; Max-Age=31536000; SameSite=None
last-modified: Wed, 14 May 2025 09:42:57 GMT
cache-control: max-age=86400, s-maxage=86400, public
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
x-cache: Hit from cloudfront
via: 1.1 50c588fd3255d023d9b9021263f5fa0a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: jOitrYga5cYbzP9JWf2zSl3B1FqlK9rCgnCMTL7yH94iYZfuR9f_bw==
age: 81085
X-Firefox-Spdy: h2

GET vidguardto.xyz/assets/js/main.js?id=a2b24acc6c8d37de23098caa2f7907db

172.67.199.128

200 OK

106 kB

URL GET
vidguardto.xyz/assets/js/main.js?id=a2b24acc6c8d37de23098caa2f7907db
IP
172.67.199.128:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectvidguardto.xyz
FingerprintB9:98:90:E0:90:1E:1D:C4:19:47:4F:E3:0F:FE:E1:4E:B5:20:3F:49
ValidityFri, 02 May 2025 03:25:31 GMT - Thu, 31 Jul 2025 04:24:18 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Size
106 kB (105577 bytes)
Hash
2600e0252870a20882319cf68fbe5260
27edc7b0bcfd4145510e3175a749f26de1f19048
07873ddc8c12db088b3bef80b0979ab082cdd92af545c2a1608574bf98f737e9

HTTP Headers

GET /assets/js/main.js?id=a2b24acc6c8d37de23098caa2f7907db HTTP/1.1
Host: vidguardto.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 May 2025 08:15:34 GMT
content-type: text/javascript; charset=utf-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
last-modified: Mon, 30 Dec 2024 21:18:09 GMT
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=FJvmAkKiz8q0CyrKIQPDOJ5Wi7GVnYpcvFuuqke28Of8bRC%2FseG8ugeSBETdlCl7Q52FtvcRswM4h4nzpv%2Bd3Eh4OA7N%2FjgVeFvXv0jsrc73%2BHnw2uGUJmoN1NP0XtYU2g%3D%3D"}]}
cf-ray: 940130307a0956aa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET vidguardto.xyz/assets/jwplayer/8.36.4/jwpsrv.js

172.67.199.128

200 OK

67 kB

URL GET
vidguardto.xyz/assets/jwplayer/8.36.4/jwpsrv.js
IP
172.67.199.128:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectvidguardto.xyz
FingerprintB9:98:90:E0:90:1E:1D:C4:19:47:4F:E3:0F:FE:E1:4E:B5:20:3F:49
ValidityFri, 02 May 2025 03:25:31 GMT - Thu, 31 Jul 2025 04:24:18 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
67 kB (67262 bytes)
Hash
31401fbc0ab6b12a6501bd594be3a8f3
f83a4ddd2d63bb4466fd6af488c54a262228e34a
9a14bfe6376ee1c040735882769d97f12b8eda3620f214e70c4053166d64fc9a

HTTP Headers

GET /assets/jwplayer/8.36.4/jwpsrv.js HTTP/1.1
Host: vidguardto.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 15 May 2025 08:15:35 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AhZTk6vAEYcAypG3whbGUJRP2dEI%2Fu9veqHBThAK3sBOTYTIQ%2F3Z9pmY%2BQrHQZzhaNECAwNgrz6mB%2FW3QZKL3%2FX5wLjpgWxCqJeUNxg3mdx6Xg370VBvj9NoaWBBUFHaiw%3D%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
last-modified: Mon, 17 Feb 2025 18:08:41 GMT
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 9401303408b57130-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3678&min_rtt=799&rtt_var=2714&sent=112&recv=199&lost=0&retrans=0&sent_bytes=9164&recv_bytes=11583&delivery_rate=2026&cwnd=12000&unsent_bytes=0&cid=e6d21b83596ce18e&ts=878&x=16"

GET junkyadexchange.com/script/i.php?t=1&c=23952152&stamat=m%257C%252C%252Cw3IyoiEuoGU3B0-GH0dEdHP3xP.19b%252CXUeavD-CuVJkxhxGNrA6WM2IZTmn0fJQpWfpeVStq8DQ1smTMuwrNyDUiY96LgIYy4wemAoYOhzhxA91LpKZt7wEXno4TbbIU2injXGxaExYmXib444BY3Bqi1GIdMzcLNdjigjrBPIWOqb79xNPLrBSkskoRBdRni8-Plf9iIpNftVIfIgUwWgkUsMEHnJ4z0GGcddgRpnEnxsRRo9wexFkTKcs5CIksneqJbwng0I9sI-BYQvaPKV5sj0A32tch8CkaathdjfuvOXPOScgSAKY5qLdNLldKmxPC8NdAaaURkkt_p7qOzR1A_rVxWKrJCZfHqzqEdDe9kRZgjZB9l4unr4HKbIzj7n7a0VD9RKUYzfZ-mFGg55GmnJis1TOiXs1ogRUiAO4fCfTJ5t6ZdHoNtsfNcrCJN2GgYdnd3GBetoj9ozdL3UB6DPS3OGkipnRDwc8pSlgKAl2tynHxJhlSDik4kqwdGl97dIEXKyyBVeqc0sqXacPbLtxcaBMYC6xqCHyvhRG3hYeeBRHTAt-um1Jme5IeHCyS20Gx8ra1ra8uUJ9ZqhjolK-bnE6-XzmWLDgvComNy3CAyxqfrLcSStjeAV9ybyaLzcNtk4%252C&utsid=e44a25ef64783241fe48d241cfa0fcc2&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&cbref=

104.21.31.39

204 No Content

0 B

URL GET
junkyadexchange.com/script/i.php?t=1&c=23952152&stamat=m%257C%252C%252Cw3IyoiEuoGU3B0-GH0dEdHP3xP.19b%252CXUeavD-CuVJkxhxGNrA6WM2IZTmn0fJQpWfpeVStq8DQ1smTMuwrNyDUiY96LgIYy4wemAoYOhzhxA91LpKZt7wEXno4TbbIU2injXGxaExYmXib444BY3Bqi1GIdMzcLNdjigjrBPIWOqb79xNPLrBSkskoRBdRni8-Plf9iIpNftVIfIgUwWgkUsMEHnJ4z0GGcddgRpnEnxsRRo9wexFkTKcs5CIksneqJbwng0I9sI-BYQvaPKV5sj0A32tch8CkaathdjfuvOXPOScgSAKY5qLdNLldKmxPC8NdAaaURkkt_p7qOzR1A_rVxWKrJCZfHqzqEdDe9kRZgjZB9l4unr4HKbIzj7n7a0VD9RKUYzfZ-mFGg55GmnJis1TOiXs1ogRUiAO4fCfTJ5t6ZdHoNtsfNcrCJN2GgYdnd3GBetoj9ozdL3UB6DPS3OGkipnRDwc8pSlgKAl2tynHxJhlSDik4kqwdGl97dIEXKyyBVeqc0sqXacPbLtxcaBMYC6xqCHyvhRG3hYeeBRHTAt-um1Jme5IeHCyS20Gx8ra1ra8uUJ9ZqhjolK-bnE6-XzmWLDgvComNy3CAyxqfrLcSStjeAV9ybyaLzcNtk4%252C&utsid=e44a25ef64783241fe48d241cfa0fcc2&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&cbref=
IP
104.21.31.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectjunkyadexchange.com
Fingerprint2C:13:41:58:19:15:A5:A1:EC:B1:72:AD:F8:8F:AF:6C:48:6B:02:7B
ValiditySat, 22 Mar 2025 11:06:14 GMT - Fri, 20 Jun 2025 12:04:26 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /script/i.php?t=1&c=23952152&stamat=m%257C%252C%252Cw3IyoiEuoGU3B0-GH0dEdHP3xP.19b%252CXUeavD-CuVJkxhxGNrA6WM2IZTmn0fJQpWfpeVStq8DQ1smTMuwrNyDUiY96LgIYy4wemAoYOhzhxA91LpKZt7wEXno4TbbIU2injXGxaExYmXib444BY3Bqi1GIdMzcLNdjigjrBPIWOqb79xNPLrBSkskoRBdRni8-Plf9iIpNftVIfIgUwWgkUsMEHnJ4z0GGcddgRpnEnxsRRo9wexFkTKcs5CIksneqJbwng0I9sI-BYQvaPKV5sj0A32tch8CkaathdjfuvOXPOScgSAKY5qLdNLldKmxPC8NdAaaURkkt_p7qOzR1A_rVxWKrJCZfHqzqEdDe9kRZgjZB9l4unr4HKbIzj7n7a0VD9RKUYzfZ-mFGg55GmnJis1TOiXs1ogRUiAO4fCfTJ5t6ZdHoNtsfNcrCJN2GgYdnd3GBetoj9ozdL3UB6DPS3OGkipnRDwc8pSlgKAl2tynHxJhlSDik4kqwdGl97dIEXKyyBVeqc0sqXacPbLtxcaBMYC6xqCHyvhRG3hYeeBRHTAt-um1Jme5IeHCyS20Gx8ra1ra8uUJ9ZqhjolK-bnE6-XzmWLDgvComNy3CAyxqfrLcSStjeAV9ybyaLzcNtk4%252C&utsid=e44a25ef64783241fe48d241cfa0fcc2&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&cbref= HTTP/1.1
Host: junkyadexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 204 No Content
date: Thu, 15 May 2025 08:15:40 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fTqy5Xw9cC7LbxZ2caP8dfBDx45nT07kRcgEiCALOXBaCV2tTV1z%2BgACRbVT4SatXYC8mwjMp4Uscr740DsrgoZqVFyCHQUVoR6hbMuWZQVC%2BQAp9bUK2lGlY8Xc9OtqngXb5v%2Be"}],"group":"cf-nel","max_age":604800}
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
cf-ray: 940130576cd6568a-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5006&min_rtt=1894&rtt_var=5573&sent=16&recv=16&lost=0&retrans=0&sent_bytes=3982&recv_bytes=2233&delivery_rate=2194&cwnd=12000&unsent_bytes=0&cid=03ad4b167f52dc6b&ts=5145&x=16"

GET vidguardto.xyz/assets/jwplayer/8.36.4/jwplayer.js?id=2ec1cfc87408adedf85a8ebcbcd646f6

172.67.199.128

200 OK

148 kB

URL GET
vidguardto.xyz/assets/jwplayer/8.36.4/jwplayer.js?id=2ec1cfc87408adedf85a8ebcbcd646f6
IP
172.67.199.128:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectvidguardto.xyz
FingerprintB9:98:90:E0:90:1E:1D:C4:19:47:4F:E3:0F:FE:E1:4E:B5:20:3F:49
ValidityFri, 02 May 2025 03:25:31 GMT - Thu, 31 Jul 2025 04:24:18 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65141)
Size
148 kB (147986 bytes)
Hash
7d12e5f8255c527cbd563d0281a3e404
465a16f78ebb976f5599ee6a8f8665b5b7529564
a53bd1a0e458c9901eeb5c79b2a65c2ffe24225e424749b217e0f918d87b9086

HTTP Headers

GET /assets/jwplayer/8.36.4/jwplayer.js?id=2ec1cfc87408adedf85a8ebcbcd646f6 HTTP/1.1
Host: vidguardto.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 May 2025 08:15:34 GMT
content-type: text/javascript; charset=utf-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
last-modified: Mon, 17 Feb 2025 18:08:39 GMT
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=hSGs3Js0LVgj1S4uz8K6vFV8XFNI99WKe17x%2BN5GPICABgA5ZLQGHVmTteQe3AGGf4luwCodB2uEYiIFZ0N2yXEVlRhmkzm1P56XO8Zga0r97iapM3q78%2FeLC%2BrlFjcAmg%3D%3D"}]}
cf-ray: 940130307a0456aa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET i.guardstorage.net/previews/08VqbX53Be0yBOQzpl2D.preview.vtt

104.21.64.1

404 Not Found

162 B

URL GET
i.guardstorage.net/previews/08VqbX53Be0yBOQzpl2D.preview.vtt
IP
104.21.64.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerLet's Encrypt
Subjecti.guardstorage.net
FingerprintB1:13:CA:4F:6B:63:3D:8A:24:22:B0:71:72:36:13:0E:B0:F6:3F:04
ValiditySun, 06 Apr 2025 03:13:13 GMT - Sat, 05 Jul 2025 03:13:12 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

HTTP Headers

GET /previews/08VqbX53Be0yBOQzpl2D.preview.vtt HTTP/1.1
Host: i.guardstorage.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vidguardto.xyz
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Thu, 15 May 2025 08:15:35 GMT
content-type: text/html
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Sk9PqvAI1lTYAT4YnjCFE322L5nJPaX2p59S1BJ2HC%2BSR1n%2BBEwqs0Egrp3ZSZ%2B3xj1OSRQvqoWaRgy5C3DU99xqU5w6MLoehagt4hTdPI3vl0qpIfZ%2BxYFv6k6khxIZ2zfjoKs%3D"}]}
content-encoding: br
cf-ray: 940130361f550b51-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET vidguardto.xyz/e/VqbX53Be0yBOQzp

172.67.199.128

200 OK

57 kB

URL User Request GET
vidguardto.xyz/e/VqbX53Be0yBOQzp
IP
172.67.199.128:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectvidguardto.xyz
FingerprintB9:98:90:E0:90:1E:1D:C4:19:47:4F:E3:0F:FE:E1:4E:B5:20:3F:49
ValidityFri, 02 May 2025 03:25:31 GMT - Thu, 31 Jul 2025 04:24:18 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (42219)
Size
57 kB (56743 bytes)
Hash
ce6bd1e10f35bdc1b01999ec238de9f6
224edd5e5131f286bea0970374c05b117f1d6df0
d4774411b1a15f1d72d233de6c8919edf389589aa48ceeb35357aeed818243d3

HTTP Headers

GET /e/VqbX53Be0yBOQzp HTTP/1.1
Host: vidguardto.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 May 2025 08:15:34 GMT
content-type: text/html; charset=utf-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=RqZmMNja5Sv0L9ySEyZGGLmR5rZaiEG8ku2dY4rgGZ%2FK6HzzLT8mY20mkd3gsePTpETvymARf2W466XmRE9wQy0JzvsQgETNr60kEoNdyM6TKsOXzZD4PqPTlqpvTBUwJA%3D%3D"}]}
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 9401302cbb7e56aa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET heardaccumulatebeans.com/f2/77/9c/f2779c2b84f5bc3a945716675a808305.js

172.240.127.234

403 Forbidden

0 B

URL GET
heardaccumulatebeans.com/f2/77/9c/f2779c2b84f5bc3a945716675a808305.js
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerLet's Encrypt
Subjectheardaccumulatebeans.com
Fingerprint68:7B:78:1C:55:B0:9E:2E:76:42:56:FD:45:44:6B:6C:3D:FE:51:60
ValidityFri, 21 Mar 2025 21:08:17 GMT - Thu, 19 Jun 2025 21:08:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /f2/77/9c/f2779c2b84f5bc3a945716675a808305.js HTTP/1.1
Host: heardaccumulatebeans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Server: nginx/1.21.6
Date: Thu, 15 May 2025 08:15:34 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 0
Host: heardaccumulatebeans.com

GET cdn.adligature.com/work.ink/prod/rules.css

172.67.199.100

200 OK

342 B

URL GET
cdn.adligature.com/work.ink/prod/rules.css
IP
172.67.199.100:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectadligature.com
FingerprintAD:C6:51:64:7B:A2:94:A4:54:D8:E3:BA:79:62:10:44:81:05:A3:93
ValidityWed, 09 Apr 2025 00:13:37 GMT - Tue, 08 Jul 2025 01:08:41 GMT

File type
ASCII text
Size
342 B (342 bytes)
Hash
1fe3ce739dd728055d8df1d3e31ec79e
8f767670c738a403d0b9cff22590ac07d0531f76
98bded1fc2012970e10a6cf1cda68c9d79e192b98ec7c61f0e630b528303cfb4

HTTP Headers

GET /work.ink/prod/rules.css HTTP/1.1
Host: cdn.adligature.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidguardto.xyz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 May 2025 08:15:35 GMT
content-type: text/css
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-guploader-uploadid: AAO2VwrZFfmfCYluUIqnGeiMFec2-gZQhpAWGybW0vZPuf49GMzgPtrXagHp5choOW6ERmrL
x-goog-generation: 1734967981469440
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 342
x-goog-hash: crc32c=4yPWvQ==, md5=H+POc53XKAVdjfHT4x7Hng==
x-goog-storage-class: MULTI_REGIONAL
expires: Thu, 15 May 2025 08:18:45 GMT
cache-control: public, max-age=1800, s-maxage=600, must-revalidate
last-modified: Mon, 23 Dec 2024 15:33:01 GMT
access-control-allow-origin: *
age: 410
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=oGNOl0QqQbZI43lH2CwDijBbmRJum%2Bql75hfe%2BlH%2B%2BMRsL4WftAYyXcvplNdd98pcqtEaweTk95CgXUWfFEaDJpKVqhoQITpsARJeYFXStQCZSMESk5HFLibW01k3OUPJFGwZEU%3D"}]}
etag: W/"1fe3ce739dd728055d8df1d3e31ec79e"
content-encoding: br
cf-ray: 940130342d5d56a4-OSL
X-Firefox-Spdy: h2

GET vidguardto.xyz/assets/jwplayer/8.36.4/provider.hlsjs.js

172.67.199.128

200 OK

461 kB

URL GET
vidguardto.xyz/assets/jwplayer/8.36.4/provider.hlsjs.js
IP
172.67.199.128:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectvidguardto.xyz
FingerprintB9:98:90:E0:90:1E:1D:C4:19:47:4F:E3:0F:FE:E1:4E:B5:20:3F:49
ValidityFri, 02 May 2025 03:25:31 GMT - Thu, 31 Jul 2025 04:24:18 GMT

File type
JavaScript source, ASCII text, with very long lines (65143)
Size
461 kB (461172 bytes)
Hash
53f377cf2bb36a2da25d07fa1b4b2b84
35ab3e3f9b2cb94860fd594fa2310187f8115d82
2ba7e35f6c4c9654a8a80a8476509c69526c1bc52b65cea7e98558d600f2e231

HTTP Headers

GET /assets/jwplayer/8.36.4/provider.hlsjs.js HTTP/1.1
Host: vidguardto.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 15 May 2025 08:15:35 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0BuEIzrViEkkH8On9H3iCeZ3267XjiCGeOhr3XFRJKwREXNkXXTVpj%2FazWIbEo0SQMnp3jD6o%2FIbXoqxVvPFAlQHHGp5qngwaLv7A8sZEFEMQDQPgQ4EyWODHodVdaqS1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
last-modified: Tue, 18 Feb 2025 16:41:44 GMT
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: REVALIDATED
cf-ray: 9401303418b87130-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3088&min_rtt=799&rtt_var=2032&sent=191&recv=202&lost=0&retrans=0&sent_bytes=102014&recv_bytes=11717&delivery_rate=11453922&cwnd=48000&unsent_bytes=0&cid=e6d21b83596ce18e&ts=888&x=16"

GET youradexchange.com/script/suurl5.php?r=9148982&cbur=0.7008235784101443&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=RVG-230.mp4&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&cbref=&cbdescription=&cbkeywords=&cbcdn=acscdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1747296935104&srs=e44a25ef64783241fe48d241cfa0fcc2&atv=60.1

172.67.177.214

200 OK

1.1 kB

URL GET
youradexchange.com/script/suurl5.php?r=9148982&cbur=0.7008235784101443&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=RVG-230.mp4&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&cbref=&cbdescription=&cbkeywords=&cbcdn=acscdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1747296935104&srs=e44a25ef64783241fe48d241cfa0fcc2&atv=60.1
IP
172.67.177.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectyouradexchange.com
Fingerprint15:B3:64:96:16:B0:F4:77:6F:50:C1:66:99:8E:A6:A8:90:64:AD:7E
ValidityThu, 03 Apr 2025 15:59:56 GMT - Wed, 02 Jul 2025 16:56:55 GMT

File type
JSON text data
Size
1.1 kB (1123 bytes)
Hash
e6453632f2b9a5ec530e138bc6414c5b
8edc2b74c8826eeb0ef1c5e383b3515963ad3b22
901811c182a8042399021546680e081c3ebe8ce91339ea4a1a63e026446ce9b2

HTTP Headers

GET /script/suurl5.php?r=9148982&cbur=0.7008235784101443&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=RVG-230.mp4&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&cbref=&cbdescription=&cbkeywords=&cbcdn=acscdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1747296935104&srs=e44a25ef64783241fe48d241cfa0fcc2&atv=60.1 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidguardto.xyz/
Origin: https://vidguardto.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 May 2025 08:15:35 GMT
content-type: application/json; charset=utf-8
server: cloudflare
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
vary: accept-encoding
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=UqJ4v80C4pHZF%2F044HARi81zNR4pQzefj9PgMQoJcTfH88Q02f45O4ViOAkaSuYxW5EY4O5ZDV%2BvfzvrIdtM4fz1kRTLiyvDr2WGL4yuvJgp3xCtxx%2F39hCXZjOav9EhBaCdJ1I%3D"}]}
cf-ray: 940130352e9fb4ff-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET youradexchange.com/script/push.php?r=9502494&ipp=1&mads=2&position=top&rbd=1&srs=e44a25ef64783241fe48d241cfa0fcc2&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&atv=60.1&cbref=

172.67.177.214

200 OK

1.7 kB

URL GET
youradexchange.com/script/push.php?r=9502494&ipp=1&mads=2&position=top&rbd=1&srs=e44a25ef64783241fe48d241cfa0fcc2&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&atv=60.1&cbref=
IP
172.67.177.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidguardto.xyz/e/VqbX53Be0yBOQzp
Certificate
IssuerGoogle Trust Services
Subjectyouradexchange.com
Fingerprint15:B3:64:96:16:B0:F4:77:6F:50:C1:66:99:8E:A6:A8:90:64:AD:7E
ValidityThu, 03 Apr 2025 15:59:56 GMT - Wed, 02 Jul 2025 16:56:55 GMT

File type
JSON text data
Size
1.7 kB (1749 bytes)
Hash
499f7aafe761760120f665b7d5ac8581
88101bb1aa9885899a990ebd6404fcf4800933fd
4d6776a20a38d457fc002faf71fc634f6783f3fa111f341f578f254f9fe54f3c

HTTP Headers

GET /script/push.php?r=9502494&ipp=1&mads=2&position=top&rbd=1&srs=e44a25ef64783241fe48d241cfa0fcc2&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fvidguardto.xyz%2Fe%2FVqbX53Be0yBOQzp&atv=60.1&cbref= HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidguardto.xyz/
Origin: https://vidguardto.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 15 May 2025 08:15:40 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B3iXdRxi8sWglLSqIx4kkVLr8XFXIqYz3EU7hyVLr8vwMnz2%2FRS0hQ4RgYEJ8XcyvHs%2FrkePKCKK3yr5OkDmB%2BwPdYORZl3N%2B4UDcv8sl1yCH%2BHtuHhsMzQrWPSwCDo9qvzRUwQ%3D"}],"group":"cf-nel","max_age":604800}
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
vary: accept-encoding
cf-ray: 940130561e5bb4f4-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3711&min_rtt=1537&rtt_var=1747&sent=16&recv=12&lost=0&retrans=0&sent_bytes=6277&recv_bytes=1961&delivery_rate=10677&cwnd=12000&unsent_bytes=0&cid=4986b6b451347544&ts=5167&x=16"

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (20)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML