| videzz.net/js/jquery.min.js | 78.142.18.54 | 200 OK | 34 kB |
URL GET HTTP/2videzz.net/js/jquery.min.js IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33 ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT
File typegzip compressed data, from Unix Hash30306eb8249286252e3dd127b5e7df56 b16770a0f4d782e186a122516cf6a884fd7c3dd2 ec4e89908de536e371f8b67d59b6973fe629fab9e0eadafc6639f3324e91f0d0
GET /js/jquery.min.js HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-aqb9ov6imh54.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 17:02:34 GMT
content-type: application/javascript
last-modified: Sat, 27 Apr 2024 07:30:28 GMT
vary: Accept-Encoding
etag: W/"662ca994-1762a"
expires: Sun, 09 Jun 2024 17:01:52 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| videzz.net/js/pop.js?v=1.0 | 78.142.18.54 | 200 OK | 35 B |
URL GET HTTP/2videzz.net/js/pop.js?v=1.0 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33 ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT
Hashda4bf5414bf75eefb21872f9b59fe6fc e34335e0705397a4ad02c406a2e92333e6d2b0e5 d48b428c1788391a1aef29802daaa691077732dc7b821d0968831bc50b19278d
GET /js/pop.js?v=1.0 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-aqb9ov6imh54.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 17:02:34 GMT
content-type: application/javascript
content-length: 35
last-modified: Sat, 27 Apr 2024 07:30:28 GMT
etag: "662ca994-23"
expires: Sun, 09 Jun 2024 17:00:24 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| videzz.net/js/ads.js?v=1.0 | 78.142.18.54 | 200 OK | 211 B |
URL GET HTTP/2videzz.net/js/ads.js?v=1.0 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33 ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT
Hash09f34de71e8853387dd398fbb263af69 4ccb7007fcebcffe64eaa80f2991509fdbac55d5 6ca7e6aebc6e3eec26d39e540e255a738fd9e48e9b97bd0e2a714686377ac523
GET /js/ads.js?v=1.0 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-aqb9ov6imh54.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 17:02:34 GMT
content-type: application/javascript
content-length: 211
last-modified: Sat, 27 Apr 2024 07:30:42 GMT
etag: "662ca9a2-d3"
expires: Sun, 09 Jun 2024 17:00:30 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| videzz.net/images-newtheme/adb_logo.png | 78.142.18.54 | 200 OK | 8.3 kB |
URL GET HTTP/2videzz.net/images-newtheme/adb_logo.png IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33 ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT
File typePNG image data, 178 x 178, 8-bit/color RGBA, non-interlaced Hash98fcd22c469a5aa46df8ec4e7a8eafc9 e8d95f175d3008736995a482d7304410a1da490a b1e79e219bf46ca5ef14a9619c5440e78c2ebdbc34b8f0c65f0777a8b02fc30c
GET /images-newtheme/adb_logo.png HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-aqb9ov6imh54.html
Cookie: lang=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 17:02:34 GMT
content-type: image/png
content-length: 8308
last-modified: Sat, 27 Apr 2024 07:30:42 GMT
etag: "662ca9a2-2074"
expires: Sun, 09 Jun 2024 17:00:27 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| videzz.net/images-newtheme/attention.png | 78.142.18.54 | 200 OK | 6.4 kB |
URL GET HTTP/2videzz.net/images-newtheme/attention.png IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33 ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT
File typePNG image data, 263 x 231, 8-bit/color RGBA, non-interlaced Hashd28ebe1b4425fa4ab5d804792b5aa626 3183e2c59cdaed547de5fb1fc940709ed5117003 36fc8d817d7a356b2b8e8697697a5ce86bedadfea8df2a4e88f9514bb1ce02f6
GET /images-newtheme/attention.png HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-aqb9ov6imh54.html
Cookie: lang=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 17:02:34 GMT
content-type: image/png
content-length: 6377
last-modified: Sat, 27 Apr 2024 07:30:32 GMT
etag: "662ca998-18e9"
expires: Sun, 09 Jun 2024 17:00:45 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=UA-158623850-1 | 142.250.74.168 | 200 OK | 75 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=UA-158623850-1 IP142.250.74.168:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hash840ad987d744f7f3ae1bcd015d5f17c0 08f66281c287f02442ca8ff4e062911d8c91ef25 545460230c6057c45b9c8da3cbcff60c9aca354c6438f6d9c87bb4a177f96ebf
GET /gtag/js?id=UA-158623850-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 17:02:34 GMT
expires: Fri, 10 May 2024 17:02:34 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74959
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| videzz.net/css/embed.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 112 kB |
URL GET HTTP/2videzz.net/css/embed.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33 ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT
File typegzip compressed data, from Unix Size112 kB (111751 bytes) Hashc7a673a0dc81aa6c1d9643f2b9e90643 c46cd3a3186a657941a425283b0547cb7ee0f597 732bb1e5d3b8fc55c6e03ddc558f3238b14f572cc4b90d7d68bd26701bedbf0f
GET /css/embed.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-aqb9ov6imh54.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 17:02:34 GMT
content-type: text/css
last-modified: Sat, 27 Apr 2024 07:30:32 GMT
vary: Accept-Encoding
etag: W/"662ca998-96f9f"
expires: Sun, 09 Jun 2024 17:02:07 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| dog.seetron.net/lx4oag1.js | 135.181.208.216 | 200 OK | 77 kB |
URL GET HTTP/2dog.seetron.net/lx4oag1.js IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjecta.bdsmz.tube FingerprintAA:4D:03:7A:4E:94:8C:76:58:6E:53:CC:8E:99:24:E6:51:84:BF:05 ValidityFri, 03 May 2024 10:27:08 GMT - Thu, 01 Aug 2024 10:27:07 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators Hasha6781eeb8be115c2cc64c5b4898e5b9d 76001e6e130f936956842ce1fb672ca16be2370e cb8949c4918f30d767c8a97d1b1ddb36eabccf8d93659a80f4e850caa3701da2
GET /lx4oag1.js HTTP/1.1
Host: dog.seetron.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:34 GMT
content-type: application/javascript
content-length: 76790
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
vary: Accept-Encoding
etag: "65fd69b1-12bf6"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 201
cf-ray: 8685d408ccf5d995-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| videzz.net/js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 2.3 kB |
URL GET HTTP/2videzz.net/js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33 ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT
File typegzip compressed data, from Unix Hash9437758ef7ef22f24ac687b6f6dc369a 594c0fb488777fd0a66b3f593281490b760b9ed0 a99e3862c9d0e1398145db6708c9e6aefcfd109990d3ecaab188a862883cce0f
GET /js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-aqb9ov6imh54.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 17:02:34 GMT
content-type: application/javascript
last-modified: Sat, 27 Apr 2024 07:30:38 GMT
vary: Accept-Encoding
etag: W/"662ca99e-1183"
expires: Sun, 09 Jun 2024 17:02:03 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| dog.seetron.net/LrfK7A3.js | 135.181.208.216 | 200 OK | 77 kB |
URL GET HTTP/2dog.seetron.net/LrfK7A3.js IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjecta.bdsmz.tube FingerprintAA:4D:03:7A:4E:94:8C:76:58:6E:53:CC:8E:99:24:E6:51:84:BF:05 ValidityFri, 03 May 2024 10:27:08 GMT - Thu, 01 Aug 2024 10:27:07 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators Hasha6781eeb8be115c2cc64c5b4898e5b9d 76001e6e130f936956842ce1fb672ca16be2370e cb8949c4918f30d767c8a97d1b1ddb36eabccf8d93659a80f4e850caa3701da2
GET /LrfK7A3.js HTTP/1.1
Host: dog.seetron.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:34 GMT
content-type: application/javascript
content-length: 76790
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
vary: Accept-Encoding
etag: "65fd69b1-12bf6"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 201
cf-ray: 8685d408ccf5d995-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css | 104.17.24.14 | 200 OK | 5.6 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css IP104.17.24.14:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:34 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 130634
expires: Wed, 30 Apr 2025 17:02:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EAEi5OvhufGGdK%2FvUeYLa4mIQo%2FbBoaWAPE%2F%2B24vB2P4H1nzkDEHPZ2Lfzjp%2FSdrEceRAVP6Amc1QEMY1gvEcJAq4%2B4uRYVgUYT%2FCFIZ5BLvEqFKAI6Q6evG8Y66ufOQ2vnV%2F4rT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881b7f69bc11b4fd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| yd.cottoidearldom.com/1clkn/14903 | 23.109.170.34 | 200 OK | 26 B |
URL GET HTTP/1.1yd.cottoidearldom.com/1clkn/14903 IP23.109.170.34:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectyd.cottoidearldom.com Fingerprint2A:D0:1B:ED:00:0F:4A:13:3B:97:DD:33:66:5B:7E:F8:F8:E9:C8:CE ValidityThu, 25 Apr 2024 06:21:32 GMT - Wed, 24 Jul 2024 06:21:31 GMT
File typeASCII text, with no line terminators Hash9082dc37e5e8046929da411544ad071a 41e0e3963ed94e59e8a2f115994c382712411537 b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /1clkn/14903 HTTP/1.1
Host: yd.cottoidearldom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 17:02:34 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sat, 11-May-2024 17:02:34 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Sat, 11-May-2024 17:02:34 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
|
|
| videzz.net/js/videojs.stm.5.min.js?0.251551457114381 | 78.142.18.54 | 200 OK | 3.3 kB |
URL GET HTTP/2videzz.net/js/videojs.stm.5.min.js?0.251551457114381 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33 ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT
File typegzip compressed data, from Unix Hashd980a073574926d74a22cd893884b652 44a8e32a79b939726879e56527bfa2ac4310473f ba8c5a712eb0216027497f4663bec0b9902e6897657df13a6bdf7983a8b53e8e
GET /js/videojs.stm.5.min.js?0.251551457114381 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-aqb9ov6imh54.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 17:02:34 GMT
content-type: application/javascript
last-modified: Sat, 27 Apr 2024 07:30:28 GMT
vary: Accept-Encoding
etag: W/"662ca994-1c25"
expires: Sun, 09 Jun 2024 17:02:34 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: MISS
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-56DK3TH | 142.250.74.168 | 200 OK | 74 kB |
URL GET HTTP/3www.googletagmanager.com/gtm.js?id=GTM-56DK3TH IP142.250.74.168:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (3287) Hash25253d6b9a18fc71c83b7f086ed65196 5e99bd6fe569c401ec30c582c7273f9132c535e2 9770562e6bc216dfcda7061fe3806b21770a6967e3910c0fada87b4385b12643
GET /gtm.js?id=GTM-56DK3TH HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 17:02:34 GMT
expires: Fri, 10 May 2024 17:02:34 GMT
cache-control: private, max-age=900
last-modified: Fri, 10 May 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74400
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| profitablegatecpm.com/fd/40/b6/fd40b682a05e4aaf489d29601350aa66.js | 192.243.59.20 | 200 OK | 16 kB |
URL GET HTTP/1.1profitablegatecpm.com/fd/40/b6/fd40b682a05e4aaf489d29601350aa66.js IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectprofitablegatecpm.com Fingerprint9D:FB:8C:AD:4D:64:98:6B:85:78:33:54:E7:A3:BB:10:ED:77:63:30 ValidityFri, 05 Apr 2024 18:10:33 GMT - Thu, 04 Jul 2024 18:10:32 GMT
File typeJavaScript source, ASCII text, with very long lines (44106), with no line terminators Hashfc3e81ad5adf142dc55ad72ac8092574 62196e9d37e33477497d0d5b68c7ddc5ec3e7e71 52e54008e29fb912fdf121ecfbd1a37513b1193ebf19fecf819f6bd34842de7c
GET /fd/40/b6/fd40b682a05e4aaf489d29601350aa66.js HTTP/1.1
Host: profitablegatecpm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 10 May 2024 17:02:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 403fa62f3babcdc529096e4249cdd750
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| videzz.net/js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 58 kB |
URL GET HTTP/2videzz.net/js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33 ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash7d32463f6206eb2c6e5d183660e0448a a2c0e77a38ce55f001b95478c23dd6b03edaf207 2e32ae49540c7fdf70e2e3d53b7a00202779949a909be3201041e582cdffb7a7
GET /js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-aqb9ov6imh54.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 17:02:34 GMT
content-type: application/javascript
last-modified: Sat, 27 Apr 2024 07:30:33 GMT
vary: Accept-Encoding
etag: W/"662ca999-26cb6"
expires: Sun, 09 Jun 2024 17:01:55 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hashf7a3aabaedd5c95463e85c2d7682d410 715b2bd7dd959bb3423d71b22c43302b7a18a3a5 55ab8ca84eb2c090ff2a4eb9ebc48ce053c3f38261d66bded94f03719a384335
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 10 May 2024 17:02:35 GMT
Last-Modified: Fri, 10 May 2024 16:45:06 GMT
Server: ECAcc (ska/F6E3)
X-Cache: Miss from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SAgbqI02MK3tv9b-q5gaKIHNtspR287EyJl4Xe2w4lyEiLwGvv2RRg==
Age: 1049
|
|
| proftrafficcounter.com/stats | 3.124.83.201 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP3.124.83.201:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hasha69976fd56262cea3ab0d6fac07eac9b 5627ae5cda023200194ee98bbff273c4c70a9365 c56bec8e37ecd8fe455edeb7aa67066d7c140d2888389bfd126abf817ae37f80
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://videzz.net
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=898c365d-92ba-441a-aa49-62711a6099a0:3:1; expires=Mon, 08 May 2034 17:02:35 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/facebook.js | 104.22.70.197 | 200 OK | 27 kB |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/facebook.js IP104.22.70.197:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (429), with no line terminators Hash014bcc757e484e12e3aea6c9d768fd4b 4c17157d0012f8002e4e6cf77c5f4a9747792cf4 4b475960843a5619b907af1f0a89e3136bd5e6a4a700ec78cb417f302647cf49
GET /menu/svg/icons/facebook.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"68925fa8e347041c6006837e73c518bc"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BHckTjoXuwSZA9lMRraMKCpOd%2BcFmeHjQbSapL4yb3KetBrr648Avto59mqGEa7rRKEbTaGmjlhEiDLjJQJ4bFxx56XnHuU3vt1j%2FPW7upUauuAxcedteBLZWq7%2B%2Fhu3vpTMQC%2BV"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 27811
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 881b7f6e6a7492f8-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 95 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (7711) Hash4f9179d632a9aabe9cff7cb2cef376a2 0860919a78c9ddef2c2f027ccc84db4c39c8b102 18ac9277f4ca2f0a379c089e96e555b69fbaadba8260cfa8758f13b9f76e7282
GET /gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 17:02:35 GMT
expires: Fri, 10 May 2024 17:02:35 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 95227
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| harassmentgrowl.com/f1/77/6d/f1776d24271c5ad55c5f1492e2d01e10.js | 172.240.127.234 | 200 OK | 30 kB |
URL GET HTTP/1.1harassmentgrowl.com/f1/77/6d/f1776d24271c5ad55c5f1492e2d01e10.js IP172.240.127.234:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectharassmentgrowl.com FingerprintEF:3A:DF:32:71:10:91:85:74:56:59:09:21:58:8E:10:A1:16:D1:8A ValidityMon, 06 May 2024 12:54:15 GMT - Sun, 04 Aug 2024 12:54:14 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashe83d31968cc7230659ed0240bffec497 a54cc6bdfb995fe7faaaf8a4eb0f01bd27affb3d 228f4de9bec3c8e62b272f4d1420ab3fa83ae0808d5f33c8cba68a5714c11873
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /f1/77/6d/f1776d24271c5ad55c5f1492e2d01e10.js HTTP/1.1
Host: harassmentgrowl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 17:02:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3a105518c0173a9722b44b226586855b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 | 104.18.10.207 | 200 OK | 77 kB |
URL GET HTTP/3maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 IP104.18.10.207:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459 Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 19:08:24
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 0a41a35b44b9a221d4e11fe69e9304aa
cdn-cache: HIT
cf-cache-status: HIT
age: 866649
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 881b7f717804b505-OSL
alt-svc: h3=":443"; ma=86400
|
|
| proftrafficcounter.com/stats | 3.124.83.201 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP3.124.83.201:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hasha69976fd56262cea3ab0d6fac07eac9b 5627ae5cda023200194ee98bbff273c4c70a9365 c56bec8e37ecd8fe455edeb7aa67066d7c140d2888389bfd126abf817ae37f80
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: uid_id2=898c365d-92ba-441a-aa49-62711a6099a0:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://videzz.net
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| myliveforyoudreder.com/vidozza.js | 104.21.40.134 | 200 OK | 6.7 kB |
URL GET HTTP/2myliveforyoudreder.com/vidozza.js IP104.21.40.134:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectmyliveforyoudreder.com FingerprintD6:1F:6C:5C:81:FF:C4:D3:4D:C9:A9:22:DD:0B:D4:18:59:4E:58:B7 ValidityWed, 20 Mar 2024 02:24:57 GMT - Tue, 18 Jun 2024 02:24:56 GMT
File typeJavaScript source, ASCII text, with very long lines (852), with CRLF line terminators Hashb340619418518ced51fbbc860814ea19 e2cbf47a089e8941bcdb6f24c64fad9004852348 ebbf367cc151e337e4c4d375e86682b6e1593b25224c6c733b4cea4f507c4000
GET /vidozza.js HTTP/1.1
Host: myliveforyoudreder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: application/javascript
last-modified: Mon, 24 Oct 2022 14:14:49 GMT
etag: W/"63569dd9-64f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4605
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HKH718jFmVNqqQnr%2FC5HkM3OSheY88JVTSG%2FFltjamy0eOcwV2mUyJJAsv1L7B94CLPmjLkGaI7Vt%2F1pnDHvqzTt1G%2B31Hpl1tjWRxzVkw7rhZrmjh9LpnEaxH2aumHVIeXsp7r1bzfj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b7f6d9eae0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/sub/Pj8pz0z | 172.67.205.77 | 200 OK | 5.8 kB |
URL GET HTTP/2bid.bidclickmedia.com/sub/Pj8pz0z IP172.67.205.77:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text Hashe151e24dc5b354ea8ee36534a8264594 4b5f293d59d009ee46087f164ee86d066e8e83f4 b2fdeeef5c48f24499731fdd7aae1650ad1bc6fa9ee58cf88fafe175658e888f
GET /sub/Pj8pz0z HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A1p%2FPiXEdKMjOkj8abTQ1aqg9wtwWRH3s4y%2FvygkKZciYVDtAy4TtOjFQb3Ii4eM4iQ060JAzF8kv2ZjCNkGxricGdB4U%2FiaAOrBdy5bxaym51l%2BaMvMr3nFjn4SBqnS%2BKG7Nsv5gVA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7f6d7dccb517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| harassmentgrowl.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuHuNJQdS9iTAgwgrLpLtnpmfGBYPrbmQxbtaNEsEFre6qnpSp7mqquqYncwoGZW87ePHa%2BSbZ4Lr4c%2FLkrswsKASEjKcczM2LIB7EPcuMYYMPut979X0F3%2FtefbZrT4gPS48vv60GQkq62Ky51fPve97F6opIbb%2FabwcfBo2LVd17tRPU3Feqb%2FJoUy36rue6nutVl4XmseovzkCI7F7Hq3XcWsOvec0G%2Bvr%2FvbEODHXAeifkOQg2XXjonIOIxkiTby9zs5mr7MKVxEqaK40eO3gv3UxVkSI5K2PtIE4PTtlQ5mj5PlS6P5cL1XtMDMWUOD%2FdR5genIpE2Nub6wwleIqQPYWiNwaXYwg6RqR2INgRASKGa6tIkzvXlC7o1n8onaFTsvDob4hiShZ%2BO4c0%2BfqSFP3qmpI2Fyo16MclRH8M0R0jsxPkgwpEMUGUfwLBfiGLj1aQJnurRioIVs5nF2IMEY8h%2BRDUOLCzTziwsQObOUjYcTXyPK%2Flsoi67U4U1VmLhwFzPdqKPeq5QRs2mskbIs%2BGiOQQkd5GprexKYbQ9keYjRKGOTD5lDjvbKPHShScoDAEBSUoBEGRExS9cp9J45vyDpPGht5p9k9zvRypvLtL91Xe5SkB1UNoVu5mJ%2BTZmT%2FOSxUfm%2Fy4GrOGGwZtn7pN3qA0brQ7zO8ErldvupQGAYwoIUxlPvJATMnL8ffIxJQ8%2FTNBSCcwcoJIPA9qXwQtStCNEoP0m4SKtNYTTA1oLeU5mCqR5QvIt5xdeUJemC9pdceAR4dLf61%2Fuj5pWkS6RKZLfCweEnTlrdENVZC9G6ow5LvVLBeJGNDZAtdymvMn777Ftwql2dXLZvjl69EMmJX33uUmX6EpE2nXkK8uCca4XlY64uSHq2adh9et2bhkdWqzletvLF9NMs2NESodg4qjK18gElPyzIOb85d54YPfIfQY2pZI7CE5DQg1QZRtw2SHS38uPdj46OJdGEWg5RknzBwUthxpPzw7lIJA8rOehiUMP1z64%2FbN8%2F%2BMbyPkj%2B0YaTq7TUW5a26hqyug%2BQ7SpERPl%2BjJElQOYewTozzTh0u%2F1ueBUFZGodSVvVBq%2Bfnc5NnPwojjaqted2nQaXqtFuWtsOG348BjlPqNwA8CWkdupvFraxf%2BBQAA%2F%2F8BAAD%2F%2F2nJT0BzBAAA | 172.240.127.234 | 200 OK | 7 B |
URL GET HTTP/1.1harassmentgrowl.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuHuNJQdS9iTAgwgrLpLtnpmfGBYPrbmQxbtaNEsEFre6qnpSp7mqquqYncwoGZW87ePHa%2BSbZ4Lr4c%2FLkrswsKASEjKcczM2LIB7EPcuMYYMPut979X0F3%2FtefbZrT4gPS48vv60GQkq62Ky51fPve97F6opIbb%2FabwcfBo2LVd17tRPU3Feqb%2FJoUy36rue6nutVl4XmseovzkCI7F7Hq3XcWsOvec0G%2Bvr%2FvbEODHXAeifkOQg2XXjonIOIxkiTby9zs5mr7MKVxEqaK40eO3gv3UxVkSI5K2PtIE4PTtlQ5mj5PlS6P5cL1XtMDMWUOD%2FdR5genIpE2Nub6wwleIqQPYWiNwaXYwg6RqR2INgRASKGa6tIkzvXlC7o1n8onaFTsvDob4hiShZ%2BO4c0%2BfqSFP3qmpI2Fyo16MclRH8M0R0jsxPkgwpEMUGUfwLBfiGLj1aQJnurRioIVs5nF2IMEY8h%2BRDUOLCzTziwsQObOUjYcTXyPK%2Flsoi67U4U1VmLhwFzPdqKPeq5QRs2mskbIs%2BGiOQQkd5GprexKYbQ9keYjRKGOTD5lDjvbKPHShScoDAEBSUoBEGRExS9cp9J45vyDpPGht5p9k9zvRypvLtL91Xe5SkB1UNoVu5mJ%2BTZmT%2FOSxUfm%2Fy4GrOGGwZtn7pN3qA0brQ7zO8ErldvupQGAYwoIUxlPvJATMnL8ffIxJQ8%2FTNBSCcwcoJIPA9qXwQtStCNEoP0m4SKtNYTTA1oLeU5mCqR5QvIt5xdeUJemC9pdceAR4dLf61%2Fuj5pWkS6RKZLfCweEnTlrdENVZC9G6ow5LvVLBeJGNDZAtdymvMn777Ftwql2dXLZvjl69EMmJX33uUmX6EpE2nXkK8uCca4XlY64uSHq2adh9et2bhkdWqzletvLF9NMs2NESodg4qjK18gElPyzIOb85d54YPfIfQY2pZI7CE5DQg1QZRtw2SHS38uPdj46OJdGEWg5RknzBwUthxpPzw7lIJA8rOehiUMP1z64%2FbN8%2F%2BMbyPkj%2B0YaTq7TUW5a26hqyug%2BQ7SpERPl%2BjJElQOYewTozzTh0u%2F1ueBUFZGodSVvVBq%2Bfnc5NnPwojjaqted2nQaXqtFuWtsOG348BjlPqNwA8CWkdupvFraxf%2BBQAA%2F%2F8BAAD%2F%2F2nJT0BzBAAA IP172.240.127.234:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectharassmentgrowl.com FingerprintEF:3A:DF:32:71:10:91:85:74:56:59:09:21:58:8E:10:A1:16:D1:8A ValidityMon, 06 May 2024 12:54:15 GMT - Sun, 04 Aug 2024 12:54:14 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuHuNJQdS9iTAgwgrLpLtnpmfGBYPrbmQxbtaNEsEFre6qnpSp7mqquqYncwoGZW87ePHa%2BSbZ4Lr4c%2FLkrswsKASEjKcczM2LIB7EPcuMYYMPut979X0F3%2FtefbZrT4gPS48vv60GQkq62Ky51fPve97F6opIbb%2FabwcfBo2LVd17tRPU3Feqb%2FJoUy36rue6nutVl4XmseovzkCI7F7Hq3XcWsOvec0G%2Bvr%2FvbEODHXAeifkOQg2XXjonIOIxkiTby9zs5mr7MKVxEqaK40eO3gv3UxVkSI5K2PtIE4PTtlQ5mj5PlS6P5cL1XtMDMWUOD%2FdR5genIpE2Nub6wwleIqQPYWiNwaXYwg6RqR2INgRASKGa6tIkzvXlC7o1n8onaFTsvDob4hiShZ%2BO4c0%2BfqSFP3qmpI2Fyo16MclRH8M0R0jsxPkgwpEMUGUfwLBfiGLj1aQJnurRioIVs5nF2IMEY8h%2BRDUOLCzTziwsQObOUjYcTXyPK%2Flsoi67U4U1VmLhwFzPdqKPeq5QRs2mskbIs%2BGiOQQkd5GprexKYbQ9keYjRKGOTD5lDjvbKPHShScoDAEBSUoBEGRExS9cp9J45vyDpPGht5p9k9zvRypvLtL91Xe5SkB1UNoVu5mJ%2BTZmT%2FOSxUfm%2Fy4GrOGGwZtn7pN3qA0brQ7zO8ErldvupQGAYwoIUxlPvJATMnL8ffIxJQ8%2FTNBSCcwcoJIPA9qXwQtStCNEoP0m4SKtNYTTA1oLeU5mCqR5QvIt5xdeUJemC9pdceAR4dLf61%2Fuj5pWkS6RKZLfCweEnTlrdENVZC9G6ow5LvVLBeJGNDZAtdymvMn777Ftwql2dXLZvjl69EMmJX33uUmX6EpE2nXkK8uCca4XlY64uSHq2adh9et2bhkdWqzletvLF9NMs2NESodg4qjK18gElPyzIOb85d54YPfIfQY2pZI7CE5DQg1QZRtw2SHS38uPdj46OJdGEWg5RknzBwUthxpPzw7lIJA8rOehiUMP1z64%2FbN8%2F%2BMbyPkj%2B0YaTq7TUW5a26hqyug%2BQ7SpERPl%2BjJElQOYewTozzTh0u%2F1ueBUFZGodSVvVBq%2Bfnc5NnPwojjaqted2nQaXqtFuWtsOG348BjlPqNwA8CWkdupvFraxf%2BBQAA%2F%2F8BAAD%2F%2F2nJT0BzBAAA HTTP/1.1
Host: harassmentgrowl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecfd40b682a05e4aaf489d29601350aa66=[5210995,5210997]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 17:02:36 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6eca43927e1da8cf1136a928c2f0b0a3
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| bid.bidclickmedia.com/sub/Pj8pz0z | 172.67.205.77 | 200 OK | 144 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/Pj8pz0z IP172.67.205.77:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text Hashe151e24dc5b354ea8ee36534a8264594 4b5f293d59d009ee46087f164ee86d066e8e83f4 b2fdeeef5c48f24499731fdd7aae1650ad1bc6fa9ee58cf88fafe175658e888f
GET /sub/Pj8pz0z HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vhpqjSWYHBkMIw9p%2FvLLdMax%2F1sXX7AqVGO%2F6zWBhTc56ONgyQiq6zpCm2Lj5L1Fs8G%2BGZO4pndYc74pjWk0B9UCgbD4NEjodQhvEXnY82mepMmuLIgd%2FV5AsbY2gzT0LYB%2ByqLBttE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7f6d3d5db517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| harassmentgrowl.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Findex.html&l=1444&fd=99 | 172.240.127.234 | 200 OK | 0 B |
URL GET HTTP/1.1harassmentgrowl.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Findex.html&l=1444&fd=99 IP172.240.127.234:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectharassmentgrowl.com FingerprintEF:3A:DF:32:71:10:91:85:74:56:59:09:21:58:8E:10:A1:16:D1:8A ValidityMon, 06 May 2024 12:54:15 GMT - Sun, 04 Aug 2024 12:54:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Findex.html&l=1444&fd=99 HTTP/1.1
Host: harassmentgrowl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecfd40b682a05e4aaf489d29601350aa66=[5210995,5210997]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 17:02:36 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/style.css | 188.114.96.1 | 200 OK | 207 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/style.css IP188.114.96.1:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typegzip compressed data, from Unix Size207 kB (207344 bytes) Hashb3cf7047729949d98380ec4913201c37 e8c72740beae6bd44559ba0079d222a6b70a75b4 8d20d661466dc63c5eec4aac933a72fd0bcb48d453c827b85bee17082847daed
GET /sb/notifications/gambling/default/android-btn/8/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:36 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: W/"65aa8644-d14"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
cf-cache-status: HIT
age: 842742
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FtzZDmzBPh6OQvesrgmjUp49w9NKTD6RYmOcccIihOP83GMRhe3JW1oeeQPe5ddAKACVHmIKVYaSc37UGPH17Kayybcbbks19An7L6bastOXec7CYe7MhCSHSb9lmuIPnak8QbolRb6R"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b7f758b5856b9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/bonus-stars-6593305-5446274.mp4 | 188.114.96.1 | 206 Partial Content | 34 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/bonus-stars-6593305-5446274.mp4 IP188.114.96.1:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeISO Media, MP4 Base Media v1 [ISO 14496-12:2003] Hash69e52ff16a779d8ab66a1156cc50ab23 27f8897a2acc3bcfd319c267d137aaa4650fb3c5 2048e8325f6d17e0fefb2226c4191a9e300c562f2bc46543ac616d49ff971d61
GET /sb/notifications/gambling/default/android-btn/8/img/bonus-stars-6593305-5446274.mp4 HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
date: Fri, 10 May 2024 17:02:36 GMT
content-type: video/mp4
content-length: 34238
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: "65aa8644-85be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 858174
content-range: bytes 0-34237/34238
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W2nbIYoI%2BZJ0F3nSdVAQY6HO3%2Bg8PXbI23AeURUuzfWZk2r2g646sVgrVrwX6kJIy9UhaZUBXNPArgM1cySdU7UahC8MLPmrv60T1ETsEGyxHPlZfNavch8Fehf3eNnaH%2BaFGW4ViU6y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b7f76698056c1-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/close.svg | 188.114.96.1 | 200 OK | 1.0 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/close.svg IP188.114.96.1:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeSVG Scalable Vector Graphics image Hashb3011bde2653e373d1150594a8bbd06d e47948cdb4d6ecf6257106805e690e3bf0211317 6499ec40e3f2ac55bf1b5c9a2dbbc212adb74114645bccac0373074f98ef8a01
GET /sb/notifications/gambling/default/android-btn/8/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:36 GMT
content-type: image/svg+xml
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: W/"65aa8644-4ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 862540
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=spTggnb%2B0aS37oaTxATCEbRwngCoxBX8ie6A6mbnX43acsphK1UvotNXCk63HF4lRvM1COd%2FQsQ5%2BANnVmYwxuwVBgG3ZOdEjy5jB7UI4kBDf0rq61XXd3NhI3%2F1zDKDCLifBEAC2yfA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b7f76595c56c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-HEX1BG8H46>m=45je4580v9104348843za200&_p=1715360554650&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=1491146592.1715360556&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAI&_s=1&sid=1715360555&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-aqb9ov6imh54.html&dt=Vidoza&en=page_view&_fv=1&_nsi=1&_ss=2&tfd=2124 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-HEX1BG8H46>m=45je4580v9104348843za200&_p=1715360554650&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=1491146592.1715360556&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAI&_s=1&sid=1715360555&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-aqb9ov6imh54.html&dt=Vidoza&en=page_view&_fv=1&_nsi=1&_ss=2&tfd=2124 IP216.239.34.36:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-HEX1BG8H46>m=45je4580v9104348843za200&_p=1715360554650&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=1491146592.1715360556&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAI&_s=1&sid=1715360555&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-aqb9ov6imh54.html&dt=Vidoza&en=page_view&_fv=1&_nsi=1&_ss=2&tfd=2124 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://videzz.net
date: Fri, 10 May 2024 17:02:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| harassmentgrowl.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fanimate.css&l=78693&fd=40 | 172.240.127.234 | 200 OK | 0 B |
URL GET HTTP/1.1harassmentgrowl.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fanimate.css&l=78693&fd=40 IP172.240.127.234:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectharassmentgrowl.com FingerprintEF:3A:DF:32:71:10:91:85:74:56:59:09:21:58:8E:10:A1:16:D1:8A ValidityMon, 06 May 2024 12:54:15 GMT - Sun, 04 Aug 2024 12:54:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fanimate.css&l=78693&fd=40 HTTP/1.1
Host: harassmentgrowl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecfd40b682a05e4aaf489d29601350aa66=[5210995,5210997]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 17:02:36 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 142.250.74.106 | 200 OK | 1.2 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP142.250.74.106:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hash9dcbf2a08faadaef60c30034400a06f4 b87b51d1566ef8865552ce169fa71a7cef30bdd4 b07dea89578b459c67a077df8e100f1a32296307a58b2b6cb294f6e24fab2dcc
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 17:02:36 GMT
date: Fri, 10 May 2024 17:02:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| harassmentgrowl.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fstyle.css&l=3348&fd=46 | 172.240.127.234 | 200 OK | 0 B |
URL GET HTTP/1.1harassmentgrowl.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fstyle.css&l=3348&fd=46 IP172.240.127.234:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectharassmentgrowl.com FingerprintEF:3A:DF:32:71:10:91:85:74:56:59:09:21:58:8E:10:A1:16:D1:8A ValidityMon, 06 May 2024 12:54:15 GMT - Sun, 04 Aug 2024 12:54:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fstyle.css&l=3348&fd=46 HTTP/1.1
Host: harassmentgrowl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecfd40b682a05e4aaf489d29601350aa66=[5210995,5210997]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 17:02:36 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| harassmentgrowl.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fjs%2Fscript.js&l=7986&fd=40 | 172.240.127.234 | 200 OK | 0 B |
URL GET HTTP/1.1harassmentgrowl.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fjs%2Fscript.js&l=7986&fd=40 IP172.240.127.234:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectharassmentgrowl.com FingerprintEF:3A:DF:32:71:10:91:85:74:56:59:09:21:58:8E:10:A1:16:D1:8A ValidityMon, 06 May 2024 12:54:15 GMT - Sun, 04 Aug 2024 12:54:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fjs%2Fscript.js&l=7986&fd=40 HTTP/1.1
Host: harassmentgrowl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecfd40b682a05e4aaf489d29601350aa66=[5210995,5210997]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 17:02:36 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| harassmentgrowl.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuHuNJQdS9iTAgwgrLpHv%2BMuOCwTUbCcbNulEiuKDVVdWTMtVdTVXX9GROwaDsbQcvXjvfJBtcF39OntyVmQWFgJDxlIO5eRHEg7hnmTFs8EH3e6%2B%2Br%2BB736vP9twpqcLRk6W3dV8qRecbFb988f0guFxelYnrlXut5ofN%2BuWy6b7ablb8V8pvCral56t%2B4PuBH5SXpRGR7s1PQcj0XjuotP1KvVoJGnX0zP976zxY6oF3T8lzkHwy99C7AMlGSOJvl4TdynR66WrsFM20QZcfvpdsJTpPEJ%2BXkfEQJYdnbGh7vHwfOjmYyYXuPiaGckK8n%2B4jTA7PRCLs7s90hgoiQcifQt4dQagRJB2B6V1IfkwAxnFtDUl855o2Od3%2BD6VTdELmHv0NmU%2FI3G8XkMRfX1GyV17XymVSJxa9qIDsjSA7I6RujKxfgszHYNknkPwXMv9oFUm8v2aVhuTFbHYpR5DRCEoMQK0HN%2F2kBxd5cKmHmJ%2BUWRAECz5n1G%2B1GavxBRE2uR%2FQhSiggd9swbGpvAGydACmBmBmB6nZwZYcwLgfYTcLWO7BZhPivbODLi%2BQC4LcEuSUIJcEeUaQd4sDrmzVFne4si4MznL1LNeKoc46e%2FRAZx2REFAzgOHFXnpKnp36471UqmJLnJQjXvfDZqtK%2FYaoUxrVW21ebTf9oNbwKW02YWUBaUuzkftyQl6OvkcqJ%2BTpnwlCOoZVYzD5PKh7ETQvQDcL9JNvYiqTSldy3aeVRGTgukCazSHb9vbUKXlhtqS1XQvBjhb%2F2vh0Y9xwYKZAagp8LB8SdNSt4Q2dk%2F0bOrfku7U0k7Hs0%2BkC1zOaiSfvviW2c234ypIdfPk6mwLT8t67wmarNOEy6Vjy1RXJuTDL2jBBflixGyK87uzmFWcSl65ef2N5JU6NsFbqZAQqj69%2BASYn5JkHN2cv89IHv0OaEYwrELsjchaQegyW7sCmR4t%2FLj7Y%2FOjyXVhNYNQ5J0w95K4Ymmp4fqgkgRLnPQ0LWHG0%2BMftmxf%2FGd1GKB7bMTR0epvKYs%2FeQseUQLNdJHGBrinQVQWoGsC6J4ZZao4Wf63NAqEqDUNlSvuhMurzmcnTn4OVJ%2BWazxdCEYmFUNQb9UgwHjYaoc8iFtZ4q8WQ2Un02vqlfwEAAP%2F%2FAQAA%2F%2F%2FpHZqocwQAAA%3D%3D | 172.240.127.234 | 200 OK | 7 B |
URL GET HTTP/1.1harassmentgrowl.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuHuNJQdS9iTAgwgrLpHv%2BMuOCwTUbCcbNulEiuKDVVdWTMtVdTVXX9GROwaDsbQcvXjvfJBtcF39OntyVmQWFgJDxlIO5eRHEg7hnmTFs8EH3e6%2B%2Br%2BB736vP9twpqcLRk6W3dV8qRecbFb988f0guFxelYnrlXut5ofN%2BuWy6b7ablb8V8pvCral56t%2B4PuBH5SXpRGR7s1PQcj0XjuotP1KvVoJGnX0zP976zxY6oF3T8lzkHwy99C7AMlGSOJvl4TdynR66WrsFM20QZcfvpdsJTpPEJ%2BXkfEQJYdnbGh7vHwfOjmYyYXuPiaGckK8n%2B4jTA7PRCLs7s90hgoiQcifQt4dQagRJB2B6V1IfkwAxnFtDUl855o2Od3%2BD6VTdELmHv0NmU%2FI3G8XkMRfX1GyV17XymVSJxa9qIDsjSA7I6RujKxfgszHYNknkPwXMv9oFUm8v2aVhuTFbHYpR5DRCEoMQK0HN%2F2kBxd5cKmHmJ%2BUWRAECz5n1G%2B1GavxBRE2uR%2FQhSiggd9swbGpvAGydACmBmBmB6nZwZYcwLgfYTcLWO7BZhPivbODLi%2BQC4LcEuSUIJcEeUaQd4sDrmzVFne4si4MznL1LNeKoc46e%2FRAZx2REFAzgOHFXnpKnp36471UqmJLnJQjXvfDZqtK%2FYaoUxrVW21ebTf9oNbwKW02YWUBaUuzkftyQl6OvkcqJ%2BTpnwlCOoZVYzD5PKh7ETQvQDcL9JNvYiqTSldy3aeVRGTgukCazSHb9vbUKXlhtqS1XQvBjhb%2F2vh0Y9xwYKZAagp8LB8SdNSt4Q2dk%2F0bOrfku7U0k7Hs0%2BkC1zOaiSfvviW2c234ypIdfPk6mwLT8t67wmarNOEy6Vjy1RXJuTDL2jBBflixGyK87uzmFWcSl65ef2N5JU6NsFbqZAQqj69%2BASYn5JkHN2cv89IHv0OaEYwrELsjchaQegyW7sCmR4t%2FLj7Y%2FOjyXVhNYNQ5J0w95K4Ymmp4fqgkgRLnPQ0LWHG0%2BMftmxf%2FGd1GKB7bMTR0epvKYs%2FeQseUQLNdJHGBrinQVQWoGsC6J4ZZao4Wf63NAqEqDUNlSvuhMurzmcnTn4OVJ%2BWazxdCEYmFUNQb9UgwHjYaoc8iFtZ4q8WQ2Un02vqlfwEAAP%2F%2FAQAA%2F%2F%2FpHZqocwQAAA%3D%3D IP172.240.127.234:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectharassmentgrowl.com FingerprintEF:3A:DF:32:71:10:91:85:74:56:59:09:21:58:8E:10:A1:16:D1:8A ValidityMon, 06 May 2024 12:54:15 GMT - Sun, 04 Aug 2024 12:54:14 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuHuNJQdS9iTAgwgrLpHv%2BMuOCwTUbCcbNulEiuKDVVdWTMtVdTVXX9GROwaDsbQcvXjvfJBtcF39OntyVmQWFgJDxlIO5eRHEg7hnmTFs8EH3e6%2B%2Br%2BB736vP9twpqcLRk6W3dV8qRecbFb988f0guFxelYnrlXut5ofN%2BuWy6b7ablb8V8pvCral56t%2B4PuBH5SXpRGR7s1PQcj0XjuotP1KvVoJGnX0zP976zxY6oF3T8lzkHwy99C7AMlGSOJvl4TdynR66WrsFM20QZcfvpdsJTpPEJ%2BXkfEQJYdnbGh7vHwfOjmYyYXuPiaGckK8n%2B4jTA7PRCLs7s90hgoiQcifQt4dQagRJB2B6V1IfkwAxnFtDUl855o2Od3%2BD6VTdELmHv0NmU%2FI3G8XkMRfX1GyV17XymVSJxa9qIDsjSA7I6RujKxfgszHYNknkPwXMv9oFUm8v2aVhuTFbHYpR5DRCEoMQK0HN%2F2kBxd5cKmHmJ%2BUWRAECz5n1G%2B1GavxBRE2uR%2FQhSiggd9swbGpvAGydACmBmBmB6nZwZYcwLgfYTcLWO7BZhPivbODLi%2BQC4LcEuSUIJcEeUaQd4sDrmzVFne4si4MznL1LNeKoc46e%2FRAZx2REFAzgOHFXnpKnp36471UqmJLnJQjXvfDZqtK%2FYaoUxrVW21ebTf9oNbwKW02YWUBaUuzkftyQl6OvkcqJ%2BTpnwlCOoZVYzD5PKh7ETQvQDcL9JNvYiqTSldy3aeVRGTgukCazSHb9vbUKXlhtqS1XQvBjhb%2F2vh0Y9xwYKZAagp8LB8SdNSt4Q2dk%2F0bOrfku7U0k7Hs0%2BkC1zOaiSfvviW2c234ypIdfPk6mwLT8t67wmarNOEy6Vjy1RXJuTDL2jBBflixGyK87uzmFWcSl65ef2N5JU6NsFbqZAQqj69%2BASYn5JkHN2cv89IHv0OaEYwrELsjchaQegyW7sCmR4t%2FLj7Y%2FOjyXVhNYNQ5J0w95K4Ymmp4fqgkgRLnPQ0LWHG0%2BMftmxf%2FGd1GKB7bMTR0epvKYs%2FeQseUQLNdJHGBrinQVQWoGsC6J4ZZao4Wf63NAqEqDUNlSvuhMurzmcnTn4OVJ%2BWazxdCEYmFUNQb9UgwHjYaoc8iFtZ4q8WQ2Un02vqlfwEAAP%2F%2FAQAA%2F%2F%2FpHZqocwQAAA%3D%3D HTTP/1.1
Host: harassmentgrowl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecfd40b682a05e4aaf489d29601350aa66=[5210995,5210997]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 17:02:36 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 336e394986ca5642f2e24e30bbee6f21
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| bid.bidclickmedia.com/load | 172.67.205.77 | 302 Found | 361 B |
URL POST HTTP/3bid.bidclickmedia.com/load IP172.67.205.77:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text Hash6610c77cad5adb691fd5f9ffa06b9486 d003b0d6d8bb61e5fd17dc635c017f6393e0c24c 83695861f8ded5db81f9c1e185cdf9177d18c57bfe1196b03468f2d8ac22bc50
POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/Pj8pz0z
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 10 May 2024 17:02:35 GMT
content-type: text/html; charset=utf-8
location: https://xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2fBpFtqwrcMoPKjwQ%2BKc0V82qLtfR3HoiAevOJJmdfGYlqqaCKQuzMqv3mWhBcCiVXZ6dUf1qJ3%2BYuqPbqFqyvvu5i9j70FBPx4sbOjk3zBwXmG5tIB7en5QMPDP0YFM4PeXYsW%2BbIs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7f714c87b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:55:00 GMT
expires: Fri, 09 May 2025 01:55:00 GMT
cache-control: public, max-age=31536000
age: 140857
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/reddit.js | 104.22.70.197 | 200 OK | 432 B |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/reddit.js IP104.22.70.197:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (893), with no line terminators Hash408cc755e613b4f00fbe10d7411ed087 14341990ed687477b3addbdd1a3b50ae8a98589b 68ed9b82b62d45cf5d12587a7e9566a4ddeb94d69bcb225e9e3c7268c76b3cbb
GET /menu/svg/icons/reddit.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"1fe5b5008de689ce6464d7bcb07e742c"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q0mOx4XlrTIiF2kgPx6kTLqvld9HnTiKfwbHtlQYvoZA5g44lQveP2tVGPcXkEtoJ4gdclI9E4sgSmKYq0PxXzDgMaF%2BsVjnodBsPUjbhHxMB74I6LxuYoSHW9DhGzcNcscDW8G9"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 24172
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 881b7f6e7a9692f8-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bid.bidclickmedia.com/load | 172.67.205.77 | 302 Found | 361 B |
URL POST HTTP/3bid.bidclickmedia.com/load IP172.67.205.77:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text Hash6610c77cad5adb691fd5f9ffa06b9486 d003b0d6d8bb61e5fd17dc635c017f6393e0c24c 83695861f8ded5db81f9c1e185cdf9177d18c57bfe1196b03468f2d8ac22bc50
POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/Pj8pz0z
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 10 May 2024 17:02:35 GMT
content-type: text/html; charset=utf-8
location: https://xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IhQsGNpYps8k0WMd8Yt2NXDJH3o%2BQiOw7x5s7Iwh9KaYNnH4jVkc3LN0bBP2t5tU5qaqpbIfjF9X0NBffuL6dQIsmMLyIikRgmKnkl1mV%2FpNsbeNgh4OHAqu6RXThdqBu1cv4bFcGYc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7f711c37b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:37 GMT
expires: Sun, 04 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 545640
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183 | 174.137.133.17 | 200 OK | 0 B |
URL GET HTTP/1.1xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerSectigo Limited Subject*.xmlking.com Fingerprint61:F0:9B:53:D2:DF:03:A0:08:09:BE:79:B1:70:10:34:65:07:7B:6D ValidityWed, 26 Jul 2023 00:00:00 GMT - Fri, 26 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=591364&auth=oodr9S&pubid=195183 HTTP/1.1
Host: xml.xmlking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 17:02:37 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
|
|
| bid.bidclickmedia.com/load | 172.67.205.77 | 302 Found | 371 B |
URL POST HTTP/3bid.bidclickmedia.com/load IP172.67.205.77:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text Hashb8207054b13fda020d58a7f94425b36f 9b577687e561e17e9823e7fb83ad648dede4c74c 6dafbda0e014e02f234cd8025d827edc22403b87e4cd22270c86db55dd8bc4a6
POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 98
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/31bV2Jy
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 10 May 2024 17:02:35 GMT
content-type: text/html; charset=utf-8
location: https://xml.cachegorilla.com/redirect?feed=612977&auth=kAeZgJ&pubid=197570
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4n5lNyNAnM37bG9cOUKY366D49Tj12SDK7vR0nw98STHJdJZwNA%2BevtuBFtI4vRLfXMulo6n6%2FEIJrCFmE5RDb3Lg7mcJovg4%2F8AQSDS64BvrkxX4Dw1gVwnyvVv%2FOtcoTRVdp6FAHY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7f718cd9b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| harassmentgrowl.com/pixel/sbs?c=1 | 172.240.108.84 | 200 OK | 0 B |
URL GET HTTP/1.1harassmentgrowl.com/pixel/sbs?c=1 IP172.240.108.84:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectharassmentgrowl.com FingerprintEF:3A:DF:32:71:10:91:85:74:56:59:09:21:58:8E:10:A1:16:D1:8A ValidityMon, 06 May 2024 12:54:15 GMT - Sun, 04 Aug 2024 12:54:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbs?c=1 HTTP/1.1
Host: harassmentgrowl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecfd40b682a05e4aaf489d29601350aa66=[5210995,5210997]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 17:02:37 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| tfosrv.com/show_std.php?id_site=13101&id_channel=60771&uf=true | 216.18.168.29 | 302 Found | 0 B |
URL GET HTTP/1.1tfosrv.com/show_std.php?id_site=13101&id_channel=60771&uf=true IP216.18.168.29:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerSectigo Limited Subject*.tfosrv.com Fingerprint17:0E:13:E0:E3:EE:17:88:09:10:8F:63:F4:7E:31:5A:D9:33:7D:80 ValidityTue, 31 Oct 2023 00:00:00 GMT - Mon, 18 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /show_std.php?id_site=13101&id_channel=60771&uf=true HTTP/1.1
Host: tfosrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
server: nginx
date: Fri, 10 May 2024 17:02:37 GMT
content-length: 0
location: https://tfosrv.com/impression.php?channel_id=60771&id=b764fb3c-ded2-43b0-97d3-932e400768cd%3Ae7f1cc46-d132-4fb9-9155-2bcb794c8f57&site_id=13101&uuid=c24c6695-a1bf-4961-9731-b8f125db3acc
set-cookie: sppc_uuid=fe362813-1b47-4e71-8634-752e598b1228; max-age=31536000; path=/; secure; SameSite=None
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
|
|
| tfosrv.com/impression.php?channel_id=60771&id=b764fb3c-ded2-43b0-97d3-932e400768cd%3Ae7f1cc46-d132-4fb9-9155-2bcb794c8f57&site_id=13101&uuid=c24c6695-a1bf-4961-9731-b8f125db3acc | 216.18.168.29 | 302 Found | 0 B |
URL GET HTTP/1.1tfosrv.com/impression.php?channel_id=60771&id=b764fb3c-ded2-43b0-97d3-932e400768cd%3Ae7f1cc46-d132-4fb9-9155-2bcb794c8f57&site_id=13101&uuid=c24c6695-a1bf-4961-9731-b8f125db3acc IP216.18.168.29:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerSectigo Limited Subject*.tfosrv.com Fingerprint17:0E:13:E0:E3:EE:17:88:09:10:8F:63:F4:7E:31:5A:D9:33:7D:80 ValidityTue, 31 Oct 2023 00:00:00 GMT - Mon, 18 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /impression.php?channel_id=60771&id=b764fb3c-ded2-43b0-97d3-932e400768cd%3Ae7f1cc46-d132-4fb9-9155-2bcb794c8f57&site_id=13101&uuid=c24c6695-a1bf-4961-9731-b8f125db3acc HTTP/1.1
Host: tfosrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Cookie: sppc_uuid=fe362813-1b47-4e71-8634-752e598b1228
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
server: nginx
date: Fri, 10 May 2024 17:02:37 GMT
content-length: 0
location: https://trafforsrv.com/click.php?id=b764fb3c-ded2-43b0-97d3-932e400768cd%3Ae7f1cc46-d132-4fb9-9155-2bcb794c8f57
set-cookie: sppc_uuid=c24c6695-a1bf-4961-9731-b8f125db3acc; max-age=31536000; path=/; secure; SameSite=None
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-HEX1BG8H46&cid=1491146592.1715360556>m=45je4580v9104348843za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&frm=0&z=229807476 | 142.250.74.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-HEX1BG8H46&cid=1491146592.1715360556>m=45je4580v9104348843za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&frm=0&z=229807476 IP142.250.74.163:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint7D:68:6D:B1:32:34:52:51:20:C9:53:FF:B9:B7:8F:7E:05:F9:F5:97 ValidityTue, 16 Apr 2024 04:31:00 GMT - Tue, 09 Jul 2024 04:30:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-HEX1BG8H46&cid=1491146592.1715360556>m=45je4580v9104348843za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&frm=0&z=229807476 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 10 May 2024 17:02:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| animewatch.onionlive.workers.dev/ | 172.67.141.108 | 200 OK | 72 kB |
URL GET HTTP/3animewatch.onionlive.workers.dev/ IP172.67.141.108:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectonionlive.workers.dev Fingerprint47:76:5D:C5:12:3C:C2:68:72:9E:1E:79:C9:B5:09:72:24:11:B4:C0 ValidityThu, 02 May 2024 00:33:08 GMT - Wed, 31 Jul 2024 00:33:07 GMT
File typeHTML document, ASCII text, with very long lines (1024) Hashc1cf85ad1b6580cae5442d258a41bae7 ad01dec3f302168d9588375fc9b4185dc45c4625 439248132cde8803370dcb8e3bf0fa5737032e4e5dffe7812d911d32735eacee
GET / HTTP/1.1
Host: animewatch.onionlive.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:37 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dc9QWnNjxyItHqvDxM7iqACy1Pt4LBR78X%2FCoP80Bmnk9LV%2Brp%2FggTk9p52x84LhpBHdoJ3Eua5xfIJrVOZZFyFUOi8ntpttMPlCj9fuOXloiPM6sCJTeu3Iv1RsEjZpDfTdMlOwqosVQVwFLmdlThranQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b7f7b0e20569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-HJ5MMKB9WK | 142.250.74.168 | | 103 kB |
URL www.googletagmanager.com/gtag/js?id=G-HJ5MMKB9WK IP142.250.74.168:0
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size103 kB (103308 bytes) Hashb099bf7c487ab438f2f94bd198e51203 ace20441ba3e5ee9d689d169ba30f0a8e0d94161 9fd760ec543c10ab2cb8f66e6d89994d527690a5d2e1bc7f91eb03f2dd94e5b4
GET /gtag/js?id=G-HJ5MMKB9WK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animewatch.onionlive.workers.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 17:02:37 GMT
expires: Fri, 10 May 2024 17:02:37 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 103308
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| static.addtoany.com/menu/locale/ru.js | 104.22.70.197 | 200 OK | 1.0 kB |
URL GET HTTP/3static.addtoany.com/menu/locale/ru.js IP104.22.70.197:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (2130), with no line terminators Hashc0717dc8cde3baa722c4e7d4c12a2cb0 6e8702b80bdcbe0cd5fc183ce582b2add61d0863 cde5eaa4da56876821229a97a09a4b53e929ea30b7310848d0e84212a5137397
GET /menu/locale/ru.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=86400, stale-while-revalidate=30, public
cf-bgj: minify
cf-polished: origSize=2289
etag: W/"9797b535a7dbc5ec8be5d83312871549"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KCGaSgK4l4uuupkt%2Fh48xawn%2FLsP2Oc7FV2rnIbYLl451pxdJ1oMITTRBbvcYnbHpEriv68tYoC1pM1o9lpB%2FEZ9pq%2F%2FeO7UWlZgkAql17yczLWYLrVFfSr7t10H7zZgMjGxgdHMxT1kCepnhNyo7rqx"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 27811
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 881b7f6d995992f8-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js | 104.17.24.14 | 200 OK | 5.1 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js IP104.17.24.14:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (17660) Hash12dd498bf90c536803c2aad708b66c2b 5f9363d39a405d1c94328cf2303ff4a05c0ad163 c4e20f53f5ef0ed44b783437aa3f4638a9a56cc4aa29ae83ed9212eb2807052a
GET /ajax/libs/postscribe/2.0.8/postscribe.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 5117
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03faa-45f4"
last-modified: Mon, 04 May 2020 16:15:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 54661
expires: Wed, 30 Apr 2025 17:02:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RToUEqZeropE4iVJQfVT3ci0c%2BOQib1l6PBxAdavkko27MfLhYe7%2FakHozVLZ4AL3qWEf%2FHR2%2FucnXlf0%2FRHMGBkQ0U0WQMrHuL04S2zB%2B4c%2FU2Yer26BhQqjDV9qWxsfZi98OJ5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881b7f7c2cf0b4f3-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trafforsrv.com/click.php?id=b764fb3c-ded2-43b0-97d3-932e400768cd%3Ae7f1cc46-d132-4fb9-9155-2bcb794c8f57 | 216.18.168.28 | 302 Found | 0 B |
URL GET HTTP/1.1trafforsrv.com/click.php?id=b764fb3c-ded2-43b0-97d3-932e400768cd%3Ae7f1cc46-d132-4fb9-9155-2bcb794c8f57 IP216.18.168.28:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerSectigo Limited Subject*.trafforsrv.com FingerprintC4:DD:C6:65:15:A0:54:82:7D:C9:E3:43:74:BA:ED:16:CC:DD:F5:00 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 16 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click.php?id=b764fb3c-ded2-43b0-97d3-932e400768cd%3Ae7f1cc46-d132-4fb9-9155-2bcb794c8f57 HTTP/1.1
Host: trafforsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
server: nginx
date: Fri, 10 May 2024 17:02:37 GMT
content-length: 0
location: https://s.pemsrv.com/splash.php?idzone=5040978&type=8
set-cookie: sppc_uuid=6d4f518a-656e-42e7-bf37-033eb59decc6; max-age=31536000; path=/; secure; SameSite=None
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
|
|
| videzz.net/favicon.ico?v=2 | 78.142.18.54 | 200 OK | 94 kB |
URL GET HTTP/2videzz.net/favicon.ico?v=2 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33 ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT
File typegzip compressed data, from Unix Hash2ec185301510155980f0ff7cfa3d6db8 7f1e6cdb2d5e18b00dc2ed4463674996c2e6b87f 20cda7f51d81f187d69fcf571480eabc72185e2a889ff0f92ff9634e8810eca1
GET /favicon.ico?v=2 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-aqb9ov6imh54.html
Cookie: lang=1; file_id=37929829; aff=177684; _ga_HEX1BG8H46=GS1.1.1715360555.1.0.1715360555.60.0.0; _ga=GA1.1.1491146592.1715360556; sb_main_fd40b682a05e4aaf489d29601350aa66=1; sb_count_fd40b682a05e4aaf489d29601350aa66=1; asgfp2=172e5b6362817b33a26bdcbe3d1af8ae; dom3ic8zudi28v8lr6fgphwffqoz0j6c=898c365d-92ba-441a-aa49-62711a6099a0%3A3%3A1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=harassmentgrowl.com; pp_main_f1776d24271c5ad55c5f1492e2d01e10=1; pp_idelay_f1776d24271c5ad55c5f1492e2d01e10=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 17:02:37 GMT
content-type: image/x-icon
last-modified: Sat, 27 Apr 2024 07:30:42 GMT
vary: Accept-Encoding
etag: W/"662ca9a2-47e"
expires: Sun, 09 Jun 2024 16:54:41 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-HJ5MMKB9WK&l=dataLayer&cx=c | 142.250.74.168 | | 102 kB |
URL www.googletagmanager.com/gtag/js?id=G-HJ5MMKB9WK&l=dataLayer&cx=c IP142.250.74.168:0
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size102 kB (102153 bytes) Hashe9782b763ae3e4b4c40d00649d813ec9 d24548644352345cfa17c1a3a1ffcc7b74b8c6c7 020d452565badc8430761d23d91f46e5a591ec556b33d42535709da4f0bdcdb5
GET /gtag/js?id=G-HJ5MMKB9WK&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animewatch.onionlive.workers.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 17:02:37 GMT
expires: Fri, 10 May 2024 17:02:37 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 102153
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| s.pemsrv.com/splash.php?idzone=5040978&type=8 | 95.211.229.245 | 200 OK | 478 B |
URL GET HTTP/1.1s.pemsrv.com/splash.php?idzone=5040978&type=8 IP95.211.229.245:443 ASN#60781 LeaseWeb Netherlands B.V.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectpemsrv.com FingerprintBA:AA:AB:1F:22:EF:D5:0A:2D:0C:D0:E8:1C:F5:D4:F5:29:2A:0D:5D ValidityTue, 30 Apr 2024 07:53:35 GMT - Mon, 29 Jul 2024 07:53:34 GMT
File typeHTML document, ASCII text, with very long lines (717) Hash0a0facbef164c9e58f80ef97a1a0827e 11213522b288f0683c8f640b87b1e4e246ad8030 8b9ce633f14b63226137606c6901f59c4b354efbce58f82c4def4f93e5ed9aaf
GET /splash.php?idzone=5040978&type=8 HTTP/1.1
Host: s.pemsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 17:02:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: X-CH-VALUES
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22663e532d9fffc4.649887702034816262%22%3B%7D; expires=Sun, 10 May 2026 17:02:37 GMT; path=; domain=.pemsrv.com; Secure; SameSite=none
Accept-Ch: Sec-Ch-Ua,Sec-Ch-Ua-Mobile,Sec-Ch-Ua-Full-Version,Sec-Ch-Ua-Full-Version-list,Sec-Ch-Ua-Platform,Sec-Ch-Ua-Platform-Version,Sec-Ch-Ua-Bitness,Sec-Ch-Ua-Arch
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
|
| www.googletagmanager.com/gtag/js?id=UA-119774978-8&l=dataLayer&cx=c | 142.250.74.168 | | 71 kB |
URL www.googletagmanager.com/gtag/js?id=UA-119774978-8&l=dataLayer&cx=c IP142.250.74.168:0
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (1822) Hashaa95736a07472024a908d53937871cdc 760b3214a7589aaa5c5ea62afeb1bc156e639de8 02913b3626196be8c47c4a83d24876d261e55e6b6de00fb91d0ee6e7063db736
GET /gtag/js?id=UA-119774978-8&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animewatch.onionlive.workers.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 17:02:37 GMT
expires: Fri, 10 May 2024 17:02:37 GMT
cache-control: private, max-age=900
last-modified: Fri, 10 May 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 70920
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| xmlclick.adokutrtb.com/nrtb/click?bid=cchkyClosoteSorB3m2Oq7zG_4NR4QNHdVCqDqwMyjbkWmfQ13rw6sZLWwteXD3i_0_5 | 23.226.122.79 | 302 Found | 69 B |
URL GET HTTP/2xmlclick.adokutrtb.com/nrtb/click?bid=cchkyClosoteSorB3m2Oq7zG_4NR4QNHdVCqDqwMyjbkWmfQ13rw6sZLWwteXD3i_0_5 IP23.226.122.79:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerUnizeto Technologies S.A. Subject*.adokutrtb.com FingerprintFE:8D:59:6C:AC:C6:8C:40:28:AE:A4:B8:B8:6C:4B:B0:1F:1D:1E:AC ValidityTue, 19 Mar 2024 12:12:32 GMT - Wed, 19 Mar 2025 12:12:31 GMT
File typeHTML document, ASCII text Hashb997833afd33cdef514e75dc433ec3cc 8d8bd7c9689c1a03e2050301bb7aa2d55e294d81 af9f945b7301104de5eb9bd006f0a81b59642be994a80d03c6ae7165007d7385
GET /nrtb/click?bid=cchkyClosoteSorB3m2Oq7zG_4NR4QNHdVCqDqwMyjbkWmfQ13rw6sZLWwteXD3i_0_5 HTTP/1.1
Host: xmlclick.adokutrtb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 17:02:37 GMT
content-type: text/html; charset=utf-8
content-length: 69
location: https://xml-v4.tri.media/click?i=P4PBpz*z7lw_0
X-Firefox-Spdy: h2
|
|
| dog.seetron.net/api/users/59846?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-aqb9ov6imh54.html&sid=8b94d829-237c-4a03-ba32-3d5b603b3f41&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=177684 | 135.181.208.216 | 200 OK | 421 B |
URL GET HTTP/2dog.seetron.net/api/users/59846?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-aqb9ov6imh54.html&sid=8b94d829-237c-4a03-ba32-3d5b603b3f41&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=177684 IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjecta.bdsmz.tube FingerprintAA:4D:03:7A:4E:94:8C:76:58:6E:53:CC:8E:99:24:E6:51:84:BF:05 ValidityFri, 03 May 2024 10:27:08 GMT - Thu, 01 Aug 2024 10:27:07 GMT
File typeASCII text, with very long lines (373) Hash993818d0cc0ded91461df094562f140d 1d4cecdb465953db887054e129e52f88c146e52c 2c983dc6d57be47fd30992ec50fd1688fef524cf7482e3dd989c7c94cdca1b08
GET /api/users/59846?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-aqb9ov6imh54.html&sid=8b94d829-237c-4a03-ba32-3d5b603b3f41&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=177684 HTTP/1.1
Host: dog.seetron.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:37 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: nauid=dlFHilEvYKkDclsvRxlI; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| hoddlegamey.com/itLmTlMrHisAt/67652 | 188.42.247.212 | 200 OK | 61 B |
URL GET HTTP/1.1hoddlegamey.com/itLmTlMrHisAt/67652 IP188.42.247.212:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjecthoddlegamey.com Fingerprint07:BD:B4:24:F4:70:EB:F5:60:F8:9F:61:E8:65:29:7E:9B:54:8C:D2 ValidityMon, 22 Apr 2024 23:02:12 GMT - Sun, 21 Jul 2024 23:02:11 GMT
File typeHTML document, ASCII text, with no line terminators Hash86733bb66fb84b851592d733e51f0cbd 42eaf19a5ca195667a9212b0ea3557eee76954a8 927676bdf7f1bdcd71f06cc0d9fa573791b12c905629d806851624687c4b4a0d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /itLmTlMrHisAt/67652 HTTP/1.1
Host: hoddlegamey.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animewatch.onionlive.workers.dev/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 17:02:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sat, 11-May-2024 17:02:37 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Sat, 11-May-2024 17:02:37 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
|
|
| my.rtmark.net/gid.js?userId=0080582d6b1e4e76fb017d5e97ad840e | 139.45.195.8 | 200 OK | 65 B |
URL GET HTTP/2my.rtmark.net/gid.js?userId=0080582d6b1e4e76fb017d5e97ad840e IP139.45.195.8:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectrtmark.net FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT
Hashc4d09a693be97f908f44e2e4adad0044 a9990bc95e37289faed6b80040821ae822a55925 fd4d07de3349c62435881b2be2a50032a74e579bb8250a5dd915afe8bca78190
GET /gid.js?userId=0080582d6b1e4e76fb017d5e97ad840e HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:38 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://videzz.net
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=0080582d6b1e4e76fb017d5e97ad840e; expires=Sat, 10 May 2025 17:02:38 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/load | 172.67.205.77 | 302 Found | 361 B |
URL POST HTTP/3bid.bidclickmedia.com/load IP172.67.205.77:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text Hash0afbc42662d610b514f5be89bfd0d53a 0e5f0faddf5910a3c68deb940bb23924d244f1ff a850e0db4b9fad13d0cb77a0f6599bfaf2d068dea62db64a43c06dadb12bbc38
POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/Zj8D76R
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 10 May 2024 17:02:35 GMT
content-type: text/html; charset=utf-8
location: https://xml.zeusadx.com/redirect?feed=552612&auth=OEhoVk&pubid=162319
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Kld4wUGpNo2DFVQeQhP%2BhhCCHqbxSI4mZhVP3dXtrheRSJaVmvMfT%2B01WRmmIhwHy4xNibqZ5LLT8DYugjucxuiUKBivXGF6gIdOnioTiXvtREDKi3cb12Qmu2kxWJ51YrLweSbqZMQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7f71bd1cb4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| xml-v4.tri.media/click?i=P4PBpz*z7lw_0 | 174.137.133.17 | 302 Found | 0 B |
URL GET HTTP/1.1xml-v4.tri.media/click?i=P4PBpz*z7lw_0 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGlobalSign nv-sa Subject*.tri.media FingerprintF0:E0:10:3C:1C:04:86:9A:3B:2D:62:02:B3:CE:28:21:EB:2D:CE:7E ValidityTue, 22 Aug 2023 16:04:55 GMT - Sun, 22 Sep 2024 16:04:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?i=P4PBpz*z7lw_0 HTTP/1.1
Host: xml-v4.tri.media
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 10 May 2024 17:02:38 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://votrackmo.com/52b75a1b-47bb-4b14-b811-74b95dbac763?banner=6431045&pubfeed=568216&siteid=663452&cost=0.0001&conversion=FIqcwA7l3E0
|
|
| votrackmo.com/52b75a1b-47bb-4b14-b811-74b95dbac763?banner=6431045&pubfeed=568216&siteid=663452&cost=0.0001&conversion=FIqcwA7l3E0 | 54.230.111.69 | 302 Found | 0 B |
URL GET HTTP/2votrackmo.com/52b75a1b-47bb-4b14-b811-74b95dbac763?banner=6431045&pubfeed=568216&siteid=663452&cost=0.0001&conversion=FIqcwA7l3E0 IP54.230.111.69:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerAmazon Subjectvotrackmo.com Fingerprint65:07:44:01:9D:C4:25:93:29:42:5B:1E:0B:30:53:F3:B0:FD:4E:C5 ValidityWed, 24 Apr 2024 00:00:00 GMT - Fri, 23 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /52b75a1b-47bb-4b14-b811-74b95dbac763?banner=6431045&pubfeed=568216&siteid=663452&cost=0.0001&conversion=FIqcwA7l3E0 HTTP/1.1
Host: votrackmo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-length: 0
location: https://cosmicmos.com/mica?mica=https://clcktrck.com/no/s/red_u_plain.php?t=direct&s=22168&d=na-kd.com&pub=22168&offerid=6e6f5f6e612d6b642e636f6d&ctrl_offerid=6e6f5f6e612d6b642e636f6d&aff=noc&ctrl_aff=noc&ctrl_vol_oid=78be2fe5-9734-4465-8965-60a5e6f70ccc&uid=wd0pb95s53ud3p61jvcs12cq
date: Fri, 10 May 2024 17:02:38 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: 52b75a1b-47bb-4b14-b811-74b95dbac763-v4=5QY_lI6LuBgrk2N61aJWt6tK9wz6PmPh9kMq72BbP6g; Max-Age=86400; Expires=Sat, 11-May-2024 17:02:38 GMT; Domain=votrackmo.com; Path=/; Secure; HttpOnly;SameSite=None
voluum-cid-v4=%7B%22cid%22%3A%22wd0pb95s53ud3p61jvcs12cq%22%2C%22caid%22%3A%2252b75a1b-47bb-4b14-b811-74b95dbac763%22%7D; Max-Age=31536000; Expires=Sat, 10-May-2025 17:02:38 GMT; Domain=votrackmo.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: w5V3qBftY60aTlnjQw85KdklNN_WbgFCO2-f4opeYVg_zRigMmYi7w==
X-Firefox-Spdy: h2
|
|
| unseenreport.com/pxf.gif?uuid=898c365d-92ba-441a-aa49-62711a6099a0&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=fd40b682a05e4aaf489d29601350aa66&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 | 192.243.59.12 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=898c365d-92ba-441a-aa49-62711a6099a0&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=fd40b682a05e4aaf489d29601350aa66&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=898c365d-92ba-441a-aa49-62711a6099a0&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=fd40b682a05e4aaf489d29601350aa66&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 10 May 2024 17:02:38 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3d6b40040cac6e93e2cdf92123bb2a3e
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| unseenreport.com/pxf.gif?uuid=898c365d-92ba-441a-aa49-62711a6099a0&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=f1776d24271c5ad55c5f1492e2d01e10&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 | 192.243.59.12 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=898c365d-92ba-441a-aa49-62711a6099a0&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=f1776d24271c5ad55c5f1492e2d01e10&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=898c365d-92ba-441a-aa49-62711a6099a0&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=f1776d24271c5ad55c5f1492e2d01e10&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 10 May 2024 17:02:38 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9cc95bbbc5af486ba3fd4cb56d628d83
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| tzegilo.com/stattag.js | 172.67.193.52 | 200 OK | 7.9 kB |
IP172.67.193.52:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjecttzegilo.com Fingerprint28:2E:D0:DF:04:78:60:5A:D2:5B:1F:EA:59:80:9C:2F:89:C1:9D:D1 ValiditySat, 30 Mar 2024 15:54:48 GMT - Fri, 28 Jun 2024 15:54:47 GMT
File typeJavaScript source, ASCII text, with very long lines (18486) Hash70ebd404c2e1e7bad13998538b56887c 86e57af8ba3cfc2c004da3311835f6b54ba6d848 d71ea61938136a384e4c53c5a7a3c36e68fcc70a68bae691e270987d5d2eb11f
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:38 GMT
content-type: application/javascript
last-modified: Wed, 07 Feb 2024 12:51:13 GMT
etag: W/"65c37cc1-4ac0"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 2656
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CZm2DUYJpLikz1C1ZEPDsW0Do8W38QN3v9cpROAZXqHvuieBOm5S9yo3ABqq3aJTTsbQHNRi9GOwYEBtWIRsWne7YbNVOYVkpIcW5u15sNnvP3wSeUdf2fgUZLWzcw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b7f827a871bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=bab13f37-de8c-46c4-89b6-8db415f6453d | 139.45.195.254 | 200 OK | 12 B |
URL POST HTTP/1.1fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=bab13f37-de8c-46c4-89b6-8db415f6453d IP139.45.195.254:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerSectigo Limited Subjectfleraprt.com Fingerprint32:DB:C5:24:21:ED:1D:C3:40:C3:46:9F:CF:EE:98:4D:72:29:4C:3C ValidityTue, 09 Jan 2024 00:00:00 GMT - Mon, 13 Jan 2025 23:59:59 GMT
Hashadb4650bfc9d2a73d4dd69583b0ceb14 1ce399d6e936232aaf2192cd7903a279c5015f22 21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=bab13f37-de8c-46c4-89b6-8db415f6453d HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1403
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Fri, 10 May 2024 17:02:38 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://videzz.net
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
|
|
| bid.bidclickmedia.com/load | 172.67.205.77 | 302 Found | 361 B |
URL POST HTTP/3bid.bidclickmedia.com/load IP172.67.205.77:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text Hash4809a9602dd55d531906123e570b6d77 626fe0b9eeeda00a0ce401ee5a4e13f8256facb9 046c0a16886d7e34df54c815c1fee7740a3608671d33fd56c837dca5a1ac9c9f
POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/31pnK5n
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 10 May 2024 17:02:35 GMT
content-type: text/html; charset=utf-8
location: https://xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=81X9WIqdVfe3h2G%2FnXNXC7pNnwo2HxFRtQZskgsaCEozJUPqWQHm%2FKZwQqzgkbRDtUZks24tSYt3OuWOhCcyDj2F5uqoH4jfsGvHBzeHt8nOiWVeU6a2zukZ0wf%2Fz2CyBGCg5oTN1vg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7f70ebd8b4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=UA-119774978-7 | 142.250.74.168 | | 72 kB |
URL www.googletagmanager.com/gtag/js?id=UA-119774978-7 IP142.250.74.168:0
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (1822) Hash53d10653baeeeb67860e64d796b321d2 b7c409b50fa4f6712bc6b1b87785434562914a46 d6a8e817cd0f93ac868db6df49e357e940358f88df6fd974fdd93bcb8fbd6f00
GET /gtag/js?id=UA-119774978-7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animewatch.onionlive.workers.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 17:02:39 GMT
expires: Fri, 10 May 2024 17:02:39 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 71712
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| animewatch.onionlive.workers.dev/ | 172.67.141.108 | 200 OK | 104 kB |
URL GET HTTP/3animewatch.onionlive.workers.dev/ IP172.67.141.108:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectonionlive.workers.dev Fingerprint47:76:5D:C5:12:3C:C2:68:72:9E:1E:79:C9:B5:09:72:24:11:B4:C0 ValidityThu, 02 May 2024 00:33:08 GMT - Wed, 31 Jul 2024 00:33:07 GMT
File typeHTML document, ASCII text, with very long lines (1024) Size104 kB (104149 bytes) Hashc1cf85ad1b6580cae5442d258a41bae7 ad01dec3f302168d9588375fc9b4185dc45c4625 439248132cde8803370dcb8e3bf0fa5737032e4e5dffe7812d911d32735eacee
GET / HTTP/1.1
Host: animewatch.onionlive.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:39 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KuxDGmgCrKiTATLATMgwRzM7GZtX6MlAYmcZwnOZLZSb0E77GgUoKX0mrTVrWBUbWhg29Std1COXlZ88JForgMC%2ButDBhWFfeAWQ6j4Ags9KOhO36qWSMK9rRyL0rmNstSHE8VZyHoBrEC1ybUwmdtgFXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b7f8a683856c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=G-DQF56C4WPV&l=dataLayer&cx=c | 142.250.74.168 | | 94 kB |
URL www.googletagmanager.com/gtag/js?id=G-DQF56C4WPV&l=dataLayer&cx=c IP142.250.74.168:0
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (3034) Hash7745f169c8440895bb47c111094f2232 82f147de2bfd9c559526c12b4651f19707379348 1adbe4a9aaba5f9ddea17e0ee20084e4eb25b9896242599ec9155ab50b2dbaa4
GET /gtag/js?id=G-DQF56C4WPV&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animewatch.onionlive.workers.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 17:02:40 GMT
expires: Fri, 10 May 2024 17:02:40 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93951
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=G-HJ5MMKB9WK&l=dataLayer&cx=c | 142.250.74.168 | | 102 kB |
URL www.googletagmanager.com/gtag/js?id=G-HJ5MMKB9WK&l=dataLayer&cx=c IP142.250.74.168:0
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size102 kB (102155 bytes) Hash5518feb827819998a6d0d1741acb683b 3560b36157b73068e2e1e1231ca528abeaa61371 2eda35467ff0fd94ac830959f57ce2386d9ab41cad532901b004759184af0ef6
GET /gtag/js?id=G-HJ5MMKB9WK&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animewatch.onionlive.workers.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 17:02:40 GMT
expires: Fri, 10 May 2024 17:02:40 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 102155
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| static2-ma-ht.project1content.com/tour/@one/blocks/async/ContainerBlock.877c97af.js | 64.210.135.118 | 200 OK | 232 B |
URL GET HTTP/2static2-ma-ht.project1content.com/tour/@one/blocks/async/ContainerBlock.877c97af.js IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with no line terminators Hashed2f44cc9f2871d8668252e176c16e33 efa4750156409a21bc47ae02827d792d14ca899d 5544d0dd2f72ed204f9d4e9ca610e167ceb31854b27d188e55b1360319962e1b
GET /tour/@one/blocks/async/ContainerBlock.877c97af.js HTTP/1.1
Host: static2-ma-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:40 GMT
content-type: application/javascript
content-length: 232
last-modified: Fri, 16 Feb 2024 21:44:10 GMT
etag: "3a99970fe-e8-61186a4e49e80"
expires: Thu, 20 Jun 2024 23:30:37 GMT
cache-control: max-age=10511277
vary: Accept-Encoding
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
accept-ranges: bytes
x-cdn-diag: ams5-7846-2-2732-h-0-0---;6140-19-2936----0-0-0
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=UA-119774978-8&l=dataLayer&cx=c | 142.250.74.168 | | 71 kB |
URL www.googletagmanager.com/gtag/js?id=UA-119774978-8&l=dataLayer&cx=c IP142.250.74.168:0
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (1822) Hasha06a658e5da2faf5b4dde0a4136f16d5 2f4e478639f5ebc4cda52c64980f4cda9779be7e 9f841a5243ce42933e85661543ff9740e5e8316c6581890a0be33367dac0fa0f
GET /gtag/js?id=UA-119774978-8&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animewatch.onionlive.workers.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 17:02:40 GMT
expires: Fri, 10 May 2024 17:02:40 GMT
cache-control: private, max-age=900
last-modified: Fri, 10 May 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 70923
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| static2-ma-ht.project1content.com/tour/@one/blocks/async/RowBlock.3b6ad7f7.js | 64.210.135.118 | 200 OK | 421 B |
URL GET HTTP/2static2-ma-ht.project1content.com/tour/@one/blocks/async/RowBlock.3b6ad7f7.js IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (421), with no line terminators Hasha94050f26199e41905e348fbc2ad9724 4ad81ca158f6008863628a9dccd0232870a66a05 a97ab9aa6b0d346531f8fab56ba39727ccf80b4101a4b3f09af3eab4d895108d
GET /tour/@one/blocks/async/RowBlock.3b6ad7f7.js HTTP/1.1
Host: static2-ma-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:40 GMT
content-type: application/javascript
content-length: 421
last-modified: Fri, 16 Feb 2024 21:44:10 GMT
etag: "3a953ca06-1a5-61186a4e49e80"
expires: Thu, 20 Jun 2024 23:30:37 GMT
cache-control: max-age=10511277
vary: Accept-Encoding
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
accept-ranges: bytes
x-cdn-diag: ams5-6139-3-6045-h-0-0---;6140-24-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| app.launchdarkly.com/sdk/goals/63bdba6ee6d64c12826b8bff | 151.101.194.217 | 200 OK | 23 B |
URL OPTIONS HTTP/2app.launchdarkly.com/sdk/goals/63bdba6ee6d64c12826b8bff IP151.101.194.217:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerGlobalSign nv-sa Subjectapp.launchdarkly.com Fingerprint0E:80:83:6E:DA:34:B1:44:89:98:74:A9:22:2A:70:56:1D:54:1E:3F ValidityThu, 04 Apr 2024 00:55:36 GMT - Tue, 06 May 2025 00:55:35 GMT
Hashf0d79988b7772c003d04a28bd7417a62 58423a999eec2997bcfffb247e9ecd3dfd0abf44 30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f
OPTIONS /sdk/goals/63bdba6ee6d64c12826b8bff HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-launchdarkly-user-agent,x-launchdarkly-wrapper
Referer: https://tgp1.brazzersnetwork.com/
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Authorization,X-Requested-With,X-LD-Private,X-LD-AccountId,X-LD-EnvId,X-LD-PrjId,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper,LD-API-Version,X-LaunchDarkly-Tags
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-max-age: 3600
allow: GET, OPTIONS, HEAD
content-encoding: gzip
ld-region: us-east-1
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
date: Fri, 10 May 2024 17:02:40 GMT
via: 1.1 varnish
x-served-by: cache-hel1410029-HEL
x-cache: HIT
x-cache-hits: 60
x-timer: S1715360560.345004,VS0,VE0
vary: Accept-Encoding
age: 0
content-length: 23
X-Firefox-Spdy: h2
|
|
| app.launchdarkly.com/sdk/goals/63bdba6ee6d64c12826b8bff | 151.101.194.217 | 200 OK | 26 B |
URL OPTIONS HTTP/2app.launchdarkly.com/sdk/goals/63bdba6ee6d64c12826b8bff IP151.101.194.217:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerGlobalSign nv-sa Subjectapp.launchdarkly.com Fingerprint0E:80:83:6E:DA:34:B1:44:89:98:74:A9:22:2A:70:56:1D:54:1E:3F ValidityThu, 04 Apr 2024 00:55:36 GMT - Tue, 06 May 2025 00:55:35 GMT
Hashd751713988987e9331980363e24189ce 97d170e1550eee4afc0af065b78cda302a97674c 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /sdk/goals/63bdba6ee6d64c12826b8bff HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-LaunchDarkly-User-Agent: JSClient/2.24.2
X-LaunchDarkly-Wrapper: react-client-sdk/2.29.2
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Authorization,X-Requested-With,X-LD-Private,X-LD-AccountId,X-LD-EnvId,X-LD-PrjId,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper,LD-API-Version,X-LaunchDarkly-Tags
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-max-age: 300
cache-control: max-age=0
content-encoding: gzip
content-md5: d751713988987e9331980363e24189ce
etag: "d751713988987e9331980363e24189ce"
ld-region: us-east-1
strict-transport-security: max-age=31536000
accept-ranges: bytes
date: Fri, 10 May 2024 17:02:40 GMT
via: 1.1 varnish
x-served-by: cache-hel1410029-HEL
x-cache: HIT
x-cache-hits: 99
x-timer: S1715360560.360092,VS0,VE0
vary: Accept-Encoding
age: 0
content-length: 26
X-Firefox-Spdy: h2
|
|
| app.launchdarkly.com/sdk/evalx/63bdba6ee6d64c12826b8bff/users/eyJrZXkiOiJ1c2VyLWtleS10b3VyIiwibmFtZSI6IlRvdXIgTGF1bmNoRGFya2x5IiwiZW1haWwiOiJtaW5kZ2Vla0BleGFtcGxlLmNvbSIsImN1c3RvbSI6eyJicmFuZElkIjozLCJpbnN0YW5jZUlkIjoyODE2OTEsImlzRGV2IjpmYWxzZSwiaXNJbnRlcm5hbFVzZXIiOmZhbHNlLCJyb290RW52IjoicHJvZCIsInNpdGVJZCI6MTMwMX19 | 151.101.194.217 | 200 OK | 23 B |
URL GET HTTP/2app.launchdarkly.com/sdk/evalx/63bdba6ee6d64c12826b8bff/users/eyJrZXkiOiJ1c2VyLWtleS10b3VyIiwibmFtZSI6IlRvdXIgTGF1bmNoRGFya2x5IiwiZW1haWwiOiJtaW5kZ2Vla0BleGFtcGxlLmNvbSIsImN1c3RvbSI6eyJicmFuZElkIjozLCJpbnN0YW5jZUlkIjoyODE2OTEsImlzRGV2IjpmYWxzZSwiaXNJbnRlcm5hbFVzZXIiOmZhbHNlLCJyb290RW52IjoicHJvZCIsInNpdGVJZCI6MTMwMX19 IP151.101.194.217:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerGlobalSign nv-sa Subjectapp.launchdarkly.com Fingerprint0E:80:83:6E:DA:34:B1:44:89:98:74:A9:22:2A:70:56:1D:54:1E:3F ValidityThu, 04 Apr 2024 00:55:36 GMT - Tue, 06 May 2025 00:55:35 GMT
Hashf0d79988b7772c003d04a28bd7417a62 58423a999eec2997bcfffb247e9ecd3dfd0abf44 30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f
OPTIONS /sdk/evalx/63bdba6ee6d64c12826b8bff/users/eyJrZXkiOiJ1c2VyLWtleS10b3VyIiwibmFtZSI6IlRvdXIgTGF1bmNoRGFya2x5IiwiZW1haWwiOiJtaW5kZ2Vla0BleGFtcGxlLmNvbSIsImN1c3RvbSI6eyJicmFuZElkIjozLCJpbnN0YW5jZUlkIjoyODE2OTEsImlzRGV2IjpmYWxzZSwiaXNJbnRlcm5hbFVzZXIiOmZhbHNlLCJyb290RW52IjoicHJvZCIsInNpdGVJZCI6MTMwMX19 HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-launchdarkly-user-agent,x-launchdarkly-wrapper
Referer: https://tgp1.brazzersnetwork.com/
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Authorization,X-Requested-With,X-LD-Private,X-LD-AccountId,X-LD-EnvId,X-LD-PrjId,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper,LD-API-Version,X-LaunchDarkly-Tags
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-max-age: 3600
allow: GET, OPTIONS, HEAD
content-encoding: gzip
ld-region: us-east-1
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
date: Fri, 10 May 2024 17:02:40 GMT
via: 1.1 varnish
x-served-by: cache-hel1410029-HEL
x-cache: HIT
x-cache-hits: 62
x-timer: S1715360560.369595,VS0,VE0
vary: Accept-Encoding
age: 0
content-length: 23
X-Firefox-Spdy: h2
|
|
| app.launchdarkly.com/sdk/evalx/63bdba6ee6d64c12826b8bff/users/eyJrZXkiOiJ1c2VyLWtleS10b3VyIiwibmFtZSI6IlRvdXIgTGF1bmNoRGFya2x5IiwiZW1haWwiOiJtaW5kZ2Vla0BleGFtcGxlLmNvbSIsImN1c3RvbSI6eyJicmFuZElkIjozLCJpbnN0YW5jZUlkIjoyODE2OTEsImlzRGV2IjpmYWxzZSwiaXNJbnRlcm5hbFVzZXIiOmZhbHNlLCJyb290RW52IjoicHJvZCIsInNpdGVJZCI6MTMwMX19 | 151.101.194.217 | 200 OK | 180 B |
URL GET HTTP/2app.launchdarkly.com/sdk/evalx/63bdba6ee6d64c12826b8bff/users/eyJrZXkiOiJ1c2VyLWtleS10b3VyIiwibmFtZSI6IlRvdXIgTGF1bmNoRGFya2x5IiwiZW1haWwiOiJtaW5kZ2Vla0BleGFtcGxlLmNvbSIsImN1c3RvbSI6eyJicmFuZElkIjozLCJpbnN0YW5jZUlkIjoyODE2OTEsImlzRGV2IjpmYWxzZSwiaXNJbnRlcm5hbFVzZXIiOmZhbHNlLCJyb290RW52IjoicHJvZCIsInNpdGVJZCI6MTMwMX19 IP151.101.194.217:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerGlobalSign nv-sa Subjectapp.launchdarkly.com Fingerprint0E:80:83:6E:DA:34:B1:44:89:98:74:A9:22:2A:70:56:1D:54:1E:3F ValidityThu, 04 Apr 2024 00:55:36 GMT - Tue, 06 May 2025 00:55:35 GMT
Hashf49df299358be8bb6965fe98c18d3de8 1db004cb4142b82410913fa0aa8ef4700ed3af0e 1d9765e0ef4d9d7b952a82a0ebbecde9e35d6eff68b7134c2b971779f886540b
GET /sdk/evalx/63bdba6ee6d64c12826b8bff/users/eyJrZXkiOiJ1c2VyLWtleS10b3VyIiwibmFtZSI6IlRvdXIgTGF1bmNoRGFya2x5IiwiZW1haWwiOiJtaW5kZ2Vla0BleGFtcGxlLmNvbSIsImN1c3RvbSI6eyJicmFuZElkIjozLCJpbnN0YW5jZUlkIjoyODE2OTEsImlzRGV2IjpmYWxzZSwiaXNJbnRlcm5hbFVzZXIiOmZhbHNlLCJyb290RW52IjoicHJvZCIsInNpdGVJZCI6MTMwMX19 HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-LaunchDarkly-User-Agent: JSClient/2.24.2
X-LaunchDarkly-Wrapper: react-client-sdk/2.29.2
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
cache-control: max-age=0
etag: "3dbb"
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-methods: OPTIONS, GET
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization, X-Requested-With, X-LD-Private, X-LD-AccountId, X-LD-EnvId, X-LD-PrjId, X-LaunchDarkly-Event-Schema, X-LaunchDarkly-User-Agent, X-LaunchDarkly-Wrapper, Ld-Api-Version
content-encoding: gzip
accept-ranges: bytes
date: Fri, 10 May 2024 17:02:40 GMT
via: 1.1 varnish
x-served-by: cache-hel1410020-HEL, cache-hel1410029-HEL
x-cache: HIT
x-cache-hits: 4
x-timer: S1715360560.444602,VS0,VE0
vary: Authorization, Accept-Encoding
age: 0
content-length: 180
X-Firefox-Spdy: h2
|
|
| tgp1.brazzersnetwork.com/_ats/eta/guid?app_id=&eventName=& | 66.254.114.234 | 200 OK | 128 B |
URL GET HTTP/2tgp1.brazzersnetwork.com/_ats/eta/guid?app_id=&eventName=& IP66.254.114.234:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerLet's Encrypt Subjectbrazzersnetwork.com Fingerprint88:AB:08:D2:E9:0E:FD:34:1F:CD:0A:B3:E0:9F:DB:C8:07:2F:D4:AA ValidityWed, 10 Apr 2024 00:01:06 GMT - Tue, 09 Jul 2024 00:01:05 GMT
Hash72b1ca70ba9a8c2e7fb706eaee4e34b4 c67d15ff999c62ebfd2b6881d763a333cdcba0da 0f20e85c777fd9806219e994d1e04c4d2b3e3c2f95ca8974f242123f046f01b6
GET /_ats/eta/guid?app_id=&eventName=& HTTP/1.1
Host: tgp1.brazzersnetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A
Content-Type: application/x-www-form-urlencoded
DNT: 1
Connection: keep-alive
Cookie: ats=eyJhIjoxNDksImNuIjoibWIiLCJuIjoxNCwicyI6OTAsImUiOjkwNjcsInAiOjMzOX0=; atstrackPiece1=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; atstrackPiece2=Il9zc2NyZWVuIjoiMTI4MCB4IDEwMjQiLCJfc2Jyb3dzZXIiOiJGaXJlZm94IiwiX3Nicm93c2VyVmVyc2lvbiI6Ijk2LjAiLCJfYm1vYmlsZSI6ZmFsc2UsIl9zb3MiOiJMaW51eCIsIl9zb3NWZXJzaW9uIjoiLSIsIl9iY29va2llcyI6dHJ1ZSwiX3NmbGFzaFZlcnNpb24iOiJubyBjaGVjayIsIl9zbGFuZ3VhZ2VzIjoiZW4tVVMsZW4iLCJfc3BsdWdpbnMiOiJQREYgVmlld2VyLENocm9tZSBQREYgVmlld2VyLENocm9taXVtIFBERiBWaWV3ZXIsTWljcm9zb2Z0IEVkZ2UgUERGIFZpZXdlcixXZWJLaXQgYnVpbHQtaW4gUERGIn19
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:40 GMT
content-type: application/json
content-length: 128
set-cookie: eta_guid=f6065227-e96a-4fe1-93c2-84bc6a28e3a5_1715360560;Path=/;Max-Age=315360000;Expires=Wed, 12 Jul 2034 00:00:01 UTC;SameSite=None;HttpOnly;
sessionid=1e6e1bf4-5dec-41d4-a687-13b5140acc93; Path=/; SameSite=None;HttpOnly;
__s=663E5330-42FE72EA01BB1B67A8-2C6811;
access-control-allow-methods: GET, POST
access-control-allow-credentials: true
cache-control: no-cache, no-transform
content-disposition: inline
x-content-type-options: nosniff
x-xss-protection: 0
pragma: no-cache
timing-allow-origin: *
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| static2-ma-ht.project1content.com/tour/@one/blocks/async/ColumnBlock.8745db90.js | 64.210.135.118 | 200 OK | 435 B |
URL GET HTTP/2static2-ma-ht.project1content.com/tour/@one/blocks/async/ColumnBlock.8745db90.js IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (435), with no line terminators Hashbba82fdfdc2684ce6c44701d57090667 8625624d8247f8c9a94ab6ff74e977e54ee1d083 9116e30438d4725883a76b2efb55417c33529009297515869f1b92dd89d7f602
GET /tour/@one/blocks/async/ColumnBlock.8745db90.js HTTP/1.1
Host: static2-ma-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:40 GMT
content-type: application/javascript
content-length: 435
last-modified: Tue, 12 Mar 2024 14:28:25 GMT
etag: "3aaacc525-1b3-61377788ff440"
expires: Sun, 14 Jul 2024 07:27:02 GMT
cache-control: max-age=10658011
vary: Accept-Encoding
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
accept-ranges: bytes
x-cdn-diag: ams5-6249-3-22257-h-0-0---;6140-23-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| hoddlegamey.com/itLmTlMrHisAt/67652 | 188.42.247.212 | 200 OK | 61 B |
URL GET HTTP/1.1hoddlegamey.com/itLmTlMrHisAt/67652 IP188.42.247.212:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjecthoddlegamey.com Fingerprint07:BD:B4:24:F4:70:EB:F5:60:F8:9F:61:E8:65:29:7E:9B:54:8C:D2 ValidityMon, 22 Apr 2024 23:02:12 GMT - Sun, 21 Jul 2024 23:02:11 GMT
File typeHTML document, ASCII text, with no line terminators Hash86733bb66fb84b851592d733e51f0cbd 42eaf19a5ca195667a9212b0ea3557eee76954a8 927676bdf7f1bdcd71f06cc0d9fa573791b12c905629d806851624687c4b4a0d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /itLmTlMrHisAt/67652 HTTP/1.1
Host: hoddlegamey.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://animewatch.onionlive.workers.dev/
DNT: 1
Connection: keep-alive
Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 17:02:40 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
|
|
| static2-ma-ht.project1content.com/tour/assets/probiller.5f27a427.png | 64.210.135.118 | 200 OK | 8.5 kB |
URL GET HTTP/2static2-ma-ht.project1content.com/tour/assets/probiller.5f27a427.png IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typePNG image data, 170 x 43, 8-bit/color RGBA, non-interlaced Hash5f27a427e3542a7170d713e12763ed5e c57ffdec39259bec85aa633529df86c8e25638ae ce087c55c6cfa777c2070304a44b3a756c57a31f124a9befcfe69af6bd103483
GET /tour/assets/probiller.5f27a427.png HTTP/1.1
Host: static2-ma-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:40 GMT
content-type: image/png
content-length: 8497
last-modified: Tue, 23 Jan 2024 22:03:01 GMT
etag: "3a75bac57-2131-60fa41c1d4f40"
expires: Fri, 31 May 2024 23:00:31 GMT
cache-control: max-age=10641991
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
accept-ranges: bytes
x-cdn-diag: ams5-7846-3-2789-h-0-0---;6140-25-2936----0-0-0
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2 | 216.58.207.227 | 200 OK | 21 kB |
URL GET HTTP/2fonts.gstatic.com/s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2 IP216.58.207.227:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 21224, version 1.0 Hash13bdfb843f942ccd9f485eb6c0bc1934 2bad44362ff7569f24f2a3df2521b27a97ec1297 7a291479495fbb281655d5e870c6d118dc6b7ed18e8c235aef5974c1e9de4e6c
GET /s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21224
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 09:07:29 GMT
expires: Sat, 10 May 2025 09:07:29 GMT
cache-control: public, max-age=31536000
age: 28511
last-modified: Tue, 19 Apr 2022 18:04:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| images-assets-ht.project1content.com/5e9845115bf501.55618659.jpg | 64.210.135.118 | 200 OK | 2.1 kB |
URL GET HTTP/2images-assets-ht.project1content.com/5e9845115bf501.55618659.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 72x36, components 3 Hash6e25c31d24acd9a948a91b5a1d8abbc4 8284a9b3b4287780e5f3c011e0b7f6ca7b54dd34 38c3608f1c53b13cd5567fecc6957d3568be15148abe43819e32bad5aa5d18f5
GET /5e9845115bf501.55618659.jpg HTTP/1.1
Host: images-assets-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:40 GMT
content-type: image/jpeg
content-length: 2065
last-modified: Thu, 16 Apr 2020 11:44:17 GMT
etag: "372006d6f-811-5a366f3dea640"
expires: Fri, 26 Jan 2024 08:58:32 GMT
cache-control: max-age=10462384
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6139-3-6045-h-0-0---;6140-20-2936----0-0-0
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2 | 216.58.207.227 | 200 OK | 22 kB |
URL GET HTTP/2fonts.gstatic.com/s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2 IP216.58.207.227:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22376, version 1.0 Hashe6af16165f9bfda6aafd0088b8c01daa c9c0ee8309619643e65ba1b22bfffcd1a7ca1e51 e803cd8c5031ac6b0d099a2d96ba1c3ee44782649a7f7c6f0d09b6410d93e216
GET /s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22376
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 01:55:23 GMT
expires: Sat, 10 May 2025 01:55:23 GMT
cache-control: public, max-age=31536000
age: 54437
last-modified: Tue, 19 Apr 2022 18:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/load | 172.67.205.77 | 302 Found | 361 B |
URL POST HTTP/3bid.bidclickmedia.com/load IP172.67.205.77:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text Hash4809a9602dd55d531906123e570b6d77 626fe0b9eeeda00a0ce401ee5a4e13f8256facb9 046c0a16886d7e34df54c815c1fee7740a3608671d33fd56c837dca5a1ac9c9f
POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/31pnK5n
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 10 May 2024 17:02:35 GMT
content-type: text/html; charset=utf-8
location: https://xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eBOM%2BOP5Ic52GhLJICFrkHB3lHEgaT9t5%2FwNWvBBZWYZfb8xOppj%2B%2FSNhIAcFhrw8NBXHdYecTx2QXV%2FHmc5jDPMc%2BAiX8vuj2My1blaMROp6cRiJYiV8Q6Q9DmjqfgiM81if3YsdIQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7f71acfdb4ff-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tgp1.brazzersnetwork.com/_ats/eta/events?app_id=10303&eventName=UNIQUE_TRACK | 66.254.114.234 | 200 OK | 16 kB |
URL POST HTTP/2tgp1.brazzersnetwork.com/_ats/eta/events?app_id=10303&eventName=UNIQUE_TRACK IP66.254.114.234:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerLet's Encrypt Subjectbrazzersnetwork.com Fingerprint88:AB:08:D2:E9:0E:FD:34:1F:CD:0A:B3:E0:9F:DB:C8:07:2F:D4:AA ValidityWed, 10 Apr 2024 00:01:06 GMT - Tue, 09 Jul 2024 00:01:05 GMT
Hasha6c11f01dcd71f56d6912f8f5cb5fb38 26ba758c7d612fae6edaf0fa6d8ccac32555d91d dd7c649ac877258589ff296dc7bb5a25678547d54bfbf3fb9253f9b173e96c5b
POST /_ats/eta/events?app_id=10303&eventName=UNIQUE_TRACK HTTP/1.1
Host: tgp1.brazzersnetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A
Content-Type: application/x-www-form-urlencoded
Content-Length: 1496
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Cookie: ats=eyJhIjoxNDksImNuIjoibWIiLCJuIjoxNCwicyI6OTAsImUiOjkwNjcsInAiOjMzOX0=; atsd=dc49761f-47a7-4ea1-8927-235f50935663; atstrackPiece1=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; atstrackPiece2=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; atsm=dc49761f-47a7-4ea1-8927-235f50935663; atss=dc49761f-47a7-4ea1-8927-235f50935663
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:40 GMT
content-type: application/json
set-cookie: eta_guid=3b3f3b9a-27e7-4916-a5aa-6810bd4849f7_1715360560;Path=/;Max-Age=315360000;Expires=Wed, 12 Jul 2034 00:00:01 UTC;SameSite=None;HttpOnly;
sessionid=c09b5418-6b1d-461e-9225-3167e4393d69; Path=/; SameSite=None;HttpOnly;
__s=663E5330-42FE72EA01BB1B67A8-2C6814;
access-control-allow-origin: https://tgp1.brazzersnetwork.com
access-control-allow-methods: GET, POST
access-control-allow-credentials: true
cache-control: no-cache, no-transform
content-disposition: inline
x-content-type-options: nosniff
x-xss-protection: 0
pragma: no-cache
timing-allow-origin: *
x-eta-guid: 3b3f3b9a-27e7-4916-a5aa-6810bd4849f7
x-eta-sessionid: c09b5418-6b1d-461e-9225-3167e4393d69
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| tgp1.brazzersnetwork.com/_ats/eta/events?app_id=10303&eventName=TRACK | 66.254.114.234 | 200 OK | 12 kB |
URL POST HTTP/2tgp1.brazzersnetwork.com/_ats/eta/events?app_id=10303&eventName=TRACK IP66.254.114.234:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerLet's Encrypt Subjectbrazzersnetwork.com Fingerprint88:AB:08:D2:E9:0E:FD:34:1F:CD:0A:B3:E0:9F:DB:C8:07:2F:D4:AA ValidityWed, 10 Apr 2024 00:01:06 GMT - Tue, 09 Jul 2024 00:01:05 GMT
Hash9143120e02c994ead22d6b6bb0fc395c 3e6c3b50c32ec42890ae555801f36c7bb9635406 18a476eae48f98d46b0f4c1712d5794b305e93a718a13cf8c6fe9c7a6153729e
POST /_ats/eta/events?app_id=10303&eventName=TRACK HTTP/1.1
Host: tgp1.brazzersnetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A
Content-Type: application/x-www-form-urlencoded
Content-Length: 1489
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Cookie: ats=eyJhIjoxNDksImNuIjoibWIiLCJuIjoxNCwicyI6OTAsImUiOjkwNjcsInAiOjMzOX0=; atsd=dc49761f-47a7-4ea1-8927-235f50935663; atstrackPiece1=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; atstrackPiece2=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; atsm=dc49761f-47a7-4ea1-8927-235f50935663; atss=dc49761f-47a7-4ea1-8927-235f50935663
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:40 GMT
content-type: application/json
set-cookie: eta_guid=339688c0-abfe-4f0a-91b8-8d456658626d_1715360560;Path=/;Max-Age=315360000;Expires=Wed, 12 Jul 2034 00:00:01 UTC;SameSite=None;HttpOnly;
sessionid=2405cb04-c1b7-4f1e-8392-1e2e12a1eb04; Path=/; SameSite=None;HttpOnly;
__s=663E5330-42FE72EA01BB1B67A8-2C6816;
access-control-allow-origin: https://tgp1.brazzersnetwork.com
access-control-allow-methods: GET, POST
access-control-allow-credentials: true
cache-control: no-cache, no-transform
content-disposition: inline
x-content-type-options: nosniff
x-xss-protection: 0
pragma: no-cache
timing-allow-origin: *
x-eta-guid: 339688c0-abfe-4f0a-91b8-8d456658626d
x-eta-sessionid: 2405cb04-c1b7-4f1e-8392-1e2e12a1eb04
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/header.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/header.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/header.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:40 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7619-1-13264-h-0-0---;6140-19-2936----0-0-0
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/navbar.png | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/navbar.png IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/navbar.png HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:40 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7619-2-13329-h-0-0---;6140-19-2936----0-0-0
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R1_01.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R1_01.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R1_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:40 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6139-2-6004-h-0-0---;6140-19-2936----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R1_03.gif | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R1_03.gif IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R1_03.gif HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:40 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6140-1-2439-h-0-0---;6140-20-2936----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static2-ma-ht.project1content.com/tour/main.8ec9d40a.js | 64.210.135.118 | 200 OK | 1.9 MB |
URL GET HTTP/2static2-ma-ht.project1content.com/tour/main.8ec9d40a.js IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Size1.9 MB (1896045 bytes) Hash62ec01235c929b32315cf78cc05912a3 6fa7effaba248d4404d5237021040b4420bbbe0d 428878ca77f0da461998c67dc80decd4c065f75e643601cba0a4c751bba81c04
GET /tour/main.8ec9d40a.js HTTP/1.1
Host: static2-ma-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:39 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 08 May 2024 19:32:37 GMT
etag: W/"3adda82df-71eab-617f65d6bbf40"
expires: Sun, 08 Sep 2024 12:32:30 GMT
cache-control: max-age=10600950
content-encoding: gzip
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
x-cdn-diag: ams5-6249-3-22267-h-0-0---;6140-23-2936----0-0-2
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R2_01.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R2_01.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R2_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6141-1-18625-h-0-0---;6140-18-2936----0-0-0
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/header.jpg | 64.210.135.118 | 200 OK | 20 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/header.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x120, components 3 Hash6c16c40b4043103bc1630403a95b3f82 625abc15c577d32c385e97897fd301a592863ff4 915efc3672c9d42673cd379263822375ff4b27bc2c6fec0411ad6ac7056e8640
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/header.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:41 GMT
content-type: image/jpeg
content-length: 20467
last-modified: Mon, 17 May 2021 15:18:34 GMT
etag: "372544003-4ff3-5c2881b5d6680"
expires: Sun, 24 Mar 2024 11:38:51 GMT
cache-control: max-age=10417681
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6140-3-2572-h-0-0---;6140-22-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R2_02.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R2_02.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R2_02.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7619-3-13368-h-0-0---;6140-22-2936----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/navbar.jpg | 64.210.135.118 | 200 OK | 18 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/navbar.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, baseline, precision 8, 1920x60, components 3 Hash00d0fbf802a635e66b5583a06aa4591d 9d9626eea9d83c077b9041225abf629429ee082b 1897b71f137b582ae4d1b387056fd3327d5f2901202302139617336b18c14c86
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/navbar.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:41 GMT
content-type: image/jpeg
content-length: 17505
last-modified: Mon, 17 May 2021 15:18:35 GMT
etag: "372544007-4461-5c2881b6ca8c0"
expires: Tue, 26 Mar 2024 09:30:30 GMT
cache-control: max-age=10582779
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6139-3-6044-h-0-0---;6140-19-2936----0-0-0
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_01.jpg | 64.210.135.118 | 200 OK | 180 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_01.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x430, components 3 Size180 kB (179481 bytes) Hashab996ce13f3af31146afd0b0842cff59 4391f0438425854d5bd3cc99099707b834988722 64f97309beb5cc9f3a37989731a356b74b3326ab76e99a0e94a8c67834b317be
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:41 GMT
content-type: image/jpeg
content-length: 179481
last-modified: Thu, 16 Nov 2023 04:41:03 GMT
etag: "372544014-2bd19-60a3da08ad5c0"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7619-2-13329-h-0-0---;6140-18-2936----0-0-0
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R2_03.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R2_03.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R2_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6141-2-18686-h-0-0---;6140-18-2936----0-0-0
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R2_04.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R2_04.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R2_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7846-2-2733-h-0-0---;6140-23-2936----0-0-0
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R3_01.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R3_01.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R3_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6139-1-5939-h-0-0---;6140-23-2936----0-0-0
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R3_02.gif | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R3_02.gif IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R3_02.gif HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7619-3-13369-h-0-0---;6140-23-2936----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_03.gif | 64.210.135.118 | 200 OK | 22 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_03.gif IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeGIF image data, version 89a, 430 x 430 Hashd1cb4a33278891010a9b5ca11bb4d52f c2074a00a054f602eb1d300c40f2c44e77f87eae 8b55330deb61941b4a7bca977b596613649ba46da272732df3750596d7631cf1
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_03.gif HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:41 GMT
content-type: image/gif
content-length: 22470
last-modified: Fri, 05 Apr 2024 14:37:28 GMT
etag: "372544011-57c6-6155a651e7a00"
expires: Sun, 04 Aug 2024 15:14:50 GMT
cache-control: max-age=10456589
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7846-1-2672-h-0-0---;6140-23-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R4_01.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R4_01.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R4_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7619-3-13370-h-0-0---;6140-28-2936----0-0-2
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R3_04.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R3_04.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R3_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7619-2-13327-h-0-0---;6140-28-2936----0-0-2
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R4_02.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R4_02.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R4_02.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6140-2-2516-h-0-0---;6140-28-2936----0-0-2
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R4_03.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R4_03.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R4_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6249-2-22215-h-0-0---;6140-28-2936----0-0-2
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R4_04.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R4_04.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R4_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7619-1-13266-h-0-0---;6140-28-2936----0-0-2
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R5_01.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R5_01.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R5_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6141-1-18623-h-0-0---;6140-28-2936----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R5_03.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R5_03.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R5_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6249-1-22154-h-0-0---;6140-24-2936----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R5_04.gif | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R5_04.gif IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R5_04.gif HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7619-3-13368-h-0-0---;6140-24-2936----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R6_01.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R6_01.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R6_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7619-1-13265-h-0-0---;6140-24-2936----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| cosmicmos.com/mica?mica=https://clcktrck.com/no/s/red_u_plain.php?t=direct&s=22168&d=na-kd.com&pub=22168&offerid=6e6f5f6e612d6b642e636f6d&ctrl_offerid=6e6f5f6e612d6b642e636f6d&aff=noc&ctrl_aff=noc&ctrl_vol_oid=78be2fe5-9734-4465-8965-60a5e6f70ccc&uid=wd0pb95s53ud3p61jvcs12cq | 172.67.145.231 | 301 Moved Permanently | 4.2 kB |
URL GET HTTP/2cosmicmos.com/mica?mica=https://clcktrck.com/no/s/red_u_plain.php?t=direct&s=22168&d=na-kd.com&pub=22168&offerid=6e6f5f6e612d6b642e636f6d&ctrl_offerid=6e6f5f6e612d6b642e636f6d&aff=noc&ctrl_aff=noc&ctrl_vol_oid=78be2fe5-9734-4465-8965-60a5e6f70ccc&uid=wd0pb95s53ud3p61jvcs12cq IP172.67.145.231:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectcosmicmos.com Fingerprint19:17:93:2C:4D:05:C8:FF:F4:89:A7:7E:71:0E:43:2C:64:C5:13:D4 ValidityThu, 25 Apr 2024 08:03:11 GMT - Wed, 24 Jul 2024 08:03:10 GMT
Hash6ef3482dc905e18bb327c76fb89463a4 6ef5b9d4497b849b62534544336d86433dcd1a2c 660ba375e35aed105aeca4ec82555a8546c7d67f263b12dc7221a4efa1fe3d98
GET /mica?mica=https://clcktrck.com/no/s/red_u_plain.php?t=direct&s=22168&d=na-kd.com&pub=22168&offerid=6e6f5f6e612d6b642e636f6d&ctrl_offerid=6e6f5f6e612d6b642e636f6d&aff=noc&ctrl_aff=noc&ctrl_vol_oid=78be2fe5-9734-4465-8965-60a5e6f70ccc&uid=wd0pb95s53ud3p61jvcs12cq HTTP/1.1
Host: cosmicmos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Fri, 10 May 2024 17:02:38 GMT
content-type: text/html; charset=iso-8859-1
location: http://cosmicmos.com/mica/?mica=https://clcktrck.com/no/s/red_u_plain.php?t=direct&s=22168&d=na-kd.com&pub=22168&offerid=6e6f5f6e612d6b642e636f6d&ctrl_offerid=6e6f5f6e612d6b642e636f6d&aff=noc&ctrl_aff=noc&ctrl_vol_oid=78be2fe5-9734-4465-8965-60a5e6f70ccc&uid=wd0pb95s53ud3p61jvcs12cq
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=weQUTOdPLVIiTlHIghgFBLSFLK2X%2BeQDL10LTr8jHhS%2BjsjSJtB%2Ffz878jvi9IeUqJRr3bTzPN8tZrwMsT4tORQKSoTx0Xnt8mYNw%2FVyFuvnjDX4rt%2BFG76VcH6dHJnS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7f830f061c02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R6_03.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R6_03.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R6_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6139-1-5938-h-0-0---;6140-24-2936----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R6_04.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R6_04.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R6_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7846-2-2733-h-0-0---;6140-23-2936----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static2-ma-ht.project1content.com/tour/vendors~main.43da72ec.js | 64.210.135.118 | 200 OK | 524 kB |
URL GET HTTP/2static2-ma-ht.project1content.com/tour/vendors~main.43da72ec.js IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typegzip compressed data, max speed, from Unix Size524 kB (524272 bytes) Hashe5b24d136bdbe304305f864ee2a99d91 8baa4150503113378436280d2ec3af09af4bc553 33176e35937bcfe138b4b091ab877585611c4524e26319392cac609af7c3d26f
GET /tour/vendors~main.43da72ec.js HTTP/1.1
Host: static2-ma-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:39 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 07 May 2024 18:53:32 GMT
etag: W/"3add27cdc-1491c2-617e1b3ce8300"
expires: Mon, 09 Sep 2024 09:56:08 GMT
cache-control: max-age=10765573
content-encoding: gzip
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
x-cdn-diag: ams5-7619-2-13326-h-0-0---;6140-23-2936----0-0-0
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R7_02.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R7_02.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R7_02.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6141-2-18686-h-0-0---;6140-19-2936----0-0-0
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R7_03.jpg | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R7_03.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R7_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6139-1-5939-h-0-0---;6140-19-2936----0-0-0
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R1_04.mp4 | 64.210.135.118 | 206 Partial Content | 1.8 MB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R1_04.mp4 IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeISO Media, MP4 v2 [ISO 14496-14] Size1.8 MB (1802453 bytes) Hashd6953d31136d9e48b67343623c938f21 62b238efcedc087f2c839ab38069199cad22f6f3 0aaa2b8791d97bed9ba3d8c59d47f013ce033fc19bad60a3a10eb3e306001a28
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R1_04.mp4 HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Fri, 10 May 2024 17:02:41 GMT
content-type: video/mp4
content-length: 2162026
last-modified: Fri, 05 May 2023 17:32:03 GMT
etag: "37bbe719b-20fd6a-5faf5aacc4ac0"
expires: Mon, 29 Jan 2024 09:41:52 GMT
cache-control: max-age=10768735
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
content-range: bytes 0-2162025/2162026
x-cdn-diag: ams5-7619-3-13370-h-0-0---;6140-18-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/cta.png | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/cta.png IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/cta.png HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7619-2-13327-h-0-0---;6140-20-2936----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_04.mp4 | 64.210.135.118 | 206 Partial Content | 960 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_04.mp4 IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeISO Media, MP4 v2 [ISO 14496-14] Size960 kB (959567 bytes) Hasha9d44769af464fda47084dd169fb0b7c 928a29127de05ff300ebfe3f5a0994f6a2530b0b 3924f2fc632cb0bd500cdb2e44a39d92a7a73606ca4047b397564fb67becbc63
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_04.mp4 HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Fri, 10 May 2024 17:02:41 GMT
content-type: video/mp4
content-length: 959567
last-modified: Thu, 23 Nov 2023 15:21:48 GMT
etag: "372544008-ea44f-60ad364ee9b00"
expires: Tue, 23 Jul 2024 20:06:17 GMT
cache-control: max-age=10621309
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
content-range: bytes 0-959566/959567
x-cdn-diag: ams5-7846-3-2787-h-0-0---;6140-24-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/footer-logo.png | 64.210.135.118 | 404 Not Found | 213 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/footer-logo.png IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeHTML document, ASCII text Hash6fecd14f70325f2d628b78d654504561 19e94676a4b6d082182531cad97eed51f741bcb0 4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/footer-logo.png HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6139-2-6005-h-0-0---;6140-25-2936----0-0-0
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_01.jpg | 64.210.135.118 | 200 OK | 313 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_01.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x860, components 3 Size313 kB (313006 bytes) Hash1e32c301641cea6322f2f54133ed2c86 3ed0508c91b665500abb8d884d1460b607c9c6dd 46718d7309f7365bdad00e7881347b457e43d8f085c5cd4f2a51e755dec569c2
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:41 GMT
content-type: image/jpeg
content-length: 313006
last-modified: Thu, 16 Nov 2023 04:41:03 GMT
etag: "372544005-4c6ae-60a3da08ad5c0"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7846-3-2787-h-0-0---;6140-25-2936----0-0-0
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_02.jpg | 64.210.135.118 | 200 OK | 415 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_02.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x860, components 3 Size415 kB (414696 bytes) Hashdfe6826b28b53dc0e3208440c1a7bfef d05bf5c6ebbb9f3db5c99468ce7bba92bb308068 2184f23f705ebe17c81d540f84fb15cc40ad2bc9978b7a81bc4f22dae88dfd4f
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_02.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:41 GMT
content-type: image/jpeg
content-length: 414696
last-modified: Thu, 16 Nov 2023 04:41:04 GMT
etag: "372544004-653e8-60a3da09a1800"
expires: Tue, 27 Aug 2024 05:19:28 GMT
cache-control: max-age=10679589
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6141-1-18642-h-0-0---;6140-25-2936----0-0-0
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_02.mp4 | 64.210.135.118 | 206 Partial Content | 1.2 MB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_02.mp4 IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeISO Media, MP4 v2 [ISO 14496-14] Size1.2 MB (1172034 bytes) Hash530e48bdfb1268cb0f0718aec6ed3c0a c2ff2417208eb72ac20705cdb686f953179ea9e8 75fbbd069f160f6a198df5ed3b452b9c7aa89b6967303cb48970dad6aea49c95
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_02.mp4 HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Fri, 10 May 2024 17:02:41 GMT
content-type: video/mp4
content-length: 1172034
last-modified: Thu, 23 Nov 2023 15:21:48 GMT
etag: "37254400e-11e242-60ad364ee9b00"
expires: Tue, 26 Mar 2024 09:30:30 GMT
cache-control: max-age=10582779
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
content-range: bytes 0-1172033/1172034
x-cdn-diag: ams5-7846-2-2733-h-0-0---;6140-24-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_04.jpg | 64.210.135.118 | 200 OK | 123 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_04.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=860, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=430], progressive, precision 8, 430x860, components 3 Size123 kB (123394 bytes) Hash547a80d5e5659356fc62e3e65c0a457b 5b560836c9416a470d9a72bbd6dc52f37a647bf5 b7dda80acc242a57ace51329208bd154eca6b229ec05811857b205b9b7991da6
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:42 GMT
content-type: image/jpeg
content-length: 123394
last-modified: Fri, 21 Apr 2023 19:30:28 GMT
etag: "372543fe4-1e202-5f9ddb082bd00"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6139-1-5937-h-0-0---;6140-30-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_02.gif | 64.210.135.118 | 200 OK | 22 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_02.gif IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeGIF image data, version 89a, 430 x 430 Hashd1cb4a33278891010a9b5ca11bb4d52f c2074a00a054f602eb1d300c40f2c44e77f87eae 8b55330deb61941b4a7bca977b596613649ba46da272732df3750596d7631cf1
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_02.gif HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:42 GMT
content-type: image/gif
content-length: 22470
last-modified: Fri, 05 Apr 2024 14:37:28 GMT
etag: "37254400b-57c6-6155a651e7a00"
expires: Sun, 04 Aug 2024 15:14:50 GMT
cache-control: max-age=10456589
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7846-2-2733-h-0-0---;6140-30-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_02.jpg | 64.210.135.118 | 200 OK | 42 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_02.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 430x860, Scaling: [none]x[none], YUV color, decoders should clamp Hash3677af641794d26d28c7220465405d6e 314ab8bedf8b1156a3c6c60111421c356046791c d84f6db47c465e638bbcc56289af97eb3b5e11061f35be7c1ec65180677abefb
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_02.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:42 GMT
content-type: image/jpeg
content-length: 41556
last-modified: Fri, 21 Apr 2023 19:30:32 GMT
etag: "372544010-a254-5f9ddb0bfc600"
expires: Sat, 24 Aug 2024 02:28:49 GMT
cache-control: max-age=10410240
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6249-1-22152-h-0-0---;6140-30-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_01.jpg | 64.210.135.118 | 200 OK | 145 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_01.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x430, components 3 Size145 kB (145190 bytes) Hash3e6d2c66532e25d77f9c896f3f6af568 a8c6529ded410ec48c366c9c51659646b83e028e dc8f3b7283f6fe88934917fd9f17a10220786237fdde918693f14d9f8551ef28
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:42 GMT
content-type: image/jpeg
content-length: 145190
last-modified: Thu, 16 Nov 2023 04:40:56 GMT
etag: "37254400a-23726-60a3da0200600"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7846-1-2672-h-0-0---;6140-30-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_03.jpg | 64.210.135.118 | 200 OK | 352 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_03.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x860, components 3 Size352 kB (351717 bytes) Hashca6e546dd596cae0fe66b6b778391e3b faff8021254a4310114072e86ef131186d72590f 5f7ee56b4077fa1ea6ee829cbe7fa1695374bdadb29b0c8fa0e296eb69c445ae
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:42 GMT
content-type: image/jpeg
content-length: 351717
last-modified: Thu, 16 Nov 2023 04:41:04 GMT
etag: "372544012-55de5-60a3da09a1800"
expires: Tue, 27 Aug 2024 05:25:29 GMT
cache-control: max-age=10680049
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6249-3-22267-h-0-0---;6140-30-2936----0-0-2
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_04.jpg | 64.210.135.118 | 200 OK | 172 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_04.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x430, components 3 Size172 kB (172413 bytes) Hashfbed5e6f82a2a0fffa75568738189ecd 8e56833943a0d0a2091cceb746647bdcf14f3636 f7d57169eb7555af36f7e7e263871b78db43783b8a8fc35531904e6fd73617f2
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:42 GMT
content-type: image/jpeg
content-length: 172413
last-modified: Thu, 16 Nov 2023 04:40:57 GMT
etag: "372543fec-2a17d-60a3da02f4840"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6139-3-6055-h-0-0---;6140-30-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_01.jpg | 64.210.135.118 | 200 OK | 373 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_01.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x860, components 3 Size373 kB (373109 bytes) Hash7af19804cd5bc79c7f75ad4389e21e05 340d20d546a6dd03eb39ef9a5edaaac7c253473a 4c8fc85b04c4b602ea19a3f4fb3e5b2892dc392ef3ab6202881e99a0cbf88124
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:42 GMT
content-type: image/jpeg
content-length: 373109
last-modified: Thu, 16 Nov 2023 04:40:57 GMT
etag: "372543fe9-5b175-60a3da02f4840"
expires: Tue, 30 Jul 2024 23:13:47 GMT
cache-control: max-age=10462360
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6249-2-22234-h-0-0---;6140-30-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_04.jpg | 64.210.135.118 | 200 OK | 348 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_04.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x860, components 3 Size348 kB (347572 bytes) Hash9450b6bb0f379e8baf9e380d99fc651a 3d65af2551c9ec8befc0943c1b862b6bd7387305 61bec37bbda973f37f9ecf5646fb1d70ccff1ba39173987fce65dc7953ec6ade
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:42 GMT
content-type: image/jpeg
content-length: 347572
last-modified: Thu, 16 Nov 2023 04:40:58 GMT
etag: "372543fe5-54db4-60a3da03e8a80"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7619-3-13369-h-0-0---;6140-30-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_03.jpg | 64.210.135.118 | 200 OK | 354 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_03.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x860, components 3 Size354 kB (353535 bytes) Hash6ac205baf17d912571649964c6e33f29 86b5141039979f6ff8a1a5385245983160290cb2 776de6099c08e361fafad4e28a83d6225f376ce285f76510e991b125037e95b8
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:42 GMT
content-type: image/jpeg
content-length: 353535
last-modified: Thu, 16 Nov 2023 04:40:57 GMT
etag: "372544013-564ff-60a3da02f4840"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7846-3-2786-h-0-0---;6140-30-2936----0-0-0
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_03.mp4 | 64.210.135.118 | 206 Partial Content | 857 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_03.mp4 IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeISO Media, MP4 v2 [ISO 14496-14] Size857 kB (856740 bytes) Hashb1abf3f2bed89edc2c115a258b0a8bd8 2c8747aa049628e5fb39f5b2f36472267c7a5f4f 234f8c95d9a99b391597d3bd6e2a3ab5282eac6996645d5f634d6ada0fbe8307
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_03.mp4 HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Fri, 10 May 2024 17:02:42 GMT
content-type: video/mp4
content-length: 856740
last-modified: Thu, 23 Nov 2023 15:21:48 GMT
etag: "372543ff9-d12a4-60ad364ee9b00"
expires: Mon, 26 Aug 2024 19:36:32 GMT
cache-control: max-age=10644609
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
content-range: bytes 0-856739/856740
x-cdn-diag: ams5-6249-3-22258-h-0-0---;6140-30-2936----0-0-2
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_04.gif | 64.210.135.118 | 200 OK | 22 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_04.gif IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeGIF image data, version 89a, 430 x 430 Hashd1cb4a33278891010a9b5ca11bb4d52f c2074a00a054f602eb1d300c40f2c44e77f87eae 8b55330deb61941b4a7bca977b596613649ba46da272732df3750596d7631cf1
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_04.gif HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:42 GMT
content-type: image/gif
content-length: 22470
last-modified: Fri, 05 Apr 2024 14:37:28 GMT
etag: "372543feb-57c6-6155a651e7a00"
expires: Sun, 04 Aug 2024 15:14:50 GMT
cache-control: max-age=10456589
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6139-3-6055-h-0-0---;6140-26-2936----0-0-2
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_03.jpg | 64.210.135.118 | 200 OK | 172 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_03.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x430, components 3 Size172 kB (171482 bytes) Hash2a8ab8d25cab12f4494a84cb38c01b2e 0f060cb27a26e930a2c6ea516ccaa496b7758e5d 93b6ac6d9a80a72ef2574e5d254b10069cb6022b6fea7c9c8d4ece0f4b7a01f8
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:42 GMT
content-type: image/jpeg
content-length: 171482
last-modified: Thu, 16 Nov 2023 04:40:59 GMT
etag: "372544006-29dda-60a3da04dccc0"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6140-2-2514-h-0-0---;6140-26-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_02.mp4 | 64.210.135.118 | 206 Partial Content | 792 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_02.mp4 IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeISO Media, MP4 v2 [ISO 14496-14] Size792 kB (792045 bytes) Hash1dc90607fba6c99b83e64ac19a6df301 52d464c003bd9f22a433d963e9a737d2f469c0da 3c983e1ca58d8b4b91856e808bbaba78b1033cde0124b038f3122e4cf61b8e6a
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_02.mp4 HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Fri, 10 May 2024 17:02:42 GMT
content-type: video/mp4
content-length: 792045
last-modified: Thu, 23 Nov 2023 15:21:48 GMT
etag: "372543fe7-c15ed-60ad364ee9b00"
expires: Thu, 11 Jul 2024 15:52:55 GMT
cache-control: max-age=10429136
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
content-range: bytes 0-792044/792045
x-cdn-diag: ams5-7619-3-13370-h-0-0---;6140-26-2936----0-0-0
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R3_03.mp4 | 64.210.135.118 | 206 Partial Content | 1.8 MB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R3_03.mp4 IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeISO Media, MP4 v2 [ISO 14496-14] Size1.8 MB (1839074 bytes) Hash047d5ba3e02043ff2d980b07be079301 f50f7eed5b5a999352bfa855b562007451938a7f ff41153d690b995151405de9350c76c5e05faafecc8b5aeef39d1d92c68e47aa
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R3_03.mp4 HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Fri, 10 May 2024 17:02:41 GMT
content-type: video/mp4
content-length: 1661415
last-modified: Fri, 05 May 2023 17:32:03 GMT
etag: "34858f339-1959e7-5faf5aacc4ac0"
expires: Wed, 29 May 2024 08:08:29 GMT
cache-control: max-age=10631147
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
content-range: bytes 0-1661414/1661415
x-cdn-diag: ams5-7619-1-13266-h-0-0---;6140-23-2936----0-0-0
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_02.jpg | 64.210.135.118 | 200 OK | 342 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_02.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x860, components 3 Size342 kB (341572 bytes) Hash875ab73eef4e58692b4f2e61414d2316 1773af0fcb68570fdb5e826c6aedb0b451b1e751 866a7b0161856034c70d4b407979f1cbdbffe680a0a64572c6da8bf3d25d5599
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_02.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:42 GMT
content-type: image/jpeg
content-length: 341572
last-modified: Thu, 16 Nov 2023 04:41:01 GMT
etag: "372543ff8-53644-60a3da06c5140"
expires: Sun, 24 Mar 2024 11:38:51 GMT
cache-control: max-age=10417681
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7619-1-13264-h-0-0---;6140-26-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_03.jpg | 64.210.135.118 | 200 OK | 355 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_03.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x860, components 3 Size355 kB (355368 bytes) Hashc7dea6a6652899116162fe1a40500f2c fa7bca340d861b0bfbbd74f393508cb983d89cc2 90fcc7cb3bcdff3d23ef126f3f97042f877b455324a880d2e390f687f65ad076
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:43 GMT
content-type: image/jpeg
content-length: 355368
last-modified: Thu, 16 Nov 2023 04:41:01 GMT
etag: "372543fea-56c28-60a3da06c5140"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7619-1-13266-h-0-0---;6140-22-2936----0-0-0
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_04.jpg | 64.210.135.118 | 200 OK | 333 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_04.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x860, components 3 Size333 kB (332748 bytes) Hashd340163a0092a2d4742c0092f7bed22d 7442d29b62d2576c0adaf0f5882db56b313b027f f03004a7e387940d548b1052ee6c4f58258f85bdfacf3d48d3aea0c0b4fc990a
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:43 GMT
content-type: image/jpeg
content-length: 332748
last-modified: Thu, 16 Nov 2023 04:41:01 GMT
etag: "37254400f-513cc-60a3da06c5140"
expires: Sun, 24 Mar 2024 11:38:51 GMT
cache-control: max-age=10417681
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7619-1-13266-h-0-0---;6140-22-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_01.jpg | 64.210.135.118 | 200 OK | 197 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_01.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x430, components 3 Size197 kB (196915 bytes) Hash05fa608781287313fe227fd736028a6d a8a4c46dd206410afecb310c8fd0716f4dd9ca20 4fb718f32596324ad13a4138606925a3ba4567e9b3027d10b4095749f750a8fc
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:43 GMT
content-type: image/jpeg
content-length: 196915
last-modified: Thu, 16 Nov 2023 04:41:02 GMT
etag: "372543ff7-30133-60a3da07b9380"
expires: Sun, 24 Mar 2024 11:38:51 GMT
cache-control: max-age=10417681
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7619-1-13264-h-0-0---;6140-26-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| offmantiner.com/sftouch?userId=00805836eabc4f49fd7e2eb404de958c&z=6120639&p_rid=a6dadbdb-8ee2-4812-a290-ba154da86093&p_src=sf&branchId=0&rb=Dnqyt9A5EweScJWb6zqfwnOmDmnz6Z8IqVf8IbVwftLogKGuW6wbwTbXecDQnyYCJQdDyCf8NAa5UJta01begvueqqzwsvWHyPk1WER06XBzgys-XW8_s238Ak4RWkCVgJKK1ICnoHRrBhr6NZ_xzWQtK2KEAXNtLOAdO5k80adEW94-pk0SvegpBoOPdgEkssHB7H1LRzRQ9w4v_9oz4obV-sv5D4WvTVZ9qLK3fAqUePmYlqMUSDDyUMOfZnJWSlK6vJ5wr6B2l4T1hqcmTpPKkpm4p0U4QwLjzQ== | 139.45.197.245 | | 2 B |
URL offmantiner.com/sftouch?userId=00805836eabc4f49fd7e2eb404de958c&z=6120639&p_rid=a6dadbdb-8ee2-4812-a290-ba154da86093&p_src=sf&branchId=0&rb=Dnqyt9A5EweScJWb6zqfwnOmDmnz6Z8IqVf8IbVwftLogKGuW6wbwTbXecDQnyYCJQdDyCf8NAa5UJta01begvueqqzwsvWHyPk1WER06XBzgys-XW8_s238Ak4RWkCVgJKK1ICnoHRrBhr6NZ_xzWQtK2KEAXNtLOAdO5k80adEW94-pk0SvegpBoOPdgEkssHB7H1LRzRQ9w4v_9oz4obV-sv5D4WvTVZ9qLK3fAqUePmYlqMUSDDyUMOfZnJWSlK6vJ5wr6B2l4T1hqcmTpPKkpm4p0U4QwLjzQ== IP139.45.197.245:0
File typeASCII text, with no line terminators Hash444bcb3a3fcf8389296c49467f27e1d6 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /sftouch?userId=00805836eabc4f49fd7e2eb404de958c&z=6120639&p_rid=a6dadbdb-8ee2-4812-a290-ba154da86093&p_src=sf&branchId=0&rb=Dnqyt9A5EweScJWb6zqfwnOmDmnz6Z8IqVf8IbVwftLogKGuW6wbwTbXecDQnyYCJQdDyCf8NAa5UJta01begvueqqzwsvWHyPk1WER06XBzgys-XW8_s238Ak4RWkCVgJKK1ICnoHRrBhr6NZ_xzWQtK2KEAXNtLOAdO5k80adEW94-pk0SvegpBoOPdgEkssHB7H1LRzRQ9w4v_9oz4obV-sv5D4WvTVZ9qLK3fAqUePmYlqMUSDDyUMOfZnJWSlK6vJ5wr6B2l4T1hqcmTpPKkpm4p0U4QwLjzQ== HTTP/1.1
Host: offmantiner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://offmantiner.com
DNT: 1
Connection: keep-alive
Referer: https://offmantiner.com/4/6120639/
Cookie: OAID=00805836eabc4f49fd7e2eb404de958c; oaidts=1715360561
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:43 GMT
content-type: text/plain
content-length: 2
x-trace-id: a73a0632d202b30b0a8534e0a12e6332
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://offmantiner.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| my.rtmark.net/img.gif?f=merge&userId=00805836eabc4f49fd7e2eb404de958c&z=6120639&p_rid=a6dadbdb-8ee2-4812-a290-ba154da86093&p_src=sf | 139.45.195.8 | | 43 B |
URL my.rtmark.net/img.gif?f=merge&userId=00805836eabc4f49fd7e2eb404de958c&z=6120639&p_rid=a6dadbdb-8ee2-4812-a290-ba154da86093&p_src=sf IP139.45.195.8:0
CertificateIssuerLet's Encrypt Subjectrtmark.net FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT
File typeGIF image data, version 89a, 1 x 1 Hashb4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /img.gif?f=merge&userId=00805836eabc4f49fd7e2eb404de958c&z=6120639&p_rid=a6dadbdb-8ee2-4812-a290-ba154da86093&p_src=sf HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://offmantiner.com
DNT: 1
Connection: keep-alive
Referer: https://offmantiner.com/
Cookie: ID=0080582d6b1e4e76fb017d5e97ad840e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:43 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: https://offmantiner.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=0080582d6b1e4e76fb017d5e97ad840e; expires=Sat, 10 May 2025 17:02:43 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/cta.png | 64.210.135.118 | 200 OK | 10 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/cta.png IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typePNG image data, 538 x 260, 8-bit/color RGBA, non-interlaced Hashc1670f4f8db521da2b25a864d1abef57 7ffa55f21a6654ab4215c7f0a01f48f94692d8b6 aa86562736d392f04542e17f4d50ccbdea523d7221f5ebeedddf2e397532a6c1
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/cta.png HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:43 GMT
content-type: image/png
content-length: 10299
last-modified: Mon, 06 Nov 2023 22:38:17 GMT
etag: "372544009-283b-60983829da840"
expires: Fri, 08 Mar 2024 01:36:34 GMT
cache-control: max-age=10551431
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7846-3-2787-h-0-0---;6140-26-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| offmantiner.com/?z=6120639&syncedCookie=true&rhd=false | 139.45.197.245 | 302 Found | 0 B |
URL POST HTTP/2offmantiner.com/?z=6120639&syncedCookie=true&rhd=false IP139.45.197.245:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectoffmantiner.com FingerprintD7:99:54:4F:68:91:39:12:41:98:52:CC:F1:74:C6:3C:1F:93:F3:04 ValidityMon, 25 Mar 2024 05:10:58 GMT - Sun, 23 Jun 2024 05:10:57 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /?z=6120639&syncedCookie=true&rhd=false HTTP/1.1
Host: offmantiner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 648
Origin: https://offmantiner.com
DNT: 1
Connection: keep-alive
Referer: https://offmantiner.com/afu.php?zoneid=6120639&var=6120639&rid=IUzYL-eT4VvoQwPRHmPGTA%3D%3D&rhd=false&ab2r=0&sf=1
Cookie: OAID=00805836eabc4f49fd7e2eb404de958c; oaidts=1715360561
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 10 May 2024 17:02:43 GMT
content-length: 0
location: https://secureltrk.com/click?key=964a6cb724a8ed441ad5&visitor_id=812843718569890406&cost=0.002880&zoneid=6120639&campaignid=7910866&banner=20283117&zone_type={zone_type}&user_activity=high&subzone_id=0
x-trace-id: 4139666bfadf5b2ca652b9f316fc3b51
link: <https://secureltrk.com>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
referrer-policy: no-referrer
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://offmantiner.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=0080582d6b1e4e76fb017d5e97ad840e; expires=Sat, 10 May 2025 17:02:43 GMT; path=/; secure; SameSite=None
oaidts=1715360561; expires=Sat, 10 May 2025 17:02:43 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 17 May 2024 17:02:43 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_03.jpg | 64.210.135.118 | 200 OK | 142 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_03.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x430, components 3 Size142 kB (141941 bytes) Hashb3984cf8ae2dac71c585df735127044d c864bd64b8ede32d1d516465b6d8e5e39884d387 d248332a7f6c25b01f787cfe0b638d0470ed7688080f612786a5f8ffbe51b998
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:43 GMT
content-type: image/jpeg
content-length: 141941
last-modified: Thu, 16 Nov 2023 04:41:02 GMT
etag: "372544015-22a75-60a3da07b9380"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6140-1-2443-h-0-0---;6140-26-2936----0-0-0
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_02.jpg | 64.210.135.118 | 200 OK | 154 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_02.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x430, components 3 Size154 kB (153736 bytes) Hash27723306cd4af331dc5a0b826af49089 cf19a64f4cab931463d01b7593964b39eb23e940 a26c905812e0b6292d3bd2c8b9e287052b4efebeda1aba1f0bc85d62c3095ca0
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_02.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:43 GMT
content-type: image/jpeg
content-length: 153736
last-modified: Thu, 16 Nov 2023 04:41:02 GMT
etag: "372543fe8-25888-60a3da07b9380"
expires: Sun, 24 Mar 2024 11:38:51 GMT
cache-control: max-age=10417681
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7846-1-2676-h-0-0---;6140-26-2936----0-0-0
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_04.jpg | 64.210.135.118 | 200 OK | 159 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_04.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x430, components 3 Size159 kB (159078 bytes) Hashac61470d4d4ff107c638575159256413 f7570088bd9afedf93abb344c12cacb80a4b1bb8 d19852ef00814636c4926419c35011344326e976cfe8b4de27cf32a98c07a5f3
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:43 GMT
content-type: image/jpeg
content-length: 159078
last-modified: Thu, 16 Nov 2023 04:41:02 GMT
etag: "37254400d-26d66-60a3da07b9380"
expires: Sun, 24 Mar 2024 11:38:51 GMT
cache-control: max-age=10417681
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7619-1-13266-h-0-0---;6140-26-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/footer-logo.png | 64.210.135.118 | 200 OK | 7.8 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/footer-logo.png IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typePNG image data, 720 x 108, 8-bit/color RGBA, non-interlaced Hash07cac4b53df357f3ed90131f551a8b66 1f19078215e6696e53d312f071535c44a4076f37 ba21324830685eb1f514fca4d01b09dc85996e8da77a0245697eb11a3c8b1135
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/footer-logo.png HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:43 GMT
content-type: image/png
content-length: 7760
last-modified: Thu, 02 Nov 2023 18:49:02 GMT
etag: "37254400c-1e50-6092fd7638380"
expires: Sat, 13 Jul 2024 08:29:26 GMT
cache-control: max-age=10404574
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6249-2-22215-h-0-0---;6140-26-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| secureltrk.com/click?key=964a6cb724a8ed441ad5&visitor_id=812843718569890406&cost=0.002880&zoneid=6120639&campaignid=7910866&banner=20283117&zone_type={zone_type}&user_activity=high&subzone_id=0 | 176.97.112.149 | 307 Temporary Redirect | 0 B |
URL GET HTTP/2secureltrk.com/click?key=964a6cb724a8ed441ad5&visitor_id=812843718569890406&cost=0.002880&zoneid=6120639&campaignid=7910866&banner=20283117&zone_type={zone_type}&user_activity=high&subzone_id=0 IP176.97.112.149:443 ASN#43180 Virtual Systems LLC
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectsecureltrk.com Fingerprint91:A8:57:2C:3B:9E:B5:B7:A7:E4:55:0C:08:59:E7:45:9D:A9:4C:9D ValidityFri, 22 Mar 2024 12:23:21 GMT - Thu, 20 Jun 2024 12:23:20 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?key=964a6cb724a8ed441ad5&visitor_id=812843718569890406&cost=0.002880&zoneid=6120639&campaignid=7910866&banner=20283117&zone_type={zone_type}&user_activity=high&subzone_id=0 HTTP/1.1
Host: secureltrk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
date: Fri, 10 May 2024 17:02:44 GMT
location: https://f.mtrck.org/c?aid=tnW1DR&lpid=9trgqE&aff_sub5b=cov56d5a6vts73chrtd0
server: Caddy
set-cookie: uclick=nrmKk1YPbd811eHwb2CYthiJf5UHBGD1w3QZfslfFL6uz7bWzR4AD1i9YwoJ2060PFAIdA==; Max-Age=31536000; SameSite=Lax
bcid=cov56d5a6vts73chrtd0; Max-Age=31536000; SameSite=Lax
cid=cov56d5a6vts73chrtd0; Max-Age=31536000; SameSite=Lax
x-request-id: 6a67649c-b0ac-4081-9c67-6692a5b9edb5
content-length: 0
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R5_02.mp4 | 64.210.135.118 | 206 Partial Content | 1.6 MB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R5_02.mp4 IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeISO Media, MP4 v2 [ISO 14496-14] Size1.6 MB (1573142 bytes) Hash8f0079db99d12720e0d4afe6609e9304 6999312f56f66a2efa77911cf25434bbf45fd96e 47693bc5f5d86c23789944e7e73c4152ad739f900a6f1fc4744cb9d5db1484a2
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R5_02.mp4 HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 206 Partial Content
date: Fri, 10 May 2024 17:02:41 GMT
content-type: video/mp4
content-length: 1700841
last-modified: Fri, 05 May 2023 17:32:03 GMT
etag: "37a0eca17-19f3e9-5faf5aacc4ac0"
expires: Mon, 20 May 2024 20:41:01 GMT
cache-control: max-age=10532592
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
content-range: bytes 0-1700840/1700841
x-cdn-diag: ams5-7846-2-2733-h-0-0---;6140-28-2936----0-0-0
X-Firefox-Spdy: h2
|
|
| ocsp.e2m02.amazontrust.com/ | 143.204.53.97 | | 278 B |
URL ocsp.e2m02.amazontrust.com/ IP143.204.53.97:0
Hash36e0dded9691087eb26f8d6f8cf9566a ff15732581aaec4e5e71892b2e11b4677e0ac2fb 648ded862518b980ea66942ff43b76056693b06ed3a7155c25bb50be92e57702
POST / HTTP/1.1
Host: ocsp.e2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 278
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 10 May 2024 17:02:44 GMT
Last-Modified: Fri, 10 May 2024 16:29:07 GMT
Server: ECAcc (ska/F7AF)
X-Cache: Miss from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -pqVHTViFrz6KgnrcbuEsnQOdbLeEdxiuc949yDt2DvQDDOubrpNcQ==
Age: 2017
|
|
| events.launchdarkly.com/events/diagnostic/63bdba6ee6d64c12826b8bff | 54.205.230.48 | 204 No Content | 0 B |
URL OPTIONS HTTP/2events.launchdarkly.com/events/diagnostic/63bdba6ee6d64c12826b8bff IP54.205.230.48:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerAmazon Subjectevents.launchdarkly.com FingerprintD6:A9:BF:61:8A:C6:FF:34:00:EB:52:E2:2A:24:55:4D:E5:29:01:CF ValidityWed, 21 Jun 2023 00:00:00 GMT - Sat, 20 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /events/diagnostic/63bdba6ee6d64c12826b8bff HTTP/1.1
Host: events.launchdarkly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-launchdarkly-user-agent,x-launchdarkly-wrapper
Referer: https://tgp1.brazzersnetwork.com/
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Fri, 10 May 2024 17:02:44 GMT
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Payload-ID,X-LaunchDarkly-Wrapper,X-LaunchDarkly-Tags
access-control-allow-methods: POST,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Date
access-control-max-age: 300
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
|
|
| events.launchdarkly.com/events/diagnostic/63bdba6ee6d64c12826b8bff | 54.205.230.48 | 204 No Content | 0 B |
URL OPTIONS HTTP/2events.launchdarkly.com/events/diagnostic/63bdba6ee6d64c12826b8bff IP54.205.230.48:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerAmazon Subjectevents.launchdarkly.com FingerprintD6:A9:BF:61:8A:C6:FF:34:00:EB:52:E2:2A:24:55:4D:E5:29:01:CF ValidityWed, 21 Jun 2023 00:00:00 GMT - Sat, 20 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /events/diagnostic/63bdba6ee6d64c12826b8bff HTTP/1.1
Host: events.launchdarkly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-LaunchDarkly-User-Agent: JSClient/2.24.2
X-LaunchDarkly-Wrapper: react-client-sdk/2.29.2
Content-Length: 857
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 202 Accepted
date: Fri, 10 May 2024 17:02:44 GMT
content-type: application/json
content-length: 0
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Payload-ID,X-LaunchDarkly-Wrapper,X-LaunchDarkly-Tags
access-control-allow-methods: POST,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Date
access-control-max-age: 300
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
|
|
| prfectnewoffers.net/images/check-icon.png | 188.114.96.1 | 200 OK | 45 kB |
URL GET HTTP/3prfectnewoffers.net/images/check-icon.png IP188.114.96.1:443
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerLet's Encrypt Subjectprfectnewoffers.net FingerprintFF:D8:95:43:76:67:B6:52:98:93:00:95:5A:76:EF:D4:D3:15:07:F3 ValidityWed, 10 Apr 2024 05:08:54 GMT - Tue, 09 Jul 2024 05:08:53 GMT
File typePNG image data, 900 x 520, 8-bit/color RGBA, non-interlaced Hash678be8aead34ae53e3a53f79ba30c820 a90e388c192e1287fb9132385e0e9960a1f7c15e 79bb457691c6f5dc0d3fd537218a627750b199db5253e22dad9dc4f78fa48016
GET /images/check-icon.png HTTP/1.1
Host: prfectnewoffers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: image/png
content-length: 45018
last-modified: Fri, 26 Apr 2024 12:53:43 GMT
etag: "662ba3d7-afda"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-proc: 2
cache-control: max-age=14400
cf-cache-status: HIT
age: 6854
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EgmGzwHXQCW74MuFYfSJTNYFvtqNIw0KwsC5oudgRSDRmqz7yp0kLTCttOsdq%2Fq4oBRYE3cGedMQJJWwW9EAJ4Xar%2FdHvOLR025KuNkO9Ee4RKFfhToddPZvhQMVtz5dNgZAxTds"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b7fac5cef712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| prfectnewoffers.net/css/forms.css?id=f996a15d4340ce7f6a99 | 188.114.96.1 | 200 OK | 4.4 kB |
URL GET HTTP/3prfectnewoffers.net/css/forms.css?id=f996a15d4340ce7f6a99 IP188.114.96.1:443
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerLet's Encrypt Subjectprfectnewoffers.net FingerprintFF:D8:95:43:76:67:B6:52:98:93:00:95:5A:76:EF:D4:D3:15:07:F3 ValidityWed, 10 Apr 2024 05:08:54 GMT - Tue, 09 Jul 2024 05:08:53 GMT
File typegzip compressed data, from Unix Hashcca29340ba121282ecf5a012c1a3d808 fba34c3a7d4efa954d0775540d534e96785af1ae 139028fb876ddfa1b1e4b63562ec580901e3e730191a3a28ed9631b87d2744a5
GET /css/forms.css?id=f996a15d4340ce7f6a99 HTTP/1.1
Host: prfectnewoffers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: text/css
last-modified: Fri, 26 Apr 2024 12:57:38 GMT
vary: Accept-Encoding
etag: W/"662ba4c2-570a"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-proc: 3
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 7137
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QgU0HecvVHT0Eys44sGa0gFedh850w83Ab6ALLrD1eeM64bhqKcKGxCHAdIoTXm17vdz4QgVZb19PGJMtb%2Fy6KAGmnvgDJihNem32R8e2PPDvtqM3gw0TC7E5WgEzzA8thZOODsw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7fac2cc7712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| f.mtrck.org/c?aid=tnW1DR&lpid=9trgqE&aff_sub5b=cov56d5a6vts73chrtd0 | 76.223.57.231 | 302 Found | 5.2 kB |
URL GET HTTP/2f.mtrck.org/c?aid=tnW1DR&lpid=9trgqE&aff_sub5b=cov56d5a6vts73chrtd0 IP76.223.57.231:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectf.mtrck.org Fingerprint21:54:55:6D:37:6E:42:22:19:AF:08:DE:EA:B5:1C:48:57:D8:31:67 ValidityMon, 22 Apr 2024 09:36:17 GMT - Sun, 21 Jul 2024 09:36:16 GMT
Hash4f922255928af4df551663d54acf404d a1c35ef3274a81cfcdd6459df0214a28c64e6fe4 551091a76224672634f3b3596b5bb7a825b03df1ff6cebb9bb5ce2c9e083bd02
GET /c?aid=tnW1DR&lpid=9trgqE&aff_sub5b=cov56d5a6vts73chrtd0 HTTP/1.1
Host: f.mtrck.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: no-cache, private
content-type: text/html; charset=UTF-8
date: Fri, 10 May 2024 17:02:44 GMT
location: https://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language=
server: Caddy, nginx
set-cookie: XSRF-TOKEN=eyJpdiI6IkQ2MWVydUMva3dEeDFWS3pUa1ZIZ3c9PSIsInZhbHVlIjoiSlJWSUNUelVuaUcyZzJsSCtqdUlSeXNIWHZRczZ1cXJMZlpHSmtLN2loaUsvMitEUStSNHZzSlFjUUpaT1Mzc3NyK3pZcUFvcFQyNllmRmdEK2gwem02Qzk0L0dkcmpLSzJaTTM0K3lXdXRUUEJJanlCL21pMVBkeTZxS1pkODkiLCJtYWMiOiJlYzhkOGY4YWRlN2RlMzkwOTA1NmE0NDk2NzIyNzg4YWQxMjdiNGI1YjkxNDBlZmZlNzBiYTA0OTAwMmMyY2NkIiwidGFnIjoiIn0%3D; expires=Fri, 10-May-2024 19:02:44 GMT; Max-Age=7200; path=/; samesite=lax
clickbit_session=eyJpdiI6IlNXSkczNWo0V3pSc1dWQjBrcXM2b2c9PSIsInZhbHVlIjoibkk5a1pwbE9ISUlFeXBJZzA4QnR1T3ExUUR2QXk5ZlYyY1F2RkdpNzRzZEp2cmN5QkFOc0NnQW1uREh5dGt3TzIwbUNEWjNnR0t3akY0ZVlobjl2T2RvYlRVV1U2eDJJcUJrYkV6RFRuVmdHUmNpd3c0dTBlTWdMb0M5d0RSd2kiLCJtYWMiOiJlZTliMmJjZGIzMTY0NzJlOTBhZTM0MmUwYTEzZWRmZDMwNzRmNzhhNzAzYTdjZTc0NWJjZmU1YTk0YTRjNDBjIiwidGFnIjoiIn0%3D; expires=Fri, 10-May-2024 19:02:44 GMT; Max-Age=7200; path=/; httponly; samesite=lax
cid=eyJpdiI6ImJpUW44RXlMdVUraFh0eWg4YkczQnc9PSIsInZhbHVlIjoiRUN5V0pINFZDVUpHMFRlcGs3ZlRUY1BSd3RsMFZDZUQ5SDRSQ2xVRzh2VEh1bTRHZDBrQkNLNXVvcG9RcnFtRms1QTd5S2RJL1hiOFBUVFBabExlODhjVmJEaWR6RW5sWm1KRUtQOWgyZjQ9IiwibWFjIjoiMGE4ODRlY2ZjZTA0ZDEzZDI0OWJmNmU1MTliNjEyOWMzMWNhN2Y0NjAyNTlmNDJkNWFiNzU2NmI3YzliNWExZSIsInRhZyI6IiJ9; expires=Wed, 31-Aug-2078 03:19:23 GMT; Max-Age=1713780999; path=/; httponly; samesite=lax
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
|
|
| mgkstatic33.b-cdn.net/43461/images/Icon-awesome-download.png | 194.242.11.186 | 200 OK | 3.8 kB |
URL GET HTTP/2mgkstatic33.b-cdn.net/43461/images/Icon-awesome-download.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerSectigo Limited Subject*.b-cdn.net FingerprintFC:D9:3E:09:69:F5:9D:8A:AA:45:73:03:05:F1:8D:E4:5B:80:10:E4 ValiditySun, 05 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File typePNG image data, 78 x 78, 8-bit/color RGBA, non-interlaced Hash2973d7d42cbc07bd0099eec135a5de96 a657b46c370c998c751368bd9231d9729e2b8d23 cd37a4eede36ce73ad4388f7f6a0483c87455e888b16eaee0c9e076abf7882dc
GET /43461/images/Icon-awesome-download.png HTTP/1.1
Host: mgkstatic33.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: image/png
content-length: 3776
server: BunnyCDN-NO1-830
cdn-pullzone: 1367785
cdn-uid: 6f116605-ddce-4644-a514-65e3765b9786
cdn-requestcountrycode: NO
cache-control: max-age=3600
etag: "2973d7d42cbc07bd0099eec135a5de96"
last-modified: Wed, 13 Mar 2024 15:17:26 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx0000096a6b8a15cae6941-0065f29eca-5281cd35-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: b0c9cd13-c401-4707-9471-40949c09e155
cf-cache-status: HIT
cf-ray: 869c8b74dc1c0b55-OSL
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/25/2024 05:36:41
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 55d4931c9fea76f1ef5837dd573ec85d
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mgkstatic33.b-cdn.net/43461/images/Icon-awesome-rocket.png | 194.242.11.186 | 200 OK | 3.7 kB |
URL GET HTTP/2mgkstatic33.b-cdn.net/43461/images/Icon-awesome-rocket.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerSectigo Limited Subject*.b-cdn.net FingerprintFC:D9:3E:09:69:F5:9D:8A:AA:45:73:03:05:F1:8D:E4:5B:80:10:E4 ValiditySun, 05 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File typePNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced Hashe26549054b8a37aff472cc3c68ca9f92 6d982d6d54f9f1af0ee1b88992dd25a16c66d77d 7cdbc2c72709df7bd0a11927adf1f751a7fc681d3e032267a2b9c4e328dcf40b
GET /43461/images/Icon-awesome-rocket.png HTTP/1.1
Host: mgkstatic33.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: image/png
content-length: 3717
server: BunnyCDN-NO1-830
cdn-pullzone: 1367785
cdn-uid: 6f116605-ddce-4644-a514-65e3765b9786
cdn-requestcountrycode: NO
cache-control: max-age=3600
etag: "e26549054b8a37aff472cc3c68ca9f92"
last-modified: Wed, 13 Mar 2024 15:17:28 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx000001277ebaeb444c088-0065f29eca-52830f45-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: b0c9cd13-c401-4707-9471-40949c09e155
cf-cache-status: HIT
cf-ray: 87f725d979d356c4-OSL
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 05/06/2024 07:09:58
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: fc8eb271503d4c43814942a612ba70f5
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mgkstatic33.b-cdn.net/43461/images/Polygon-10.png | 194.242.11.186 | 200 OK | 465 B |
URL GET HTTP/2mgkstatic33.b-cdn.net/43461/images/Polygon-10.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerSectigo Limited Subject*.b-cdn.net FingerprintFC:D9:3E:09:69:F5:9D:8A:AA:45:73:03:05:F1:8D:E4:5B:80:10:E4 ValiditySun, 05 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File typePNG image data, 46 x 69, 8-bit/color RGBA, non-interlaced Hash250d763ae00c38fc8d960305e2f11950 130acf813f4c80c9cc7db53decc8799c28e3eb43 d074af86e879deab518c017c9078083a6dc2214d6ca96b892c245bab5c94ceb1
GET /43461/images/Polygon-10.png HTTP/1.1
Host: mgkstatic33.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: image/png
content-length: 465
server: BunnyCDN-NO1-830
cdn-pullzone: 1367785
cdn-uid: 6f116605-ddce-4644-a514-65e3765b9786
cdn-requestcountrycode: NO
cache-control: max-age=3600
etag: "250d763ae00c38fc8d960305e2f11950"
last-modified: Wed, 13 Mar 2024 15:17:46 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx000003cd7736e5659ab25-0065f1c7cc-52830f45-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: b0c9cd13-c401-4707-9471-40949c09e155
cf-cache-status: HIT
cf-ray: 87b0bdba1c7756ae-OSL
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/27/2024 18:05:30
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 6b14719ffd9c7ef57e00771e36a4427e
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mgkstatic33.b-cdn.net/43461/images/logo.png | 194.242.11.186 | 200 OK | 12 kB |
URL GET HTTP/2mgkstatic33.b-cdn.net/43461/images/logo.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerSectigo Limited Subject*.b-cdn.net FingerprintFC:D9:3E:09:69:F5:9D:8A:AA:45:73:03:05:F1:8D:E4:5B:80:10:E4 ValiditySun, 05 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File typePNG image data, 436 x 130, 8-bit/color RGBA, non-interlaced Hash34156c9cf33b3a62f654c05dce790379 3e937d90138e64ceb158a1d7940e88551e7d3ae4 d13af073b360ef22d6fae9f4553a70389ba215b9d4dff52a9e2358417be6921c
GET /43461/images/logo.png HTTP/1.1
Host: mgkstatic33.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: image/png
content-length: 12510
server: BunnyCDN-NO1-830
cdn-pullzone: 1367785
cdn-uid: 6f116605-ddce-4644-a514-65e3765b9786
cdn-requestcountrycode: NO
cache-control: max-age=3600
etag: "34156c9cf33b3a62f654c05dce790379"
last-modified: Wed, 13 Mar 2024 15:17:34 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx000008b1c89a4d0b15148-0065f29eca-5280acec-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: b0c9cd13-c401-4707-9471-40949c09e155
cf-cache-status: HIT
cf-ray: 864461ec3802b51d-OSL
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/14/2024 12:49:13
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 6e3ca8333b1550d4fe6786b6f9f4dac7
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mgkstatic33.b-cdn.net/43461/images/0PTcCKIlgr.gif | 194.242.11.186 | 200 OK | 18 kB |
URL GET HTTP/2mgkstatic33.b-cdn.net/43461/images/0PTcCKIlgr.gif IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerSectigo Limited Subject*.b-cdn.net FingerprintFC:D9:3E:09:69:F5:9D:8A:AA:45:73:03:05:F1:8D:E4:5B:80:10:E4 ValiditySun, 05 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File typeGIF image data, version 89a, 64 x 64 Hash313d1440d21ae95e5dcfa2f447f14456 8c850ce459c6b12090b887f19b3d824f49049a23 f95799c3fd4e8f9124459f03b697451744cec2c9fbc74626d2dd50c17e5c72bb
GET /43461/images/0PTcCKIlgr.gif HTTP/1.1
Host: mgkstatic33.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: image/gif
content-length: 17963
server: BunnyCDN-NO1-830
cdn-pullzone: 1367785
cdn-uid: 6f116605-ddce-4644-a514-65e3765b9786
cdn-requestcountrycode: NO
cache-control: max-age=3600
etag: "313d1440d21ae95e5dcfa2f447f14456"
last-modified: Wed, 13 Mar 2024 15:17:39 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx0000020d12b6785ad2760-0065f29eca-52830f45-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: b0c9cd13-c401-4707-9471-40949c09e155
cf-cache-status: REVALIDATED
cf-ray: 877c41d2ee4e56be-OSL
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/21/2024 09:13:16
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 4d562ef2fb1f08ff69bebc5219bd8e8f
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mgkstatic33.b-cdn.net/43461/images/phone-with-shadow-bitbotapp.png | 194.242.11.186 | 200 OK | 101 kB |
URL GET HTTP/2mgkstatic33.b-cdn.net/43461/images/phone-with-shadow-bitbotapp.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerSectigo Limited Subject*.b-cdn.net FingerprintFC:D9:3E:09:69:F5:9D:8A:AA:45:73:03:05:F1:8D:E4:5B:80:10:E4 ValiditySun, 05 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File typePNG image data, 522 x 848, 8-bit/color RGBA, non-interlaced Size101 kB (101329 bytes) Hash8d3c7b42fdd79ef3c7d81aee046465c8 933e6035c9082dc87418519e8c4e6550c3f1d8a1 f6d18c1ec94df13f3f335ee98f1cdc6010656e117c6a5bd0b47812580c188123
GET /43461/images/phone-with-shadow-bitbotapp.png HTTP/1.1
Host: mgkstatic33.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: image/png
content-length: 101329
server: BunnyCDN-NO1-830
cdn-pullzone: 1367785
cdn-uid: 6f116605-ddce-4644-a514-65e3765b9786
cdn-requestcountrycode: NO
cache-control: max-age=3600
etag: "8d3c7b42fdd79ef3c7d81aee046465c8"
last-modified: Wed, 13 Mar 2024 15:17:30 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx000001497924583aa2f5c-0065f1c7cc-5281cd5d-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: b0c9cd13-c401-4707-9471-40949c09e155
cf-cache-status: REVALIDATED
cf-ray: 865fdc830eae56a4-OSL
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/17/2024 20:51:30
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 3734eb2c09c8fa694be544ac02bede73
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mgkstatic33.b-cdn.net/43461/images/robot-and-phone-final-img.png | 194.242.11.186 | 200 OK | 405 kB |
URL GET HTTP/2mgkstatic33.b-cdn.net/43461/images/robot-and-phone-final-img.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerSectigo Limited Subject*.b-cdn.net FingerprintFC:D9:3E:09:69:F5:9D:8A:AA:45:73:03:05:F1:8D:E4:5B:80:10:E4 ValiditySun, 05 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File typePNG image data, 960 x 795, 8-bit/color RGBA, non-interlaced Size405 kB (405350 bytes) Hashb961c9e7e178aa1bb10a1ed8bbc37f76 5a4ae86e986118b8792a85c6c561e07c1f23ee03 15775556fc3dd033df8b911c03448a47cc4e14f26e36aecc2ac378f76c9307d8
GET /43461/images/robot-and-phone-final-img.png HTTP/1.1
Host: mgkstatic33.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: image/png
content-length: 405350
server: BunnyCDN-NO1-830
cdn-pullzone: 1367785
cdn-uid: 6f116605-ddce-4644-a514-65e3765b9786
cdn-requestcountrycode: NO
cache-control: max-age=3600
etag: "b961c9e7e178aa1bb10a1ed8bbc37f76"
last-modified: Wed, 13 Mar 2024 15:17:46 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx00000d699074756f91dc7-0065f1c7cc-5281cd5d-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: b0c9cd13-c401-4707-9471-40949c09e155
cf-cache-status: HIT
cf-ray: 87f725dc9d3e56c9-OSL
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 05/06/2024 07:09:59
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 1faa73fa3742f4f8fae2659510c04f48
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static-133.b-cdn.net/43461/images/hero-img-new.jpg | 194.242.11.186 | 200 OK | 394 kB |
URL GET HTTP/2static-133.b-cdn.net/43461/images/hero-img-new.jpg IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerSectigo Limited Subject*.b-cdn.net FingerprintFC:D9:3E:09:69:F5:9D:8A:AA:45:73:03:05:F1:8D:E4:5B:80:10:E4 ValiditySun, 05 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=0], baseline, precision 8, 1920x935, components 3 Size394 kB (393575 bytes) Hash8867f07ab37b30a70556531fab9ab745 b38438f367b8db496568700d6f07ffc17a185151 d74199bd755af51a2080d1caad0f8655afebbd5da7b56ee3302699c7bd856b0a
GET /43461/images/hero-img-new.jpg HTTP/1.1
Host: static-133.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mgkstatic33.b-cdn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: image/jpeg
content-length: 393575
server: BunnyCDN-NO1-830
cdn-pullzone: 561175
cdn-uid: 6f116605-ddce-4644-a514-65e3765b9786
cdn-requestcountrycode: NO
cache-control: max-age=3600
etag: "8867f07ab37b30a70556531fab9ab745"
last-modified: Wed, 13 Mar 2024 15:17:40 GMT
cf-bgj: h2pri
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-amz-request-id: tx000001c2614e59fb41b02-0065f1c7cc-52827f33-ams3c
x-do-cdn-uuid: b0c9cd13-c401-4707-9471-40949c09e155
x-rgw-object-type: Normal
cf-cache-status: HIT
cf-ray: 87f725f5199256c9-OSL
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 05/06/2024 07:10:03
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: d0f4d77d7747e0f00b873dafee4a513b
cdn-cache: REVALIDATED
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/3fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://prfectnewoffers.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 02:35:00 GMT
expires: Fri, 09 May 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 138465
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/3fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://prfectnewoffers.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 02:35:00 GMT
expires: Fri, 09 May 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 138465
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| static-133.b-cdn.net/43461/images/bg-img-3.jpg | 194.242.11.186 | 200 OK | 246 kB |
URL GET HTTP/2static-133.b-cdn.net/43461/images/bg-img-3.jpg IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerSectigo Limited Subject*.b-cdn.net FingerprintFC:D9:3E:09:69:F5:9D:8A:AA:45:73:03:05:F1:8D:E4:5B:80:10:E4 ValiditySun, 05 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=0], baseline, precision 8, 1920x473, components 3 Size246 kB (246271 bytes) Hash1b514cd6bf37cbbb0738a585510fd600 e171926ee51ece136dc499e19c1adbb118f26f35 9d89491bdea31bb858e17bb9add38046eefa867be00184f3b653798969e3a7ea
GET /43461/images/bg-img-3.jpg HTTP/1.1
Host: static-133.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mgkstatic33.b-cdn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: image/jpeg
content-length: 246271
server: BunnyCDN-NO1-830
cdn-pullzone: 561175
cdn-uid: 6f116605-ddce-4644-a514-65e3765b9786
cdn-requestcountrycode: NO
cache-control: max-age=3600
etag: "1b514cd6bf37cbbb0738a585510fd600"
last-modified: Wed, 13 Mar 2024 15:17:38 GMT
cf-bgj: h2pri
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-amz-request-id: tx000000225d7167c00f3db-0065f29eca-52827f33-ams3c
x-do-cdn-uuid: b0c9cd13-c401-4707-9471-40949c09e155
x-rgw-object-type: Normal
cf-cache-status: HIT
cf-ray: 8673df3bdb3556cb-OSL
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/20/2024 07:08:37
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 62671dbbc03602655a6125c62017e9ee
cdn-cache: REVALIDATED
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| prfectnewoffers.net/media/sad-face.svg | 188.114.96.1 | 200 OK | 49 kB |
URL GET HTTP/3prfectnewoffers.net/media/sad-face.svg IP188.114.96.1:443
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerLet's Encrypt Subjectprfectnewoffers.net FingerprintFF:D8:95:43:76:67:B6:52:98:93:00:95:5A:76:EF:D4:D3:15:07:F3 ValidityWed, 10 Apr 2024 05:08:54 GMT - Tue, 09 Jul 2024 05:08:53 GMT
File typegzip compressed data, from Unix Hashf6025de4d75f17816760c2715f54e2f2 0207514020308713821e7bc4d0d5c1b8191e266b 7b107b751b9214b5c18038afd1556441120df997c2e8c983c3b6e1285e69590d
GET /media/sad-face.svg HTTP/1.1
Host: prfectnewoffers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: image/svg+xml
last-modified: Fri, 26 Apr 2024 12:57:38 GMT
vary: Accept-Encoding
etag: W/"662ba4c2-5dc"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-proc: 3
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 6852
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tLwOPGlng2cyJuS9oZoTEabDN2516pJpBffUZj4ZYV%2BjRfVEZl1RKYZtKdV6xvJaZ9h5%2F2O62DuoJIVU4f%2BkHO8JPg%2BYzvZelO9UbSqSGuhpM9SYJ6liiYXH%2FPiDtGZ41Tj0cBX1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7fac6d05712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| mgkstatic33.b-cdn.net/43461/build/funnel.css | 194.242.11.186 | 200 OK | 73 kB |
URL GET HTTP/2mgkstatic33.b-cdn.net/43461/build/funnel.css IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerSectigo Limited Subject*.b-cdn.net FingerprintFC:D9:3E:09:69:F5:9D:8A:AA:45:73:03:05:F1:8D:E4:5B:80:10:E4 ValiditySun, 05 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (45962) Hash670878add58e57bb842fb7530256b6f7 4e642526889846d2b06727762c71c5ec59a60f16 8db1af5a48d72fa1716165f347f781448ac6228b5fd21ec8b9008c2758e87b83
GET /43461/build/funnel.css HTTP/1.1
Host: mgkstatic33.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 1367785
cdn-uid: 6f116605-ddce-4644-a514-65e3765b9786
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=3600
etag: W/"670878add58e57bb842fb7530256b6f7"
last-modified: Wed, 13 Mar 2024 15:17:25 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx000003038141ea2822112-0065f1c7cc-5280ad0f-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: b0c9cd13-c401-4707-9471-40949c09e155
cf-cache-status: REVALIDATED
cf-ray: 877c41ce290a56be-OSL
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/21/2024 09:13:15
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 5c2d617c372f8034e52fe88b31b996c7
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| static-133.b-cdn.net/43461/images/bg-img-2.jpg | 194.242.11.186 | 200 OK | 242 kB |
URL GET HTTP/2static-133.b-cdn.net/43461/images/bg-img-2.jpg IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerSectigo Limited Subject*.b-cdn.net FingerprintFC:D9:3E:09:69:F5:9D:8A:AA:45:73:03:05:F1:8D:E4:5B:80:10:E4 ValiditySun, 05 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x788, components 3 Size242 kB (241782 bytes) Hash87ea1d39178e8229c5e1d3f4820d371b ffbc7e6774a0e1fdcbc0fa2dea5fa1ee91b2095f 762daaf85334b0f65ee1a790a52257782cef0f4481df7ce04715bfd2acf0f633
GET /43461/images/bg-img-2.jpg HTTP/1.1
Host: static-133.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mgkstatic33.b-cdn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: image/jpeg
content-length: 241782
server: BunnyCDN-NO1-830
cdn-pullzone: 561175
cdn-uid: 6f116605-ddce-4644-a514-65e3765b9786
cdn-requestcountrycode: NO
cache-control: max-age=3600
etag: "87ea1d39178e8229c5e1d3f4820d371b"
last-modified: Wed, 13 Mar 2024 15:17:40 GMT
cf-bgj: h2pri
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-amz-request-id: tx0000090b60f5f7e80b015-0065f29eca-52830f45-ams3c
x-do-cdn-uuid: b0c9cd13-c401-4707-9471-40949c09e155
x-rgw-object-type: Normal
cf-cache-status: HIT
cf-ray: 87b0bdbe6fd55685-OSL
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/27/2024 18:05:31
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: eb7a34200d81a6e69daf6ccab6e6cc36
cdn-cache: REVALIDATED
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static-133.b-cdn.net/43461/images/mockup-three-phone.png | 194.242.11.186 | 200 OK | 965 kB |
URL GET HTTP/2static-133.b-cdn.net/43461/images/mockup-three-phone.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerSectigo Limited Subject*.b-cdn.net FingerprintFC:D9:3E:09:69:F5:9D:8A:AA:45:73:03:05:F1:8D:E4:5B:80:10:E4 ValiditySun, 05 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File typePNG image data, 1920 x 808, 8-bit/color RGBA, non-interlaced Size965 kB (964789 bytes) Hashd656e316c5f67a3d7eadc3a4e8a9c1f2 41d0a52bb6ad7351526c739589b85b9c275e963d 2236f4e50c3ddd56f65a30164785676c5d3a1569fa9297418679f25f6ff0bd90
GET /43461/images/mockup-three-phone.png HTTP/1.1
Host: static-133.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mgkstatic33.b-cdn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: image/png
content-length: 964789
server: BunnyCDN-NO1-830
cdn-pullzone: 561175
cdn-uid: 6f116605-ddce-4644-a514-65e3765b9786
cdn-requestcountrycode: NO
cache-control: max-age=3600
etag: "d656e316c5f67a3d7eadc3a4e8a9c1f2"
last-modified: Wed, 13 Mar 2024 15:17:29 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx000002dd9f695ca30bbb0-0065f29eca-5281cd35-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: b0c9cd13-c401-4707-9471-40949c09e155
cf-cache-status: HIT
cf-ray: 87f731f95c8d5684-OSL
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 05/06/2024 07:18:15
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: aaf42cecc15618e8d58ebb3afabcf6e2
cdn-cache: REVALIDATED
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| static-133.b-cdn.net/43461/images/bg-img-4.jpg | 194.242.11.186 | 200 OK | 375 kB |
URL GET HTTP/2static-133.b-cdn.net/43461/images/bg-img-4.jpg IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerSectigo Limited Subject*.b-cdn.net FingerprintFC:D9:3E:09:69:F5:9D:8A:AA:45:73:03:05:F1:8D:E4:5B:80:10:E4 ValiditySun, 05 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x692, components 3 Size375 kB (374893 bytes) Hashca2af1e0db4ffa75dc11257debbca866 9a4ecbbbb46dc174daa5eb39d804d00914602fdf 26c2c413b4a6d8f79064e6a92528e0a886da3e41f99acf7e5b8a01ff082f3f97
GET /43461/images/bg-img-4.jpg HTTP/1.1
Host: static-133.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mgkstatic33.b-cdn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: image/jpeg
content-length: 374893
server: BunnyCDN-NO1-830
cdn-pullzone: 561175
cdn-uid: 6f116605-ddce-4644-a514-65e3765b9786
cdn-requestcountrycode: NO
cache-control: max-age=3600
etag: "ca2af1e0db4ffa75dc11257debbca866"
last-modified: Wed, 13 Mar 2024 15:17:41 GMT
cf-bgj: h2pri
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-amz-request-id: tx000003769d44dac3c04af-0065f1c7cc-5280acec-ams3c
x-do-cdn-uuid: b0c9cd13-c401-4707-9471-40949c09e155
x-rgw-object-type: Normal
cf-cache-status: HIT
cf-ray: 869c8b777cce0b55-OSL
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/25/2024 05:36:42
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 1d3b71c8c781ee46ed68a7def6a4f3b1
cdn-cache: REVALIDATED
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| prfectnewoffers.net/images/vendor/intl-tel-input/build/flags.png?416250f60d785a2e02f17e054d2e4e44 | 188.114.96.1 | 200 OK | 71 kB |
URL GET HTTP/3prfectnewoffers.net/images/vendor/intl-tel-input/build/flags.png?416250f60d785a2e02f17e054d2e4e44 IP188.114.96.1:443
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerLet's Encrypt Subjectprfectnewoffers.net FingerprintFF:D8:95:43:76:67:B6:52:98:93:00:95:5A:76:EF:D4:D3:15:07:F3 ValidityWed, 10 Apr 2024 05:08:54 GMT - Tue, 09 Jul 2024 05:08:53 GMT
File typePNG image data, 5652 x 15, 8-bit/color RGBA, non-interlaced Hash416250f60d785a2e02f17e054d2e4e44 21572c9751e5a3dc20395befa0fcb349c32c4811 0a012cf808a24573168308916092d2d4bd3f2b4af8e16b59167013cc77acee55
GET /images/vendor/intl-tel-input/build/flags.png?416250f60d785a2e02f17e054d2e4e44 HTTP/1.1
Host: prfectnewoffers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/css/forms.css?id=f996a15d4340ce7f6a99
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:46 GMT
content-type: image/png
content-length: 70857
last-modified: Fri, 26 Apr 2024 12:57:10 GMT
etag: "662ba4a6-114c9"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-proc: 1
cache-control: max-age=14400
cf-cache-status: HIT
age: 6565
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qQsdcSpDkbuUO0RSPFnZi4LT6oLwh%2FlHfSlEFJrPhTil6zKV9GtXF7ipt7Z1bK%2F9AIEsbWtPX06agqHPtIkwClE4oHShc5n%2Bwshdc%2FhQEDZgXzvUBGFwzwWy9LfkDq5kSpSkbeqd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b7fb1fbfd712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zv.7vid.net/api/spots/70102?s1=177684&v2=1&fill=0&kw=file%20upload%2Cshare%20files%2Cfree%20upload&i=1&url=https%3A%2F%2Fvidezz.net%2Fembed-aqb9ov6imh54.html&sid=8b94d829-237c-4a03-ba32-3d5b603b3f41 | 135.181.208.216 | 200 OK | 67 B |
URL GET HTTP/2zv.7vid.net/api/spots/70102?s1=177684&v2=1&fill=0&kw=file%20upload%2Cshare%20files%2Cfree%20upload&i=1&url=https%3A%2F%2Fvidezz.net%2Fembed-aqb9ov6imh54.html&sid=8b94d829-237c-4a03-ba32-3d5b603b3f41 IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subject1111.spinna.online FingerprintF3:80:AE:D8:32:E7:57:75:94:99:58:76:4C:57:59:80:E8:9A:B7:ED ValidityFri, 29 Mar 2024 23:27:07 GMT - Thu, 27 Jun 2024 23:27:06 GMT
File typeXML document, ASCII text, with no line terminators Hashc3928cea84e0c684b265b8fb465a9e72 aace4c0c8b0fbb35d2932f4f27e01ef627161574 3238d03797cab82118740c0d6ddace8d6bc9caf168e94d2ade893f541c1f8a25
GET /api/spots/70102?s1=177684&v2=1&fill=0&kw=file%20upload%2Cshare%20files%2Cfree%20upload&i=1&url=https%3A%2F%2Fvidezz.net%2Fembed-aqb9ov6imh54.html&sid=8b94d829-237c-4a03-ba32-3d5b603b3f41 HTTP/1.1
Host: zv.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:34 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://videzz.net
access-control-expose-headers: X-Asg-Config, X-t
set-cookie: nauid=Kn1cyMY9M8z8G1Ktme0I; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
x-robots-tag: noindex, nofollow
x-t: 0
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/sub/31bV2Jy | 172.67.205.77 | 200 OK | 239 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/31bV2Jy IP172.67.205.77:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashd5b23342c3da61ad8cb32c85b5a9a6ca 3ca89fd68565941a5f5dec87720a2164c9b860ae 53073b03453dec44b400acecc549d6446aba803406a391777a94cc2504173bbb
GET /sub/31bV2Jy HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MVb9xzJhkkOGyq8ElpjCyYGl3ZEYYPcuOXB550CCWOpN5iLYv%2Bk0Z7JPNcZK8UjUcTx4HDUc7YZwWsNAPLHeqEDZxfWorfhuGjL28eD2qiT0DQDO7fwXucgClFEbNc83%2Bixbp3XO7%2Fc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7f6d3d60b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/telegram.js | 104.22.70.197 | 200 OK | 360 B |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/telegram.js IP104.22.70.197:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (370), with no line terminators Hashd455b7099e753a3680d5e481a7b56a9d 146fdec3f2e51dabdd15fc8acda6d73823b0d44d 4eb7a6d1a684e68473de0e8854499206b2f512a3815a8114068636dd38aa197a
GET /menu/svg/icons/telegram.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"fb47b4f6548b6499923a1beed7472419"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J9pMpDWY00S1UoBh7dh%2BqpIB7xhAcdI3P3uTdcS6qq%2FtzBjk7n4vAi1%2BOKW1Nn2Tu6UDIw%2FTM%2Fn2MlHdbEFjDk6axCU4elS5Yq9F04lGV5fCgvnFISm%2BDhGKCweMmDEI4ytEVFz5JPvB7orF4KjdSsYL"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 27811
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 881b7f6e7a9892f8-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| static2-ma-ht.project1content.com/tour/@one/blocks/async/FooterBlock.39e014d8.js | 64.210.135.118 | 200 OK | 3.4 kB |
URL GET HTTP/2static2-ma-ht.project1content.com/tour/@one/blocks/async/FooterBlock.39e014d8.js IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (3536), with no line terminators Hash7ec41e84d51e84bfa299eaf61a640a6e 2537a9d5347aca428662c0600d82ef588f03eaa1 625d89a9dcb4ec66c6ae211ec182ae6742e8bd6598c68179eea10f7020146924
GET /tour/@one/blocks/async/FooterBlock.39e014d8.js HTTP/1.1
Host: static2-ma-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:40 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 29 Apr 2024 20:40:22 GMT
etag: W/"3ad5bbc71-d3b-6174243245980"
expires: Fri, 30 Aug 2024 23:10:33 GMT
cache-control: max-age=10574437
content-encoding: gzip
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
x-cdn-diag: ams5-6140-1-2443-h-0-0---;6140-27-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| cdn.o333o.com/vast-im.js | 143.204.55.93 | 200 OK | 310 kB |
IP143.204.55.93:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerSectigo Limited Subjectcdn.o333o.com Fingerprint61:0E:6A:7F:7E:40:48:40:58:0F:EF:89:DB:CF:AD:C2:FB:52:F1:AC ValidityThu, 09 Nov 2023 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT
Size310 kB (310487 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /vast-im.js HTTP/1.1
Host: cdn.o333o.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 11 Apr 2024 09:31:31 GMT
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
etag: W/"65fd69b1-4bcd7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: G84VuU_MiclVFv1LtBS4Ff_9sxPoRyQDkWj9oOQeic3Uidy-yk2UNQ==
age: 2532663
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 104.18.10.207 | 200 OK | 31 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP104.18.10.207:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:34 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 03/18/2024 12:28:12
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 2ab8316fdef76f530c15e660f59a896d
cdn-cache: HIT
cf-cache-status: HIT
age: 866648
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 881b7f675e3eb518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| aistekso.net/401/5708419 | 139.45.197.244 | 200 OK | 91 kB |
IP139.45.197.244:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectaistekso.net Fingerprint3E:A5:CE:35:F4:D9:45:6B:A1:3B:2E:9C:B3:9E:78:4D:8A:4B:51:BB ValiditySun, 24 Mar 2024 05:08:27 GMT - Sat, 22 Jun 2024 05:08:26 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashbee6617911fbbe134735d24163db3805 355aa2c9633ce94293bdfb488e271eb596038e2f 2165d39c65aa9e5522df2192aaacf2afc28783a42ecb36049a416b2a5950196b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /401/5708419 HTTP/1.1
Host: aistekso.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:38 GMT
content-type: application/javascript
x-trace-id: 3b09f7afe148e69ef81fde32257a20c8
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=0300589e13234184ef97ae1bd3b99826; expires=Sat, 10 May 2025 17:02:38 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/page.js | 104.22.70.197 | 200 OK | 3.0 kB |
URL GET HTTP/2static.addtoany.com/menu/page.js IP104.22.70.197:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeJavaScript source, ASCII text, with very long lines (3132), with no line terminators Hash40486591ae8ea6d1423aeb13f1fd509b f847af56588642de93c6fe0d2ce182303f312455 16a6753a1de5c5602b0ca4afe3d17b95e2cb18d6b79bf7cdccedba3a733c1138
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:34 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=86400, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"e346c2841e4abbb66ee259e9540abb61"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YWZsNxx5LDQ%2FCmyOFsE8E2BnrVsLnneGIQNyd9wW5p4HAuYJk1J8NDKyEOb3GQVsuv1k1liuf%2Bmj3zbtE6j3FHtvw%2FKNdKKDmXgE%2Fq44DiWXRWJOh045rrNs9uLI3BbIrsQ0WiQVSeSa3Tq2fKeyXXzg"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 27819
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 881b7f67de6010eb-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static2-ma-ht.project1content.com/tour/runtime.9e370972.js | 64.210.135.118 | 200 OK | 8.7 kB |
URL GET HTTP/2static2-ma-ht.project1content.com/tour/runtime.9e370972.js IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (9159), with no line terminators Hashc26e1bc77022f47c00a250bba3b227ea 6fa9ecdce1f401d1e93400934697714c442a6e0b 655a636e93f916f46677e59335a2ed61a2df37991efb92073239d1f4f5eef698
GET /tour/runtime.9e370972.js HTTP/1.1
Host: static2-ma-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:39 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 07 May 2024 18:53:32 GMT
etag: W/"3ad17d715-21ca-617e1b3ce8300"
expires: Fri, 06 Sep 2024 23:46:48 GMT
cache-control: max-age=10556214
content-encoding: gzip
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
x-cdn-diag: ams5-7619-3-13369-h-0-0---;6140-23-2936----0-0-0
X-Firefox-Spdy: h2
|
|
| prfectnewoffers.net/event?hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895 | 188.114.96.1 | 201 Created | 2 B |
URL POST HTTP/3prfectnewoffers.net/event?hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895 IP188.114.96.1:443
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerLet's Encrypt Subjectprfectnewoffers.net FingerprintFF:D8:95:43:76:67:B6:52:98:93:00:95:5A:76:EF:D4:D3:15:07:F3 ValidityWed, 10 Apr 2024 05:08:54 GMT - Tue, 09 Jul 2024 05:08:53 GMT
Hashd751713988987e9331980363e24189ce 97d170e1550eee4afc0af065b78cda302a97674c 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
POST /event?hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895 HTTP/1.1
Host: prfectnewoffers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 182
Origin: https://prfectnewoffers.net
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 201 Created
date: Fri, 10 May 2024 17:02:47 GMT
content-type: application/json
cache-control: no-cache, private
access-control-allow-origin: https://prfectnewoffers.net
vary: Origin
set-cookie: XSRF-TOKEN=eyJpdiI6Ikd5VkdidGRFMlJseDI1WlwvYTQ3YkRnPT0iLCJ2YWx1ZSI6ImNvNllHSWtYV0lqWjVpcVhReXpHWThweW9PYVZuYVQwemlraTREWnFjZHVVQkFuTEx2Ym9hRjFTcDhkdDBYOFUiLCJtYWMiOiJkZGFlYjFmMjgxNjQzNzY2ZWM4YjE1NjlhYmE5Nzc1NmQ0N2VmZGQ5MDljNmEyMTNlOTBiNGQ1NmEzMWNjNjk1In0%3D; expires=Fri, 10-May-2024 19:02:47 GMT; Max-Age=7200; path=/
c=eyJpdiI6Ik9ETGR3TFBHUmVQVWMzU3pcL1pLXC9ZQT09IiwidmFsdWUiOiI4SEpVdXdGUkxjMHhEV25OZnhVdHZWMnc4YlZcL3FVaGozSFYxekwySkpFZjNPcnNnbFwvRWhveG5DQjBnTkRiWkIiLCJtYWMiOiJiM2IxZjdmMWIyZDQ0MzNkZmU2OGQwZTlkNGFhZTU4MDExYWQyNmExMzRlNWE1MjkwZDI0NGE0OWE0YjYwNmFmIn0%3D; expires=Fri, 10-May-2024 19:02:47 GMT; Max-Age=7200; path=/; httponly
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-proc: 3
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kvXOnXj8iPnE7tALFl21YzmIbDDlscSOYxU3nhcacLz9gK7wZg1slgFG%2FlMQ%2BQce4SbPhbuJiLxpLOzzmkYje9xVGVdv5ps010Ok%2BfYIF7kOpjxZ2%2FY%2BlC3RhajaYoC5dA4jWF3T"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7fb5b912712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| xml.cachegorilla.com/redirect?feed=612977&auth=kAeZgJ&pubid=197570 | 173.239.53.20 | 302 Found | 0 B |
URL GET HTTP/1.1xml.cachegorilla.com/redirect?feed=612977&auth=kAeZgJ&pubid=197570 IP173.239.53.20:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerSectigo Limited Subject*.cachegorilla.com Fingerprint29:B3:53:29:E3:6F:D3:48:F6:66:3E:78:57:05:A6:19:12:0D:2C:4A ValidityFri, 10 Nov 2023 00:00:00 GMT - Sun, 10 Nov 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=612977&auth=kAeZgJ&pubid=197570 HTTP/1.1
Host: xml.cachegorilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 10 May 2024 17:02:37 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://xmlclick.adokutrtb.com/nrtb/click?bid=cchkyClosoteSorB3m2Oq7zG_4NR4QNHdVCqDqwMyjbkWmfQ13rw6sZLWwteXD3i_0_5
|
|
| harassmentgrowl.com/sbar.json?key=fd40b682a05e4aaf489d29601350aa66 | 172.240.127.234 | 200 OK | 12 kB |
URL GET HTTP/1.1harassmentgrowl.com/sbar.json?key=fd40b682a05e4aaf489d29601350aa66 IP172.240.127.234:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectharassmentgrowl.com FingerprintEF:3A:DF:32:71:10:91:85:74:56:59:09:21:58:8E:10:A1:16:D1:8A ValidityMon, 06 May 2024 12:54:15 GMT - Sun, 04 Aug 2024 12:54:14 GMT
Hash2c96d32146177bc97bccf97d92f28e7f 14ed14aebf6c351efacec1a014be32db2162d972 d921b681ff30f103ac628260833ab65aa404b053aeecc4115d1852170f173dc3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /sbar.json?key=fd40b682a05e4aaf489d29601350aa66 HTTP/1.1
Host: harassmentgrowl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 17:02:36 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://videzz.net
Access-Control-Allow-Origin: https://videzz.net
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=19071538; expires=Sat, 11 May 2024 17:02:35 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 11 May 2024 17:02:36 GMT; secure; SameSite=None
uncs=1; expires=Sat, 11 May 2024 17:02:36 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sat, 11 May 2024 17:02:36 GMT; secure; SameSite=None
uncs29=1; expires=Sat, 11 May 2024 17:02:36 GMT; secure; SameSite=None
slecfd40b682a05e4aaf489d29601350aa66=[5210995,5210997]; expires=Fri, 10 May 2024 17:02:41 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 794c086fce3096df4700d52258151a51
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| dog.seetron.net/api/users/424503?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-aqb9ov6imh54.html&sid=8b94d829-237c-4a03-ba32-3d5b603b3f41&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=177684 | 135.181.208.216 | 200 OK | 678 B |
URL GET HTTP/2dog.seetron.net/api/users/424503?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-aqb9ov6imh54.html&sid=8b94d829-237c-4a03-ba32-3d5b603b3f41&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=177684 IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjecta.bdsmz.tube FingerprintAA:4D:03:7A:4E:94:8C:76:58:6E:53:CC:8E:99:24:E6:51:84:BF:05 ValidityFri, 03 May 2024 10:27:08 GMT - Thu, 01 Aug 2024 10:27:07 GMT
File typeASCII text, with very long lines (820), with no line terminators Hashdcb63bb136658caa20c61cc07b327b07 adf756f74a05f241f65849e9ad65ccbe84f6d58e b43bf8c275b23a0191af51667e36418ab3f90fee058daea3e296b29be231d8a9
GET /api/users/424503?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-aqb9ov6imh54.html&sid=8b94d829-237c-4a03-ba32-3d5b603b3f41&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=177684 HTTP/1.1
Host: dog.seetron.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:37 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: nauid=3PdhqasmQC9yTysdEagG; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/sm.25.html | 104.22.70.197 | 200 OK | 716 B |
URL GET HTTP/3static.addtoany.com/menu/sm.25.html IP104.22.70.197:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeHTML document, ASCII text, with very long lines (744), with no line terminators Hashc3c97893ca5c74e7504aa4ec474ea41b cdccb12d7e73682e0e807107243ede7d5e14c962 b79f65e9ffe3bad9bd9cdcffed0758430f7eb1a630c368dc173eecdeb2821f00
GET /menu/sm.25.html HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:34 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=31%2FEUiBaXPt8cxtkc%2FT4P6x%2BgAHE8dlZKktVqOYLVPWpw%2BfHglaE0%2B2%2FM9CjPirtpgf0Bigqvmt%2B9LVqgh2toon%2FHhopHKjFbbaQkJ0g%2F8jA5jvQMZE7K%2BqPFywD9a7gr7TP8ZDbPRsnYjqVQMeihc8V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 27819
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 881b7f6c0f3592f8-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.yourwebbars.com/sb/notifications/gambling/default/android-btn/8/index.html | 172.67.74.218 | 200 OK | 1.4 kB |
URL GET HTTP/2cdn.yourwebbars.com/sb/notifications/gambling/default/android-btn/8/index.html IP172.67.74.218:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49 ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (1528), with no line terminators Hashe0adf77c0018ca4bbdea4d444a33c1e4 0eb2ec58424d9b07a49a0edf0a0efcf44ee8df13 0cfe04bb8227ac43f186cfc30dbfed963b8043e83704779f1f5ec744ed57d876
GET /sb/notifications/gambling/default/android-btn/8/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:36 GMT
content-type: text/html
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 161533
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y%2FwTtm1A9ywlOp97GvFlubk4lA1h2u6GEUY6%2FsksWqkjQltUw6nG9bA6xwAQp%2BpQpESQLJioYjP8VVjFzIlm7tPxXI6rqr%2BPAmbMiFJAtjybr0WME1my%2Baqu87TL0cbaFfC%2F5Gk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b7f74bffab4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mgkstatic33.b-cdn.net/43461/build/funnel.js | 194.242.11.186 | 200 OK | 735 kB |
URL GET HTTP/2mgkstatic33.b-cdn.net/43461/build/funnel.js IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerSectigo Limited Subject*.b-cdn.net FingerprintFC:D9:3E:09:69:F5:9D:8A:AA:45:73:03:05:F1:8D:E4:5B:80:10:E4 ValiditySun, 05 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
Size735 kB (735343 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /43461/build/funnel.js HTTP/1.1
Host: mgkstatic33.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 1367785
cdn-uid: 6f116605-ddce-4644-a514-65e3765b9786
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: max-age=3600
etag: W/"154334f976eb4c2bbea602efb4ad82ce"
last-modified: Wed, 13 Mar 2024 15:17:26 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx00000171f16e097b1d7c2-0065f29eca-5281cd5d-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: b0c9cd13-c401-4707-9471-40949c09e155
cf-cache-status: HIT
cf-ray: 869b6440a89156bb-OSL
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/25/2024 02:15:10
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 203d11561ebff2468ba02ec6ad1bf6ff
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| prfectnewoffers.net/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 188.114.96.1 | 200 OK | 1.2 kB |
URL GET HTTP/3prfectnewoffers.net/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP188.114.96.1:443
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerLet's Encrypt Subjectprfectnewoffers.net FingerprintFF:D8:95:43:76:67:B6:52:98:93:00:95:5A:76:EF:D4:D3:15:07:F3 ValidityWed, 10 Apr 2024 05:08:54 GMT - Tue, 09 Jul 2024 05:08:53 GMT
File typeHTML document, ASCII text, with very long lines (1271), with no line terminators Hash40d981045a7516cdadd00e8dccc9c58d 8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3 71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: prfectnewoffers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: application/javascript
last-modified: Wed, 08 May 2024 09:31:53 GMT
etag: W/"663b4689-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0Ii7z4N4Do%2BzVKL4nU0USn8z8p7GTrPmNR8ot8flJoqz6WbwqR%2Fe80PsQA59IUro5PADuMUZG5KH1gn9XQJxxdPWh0R%2FvaEuIZJyYLFYR8KT4%2Fya8gTfvw10fHxoFuG5qqdcoG0J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b7fac6d0a712f-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 12 May 2024 17:02:45 GMT
cache-control: max-age=172800, public
content-encoding: gzip
|
|
| videzz.net/js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 140 kB |
URL GET HTTP/2videzz.net/js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33 ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT
Size140 kB (140132 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-aqb9ov6imh54.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 17:02:34 GMT
content-type: application/javascript
last-modified: Sat, 27 Apr 2024 07:30:28 GMT
vary: Accept-Encoding
etag: W/"662ca994-22364"
expires: Sun, 09 Jun 2024 17:01:54 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/sub/0YDX8OE | 172.67.205.77 | 200 OK | 234 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/0YDX8OE IP172.67.205.77:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashaf2b6f5e906532aa6d51ed7dcbb8fed7 5ddca712e64ecb7520e561656c87079ec18e3db1 eced93383f70dca1dcfe0998bcccf8d3fe044a0f1646f0ffa670cf0b14f599f3
GET /sub/0YDX8OE HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KaS1pe6lJZ141vgP6bGULe98P5yogbCnZa%2FK7PVVhHB9SU46fsnquv9wxwK1ZvTrAqFEq2gsjeJg98T6lJ2S5AVgjf84gCQLM6Gbdylm4DGzqBdrq2jQy4I3YeHaSD%2FcZRbE0gWfA80%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7f6d5da9b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/animate.css | 188.114.96.1 | 200 OK | 79 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/animate.css IP188.114.96.1:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash49a38187f94418e173e4bcc50c96dc4b b64e899d0c6bbb13e6f63e191b77b3eb5e5a6293 92db03d6a48c8756e15b1b2ffb9d1ea5aae5e2d9a706b630f93f73e3debbb3b0
GET /sb/notifications/gambling/default/android-btn/8/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:36 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: W/"65aa8644-13365"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
cf-cache-status: HIT
age: 842742
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xYK0O42miUc9HrKwD2CBhb%2FNLlZYT7Uif%2BtX88g96aASx065MG3RE3gWTS%2BymNseGJr3kmace%2BBU5ZW95AmNcMNaL%2BPCEpu97KQl2DH1ttOAjXc7VC2Yn%2BKddcjvFIu%2Bl1%2BbYTq7FICL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b7f757b4f56b9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tgp1.brazzersnetwork.com/_p1cdn/tour/atlaslib-js.6f2e1c48.js | 66.254.114.234 | 200 OK | 40 kB |
URL GET HTTP/2tgp1.brazzersnetwork.com/_p1cdn/tour/atlaslib-js.6f2e1c48.js IP66.254.114.234:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerLet's Encrypt Subjectbrazzersnetwork.com Fingerprint88:AB:08:D2:E9:0E:FD:34:1F:CD:0A:B3:E0:9F:DB:C8:07:2F:D4:AA ValidityWed, 10 Apr 2024 00:01:06 GMT - Tue, 09 Jul 2024 00:01:05 GMT
File typeJavaScript source, ASCII text, with very long lines (40283), with no line terminators Hash44086a9f945c2c345183cb951c5e8b60 72f7e7293a1b8862436f457b2d82589a12ce17f5 c0a3c7e552bc83c5678550d191559c46761c1e6d8d49060912b3c3d8460fba0b
GET /_p1cdn/tour/atlaslib-js.6f2e1c48.js HTTP/1.1
Host: tgp1.brazzersnetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:38 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 19 Apr 2024 16:04:23 GMT
etag: W/"3ac93c13f-9d5b-616753dbc4fc0"
expires: Mon, 19 Aug 2024 02:57:09 GMT
cache-control: max-age=10486975
content-encoding: gzip
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
x-cdn-diag: dfw1-15011-1-10627-h-0-0---;15010-132-5118----0-0-1
set-cookie: __s=663E532E-42FE72EA01BB1B67A8-2C67E8;
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| prfectnewoffers.net/css/flow.css?id=1a2dada5ba76c1b29ae1 | 188.114.96.1 | 200 OK | 385 B |
URL GET HTTP/3prfectnewoffers.net/css/flow.css?id=1a2dada5ba76c1b29ae1 IP188.114.96.1:443
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerLet's Encrypt Subjectprfectnewoffers.net FingerprintFF:D8:95:43:76:67:B6:52:98:93:00:95:5A:76:EF:D4:D3:15:07:F3 ValidityWed, 10 Apr 2024 05:08:54 GMT - Tue, 09 Jul 2024 05:08:53 GMT
File typeASCII text, with very long lines (387), with no line terminators Hash716b5bae177d32d4cd7705aea9c3aea6 528d34269613ca77e628a9f9e96c860db310b30e 5a4a12046a65a7d262113515770984da1c25d37e7e85cb169de334467043d386
GET /css/flow.css?id=1a2dada5ba76c1b29ae1 HTTP/1.1
Host: prfectnewoffers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: text/css
last-modified: Fri, 26 Apr 2024 12:57:10 GMT
vary: Accept-Encoding
etag: W/"662ba4a6-181"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-proc: 1
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 6949
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Iii5xUU9aw2g6bOpLHI7imRmIkiFEgxVT62SG4Fb%2BIoACnBfzObpDny1sYFB%2FmYMIaJq954rRfglBGMFCwqdxUTogrG%2FMZjgu2rM4MuTFeohkstPOs9aki7Po6s1QykCYwSm5ER4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7fac3cdf712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| downstairsnegotiatebarren.com/sfp.js | 188.114.96.1 | 200 OK | 86 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP188.114.96.1:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 2b712e7f89c68260aeeb6211ae9ea97a
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 10 May 2024 17:02:35 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=msxpR7ofAEsTJIfpsLhqXBRx70UnpWe1KaH8%2BgO7XkqIeuhsMh3mKzTFH4CS8isXr2Uqbw2P1%2BokcYXDiT%2FpenBq6eetDv9uEKjBicPT8Z0r2jSSA12jvS0fznXq%2BEfrZTM81qREBEtcMBFrMXafXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b7f6d783c1c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/confetti.gif | 188.114.96.1 | 200 OK | 206 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/confetti.gif IP188.114.96.1:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeGIF image data, version 89a, 480 x 360 Size206 kB (206291 bytes) Hash0b33face774f2203446507ce5f075538 1dd3522529bce7739df0687f47f5bc84356698a0 ac345899461d5634d25c47281b10e3c1886abb33019e2ce8140573a79e9f52f2
GET /sb/notifications/gambling/default/android-btn/8/img/confetti.gif HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:36 GMT
content-type: image/gif
content-length: 206291
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: "65aa8644-325d3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 858183
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CBVlJ7713zxzMCaJ6kY1VnuyXsMzRfiQGXYE7WzTCZFFeXHScYOI1KHlwSJXusPdj%2BFnupdVWA2JutlNdSFKUG1%2FoLQ6KHANC4GkyvKnzQGG4PAZq0AlHmHDrmUCzejFbtSucLprnBaU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b7f76597756c1-OSL
alt-svc: h3=":443"; ma=86400
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R7_04.jpg | 64.210.135.118 | 404 Not Found | 0 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R7_04.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R7_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6140-1-2441-h-0-0---;6140-19-2936----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/modules/core.BRQnzO8v.js | 104.22.70.197 | 200 OK | 72 kB |
URL GET HTTP/3static.addtoany.com/menu/modules/core.BRQnzO8v.js IP104.22.70.197:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash629401c31553d2f42a6ca46e58c2a97b 0ab6084caa72f90913c7e4119f491838726ec5c2 91b9b24f0aa59668e4d0a770ee7a294b9baa361a76a20ade8128cd0482a5d805
GET /menu/modules/core.BRQnzO8v.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:34 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
cf-bgj: minify
etag: W/"25da5432b1057724b8210f17e9b9db05"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9is32%2FvBRjKBMF%2BBEdP7sN4xINU%2FGCfuJuuuQf7jR0OhsmJZXKf2mdBIWRxQZC2Xdb%2Fu4CIqU4D7O62VmM5Sr%2FSS%2FfBC%2F%2BHVMfwaHKXWIcGc9wRp0B%2B1xU6yUr79Ax7dbmD2Vmzn"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 27810
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 881b7f6c0f3f92f8-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bid.bidclickmedia.com/sub/Zj8D76R | 172.67.205.77 | 200 OK | 234 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/Zj8D76R IP172.67.205.77:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashaa39ce14ee4ef59a81b3b1ccc7c20cfb 4037f87db53a18212b896cbe7dc03404833bd9f4 5e96980309ab1a029fa20a02fb9aca51a5967df4e6ab8aaab5f0373d4ebd4f68
GET /sub/Zj8D76R HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fuucMi8Zls2lnIt7DBpjx6Rc4EPTEmDDyXI7bg92FDFcZIDHCxNOfZBQQ3OWOCOWGTOIkV0lZXaaFSlEj0VG1z%2F0ZiEYlwbhHouJHEZ6dtQNnWQt5qhhXRLqXm0ZkUb6ncALfxqQIjE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7f6d4d96b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/whatsapp.js | 104.22.70.197 | 200 OK | 1.1 kB |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/whatsapp.js IP104.22.70.197:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (1122), with no line terminators Hashd822c46f36a55fdbfcc5029e62e19937 c575da68fa99eeb33863f281395755cbf20004d4 062ec1f7c3acea435122961b771eb2e4d136a3e870b17d3e811413f5aa78ed3e
GET /menu/svg/icons/whatsapp.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"83af4df8173e43227812296bb8542dcf"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eMNCF5cuYNbdgSQIYvGvJmAiNyrh4kdkShQKpIHbislO3uUBlP2WcmvA7CwUz25UAwFVWMunJPGRuiI78m2oYPQhcG%2FLrEnWp7pzWU%2BujyuRcJns%2FzbfiyL7PHZhZxHqwBORwnEho8YWG5UW6DUZlpFo"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 27811
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 881b7f6fac2392f8-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.itskiddien.club/?rb=JbmjAuwJaS9AuOA0MEsrnXD90TnYr2xZPBsnxMBgsBhcF8E58ot432uVfD12-faNs79jRisrDPmAUR4wKiTMBrE6G5L1AfvAs03jh326z1GPDLqIP8xE7RG5Jn-oduv9wrAvztE_PVR0lQBOGLjm1oNzJiGf3ymHhuX15EzxmRh0uRFZJZ337ZOUc40H7GETbSHBsQ5jAaKZStOh0PqN-L5cnTEsTSdTVjRACKSIpJbsj-h0igD9cUmH3cgpy8Y0M54Omyf2ZpTxsXdq&request_ab2=0&zoneid=5902452&js_build=iclick-v1.792.1-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=12&pl=https%3A%2F%2Fvidezz.net%2Fembed-aqb9ov6imh54.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.792.1-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=efb2f773-943e-4b91-a376-260b4afbb266&userId=0080582d6b1e4e76fb017d5e97ad840e&m=link | 139.45.197.236 | 200 OK | 2.8 kB |
URL GET HTTP/2cdn.itskiddien.club/?rb=JbmjAuwJaS9AuOA0MEsrnXD90TnYr2xZPBsnxMBgsBhcF8E58ot432uVfD12-faNs79jRisrDPmAUR4wKiTMBrE6G5L1AfvAs03jh326z1GPDLqIP8xE7RG5Jn-oduv9wrAvztE_PVR0lQBOGLjm1oNzJiGf3ymHhuX15EzxmRh0uRFZJZ337ZOUc40H7GETbSHBsQ5jAaKZStOh0PqN-L5cnTEsTSdTVjRACKSIpJbsj-h0igD9cUmH3cgpy8Y0M54Omyf2ZpTxsXdq&request_ab2=0&zoneid=5902452&js_build=iclick-v1.792.1-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=12&pl=https%3A%2F%2Fvidezz.net%2Fembed-aqb9ov6imh54.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.792.1-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=efb2f773-943e-4b91-a376-260b4afbb266&userId=0080582d6b1e4e76fb017d5e97ad840e&m=link IP139.45.197.236:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectitskiddien.club FingerprintF8:F5:E1:2A:73:41:2E:21:C2:B1:A0:A3:DE:9D:2D:B2:87:3F:8E:5D ValidityFri, 29 Mar 2024 21:36:27 GMT - Thu, 27 Jun 2024 21:36:26 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (2787), with no line terminators Hashbc88f21b7a160ef5334f4529a38c37ab 52c6db8dcfd66ce80fa9223480b3b59f070eec02 fe86f7daa63d7336937a495d4041f218bcf40a12a422056c1a7df0fd92b75b57
GET /?rb=JbmjAuwJaS9AuOA0MEsrnXD90TnYr2xZPBsnxMBgsBhcF8E58ot432uVfD12-faNs79jRisrDPmAUR4wKiTMBrE6G5L1AfvAs03jh326z1GPDLqIP8xE7RG5Jn-oduv9wrAvztE_PVR0lQBOGLjm1oNzJiGf3ymHhuX15EzxmRh0uRFZJZ337ZOUc40H7GETbSHBsQ5jAaKZStOh0PqN-L5cnTEsTSdTVjRACKSIpJbsj-h0igD9cUmH3cgpy8Y0M54Omyf2ZpTxsXdq&request_ab2=0&zoneid=5902452&js_build=iclick-v1.792.1-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=12&pl=https%3A%2F%2Fvidezz.net%2Fembed-aqb9ov6imh54.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.792.1-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=efb2f773-943e-4b91-a376-260b4afbb266&userId=0080582d6b1e4e76fb017d5e97ad840e&m=link HTTP/1.1
Host: cdn.itskiddien.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Cookie: OAID=00805837d1974044e79e849144625bbf; oaidts=1715360558
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:38 GMT
content-type: application/json
x-trace-id: ba24b4d45671b3588793f61b89e465ba
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://videzz.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=0080582d6b1e4e76fb017d5e97ad840e; expires=Sat, 10 May 2025 17:02:38 GMT; path=/; secure; SameSite=None
oaidts=1715360558; expires=Sat, 10 May 2025 17:02:38 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 17 May 2024 17:02:38 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| videzz.net/sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 42 kB |
URL GET HTTP/2videzz.net/sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33 ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT
File typeJavaScript source, ASCII text, with very long lines (42324), with no line terminators Hash764aafd976dd9cd9f33279bfafa02908 e9ad856ec00bccfdcbe17b79113681685c943b8d 2c20e295faeb1ef24dae1e26caa5089fdb2ba5a36a86a6a26780b8a515ca99aa
GET /sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-aqb9ov6imh54.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 17:02:34 GMT
content-type: application/javascript
last-modified: Sat, 27 Apr 2024 07:30:27 GMT
vary: Accept-Encoding
etag: W/"662ca993-a554"
expires: Sun, 09 Jun 2024 17:02:07 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/twitter.js | 104.22.70.197 | 200 OK | 645 B |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/twitter.js IP104.22.70.197:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (655), with no line terminators Hash671b3272826b2e03f7f5ecc6846a4f83 bcd620154cd6381ddf84b4e17e53ad716f3acbea b743f6ed35f2a170860cfb010577cd000ee695dc23b850d3b3e479ef1178bb22
GET /menu/svg/icons/twitter.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"af2b829f9b79fabec7c0148a8b7e444b"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pDPgy6%2FCFco7ZqeYZITOPpe4G7aTd1GkCTxJkCzo3%2Faq1nSc8YCKI5rv%2FEc26ZobIVPfG95wngqxtuC1v6ytV7ocv34Wmf%2FCJNYbd0Rt8Iro2ga8%2Bx3Q3cFEQLvZQNh9dar9LmUpfyutdXuKILUrcx88"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 27811
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 881b7f6fac2092f8-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319 | 174.137.133.17 | 302 Found | 1.4 kB |
URL GET HTTP/1.1xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerSectigo Limited Subject*.zeusadx.com FingerprintAA:67:88:35:5F:BC:20:3C:44:9B:00:BD:4F:E1:C0:5F:62:D0:69:C0 ValidityMon, 23 Oct 2023 00:00:00 GMT - Wed, 23 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=531847&auth=KhbHhS&pubid=162319 HTTP/1.1
Host: xml.zeusadx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 10 May 2024 17:02:40 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://becast.onionlive.workers.dev/
|
|
| allvideometrika.com/f.php?sid=212515 | 188.114.96.1 | 200 OK | 0 B |
URL GET HTTP/2allvideometrika.com/f.php?sid=212515 IP188.114.96.1:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectallvideometrika.com Fingerprint0F:3F:B1:7E:F7:3C:77:24:1C:85:B2:89:15:11:43:1A:AD:64:DF:13 ValidityTue, 23 Apr 2024 13:34:13 GMT - Mon, 22 Jul 2024 13:34:12 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /f.php?sid=212515 HTTP/1.1
Host: allvideometrika.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.1.33
cache-control: no-store, no-cache, must-revalidate, max-age=0
x-robots-tag: noindex
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u6hTKpfFAoCN3BaW7zjHFuWU44qtlJsRDk4pkv80KzSvX%2Fmjuy3S8IR62jdZB9WTQZa1qKdut0nKsnNmTthRlr7r9SinqSwA6dlk2pzVwerYTQCRkkXRjgVPqOefRr9rsXvYXOiL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7f709a7b0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mgkstatic33.b-cdn.net/43461/images/Icon-ionic-md-trophy.png | 194.242.11.186 | 200 OK | 4.0 kB |
URL GET HTTP/2mgkstatic33.b-cdn.net/43461/images/Icon-ionic-md-trophy.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerSectigo Limited Subject*.b-cdn.net FingerprintFC:D9:3E:09:69:F5:9D:8A:AA:45:73:03:05:F1:8D:E4:5B:80:10:E4 ValiditySun, 05 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File typePNG image data, 71 x 72, 8-bit/color RGBA, non-interlaced Hashaa55fd19e5efcaea20c5baf81e722bbc 6e5466aa0c4bf4586f1d6e53ae63f9c1fc1a3f56 3d25d49488fafac19a1fd40686a0d901d245e613db1d0b1ddb9a38fa101c659e
GET /43461/images/Icon-ionic-md-trophy.png HTTP/1.1
Host: mgkstatic33.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: image/png
content-length: 3992
server: BunnyCDN-NO1-830
cdn-pullzone: 1367785
cdn-uid: 6f116605-ddce-4644-a514-65e3765b9786
cdn-requestcountrycode: NO
cache-control: max-age=3600
etag: "aa55fd19e5efcaea20c5baf81e722bbc"
last-modified: Wed, 13 Mar 2024 15:17:30 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx0000052d3ae9d438c6d95-0065f1c7cc-52830f45-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: b0c9cd13-c401-4707-9471-40949c09e155
cf-cache-status: HIT
cf-ray: 869c8b73bf9f0b45-OSL
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/25/2024 05:36:41
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: f9c414d7259d6ef755e148447331056c
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| str27.vidoza.net/i/01/07585/aqb9ov6imh54.jpg?v=1715360553 | 213.152.165.144 | 200 OK | 27 kB |
URL GET HTTP/2str27.vidoza.net/i/01/07585/aqb9ov6imh54.jpg?v=1715360553 IP213.152.165.144:443 ASN#49453 Global Layer B.V.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectvidoza.net FingerprintBB:ED:F5:F9:17:52:AA:FC:EE:8F:98:D4:64:46:12:76:92:0E:B5:CE ValidityFri, 12 Apr 2024 01:22:23 GMT - Thu, 11 Jul 2024 01:22:22 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 720x405, components 3 Hash696185d355f23ce680622c0196991686 9b7af0ac9181df9758884d75959732e294a81db1 aa05e02c78b5a002fac44ab30c9faa510969d818c56e202a4a40d15cac2ad876
GET /i/01/07585/aqb9ov6imh54.jpg?v=1715360553 HTTP/1.1
Host: str27.vidoza.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.20.1
date: Fri, 10 May 2024 17:02:35 GMT
content-type: image/jpeg
content-length: 26712
last-modified: Fri, 12 Apr 2024 22:04:44 GMT
etag: "6619affc-6858"
expires: Fri, 24 May 2024 17:02:35 GMT
cache-control: max-age=1209600
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| offmantiner.com/4/6120639/ | 139.45.197.245 | 200 OK | 34 kB |
URL GET HTTP/2offmantiner.com/4/6120639/ IP139.45.197.245:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectoffmantiner.com FingerprintD7:99:54:4F:68:91:39:12:41:98:52:CC:F1:74:C6:3C:1F:93:F3:04 ValidityMon, 25 Mar 2024 05:10:58 GMT - Sun, 23 Jun 2024 05:10:57 GMT
File typeHTML document, ASCII text, with very long lines (18247) Hash54eeba202a8b19215884d2746b090409 db6acc34b1c315cd1ce7750dbace39817eb3b208 5177481bae24b720698c4d937eeff4563aabcd34e4c00f677721f1d3b6522d73
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /4/6120639/ HTTP/1.1
Host: offmantiner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://becast.onionlive.workers.dev/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html; charset=utf8
x-trace-id: 944cfa9bc6dfc0f3635728e6f3ae591b
link: <https://yonmewon.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00805836eabc4f49fd7e2eb404de958c; expires=Sat, 10 May 2025 17:02:41 GMT; path=/; secure; SameSite=None
oaidts=1715360561; expires=Sat, 10 May 2025 17:02:41 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R6_02.jpg | 64.210.135.118 | 404 Not Found | 0 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R6_02.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R6_02.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7619-3-13368-h-0-0---;6140-24-2936----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| static2-ma-ht.project1content.com/tour/@one/blocks/async/ImageBlock.9e0ed0d5.js | 64.210.135.118 | 200 OK | 5.2 kB |
URL GET HTTP/2static2-ma-ht.project1content.com/tour/@one/blocks/async/ImageBlock.9e0ed0d5.js IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (5353), with no line terminators Hash1a73ed0c18086780f0ac9cfa49639cdc 7ec64627ffbedff65077ddf57bd25f39f337df8b 840c01ac8c3f7828f61a80074b339c3fa501243e11b9c9805bbf0333926b7b50
GET /tour/@one/blocks/async/ImageBlock.9e0ed0d5.js HTTP/1.1
Host: static2-ma-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:40 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 29 Apr 2024 20:40:22 GMT
etag: W/"3ad79779b-1465-6174243245980"
expires: Fri, 30 Aug 2024 23:10:33 GMT
cache-control: max-age=10574437
content-encoding: gzip
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
x-cdn-diag: ams5-6141-2-18686-h-0-0---;6140-22-2936----0-0-0
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R1_02.mp4 | 64.210.135.118 | 206 Partial Content | 1.7 MB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R1_02.mp4 IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
Size1.7 MB (1747722 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R1_02.mp4 HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Fri, 10 May 2024 17:02:40 GMT
content-type: video/mp4
content-length: 1747722
last-modified: Fri, 05 May 2023 17:32:03 GMT
etag: "34858f338-1aab0a-5faf5aacc4ac0"
expires: Fri, 02 Aug 2024 21:35:47 GMT
cache-control: max-age=10714773
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
content-range: bytes 0-1747721/1747722
x-cdn-diag: ams5-6249-2-22217-h-0-0---;6140-20-2936----0-0-0
X-Firefox-Spdy: h2
|
|
| videzz.net/embed-aqb9ov6imh54.html | 78.142.18.54 | 200 OK | 32 kB |
URL User Request GET HTTP/2videzz.net/embed-aqb9ov6imh54.html IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33 ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT
File typeHTML document, ASCII text, with very long lines (1926), with CRLF, LF line terminators Hash54e279f936e58e0e11124e8a95e3c8fb 75074d71da336e0dea3fe3e675b67f753e4302a6 e108410f20321980fcefa45bdb12b87e8ec5178475640703f864881ded26646f
GET /embed-aqb9ov6imh54.html HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 17:02:33 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 09 May 2024 17:02:33 GMT
x-frame-options: 1
set-cookie: lang=1; domain=.videzz.net; path=/; HttpOnly
xfsts=; domain=.videzz.net; path=/; expires=Thu, 11-May-2023 17:02:33 GMT; HttpOnly
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| dog.seetron.net/api/settings/59846 | 135.181.208.216 | 200 OK | 33 B |
URL GET HTTP/2dog.seetron.net/api/settings/59846 IP135.181.208.216:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjecta.bdsmz.tube FingerprintAA:4D:03:7A:4E:94:8C:76:58:6E:53:CC:8E:99:24:E6:51:84:BF:05 ValidityFri, 03 May 2024 10:27:08 GMT - Thu, 01 Aug 2024 10:27:07 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash511ff610a0435434dd22a4836719fbb3 0cf692a9ecb6dd3d715e3315e0eeccc1c384f0c3 d090111da31c837d965f1dcf49b00a53cf41686d0913627f78c5ff36d693c6d0
GET /api/settings/59846 HTTP/1.1
Host: dog.seetron.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:34 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| clientstream.launchdarkly.com/eval/63bdba6ee6d64c12826b8bff/eyJrZXkiOiJ1c2VyLWtleS10b3VyIiwibmFtZSI6IlRvdXIgTGF1bmNoRGFya2x5IiwiZW1haWwiOiJtaW5kZ2Vla0BleGFtcGxlLmNvbSIsImN1c3RvbSI6eyJicmFuZElkIjozLCJpbnN0YW5jZUlkIjoyODE2OTEsImlzRGV2IjpmYWxzZSwiaXNJbnRlcm5hbFVzZXIiOmZhbHNlLCJyb290RW52IjoicHJvZCIsInNpdGVJZCI6MTMwMX19 | 0.0.0.0 | | 0 B |
URL GET clientstream.launchdarkly.com/eval/63bdba6ee6d64c12826b8bff/eyJrZXkiOiJ1c2VyLWtleS10b3VyIiwibmFtZSI6IlRvdXIgTGF1bmNoRGFya2x5IiwiZW1haWwiOiJtaW5kZ2Vla0BleGFtcGxlLmNvbSIsImN1c3RvbSI6eyJicmFuZElkIjozLCJpbnN0YW5jZUlkIjoyODE2OTEsImlzRGV2IjpmYWxzZSwiaXNJbnRlcm5hbFVzZXIiOmZhbHNlLCJyb290RW52IjoicHJvZCIsInNpdGVJZCI6MTMwMX19 IP0.0.0.0:0
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerAmazon Subjectclientstream.launchdarkly.com FingerprintF2:89:08:7D:7F:36:9E:23:89:08:EA:54:96:96:6A:28:5F:54:7A:8D ValidityWed, 09 Aug 2023 00:00:00 GMT - Thu, 05 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /eval/63bdba6ee6d64c12826b8bff/eyJrZXkiOiJ1c2VyLWtleS10b3VyIiwibmFtZSI6IlRvdXIgTGF1bmNoRGFya2x5IiwiZW1haWwiOiJtaW5kZ2Vla0BleGFtcGxlLmNvbSIsImN1c3RvbSI6eyJicmFuZElkIjozLCJpbnN0YW5jZUlkIjoyODE2OTEsImlzRGV2IjpmYWxzZSwiaXNJbnRlcm5hbFVzZXIiOmZhbHNlLCJyb290RW52IjoicHJvZCIsInNpdGVJZCI6MTMwMX19 HTTP/1.1
Host: clientstream.launchdarkly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/event-stream
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:40 GMT
content-type: text/event-stream; charset=utf-8
accept-ranges: bytes
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Cache-Control,X-Requested-With,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: *
access-control-max-age: 300
cache-control: no-cache, no-store, must-revalidate
ld-region: eu-west-1
strict-transport-security: max-age=31536000; includeSubDomains
x-content-length: 877
X-Firefox-Spdy: h2
|
|
| prfectnewoffers.net/js/l.js?id=f699e0c1aa11fe1bdd00 | 188.114.96.1 | 200 OK | 422 kB |
URL GET HTTP/3prfectnewoffers.net/js/l.js?id=f699e0c1aa11fe1bdd00 IP188.114.96.1:443
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerLet's Encrypt Subjectprfectnewoffers.net FingerprintFF:D8:95:43:76:67:B6:52:98:93:00:95:5A:76:EF:D4:D3:15:07:F3 ValidityWed, 10 Apr 2024 05:08:54 GMT - Tue, 09 Jul 2024 05:08:53 GMT
Size422 kB (421698 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/l.js?id=f699e0c1aa11fe1bdd00 HTTP/1.1
Host: prfectnewoffers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 Apr 2024 12:57:10 GMT
vary: Accept-Encoding
etag: W/"662ba4a6-66f42"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-proc: 1
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 6852
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uPlo0iabobOedANGYeZHWfRfWFWtw6MXLIynagh6S1t6C%2BtoyjwFFfIsO8u7bXLSVtrgqbXG1ncbWfTIj0wliPLUKdZl8ErNjqJRApNU3mzTDxYPNuJZzTbS%2BmfOvJeyYQ0S9zvW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7fac6d0e712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| downstairsnegotiatebarren.com/sfp.js | 188.114.96.1 | 200 OK | 86 kB |
URL GET HTTP/3downstairsnegotiatebarren.com/sfp.js IP188.114.96.1:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:36 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: a9f280cec920837c1447045e95c8b33d
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 10 May 2024 17:02:35 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G0VkrW16msQKmf4J26%2FJ8oUQdrNELnoKovG6uzWamLQxdjrq7oY4waVTbS5xLxSms6moIpVvB3F6wczBBWeO%2BzwiVnJPff8Iwa%2F4bj4lCnCP4nXri8l9%2BtRQScB6H0R44ruzp%2FX4WaCmbHxFB4HqvA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b7f721bdeb51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ossgogoaton.com/tag.min.js | 188.114.97.1 | 200 OK | 82 kB |
URL GET HTTP/2ossgogoaton.com/tag.min.js IP188.114.97.1:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectossgogoaton.com FingerprintDE:B3:2A:B0:2A:4A:C3:F8:A3:3F:5B:C6:96:E6:F1:41:55:B4:87:1E ValiditySat, 04 May 2024 10:37:16 GMT - Fri, 02 Aug 2024 10:37:15 GMT
File typeJavaScript source, ASCII text, with very long lines (65494) Hashe56d22d4b078f2116acde5468a10ed4b 1bd53f708a56defabe094073b88a3114e313ae98 a2efe5c73146fd67ce971a6c328f742f4a631f03c79d0827391a2db2a25cae19
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /tag.min.js HTTP/1.1
Host: ossgogoaton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:37 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: 467ef39b7dedd00fb0ad039f6ca6909f
cache-control: max-age=86400
last-modified: Thu, 09 May 2024 10:30:11 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Fri, 10 May 2024 20:57:16 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 72321
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E06zSueyMmcB1dulbYJxe0DU1ztNMzBTciwZ0yuN28PVdx5A5p5wR0hVfjc9d8relr8EdZJLZsy2m8ksAJYe5nF6IyNAzq2amXAfBNNR2g%2FamJeQNtzgtg4gxeD24xMYSss%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b7f7cef5956c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.addtoany.com/menu/svg/icons/viber.js | 104.22.70.197 | 200 OK | 1.0 kB |
URL GET HTTP/3static.addtoany.com/menu/svg/icons/viber.js IP104.22.70.197:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectstatic.addtoany.com Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT
File typeASCII text, with very long lines (1027), with no line terminators Hashb216786a6e2822572e4c78284416fd02 b3a072140d798b6734431ff6a890da7cb8c701ce 265af7156e77fce7638988053d5b3f4894c92ae2bdacac504131a96cf6a0d370
GET /menu/svg/icons/viber.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"ab1da422605fdb35fd02440984d36475"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9M0rb%2BlxK%2FoVsTW%2BGG0gAV%2FZ1piN8S203kYMFo607CVx%2Fjmecxu8H4kL7bp9jwZt8Egtrpb0rM6tKdsDVCVUAUglqOvAhCFDY1u8NVb6rrNNTQXdM8uqjyqMNub3NThTQ85aCzQ%2FFd2quzTVwUO62Ob6"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 27811
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 881b7f6fac2192f8-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= | 188.114.96.1 | 200 OK | 30 kB |
URL GET HTTP/2prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= IP188.114.96.1:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectprfectnewoffers.net FingerprintFF:D8:95:43:76:67:B6:52:98:93:00:95:5A:76:EF:D4:D3:15:07:F3 ValidityWed, 10 Apr 2024 05:08:54 GMT - Tue, 09 Jul 2024 05:08:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= HTTP/1.1
Host: prfectnewoffers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:44 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6Im5WYjZUajFTZWp5cTJNWUoyT0FZV1E9PSIsInZhbHVlIjoiSmFiUExFMHU0Mnp1d0ZBQUVCa0l3QjlhQWNsUGJDd2xWbWd0K2dtK1BBdTlYeFhcL0NoTmJBRnphalFveHRwXC9IIiwibWFjIjoiNDFlN2ZmNjlmNGRhOWIwNDM2NTQxODFjY2FiNmJmM2QxN2EyNWM4NjgzY2I1ZTM3ZjVkZTI0MWYzNTM1ZWIwYSJ9; expires=Fri, 10-May-2024 19:02:44 GMT; Max-Age=7200; path=/
c=eyJpdiI6Im9LQjNFaUpSZWtvUTBEaVZkSXl1U0E9PSIsInZhbHVlIjoiTEhCSllySEdjbWU2c2NyMFNnWEN6QjRtb21PRlN2Z2I0WTJ0VllodTdoSDVMUTBoZStQc1VUd3c4eEFwUThkXC8iLCJtYWMiOiJhZDhiOTU1MDVlMzYxN2E0YWQzZjczMThkYTRjZDM3YTBkMjQyYmQyNjZjN2EwNzhiODMzOTVmNTU2NjUzMzUyIn0%3D; expires=Fri, 10-May-2024 19:02:44 GMT; Max-Age=7200; path=/; httponly
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-proc: 3
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aamU9iC4j7UUt0nfiDc3XOsLTzP1wWp3%2FvKnCw94Sff%2F9zP%2BY5oyLYSyTeQshPaoTcGeYCZApHTNwBF4Avi6wITUpw3paq9ZXsRqCeEl1UMw0AnMQ69xaA8%2BBd5KBmIiCpRPiq%2B5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7fa9ae0556ab-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| prfectnewoffers.net/js/redirect.js?id=7205070985cfaaa84a2b | 188.114.96.1 | 200 OK | 2.7 kB |
URL GET HTTP/3prfectnewoffers.net/js/redirect.js?id=7205070985cfaaa84a2b IP188.114.96.1:443
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerLet's Encrypt Subjectprfectnewoffers.net FingerprintFF:D8:95:43:76:67:B6:52:98:93:00:95:5A:76:EF:D4:D3:15:07:F3 ValidityWed, 10 Apr 2024 05:08:54 GMT - Tue, 09 Jul 2024 05:08:53 GMT
File typeJavaScript source, ASCII text, with very long lines (2812), with no line terminators Hashdb1ca2ad2cadb6217bca95f7084e4dfa 7f0c9879b54c9220d7f62014dfd96dd1eacdb7c8 28e07720845339964050f6b68fd46908907d911a6abc687e2a41fc220ebf4f99
GET /js/redirect.js?id=7205070985cfaaa84a2b HTTP/1.1
Host: prfectnewoffers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 26 Apr 2024 12:57:38 GMT
vary: Accept-Encoding
etag: W/"662ba4c2-ab2"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-proc: 3
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 6948
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E8kysA6CR%2B3qyM%2Fpn4QxFnRQfdhoPMdtuVsRpWQRnf5hVqlTl2PACts560iBqKIqSfj4v9Na7xPbQnjluPK8rsDdMWj%2BgMrNBKqmC3gkCa6C%2FdOBu2p8pg1FcyQM3Zeev66aRivw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7fac6d0c712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319 | 174.137.133.17 | 302 Found | 1.8 kB |
URL GET HTTP/1.1xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerSectigo Limited Subject*.zeusadx.com FingerprintAA:67:88:35:5F:BC:20:3C:44:9B:00:BD:4F:E1:C0:5F:62:D0:69:C0 ValidityMon, 23 Oct 2023 00:00:00 GMT - Wed, 23 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=531847&auth=KhbHhS&pubid=162319 HTTP/1.1
Host: xml.zeusadx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 10 May 2024 17:02:39 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://animewatch.onionlive.workers.dev/
|
|
| absorptionsuspended.com/pixel/purst?dl=0&th=0&sc=0&rs=2049&rd=2049&fd=753&bv=24.5.6485&tmpl=136 | 192.243.59.13 | 200 OK | 0 B |
URL GET HTTP/1.1absorptionsuspended.com/pixel/purst?dl=0&th=0&sc=0&rs=2049&rd=2049&fd=753&bv=24.5.6485&tmpl=136 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectabsorptionsuspended.com FingerprintEB:86:08:12:77:1C:7E:F9:8A:43:90:2A:E6:16:7B:72:20:08:97:16 ValidityFri, 10 May 2024 11:48:20 GMT - Thu, 08 Aug 2024 11:48:19 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/purst?dl=0&th=0&sc=0&rs=2049&rd=2049&fd=753&bv=24.5.6485&tmpl=136 HTTP/1.1
Host: absorptionsuspended.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 10 May 2024 17:02:36 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| xml.zeusadx.com/redirect?feed=552612&auth=OEhoVk&pubid=162319 | 174.137.133.17 | 200 OK | 0 B |
URL GET HTTP/1.1xml.zeusadx.com/redirect?feed=552612&auth=OEhoVk&pubid=162319 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerSectigo Limited Subject*.zeusadx.com FingerprintAA:67:88:35:5F:BC:20:3C:44:9B:00:BD:4F:E1:C0:5F:62:D0:69:C0 ValidityMon, 23 Oct 2023 00:00:00 GMT - Wed, 23 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=552612&auth=OEhoVk&pubid=162319 HTTP/1.1
Host: xml.zeusadx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 17:02:38 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
|
|
| s.pemsrv.com/splash.php?idzone=5040978&type=8&p=https%3A%2F%2Fbid.bidclickmedia.com%2F&tested=1&check=4982d74cc5945eb5f443cbeab8c29c8c&screen_resolution=1280x1024&container_resolution=1916x1076&iframe=1 | 95.211.229.245 | 302 Found | 961 kB |
URL GET HTTP/1.1s.pemsrv.com/splash.php?idzone=5040978&type=8&p=https%3A%2F%2Fbid.bidclickmedia.com%2F&tested=1&check=4982d74cc5945eb5f443cbeab8c29c8c&screen_resolution=1280x1024&container_resolution=1916x1076&iframe=1 IP95.211.229.245:443 ASN#60781 LeaseWeb Netherlands B.V.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectpemsrv.com FingerprintBA:AA:AB:1F:22:EF:D5:0A:2D:0C:D0:E8:1C:F5:D4:F5:29:2A:0D:5D ValidityTue, 30 Apr 2024 07:53:35 GMT - Mon, 29 Jul 2024 07:53:34 GMT
Size961 kB (960678 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /splash.php?idzone=5040978&type=8&p=https%3A%2F%2Fbid.bidclickmedia.com%2F&tested=1&check=4982d74cc5945eb5f443cbeab8c29c8c&screen_resolution=1280x1024&container_resolution=1916x1076&iframe=1 HTTP/1.1
Host: s.pemsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s.pemsrv.com/splash.php?idzone=5040978&type=8
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22663e532d9fffc4.649887702034816262%22%3B%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 10 May 2024 17:02:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: X-CH-VALUES
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22663e532d9fffc4.649887702034816262%22%3B%7D; expires=Sun, 10 May 2026 17:02:37 GMT; path=; domain=.pemsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-link%22%3A%22v4%7C%7CNOR%7C5040978%7C95887222%7C207714%7C%7C508%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C663e532d9fffc4.649887702034816262%7Cc83b2609dce0c49ddeb451cf74df4f3a%7C0%7Cbid.bidclickmedia.com%7C1280x1024%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1715360557%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C3221e04ce38d39ce6f753eeea6590e4b%7Cok%22%7D; expires=Thu, 08 Aug 2024 17:02:37 GMT; path=/; domain=.pemsrv.com; Secure; SameSite=none
Location: https://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A
Accept-CH:
X-Robots-Tag: noindex, follow
|
|
| tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A | 66.254.114.234 | 200 OK | 961 kB |
URL GET HTTP/2tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A IP66.254.114.234:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectbrazzersnetwork.com Fingerprint88:AB:08:D2:E9:0E:FD:34:1F:CD:0A:B3:E0:9F:DB:C8:07:2F:D4:AA ValidityWed, 10 Apr 2024 00:01:06 GMT - Tue, 09 Jul 2024 00:01:05 GMT
Size961 kB (960678 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A HTTP/1.1
Host: tgp1.brazzersnetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.pemsrv.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Fri, 10 May 2024 17:02:38 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-trace: 2BFF2605DE872E68A119386D561A34A8BB8271F1FC2C038A39CDCDB40C00
x-powered-by: Juan
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x_ats_page_id: N/A
x_ats_page_type: CUSTOM
x_ats_instance_id: 281691
x_ats_instance_type: tour
etag: W/"ea8a6-r7Y4O9p02L4l5vs+1TKzfRXqOFg"
content-encoding: br
cache-control: no-transform
set-cookie: instance_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJtaW5kZ2VlayIsImF1ZCI6Im1pbmRnZWVrIiwic3ViIjoiaW5zdGFuY2UtYXBpIiwiZXhwIjoxNzE1NDcyMDAwLCJpZCI6MjgxNjkxLCJicmFuZCI6ImJyYXp6ZXJzIiwiaG9zdG5hbWUiOiJ0Z3AxLmJyYXp6ZXJzbmV0d29yay5jb20ifQ.n2pbKOmhwyO9v1mpoCAMOg6U0G75d7_zcyvQ-rCypNg; Max-Age=86400; Path=/; Expires=Sat, 11 May 2024 17:02:38 GMT
__s=663E532D-42FE72EA01BB1B67A8-2C67CB;
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/js/script.js | 188.114.96.1 | 200 OK | 9.5 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/js/script.js IP188.114.96.1:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeUnicode text, UTF-8 text, with very long lines (8821), with no line terminators Hashd0707ac5d95047febbb8f131cc7a9af4 65021f149e99900eeaf7d298d2303160872b43f3 3e2e7ab351d401339df520fbd7ce4f177643dca01cad22bf59dd4b3e14853810
GET /sb/notifications/gambling/default/android-btn/8/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:36 GMT
content-type: application/javascript
last-modified: Tue, 20 Feb 2024 10:37:31 GMT
etag: W/"65d480eb-24fa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 161532
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aupOBXcLGE9f4zGp703YTfN8MtY5kE5qugdQQRkD4M9HD95R%2BQbL%2BNP4GhVQFwtDRkbOhAtpUaAQvMlNrJqf%2Ff3NpxahYvWlUyoZiKQthHOIYEGkyHolRUGhuOzJpealzggSJKpX1j3m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b7f758b5f56b9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_01.jpg | 64.210.135.118 | 200 OK | 175 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_01.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x430, components 3 Size175 kB (174930 bytes) Hash82b6243c23f0d953afb882aac3895849 b1f439a942a9fb581eb5cddda3b2610ac398946f f813a507a547043121bbe682fb0593635903d3b0e60265f24d129253b2974515
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:42 GMT
content-type: image/jpeg
content-length: 174930
last-modified: Thu, 16 Nov 2023 04:40:58 GMT
etag: "372543ff6-2ab52-60a3da03e8a80"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7846-3-2787-h-0-0---;6140-19-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| videzz.net/css/videojs.5.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 170 kB |
URL GET HTTP/2videzz.net/css/videojs.5.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33 ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT
File typeASCII text, with very long lines (50421) Size170 kB (169541 bytes) Hashbf9af199b5ef61988f82fa239ebf61da d3b9c5ef294f2ef0942a8bf1e62085b72b2e07cc e8e86d55656a068d5bb43e7b65e474162b6dff2c57f314cfc90d25f16708048d
GET /css/videojs.5.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-aqb9ov6imh54.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 17:02:34 GMT
content-type: text/css
last-modified: Sat, 27 Apr 2024 07:30:42 GMT
vary: Accept-Encoding
etag: W/"662ca9a2-29645"
expires: Sun, 09 Jun 2024 17:01:53 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/p1/Integration/Corp_Address/Default/PC/corp_pc.png | 64.210.135.118 | 200 OK | 12 kB |
URL GET HTTP/2static-landing-assets.project1content.com/p1/Integration/Corp_Address/Default/PC/corp_pc.png IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typePNG image data, 1120 x 100, 8-bit/color RGBA, non-interlaced Hash5cbda9703656566001fc4a34a314371e 52cdd8b1bfa196763731ad13fd4860497d041265 7959f5b954ae8b21dadc7b1c0ab61d3bd973f3e1fc516967a18134e13ed76d35
GET /p1/Integration/Corp_Address/Default/PC/corp_pc.png HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:40 GMT
content-type: image/png
content-length: 12017
last-modified: Thu, 31 Aug 2023 19:22:50 GMT
etag: "385cc9a28-2ef1-6043cf843b680"
expires: Sat, 27 Jan 2024 14:33:35 GMT
cache-control: max-age=10602479
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6140-1-2443-h-0-0---;6140-19-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto:400 | 142.250.74.106 | 200 OK | 2.2 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Roboto:400 IP142.250.74.106:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeASCII text, with very long lines (2218), with no line terminators Hash807b0cff287eb02fda9eb3a87e2746a5 34a0af77abd82f106052590a0e624b2803a6572d 35c288796da2ba3b90a7a7ef7e75a5e7eb55cad381d227beda8c5e400a04caff
GET /css?family=Roboto:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 17:02:40 GMT
date: Fri, 10 May 2024 17:02:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R7_01.jpg | 64.210.135.118 | 404 Not Found | 0 B |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R7_01.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /P1TGP/Brazzers/Media/Images/816178_FREE/PC/TGP1/R7_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Fri, 10 May 2024 17:02:41 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7846-3-2788-h-0-0---;6140-18-2936----0-0-0
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2
|
|
| veepteero.com/?rb=BX_R7KuyHiIuKmHQAfZ1PVFn22e_7f_4IIihIgEAhiPuLmRoFf6Z7wHUpIQF5W2zO7qGMnb78LZMpUpk_hnhp86VLTa8y193b3UGnRwM2Z7i8mIlb8faO8YZVQ3Ag0zV3ilgqu67YvN9EJMHNvenAcKtogWG7TTj1I2xeyFNKvGaB0-3hPZe1X9M2paW1BRaDa62hWJAclOHm75NJUQ2AmNpT60Jnx2uX8qR-4as-qy85HtZsW9I9XuWk8kMQNF410UT0Q%3D%3D&request_ab2=0&zoneid=5708417&js_build=iclick-v1.792.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=13&pl=https%3A%2F%2Fvidezz.net%2Fembed-aqb9ov6imh54.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.792.0&navlng=en-US&pnt=0&pnrc=0&bs=836fb075-e4ea-4291-aeba-5c0cabe567d8&wasm=1&userId=0080582d6b1e4e76fb017d5e97ad840e&m=link | 139.45.197.242 | 200 OK | 2.6 kB |
URL GET HTTP/2veepteero.com/?rb=BX_R7KuyHiIuKmHQAfZ1PVFn22e_7f_4IIihIgEAhiPuLmRoFf6Z7wHUpIQF5W2zO7qGMnb78LZMpUpk_hnhp86VLTa8y193b3UGnRwM2Z7i8mIlb8faO8YZVQ3Ag0zV3ilgqu67YvN9EJMHNvenAcKtogWG7TTj1I2xeyFNKvGaB0-3hPZe1X9M2paW1BRaDa62hWJAclOHm75NJUQ2AmNpT60Jnx2uX8qR-4as-qy85HtZsW9I9XuWk8kMQNF410UT0Q%3D%3D&request_ab2=0&zoneid=5708417&js_build=iclick-v1.792.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=13&pl=https%3A%2F%2Fvidezz.net%2Fembed-aqb9ov6imh54.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.792.0&navlng=en-US&pnt=0&pnrc=0&bs=836fb075-e4ea-4291-aeba-5c0cabe567d8&wasm=1&userId=0080582d6b1e4e76fb017d5e97ad840e&m=link IP139.45.197.242:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectveepteero.com Fingerprint13:68:56:48:EC:67:A6:93:BE:E0:36:BC:FA:04:75:6D:6E:D2:C1:91 ValiditySat, 23 Mar 2024 05:18:36 GMT - Fri, 21 Jun 2024 05:18:35 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (2606), with no line terminators Hash76f8513794a3a491267ecaa28d761cc4 7f282289ad2100d04033da47c2fa3aec438a4cd6 86ec1c3b7c4f982ba33eca01246f3c9eb7454520bb7de417cdd6066f254f811f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /?rb=BX_R7KuyHiIuKmHQAfZ1PVFn22e_7f_4IIihIgEAhiPuLmRoFf6Z7wHUpIQF5W2zO7qGMnb78LZMpUpk_hnhp86VLTa8y193b3UGnRwM2Z7i8mIlb8faO8YZVQ3Ag0zV3ilgqu67YvN9EJMHNvenAcKtogWG7TTj1I2xeyFNKvGaB0-3hPZe1X9M2paW1BRaDa62hWJAclOHm75NJUQ2AmNpT60Jnx2uX8qR-4as-qy85HtZsW9I9XuWk8kMQNF410UT0Q%3D%3D&request_ab2=0&zoneid=5708417&js_build=iclick-v1.792.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=13&pl=https%3A%2F%2Fvidezz.net%2Fembed-aqb9ov6imh54.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.792.0&navlng=en-US&pnt=0&pnrc=0&bs=836fb075-e4ea-4291-aeba-5c0cabe567d8&wasm=1&userId=0080582d6b1e4e76fb017d5e97ad840e&m=link HTTP/1.1
Host: veepteero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:38 GMT
content-type: application/json
x-trace-id: 70644403b2f6159ff1809af3a9006521
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://videzz.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=0080582d6b1e4e76fb017d5e97ad840e; expires=Sat, 10 May 2025 17:02:38 GMT; path=/; secure; SameSite=None
oaidts=1715360558; expires=Sat, 10 May 2025 17:02:38 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 17 May 2024 17:02:38 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Droid+Sans:400,700 | 142.250.74.106 | 200 OK | 802 B |
URL GET HTTP/3fonts.googleapis.com/css?family=Droid+Sans:400,700 IP142.250.74.106:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeASCII text, with very long lines (818), with no line terminators Hashbca91bbc2743e50ceae52c54a7c5665a 99ffec546f5963c56cb898f6609a9f8ae4edaca4 644a4a68c82188fc10feb8438e750bda879e97cf82c2799022768704d306409c
GET /css?family=Droid+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 17:02:40 GMT
date: Fri, 10 May 2024 17:02:40 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| s.o333o.com/adgpt.js | 85.10.205.45 | 200 OK | 2.0 kB |
IP85.10.205.45:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerSectigo Limited Subjects.o333o.com FingerprintC1:C0:0F:C0:EF:0F:F7:7A:36:2F:00:9E:5C:55:63:54:63:A3:A6:46 ValidityMon, 12 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT
File typeASCII text, with very long lines (2144), with no line terminators Hash15c5faf13e6a9fe6956e7a9f8dfc1fe4 d323e8b5e73a2b8697c980370840e9c7b574ad68 53e483dd657b4fb19cce7d604e2b5890d0694b9a2c9190279151ac830d24ba81
GET /adgpt.js HTTP/1.1
Host: s.o333o.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:34 GMT
content-type: application/javascript
content-length: 820
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
vary: Accept-Encoding
etag: "65fd69b1-334"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
X-Firefox-Spdy: h2
|
|
| cdn.itskiddien.club/apu.php?zoneid=5902452&var=5708419 | 139.45.197.236 | 200 OK | 94 kB |
URL GET HTTP/2cdn.itskiddien.club/apu.php?zoneid=5902452&var=5708419 IP139.45.197.236:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectitskiddien.club FingerprintF8:F5:E1:2A:73:41:2E:21:C2:B1:A0:A3:DE:9D:2D:B2:87:3F:8E:5D ValidityFri, 29 Mar 2024 21:36:27 GMT - Thu, 27 Jun 2024 21:36:26 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash03a89c9017434db9a3ee384c3581299a a0172b73a6060d6a2bfe035ceee4fff21529f25b c7359bf19cfca981d41f1a08cf649b6cbe1ff7cc2f8f3b52137625c81454b2a8
GET /apu.php?zoneid=5902452&var=5708419 HTTP/1.1
Host: cdn.itskiddien.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:38 GMT
content-type: application/javascript
x-trace-id: c1d2d5830ad590a00670933bae33b43b
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00805837d1974044e79e849144625bbf; expires=Sat, 10 May 2025 17:02:38 GMT; path=/; secure; SameSite=None
oaidts=1715360558; expires=Sat, 10 May 2025 17:02:38 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| prfectnewoffers.net/locate | 188.114.96.1 | 200 OK | 144 B |
URL GET HTTP/3prfectnewoffers.net/locate IP188.114.96.1:443
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerLet's Encrypt Subjectprfectnewoffers.net FingerprintFF:D8:95:43:76:67:B6:52:98:93:00:95:5A:76:EF:D4:D3:15:07:F3 ValidityWed, 10 Apr 2024 05:08:54 GMT - Tue, 09 Jul 2024 05:08:53 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hasha78c1f9242aa33a87bd5f7a7f6cf21af 61484ea912efce8fe8b9aef0eb79eacadecd0968 47ba1d847752b8b99d6b67a2eaa654648624b7035ae2780c5efcbb328b09749e
GET /locate HTTP/1.1
Host: prfectnewoffers.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:46 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6InBpbGJleThGN1lPOStsUTVzZGN5XC9BPT0iLCJ2YWx1ZSI6ImhiVG92S0FUXC9XbE0zMTU3eWp0eXBWNWxCRzJTVGFqaU02WWxHZndUZHdCdm43cVFRdTUyZURQUWtxTlo5SXYzIiwibWFjIjoiZGM4Y2IzM2JjYjExMTk0NDYwYjc1OTU4ODViMjhmZjkyYmM2Y2JkNjcwZWY2YWYwYmNiNjY1ZDgyZjg3N2E3NyJ9; expires=Fri, 10-May-2024 19:02:46 GMT; Max-Age=7200; path=/
c=eyJpdiI6Ik9YdWdXeGNCM0RTT0dcL3FpUGt6M2l3PT0iLCJ2YWx1ZSI6IlhnR1VDOEJ4ZUlpcTMwbUc3VEpRMnlCR1FTbUlKOWlNTXNTQ2d5TjlvOTdFdzBnXC9KWTY2OHhhU3psVDhnc1wvayIsIm1hYyI6ImNmN2U0YzIzZDU0MGEyYzJlMGYzMDA1ZmEyMTQ2NjY3NDQyMzI3NDAzYTlmNGY4Y2U0ODJlYTJmNTMxZjQ0NGUifQ%3D%3D; expires=Fri, 10-May-2024 19:02:46 GMT; Max-Age=7200; path=/; httponly
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-proc: 2
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EVdOcQbsHZtGOR%2Bpa5pVCqUxPKc9a6FHwYg5yIenALxH%2FPHZJz660k27l7LUI5x26eVEHERRmQm%2Fx%2BCiu%2Fxci22o4fcpdSiZUvAB6e%2BzVhgSbpLc6xIzPyNSmjr9rcYNPfG5E7xf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7fb47f6a712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| str27.vidoza.net/nvl4dptupufeieno3udanc57nwmgg7mzferb3zyqbhka62en6j6fhfbb3b3q/v.mp4 | 213.152.165.144 | 206 Partial Content | 1.1 MB |
URL GET HTTP/2str27.vidoza.net/nvl4dptupufeieno3udanc57nwmgg7mzferb3zyqbhka62en6j6fhfbb3b3q/v.mp4 IP213.152.165.144:443 ASN#49453 Global Layer B.V.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectvidoza.net FingerprintBB:ED:F5:F9:17:52:AA:FC:EE:8F:98:D4:64:46:12:76:92:0E:B5:CE ValidityFri, 12 Apr 2024 01:22:23 GMT - Thu, 11 Jul 2024 01:22:22 GMT
File typeISO Media, MP4 Base Media v1 [ISO 14496-12:2003] Size1.1 MB (1146880 bytes) Hashaedae80a417d3ee11da1a03248576965 aeb15691e3a0ba7da2c2a0d85c8315a160dcc7fd b2a469f0b5e4c6033c2aa5549a15c1ebbfbed18dd4b7a2026ca85b0ea38b81d2
GET /nvl4dptupufeieno3udanc57nwmgg7mzferb3zyqbhka62en6j6fhfbb3b3q/v.mp4 HTTP/1.1
Host: str27.vidoza.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
server: nginx/1.20.1
date: Fri, 10 May 2024 17:02:35 GMT
content-type: video/mp4
content-length: 426718230
last-modified: Fri, 12 Apr 2024 22:04:43 GMT
etag: "6619affb-196f3416"
content-range: bytes 0-426718229/426718230
X-Firefox-Spdy: h2
|
|
| veepteero.com/88/104 | 139.45.197.242 | 200 OK | 3.0 kB |
IP139.45.197.242:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectveepteero.com Fingerprint13:68:56:48:EC:67:A6:93:BE:E0:36:BC:FA:04:75:6D:6E:D2:C1:91 ValiditySat, 23 Mar 2024 05:18:36 GMT - Fri, 21 Jun 2024 05:18:35 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (3232), with no line terminators Hasha43d557eff3a677692bf05c42e074c99 344fbe8ce7bd685acec17007552197611a6a0259 cd890ad25e4020b0ed71f793745156cdc25d802df35adfd9c1c7e7b698320be7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /88/104 HTTP/1.1
Host: veepteero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 17:02:37 GMT
content-type: application/json
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://videzz.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| becast.onionlive.workers.dev/ | 172.67.141.108 | 200 OK | 1.4 kB |
URL GET HTTP/3becast.onionlive.workers.dev/ IP172.67.141.108:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectonionlive.workers.dev Fingerprint47:76:5D:C5:12:3C:C2:68:72:9E:1E:79:C9:B5:09:72:24:11:B4:C0 ValidityThu, 02 May 2024 00:33:08 GMT - Wed, 31 Jul 2024 00:33:07 GMT
File typeHTML document, ASCII text, with very long lines (1382), with no line terminators Hashf00afc8448987fa11d44221fa5292cae 9f4c400dce037e70bcb6db008b9419b99bdcb42e 1363ed26fa6dfa94a18ffef1fc03bf9e8be0ea9e769c641dd052bc8b77fc6891
GET / HTTP/1.1
Host: becast.onionlive.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:02:40 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HCkwufqPujL8YF%2FSYxIjtzW%2B7q%2Fpd2L8ZM%2FoncL56kfqAIl6eT0pDy3zRxQeHtv06igbZeN%2FnHI%2BFe5muLjh04zNp5DhR5%2Bm6ouVofSyyMGwQxxDG6%2BSd%2BYBW9BUFKVjBCrqjI5izYR4IGRAjgQy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881b7f91d94256c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| xml.xmlking.com/redirect?feed=591363&auth=0yfQfB&pubid=195183 | 174.137.133.17 | 200 OK | 0 B |
URL GET HTTP/1.1xml.xmlking.com/redirect?feed=591363&auth=0yfQfB&pubid=195183 IP174.137.133.17:443 ASN#27257 WEBAIR-INTERNET
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerSectigo Limited Subject*.xmlking.com Fingerprint61:F0:9B:53:D2:DF:03:A0:08:09:BE:79:B1:70:10:34:65:07:7B:6D ValidityWed, 26 Jul 2023 00:00:00 GMT - Fri, 26 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect?feed=591363&auth=0yfQfB&pubid=195183 HTTP/1.1
Host: xml.xmlking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 10 May 2024 17:02:37 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
|
|
| static-133.b-cdn.net/43461/images/brush-stroke.svg | 194.242.11.186 | 200 OK | 124 kB |
URL GET HTTP/2static-133.b-cdn.net/43461/images/brush-stroke.svg IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerSectigo Limited Subject*.b-cdn.net FingerprintFC:D9:3E:09:69:F5:9D:8A:AA:45:73:03:05:F1:8D:E4:5B:80:10:E4 ValiditySun, 05 Nov 2023 00:00:00 GMT - Mon, 11 Nov 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Size124 kB (124282 bytes) Hash2affaa6cbada4631a14b44e4390b0358 e7ad09b7af15b3c1aaff622222a654343e358dfe d8783d3e7e17ac28d426e6d7b992027af21ba4f86976b1526b9a1e53a047d169
GET /43461/images/brush-stroke.svg HTTP/1.1
Host: static-133.b-cdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mgkstatic33.b-cdn.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:45 GMT
content-type: image/svg+xml
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 561175
cdn-uid: 6f116605-ddce-4644-a514-65e3765b9786
cdn-requestcountrycode: NO
cache-control: max-age=3600
etag: W/"2affaa6cbada4631a14b44e4390b0358"
last-modified: Wed, 13 Mar 2024 15:17:35 GMT
x-rgw-object-type: Normal
x-amz-request-id: tx000005c4296c53e680ad2-0065f29eca-5281cd5d-ams3c
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: b0c9cd13-c401-4707-9471-40949c09e155
cf-cache-status: HIT
cf-ray: 869c8b777a0b56ae-OSL
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/25/2024 05:36:42
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: aaf7d76aa6b15c1f1f4577c3c698934f
cdn-cache: REVALIDATED
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/sub/31pnK5n | 172.67.205.77 | 200 OK | 234 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/31pnK5n IP172.67.205.77:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashf80bebf9471a9840ef5768e8c6b26672 164896726fce06ed3a1b8cbed00ab7c0493b6d24 5367258c378438d9831e9138819e8e68c4b7e6525dde7a086fb82a083398099c
GET /sub/31pnK5n HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I1LpmQSoOqvPAzL%2ByXZqo5kFggJSxBg9B%2ByG%2FIlhGCs%2BgLszMJt4DYmUVLZBclOWyqMi99Xn4AZA9KTudU01HH%2BGGMm2FNjZ1P5I2w21vWtp776TFZlVfoXAa4ja5NRgw2RWpeA9DiY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7f6d3d5bb517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Lato:ital,wght@0,300;0,400;0,700;0,900;1,300;1,400;1,700;1,900&family=Montserrat:wght@300;400;500;600;700&family=Noto+Sans:wght@300;400;500;600;700;800;900&family=Open+Sans:wght@400;500;600;700;800&family=Quicksand:wght@300;400;500;600;700&family=Roboto:wght@300;400;500;700;900&family=Tajawal:wght@300;400;500;700&display=swap | 142.250.74.106 | 200 OK | 88 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Lato:ital,wght@0,300;0,400;0,700;0,900;1,300;1,400;1,700;1,900&family=Montserrat:wght@300;400;500;600;700&family=Noto+Sans:wght@300;400;500;600;700;800;900&family=Open+Sans:wght@400;500;600;700;800&family=Quicksand:wght@300;400;500;600;700&family=Roboto:wght@300;400;500;700;900&family=Tajawal:wght@300;400;500;700&display=swap IP142.250.74.106:443
Requested byhttps://prfectnewoffers.net/bit-gpt-pp-ai/?oid=133&qze=2&hitid=9c02d9b6-15b0-4c15-8494-6eb214f1f895&aff_sub=&saf=&cvu=&action=&aff_sub5=&url_id=133&aff_sub2=&aff_sub3=&aff_sub4=&tracker=cg&language= CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeASCII text, with very long lines (1572) Hash6a4571112dc1d4b0e37c6df7eba27cac 196e9eec0684faa62878e6f5e476710bd11f27bd 84675537119f9cc7f7a12120e2cf7ebe9cf645accde5cffca6d6da0c6ed03b32
GET /css2?family=Lato:ital,wght@0,300;0,400;0,700;0,900;1,300;1,400;1,700;1,900&family=Montserrat:wght@300;400;500;600;700&family=Noto+Sans:wght@300;400;500;600;700;800;900&family=Open+Sans:wght@400;500;600;700;800&family=Quicksand:wght@300;400;500;600;700&family=Roboto:wght@300;400;500;700;900&family=Tajawal:wght@300;400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mgkstatic33.b-cdn.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 17:02:45 GMT
date: Fri, 10 May 2024 17:02:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| str27.vidoza.net/nvl4dptupufeieno3udanc57nwmgg7mzferb3zyqbhka62en6j6fhfbb3b3q/v.mp4 | 0.0.0.0 | | 0 B |
URL GET str27.vidoza.net/nvl4dptupufeieno3udanc57nwmgg7mzferb3zyqbhka62en6j6fhfbb3b3q/v.mp4 IP0.0.0.0:0
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectvidoza.net FingerprintBB:ED:F5:F9:17:52:AA:FC:EE:8F:98:D4:64:46:12:76:92:0E:B5:CE ValidityFri, 12 Apr 2024 01:22:23 GMT - Thu, 11 Jul 2024 01:22:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /nvl4dptupufeieno3udanc57nwmgg7mzferb3zyqbhka62en6j6fhfbb3b3q/v.mp4 HTTP/1.1
Host: str27.vidoza.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
server: nginx/1.20.1
date: Fri, 10 May 2024 17:02:35 GMT
content-type: video/mp4
content-length: 426718230
last-modified: Fri, 12 Apr 2024 22:04:43 GMT
etag: "6619affb-196f3416"
content-range: bytes 0-426718229/426718230
X-Firefox-Spdy: h2
|
|
| bid.bidclickmedia.com/sub/31pnK5n | 172.67.205.77 | 200 OK | 234 B |
URL GET HTTP/2bid.bidclickmedia.com/sub/31pnK5n IP172.67.205.77:443
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerGoogle Trust Services LLC Subjectbidclickmedia.com Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7 ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT
File typeHTML document, ASCII text, with no line terminators Hashf80bebf9471a9840ef5768e8c6b26672 164896726fce06ed3a1b8cbed00ab7c0493b6d24 5367258c378438d9831e9138819e8e68c4b7e6525dde7a086fb82a083398099c
GET /sub/31pnK5n HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:35 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0QrS6AiiWGqWmM5XTxmxlH6x97EZMaMAzc7XEkDD7Dhqn3rB6RoJAXy65qK9zXgwwK3MUmU%2F9UcYtxnFPsWX145Y4NIwB9TSBV5MchGo1sQVSQ55pl7BBVoEGB6XDDjcCWbqwzS7NM0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b7f6d4d9bb517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_01.jpg | 64.210.135.118 | 200 OK | 266 kB |
URL GET HTTP/2static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_01.jpg IP64.210.135.118:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerDigiCert Inc Subject*.project1content.com Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62 ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT
File typeJPEG image data, progressive, precision 8, 430x860, components 3 Size266 kB (266210 bytes) Hash363543c5c8bb6b4c442a8f449d02f722 9cee6d721bdf151f39ad6d8d806493526d8a3d5a 0e4847bdab29056ae4151cdf55099f65bbe3e430bf32d2bd4774752f7c03f7dd
GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:42 GMT
content-type: image/jpeg
content-length: 266210
last-modified: Thu, 16 Nov 2023 04:41:00 GMT
etag: "372543fe6-40fe2-60a3da05d0f00"
expires: Sun, 24 Mar 2024 09:10:35 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7846-1-2676-h-0-0---;6140-26-2936----0-0-1
X-Firefox-Spdy: h2
|
|
| videzz.net/js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 | 78.142.18.54 | 200 OK | 416 kB |
URL GET HTTP/2videzz.net/js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP78.142.18.54:443 ASN#208046 ColocationX Ltd.
Requested byhttps://videzz.net/embed-aqb9ov6imh54.html CertificateIssuerLet's Encrypt Subjectvidezz.net Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33 ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT
Size416 kB (416358 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-aqb9ov6imh54.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 10 May 2024 17:02:34 GMT
content-type: application/javascript
last-modified: Sat, 27 Apr 2024 07:30:28 GMT
vary: Accept-Encoding
etag: W/"662ca994-65a66"
expires: Sun, 09 Jun 2024 17:01:52 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| tgp1.brazzersnetwork.com/_p1cdn/tour/vortex.modern.min.js | 66.254.114.234 | 200 OK | 38 kB |
URL GET HTTP/2tgp1.brazzersnetwork.com/_p1cdn/tour/vortex.modern.min.js IP66.254.114.234:443
Requested byhttps://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A CertificateIssuerLet's Encrypt Subjectbrazzersnetwork.com Fingerprint88:AB:08:D2:E9:0E:FD:34:1F:CD:0A:B3:E0:9F:DB:C8:07:2F:D4:AA ValidityWed, 10 Apr 2024 00:01:06 GMT - Tue, 09 Jul 2024 00:01:05 GMT
File typeJavaScript source, ASCII text Hash06031ae29667c65eb61158093cd96589 1b2eb0f574ed2a8147515b01dbcfa1d59b15aa87 27c67af023f2e2441f9e51f334267c1cab79c99d1f957e82992de8a62b0bd9f3
GET /_p1cdn/tour/vortex.modern.min.js HTTP/1.1
Host: tgp1.brazzersnetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/tgp1?ad_id=816178_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=mb&apb=opc4ASOqlplustddVbbZPPO6eWyyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrro3qon2u4441pjrputtsslnloptmrnrndrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTVUVy1VWOc6V0rpXSuldK6V0rpXSuonnm3lp13ot2ou13r4sqo333zrqul3p0cH2A
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:02:40 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 08 Feb 2024 21:05:55 GMT
etag: W/"3a8c4c948-94e3-610e52d5eb2c0"
expires: Sat, 15 Jun 2024 11:16:34 GMT
cache-control: max-age=10694520
content-encoding: gzip
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
x-cdn-diag: dfw1-15026-1-3398931-h-0-0---;15010-127-5118----0-0-0
set-cookie: __s=663E532E-42FE72EA01BB1B67A8-2C680D;
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|