Report - rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/

Report Overview

Visited public
2024-06-10 20:18:22
Tags
URL
rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Finishing URL
rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
IP / ASN
186.2.163.12
#59692 IQWeb FZ-LLC
Title
Dohna Dohna - Medico 8 (Alice Soft)

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
holahupa.com	unknown	2024-05-14	2024-05-22 21:02:43	2024-06-09 19:05:49	6.7 kB	403 kB	94.242.247.29
o3sxhw5ad.com	unknown	2024-05-10	2024-05-18 13:39:05	2024-05-22 09:43:39	5.4 kB	782 kB	212.117.190.201
cdn.cloudfrale.com	55750	2019-02-04	2019-02-06 17:01:05	2024-06-09 11:58:34	2.5 kB	1.7 MB	45.133.44.21
ams04-prem.rule34video.com	unknown	2018-12-23	2023-07-25 04:49:07	2024-01-16 19:45:59	934 B	370 B	0.0.0.0
r11.o.lencr.org	unknown	2020-06-29	2024-06-07 07:43:57	2024-06-10 07:38:33	327 B	887 B	23.36.77.32
rule34video.com	223306	2018-12-23	2019-01-27 01:58:49	2024-05-31 13:18:47	22 kB	582 kB	186.2.163.12
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2024-06-09 21:45:26	422 B	107 kB	142.250.74.72
vu.gombotrubu.com	unknown	unknown	No data	No data	410 B	1.5 kB	23.109.170.72

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-06-10	medium	gombotrubu.com	Sinkholed
2024-06-10	medium	holahupa.com	Sinkholed
2024-06-10	medium	holahupa.com	Sinkholed
2024-06-10	medium	holahupa.com	Sinkholed
2024-06-10	medium	holahupa.com	Sinkholed
2024-06-10	medium	holahupa.com	Sinkholed
2024-06-10	medium	holahupa.com	Sinkholed
2024-06-10	medium	holahupa.com	Sinkholed
2024-06-10	medium	holahupa.com	Sinkholed
2024-06-10	medium	holahupa.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (26)

	URL	From	Size	First Seen	Last Seen
	rule34video.com/static/js/assets.min.js?v=1.2	ScriptElement	20 kB	2023-03-08	2025-05-26
Pretty URL rule34video.com/static/js/assets.min.js?v=1.2 IP 186.2.163.12 ASN #59692 IQWeb FZ-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:06 Last Seen2025-05-26 04:34 Times Seen26 Hash 9115dfae4d89650bfdb23f0bed6c48d6 26223764c2e3e34a36bb6763d1e449940629bdcb 8f7539092298a684de3402c620481413207e2c958c239fa1af095a238ea6d18e Loading...

	rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/	ScriptElement	8.3 kB	2024-08-19	2024-08-19
Pretty URL rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/ IP 186.2.163.12 ASN #59692 IQWeb FZ-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 20:20 Last Seen2024-08-19 20:20 Times Seen1 Hash 9d1fe7ab7f9baccc33a5098caddaeb2f 9a5d7c898ed28de539c1b80f28174d243f46cd2d 68deaf9fd5629f9b2294351591e6e23c99a05d5fef5c1d4f822cdaf9d734a01c Loading...

	o3sxhw5ad.com/lv/esnk/1995192/code.js	ScriptElement	125 kB	2024-08-19	2024-08-19
Pretty URL o3sxhw5ad.com/lv/esnk/1995192/code.js IP 212.117.190.201 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 20:20 Last Seen2024-08-19 20:20 Times Seen1 Hash d5cd0eb9f3bb70fdf9d99ba182a1c7b3 ebb0d8120dabe1d2a730324cde2d64e6a0979e14 f706e55101e635dc03931d8811c020928b59285054092c6d7da8e4275c26cb84 Loading...

	holahupa.com/get/1995185?zoneid=1995185&jp=_clcptlql4z41zkjh9udzvy&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2364393982750208&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5&uf=0	ScriptElement	37 B	2023-03-07	2025-02-06
Pretty URL holahupa.com/get/1995185?zoneid=1995185&jp=_clcptlql4z41zkjh9udzvy&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2364393982750208&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5&uf=0 IP 94.242.247.29 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-02-06 09:31 Times Seen1105 Hash 26c0446473cdbedd7eb18169ae75e0fd c2a8a31848b22f49c044d0e8f2b4a48e856e08b8 c94588c2c490281057748a6bc21191dae810fb22ce8cc638b5e3fc7d390eb165 Loading...

	holahupa.com/aas/r45d/vki/2000486/tghr.js	ScriptElement	114 kB	2024-08-19	2024-08-19
Pretty URL holahupa.com/aas/r45d/vki/2000486/tghr.js IP 94.242.247.29 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 20:20 Last Seen2024-08-19 20:20 Times Seen1 Hash 40bd356b6fc0d68ac2251160cec7c343 005af00174f127a814e69ad87e39a55efd938704 ba65081f97709b3201a3739263c99c216803629723ca7c578cd4e11a0869a293 Loading...

	rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/	ScriptElement	153 B	2023-06-18	2024-08-21
Pretty URL rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/ IP 186.2.163.12 ASN #59692 IQWeb FZ-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-18 10:53 Last Seen2024-08-21 07:09 Times Seen22 Hash cc415415f0bf594a3b56a10809897b39 0c25ffaa2f4e445239b650c3ebdf1bc545eb38e9 161a043f6583a25d458e73ba2ab2a689d2be0fb7cca5f8c05c1252553f318359 Loading...

	o3sxhw5ad.com/get/1995194?zoneid=1995194&jp=_clp41g0hr66vu9qvhuer80&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=3490293889589248&eclog=0&im=1&cs=5&freq=0&uf=0	ScriptElement	4.5 kB	2024-08-19	2024-08-19
Pretty URL o3sxhw5ad.com/get/1995194?zoneid=1995194&jp=_clp41g0hr66vu9qvhuer80&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=3490293889589248&eclog=0&im=1&cs=5&freq=0&uf=0 IP 212.117.190.201 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 20:20 Last Seen2024-08-19 20:20 Times Seen1 Hash 2d510549dafe2a3ed2ea8cc0f41753d8 e82d980c139e9c594b637a138174b1f903876381 631a5393e2d670966e7aa62b1c3cd0db5eae4e0bc22810c6892bd37f83845a3e Loading...

	o3sxhw5ad.com/lv/esnk/1995198/code.js	ScriptElement	125 kB	2024-08-19	2024-08-19
Pretty URL o3sxhw5ad.com/lv/esnk/1995198/code.js IP 212.117.190.201 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 20:20 Last Seen2024-08-19 20:20 Times Seen1 Hash d87bb7361cdc8952f8f1ca523cb4231f 26b524f3482d09870b81506304f397743b713b60 92a138e9edaf8a083bb619e3517cf9c3a27411e3f965e09553a13fdc4df8b78b Loading...

	rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/	ScriptElement	3.2 kB	2024-08-19	2024-08-19
Pretty URL rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/ IP 186.2.163.12 ASN #59692 IQWeb FZ-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 20:20 Last Seen2024-08-19 20:20 Times Seen1 Hash 632f1bc8129476c6ae314f835d8be246 9e83e8d9ce1e5cfe18beeb004391cd04999ce741 d4223c3eed5bf431de4322e77f3953d5501fc1746a4fda9777d4ebf60a50c9cb Loading...

	o3sxhw5ad.com/lv/esnk/1995194/code.js	ScriptElement	125 kB	2024-08-19	2024-08-19
Pretty URL o3sxhw5ad.com/lv/esnk/1995194/code.js IP 212.117.190.201 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 20:20 Last Seen2024-08-19 20:20 Times Seen1 Hash 845461fc257768decd26d9f161f95704 a1e06ee26cff1ae429ca789f4e86d73a9b6be39f 4643966c3227eb7f77a6dc3243ce194ab2fe55c2bdd423341bff6aa0f62fc582 Loading...

	rule34video.com/static/js/kvs.min.js?v=1.2	ScriptElement	110 kB	2023-07-22	2024-08-21
Pretty URL rule34video.com/static/js/kvs.min.js?v=1.2 IP 186.2.163.12 ASN #59692 IQWeb FZ-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-22 17:08 Last Seen2024-08-21 07:09 Times Seen22 Hash 73b2f40bbcb2aaef3d3341edac169b66 c52a6ddb780eb64d168814e0fa9f109220501a42 6b22268183fc871909e2d9bd765511f35f17182c352d21329d4924efb7fd81c7 Loading...

	vu.gombotrubu.com/tnkbvf0UPC7z/83409	ScriptElement	5 B	2023-03-07	2025-06-15
Pretty URL vu.gombotrubu.com/tnkbvf0UPC7z/83409 IP 23.109.170.72 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14 Last Seen2025-06-15 10:07 Times Seen6354 Hash f7a2939527fd9e68723da600e96d76bd a9e717b6364d2895ee0a716050db32ca0ef1bb42 d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a Loading...

	rule34video.com/static/js/custom.min.js?v=1.2	ScriptElement	18 kB	2023-07-22	2024-08-21
Pretty URL rule34video.com/static/js/custom.min.js?v=1.2 IP 186.2.163.12 ASN #59692 IQWeb FZ-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-22 17:08 Last Seen2024-08-21 07:09 Times Seen22 Hash f33b15c8fa1d4022c3d545a79d6d55e9 7628795366eb7ba39d8d96ee4666183ae6177b73 75c02d32f5bb695bd80445f4909a22b1cbeff76797f9f78112a1b56955b813aa Loading...

	rule34video.com/player/kt_player.js?v=12.13.6	ScriptElement	169 kB	2023-07-24	2025-04-17
Pretty URL rule34video.com/player/kt_player.js?v=12.13.6 IP 186.2.163.12 ASN #59692 IQWeb FZ-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-24 23:48 Last Seen2025-04-17 19:36 Times Seen31 Hash b8254e4b327d8b56c11822242300bba9 c07968f5c4db0c50e49b088ad5e02a0798f823f4 6bbd633810d79c202d4d0717fda7a5280347f7f3325f7ff97dc8010d7a927c3a Loading...

	www.googletagmanager.com/gtag/js?id=G-QKBWZM1667	ScriptElement	322 kB	2024-08-19	2024-08-19
Pretty URL www.googletagmanager.com/gtag/js?id=G-QKBWZM1667 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 20:20 Last Seen2024-08-19 20:20 Times Seen1 Hash 53c4132ecc42dd860335d92bb5721388 455bd8c264cfb654b68f011e23b06cd6d9f01a67 4f754f58801bb359c5b7de429e14f6ad3a3a22d6e9229be24deb40c811056bf4 Loading...

	holahupa.com/aas/r45d/vki/1995185/tghr.js	ScriptElement	114 kB	2024-08-19	2024-08-19
Pretty URL holahupa.com/aas/r45d/vki/1995185/tghr.js IP 94.242.247.29 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 20:20 Last Seen2024-08-19 20:20 Times Seen1 Hash 801915e45ee2dd1a1310b461e687a557 240b4e8c2071ab7e650399690b3dc5357a1d199f 37106aac58a112d2f36adf9163cb58ad4548b4c8c8b05b9a8be77292ca61d915 Loading...

	holahupa.com/aas/r45d/vki/2027998/tghr.js	ScriptElement	114 kB	2024-08-19	2024-08-19
Pretty URL holahupa.com/aas/r45d/vki/2027998/tghr.js IP 94.242.247.29 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 20:20 Last Seen2024-08-19 20:20 Times Seen1 Hash 08f0f5c5c2a40e7d7dee99193a38a54c f4ebb98262a7df2c90de2f024aa195dbe1fd3bfd fcd61fdc75bd796f1b3e19c92ad409bbdbf4230b8641fce79e2d095a55a7e0b9 Loading...

	rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/	ScriptElement	7 B	2023-03-08	2024-12-19
Pretty URL rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/ IP 186.2.163.12 ASN #59692 IQWeb FZ-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 04:06 Last Seen2024-12-19 22:59 Times Seen25 Hash d4cdee62869ad00817de9f6eadb3b11e af96d7dc9d0a1eeef9758daa5b0a0dd0c2b51e14 84eed393e15533a12bf9b840462e8b29b70274346e1d65f838622fdd4e55f908 Loading...

	rule34video.com/static/js/jquery.autocomplete.min.js?v=1.2	ScriptElement	13 kB	2023-06-03	2025-05-26
Pretty URL rule34video.com/static/js/jquery.autocomplete.min.js?v=1.2 IP 186.2.163.12 ASN #59692 IQWeb FZ-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-03 14:51 Last Seen2025-05-26 04:34 Times Seen26 Hash 5c9f48f920c28a108446b9f7bb1bbcd1 acf7636b592490b9778d84871ff2df281505ee0d a3cbf0d97cbfe3b3e834ebd0f4b02760d47462e34ba24d98c381991c2badc0ea Loading...

	o3sxhw5ad.com/get/1995197?zoneid=1995197&jp=_clte0nxp3w7i1mnmtf4q5p&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2082919006059008&eclog=0&im=1&cs=5&freq=0&uf=0	ScriptElement	8.7 kB	2024-08-19	2024-08-19
Pretty URL o3sxhw5ad.com/get/1995197?zoneid=1995197&jp=_clte0nxp3w7i1mnmtf4q5p&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2082919006059008&eclog=0&im=1&cs=5&freq=0&uf=0 IP 212.117.190.201 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 20:20 Last Seen2024-08-19 20:20 Times Seen1 Hash d1bcd147b34b16398c9e662172f853fa 96e75a3867fbf4e91e281cf0078a84227f81fcd2 8a40502998eb7d262e2fbb507233b7dff1f16b6d8af807ca2b6a4c12c6893f24 Loading...

	o3sxhw5ad.com/get/1995192?zoneid=1995192&jp=_cled0jbuyxp3tq46ll1x1s&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=3771768866339840&eclog=0&im=1&cs=5&freq=0&uf=0	ScriptElement	4.5 kB	2024-08-19	2024-08-19
Pretty URL o3sxhw5ad.com/get/1995192?zoneid=1995192&jp=_cled0jbuyxp3tq46ll1x1s&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=3771768866339840&eclog=0&im=1&cs=5&freq=0&uf=0 IP 212.117.190.201 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 20:20 Last Seen2024-08-19 20:20 Times Seen1 Hash 4b2ccc9f8f407050c209448009dffaee 346f092f1f776c16367fc9969f63393d0ab1078e c213bc8ec6986ca9bd2d7b8e3eff84e76e584e721b7e59664cf8986c7c7f9bf0 Loading...

	rule34video.com/static/js/main.deps.min.js?v=1.2	ScriptElement	217 kB	2023-07-22	2024-08-21
Pretty URL rule34video.com/static/js/main.deps.min.js?v=1.2 IP 186.2.163.12 ASN #59692 IQWeb FZ-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-22 17:08 Last Seen2024-08-21 07:09 Times Seen22 Hash 83157ced4f018b04672c3f10bea1741b 491585d6241496d99b5e1344f4f7124300b5e006 eeb5a688663970568c6094673ed2e990a21a4f959d6a65a711a8e457d21fd101 Loading...

	rule34video.com/static/js/search-custom.min.js?v=1.2	ScriptElement	991 B	2023-06-03	2025-05-26
Pretty URL rule34video.com/static/js/search-custom.min.js?v=1.2 IP 186.2.163.12 ASN #59692 IQWeb FZ-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-03 14:51 Last Seen2025-05-26 04:34 Times Seen26 Hash 6431d1a5257a02e26cb41a381f439a93 009598b8bda8e25e37822ccab0ddc18b532a9a51 cc712b5caf7f53e38c308b3c2adfa9834913dac2751ebfa046ba9002846d68d0 Loading...

	o3sxhw5ad.com/lv/esnk/1995197/code.js	ScriptElement	125 kB	2024-08-19	2024-08-19
Pretty URL o3sxhw5ad.com/lv/esnk/1995197/code.js IP 212.117.190.201 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 20:20 Last Seen2024-08-19 20:20 Times Seen1 Hash ec36ded641cd30c027e0217f0e3ecf99 bca8a5f4cd696200e547bb3f1dacf2b5103bf5dc d6018db278d41636dedc57e06c1369791e132c240d7027d7af0f54a11d105df5 Loading...

	o3sxhw5ad.com/get/1995198?zoneid=1995198&jp=_cl1dhb2jzit5hk8404o8nf&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=8275368493654016&eclog=0&im=1&cs=5&freq=0&uf=0	ScriptElement	4.5 kB	2024-08-19	2024-08-19
Pretty URL o3sxhw5ad.com/get/1995198?zoneid=1995198&jp=_cl1dhb2jzit5hk8404o8nf&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=8275368493654016&eclog=0&im=1&cs=5&freq=0&uf=0 IP 212.117.190.201 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 20:20 Last Seen2024-08-19 20:20 Times Seen1 Hash c7a3dc04a842a92b242ebb779a8f84d8 3a3602ac3684cc1449e003cf2fc840a6d8d93032 dc821cc4aa86bf5bb4eac71ac1b9c30718f67fd1813a280295403e1f0ffa1778 Loading...

	rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/	ScriptElement	116 B	2023-06-03	2024-08-21
Pretty URL rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/ IP 186.2.163.12 ASN #59692 IQWeb FZ-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-03 14:51 Last Seen2024-08-21 07:09 Times Seen23 Hash 5c51450a4199bc24b6ae652265159bb5 9b2c694dac5c01994bfbdbd880681b2eafd770e2 f56e92325e623946463f70fd7482d61135eb801e136b2b25c87e97449f2f9ad2 Loading...

HTTP Transactions (64)

URL IP Response Size

r11.o.lencr.org/

23.36.77.32

504 B

URL
r11.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
f4d238897e52489bf1a7443384ba1cf3
a2cab52c55c37be55282420c29ca926091c14cd6
597cd7b3bd955e769739d331d2022119526b1686379e9ee5cab7e4d319bccdc2

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "597CD7B3BD955E769739D331D2022119526B1686379E9EE5CAB7E4D319BCCDC2"
Last-Modified: Mon, 10 Jun 2024 10:23:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5386
Expires: Mon, 10 Jun 2024 21:47:40 GMT
Date: Mon, 10 Jun 2024 20:17:54 GMT
Connection: keep-alive

rule34video.com/static/styles/all.min.css?v=1.2.4

186.2.163.12

200 OK

22 kB

URL GET HTTP/2
rule34video.com/static/styles/all.min.css?v=1.2.4
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
22 kB (21630 bytes)
Hash
d1fa60238677985804a86dd34de6bd52
d3dcb67afd60856fd0910618a445c340f29b91d2
26e9b094ddd99e7b87806489c207202dbc19d4332e7a52a61e0e3f13b066cea5

HTTP Headers

GET /static/styles/all.min.css?v=1.2.4 HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:16 GMT
content-type: text/css
last-modified: Tue, 31 Oct 2023 14:09:58 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"65410ab6-256ef"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
content-encoding: br
age: 611258
content-length: 21630
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/categories/8/s1_8.jpg

186.2.163.12

200 OK

8.6 kB

URL GET HTTP/2
rule34video.com/contents/categories/8/s1_8.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3
Size
8.6 kB (8590 bytes)
Hash
1ca566b250a20e7da288ff6aba2bf17a
a9a5ac079c5d565f79a91ed91ddcbc122f730061
dc511a60d4be6f822c238d2d5313cf9f2533673a844e57f34f1924602c55fa0a

HTTP Headers

GET /contents/categories/8/s1_8.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:16 GMT
content-type: image/jpeg
content-length: 8590
last-modified: Sat, 08 Oct 2022 04:33:15 GMT
etag: "6340fd8b-218e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611258
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/

186.2.163.12

200 OK

43 kB

URL User Request GET HTTP/2
rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
gzip compressed data, from Unix
Size
43 kB (42616 bytes)
Hash
696572e3783fe5a581aaccfb4e04f7dd
b8aa7ada7ad84b7eb70929fe2bb2c35e57b989ff
873fb685a2b69e6497346494154b3734090c133db5cfd477f811506813d3efce

HTTP Headers

GET /video/3348714/dohna-dohna-medico-8-alice-soft/ HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 10 Jun 2024 20:17:54 GMT
content-type: text/html; charset=utf-8
x-frame-options: SAMEORIGIN
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
vary: Accept-Encoding
set-cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; Domain=.rule34video.com; HttpOnly; Path=/; Expires=Tue, 10-Jun-2025 20:17:54 GMT
PHPSESSID=mutfusan2cdts143rp6dj2amr8; expires=Tue, 11-Jun-2024 00:17:54 GMT; Max-Age=14400; path=/; domain=.rule34video.com; secure; HttpOnly; SameSite=lax
tag_ids=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
kt_ips=91.90.42.154; expires=Tue, 11-Jun-2024 20:17:54 GMT; Max-Age=86400; path=/; domain=.rule34video.com; secure; SameSite=None
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
X-Firefox-Spdy: h2

rule34video.com/contents/categories/323/s1_323.jpg

186.2.163.12

200 OK

10 kB

URL GET HTTP/2
rule34video.com/contents/categories/323/s1_323.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3
Size
10 kB (10065 bytes)
Hash
473f98745594f69917e7a6942d90fdf3
4a4c3b82421465f30b6f599c47c9cfdaeaf63822
e7e0f9e31e8acb0ca378f5b86611fbea502f0b7027f332a77b4d48d83d8b105f

HTTP Headers

GET /contents/categories/323/s1_323.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:18 GMT
content-type: image/jpeg
content-length: 10065
last-modified: Sat, 10 Jun 2023 13:04:06 GMT
etag: "648474c6-2751"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611256
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/categories/1906/s1_1906.jpg

186.2.163.12

200 OK

8.6 kB

URL GET HTTP/2
rule34video.com/contents/categories/1906/s1_1906.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3
Size
8.6 kB (8610 bytes)
Hash
1b6746a7105094a4d90ef87b69662503
b57ee51d74960401f855aad06dfa5d348c201ad4
6c3bd44af47e41a4f1a27d2f12fe6827a1e5f232937f542c04701dea3ab1a354

HTTP Headers

GET /contents/categories/1906/s1_1906.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:16 GMT
content-type: image/jpeg
content-length: 8610
last-modified: Sat, 02 Sep 2023 21:19:08 GMT
etag: "64f3a6cc-21a2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611258
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/categories/1521/s1_1521.jpg

186.2.163.12

200 OK

7.6 kB

URL GET HTTP/2
rule34video.com/contents/categories/1521/s1_1521.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3
Size
7.6 kB (7629 bytes)
Hash
3b153b22320ae8e836a18270102466c5
1b41f797cd3817c4246b8a1ece98c15a78d2d77d
f38eb67ca5aaffe77029fbdb90e0ee0bfda51c1f94c78e725711ae94f73aaf84

HTTP Headers

GET /contents/categories/1521/s1_1521.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: image/jpeg
content-length: 7629
last-modified: Thu, 21 Sep 2023 21:19:08 GMT
etag: "650cb34c-1dcd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611258
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/categories/193/s1_193.jpg

186.2.163.12

200 OK

8.1 kB

URL GET HTTP/2
rule34video.com/contents/categories/193/s1_193.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3
Size
8.1 kB (8131 bytes)
Hash
261a3fd580dcad8f6f8d079d952d2aaa
fa4ea23f9dfb0912bb2d196b734347640a816fc4
677b2815fd5051b4e723c782c6934c336a0c26f453bf258f99a3e40ab50fa7d8

HTTP Headers

GET /contents/categories/193/s1_193.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:16 GMT
content-type: image/jpeg
content-length: 8131
last-modified: Sat, 01 Oct 2022 12:31:55 GMT
etag: "6338333b-1fc3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611258
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/categories/1995/s1_1995.jpg

186.2.163.12

200 OK

7.1 kB

URL GET HTTP/2
rule34video.com/contents/categories/1995/s1_1995.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3
Size
7.1 kB (7051 bytes)
Hash
71646de2d41ab14bef5babd0e286d7c6
811c75318b7a73701ae3d4cb0545778603c3cfa1
3734d437aec4e913584c16ab81006ed9fb9ec165380d96535336a57a00074ccc

HTTP Headers

GET /contents/categories/1995/s1_1995.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: image/jpeg
content-length: 7051
last-modified: Wed, 03 Apr 2024 20:11:10 GMT
etag: "660db7de-1b8b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611257
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/categories/369/s1_369.jpg

186.2.163.12

200 OK

5.8 kB

URL GET HTTP/2
rule34video.com/contents/categories/369/s1_369.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3
Size
5.8 kB (5750 bytes)
Hash
2f12b03374b59821a9bed15df8a86654
4e7afbca8ac06c48b48c92a8e0668f0e295c6520
32f0953c7f64757ae32590b49756a55a6e3ab8c3b51e9d48ea381875a626cc2e

HTTP Headers

GET /contents/categories/369/s1_369.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: image/jpeg
content-length: 5750
last-modified: Sat, 05 Aug 2023 21:19:06 GMT
etag: "64cebcca-1676"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611257
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/categories/351/s1_351.jpg

186.2.163.12

200 OK

4.2 kB

URL GET HTTP/2
rule34video.com/contents/categories/351/s1_351.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3
Size
4.2 kB (4221 bytes)
Hash
23f61fe27d630cc09cdbe493969064df
9a37c7ad6468007c51850379c0505f132001735a
2c4432a55e249df3212fb736b3ffef9caeb3f35173c6cb37b50047aa0c52fb8d

HTTP Headers

GET /contents/categories/351/s1_351.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: image/jpeg
content-length: 4221
last-modified: Tue, 11 Oct 2022 04:33:10 GMT
etag: "6344f206-107d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611257
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/categories/505/s1_505.jpg

186.2.163.12

200 OK

8.3 kB

URL GET HTTP/2
rule34video.com/contents/categories/505/s1_505.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3
Size
8.3 kB (8269 bytes)
Hash
f6942aeb56b574ba9e0012c94a73f82c
a6cec48d45582ed346cea8a21e8468722d6f60c6
d538929b65260e69ae18fa8ca8d8dabdb159a57d90536dcff7abaeed6bda8417

HTTP Headers

GET /contents/categories/505/s1_505.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:30 GMT
content-type: image/jpeg
content-length: 8269
last-modified: Tue, 08 Nov 2022 20:34:07 GMT
etag: "636abd3f-204d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611244
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/models/901/s1_DPhq8Y9E_400x400.jpg

186.2.163.12

200 OK

4.7 kB

URL GET HTTP/2
rule34video.com/contents/models/901/s1_DPhq8Y9E_400x400.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 128x128, components 3
Size
4.7 kB (4658 bytes)
Hash
425944bdbbe81d1fe13d326713724b21
bc295ba7fcbca99ebe941cc881928be8a848158c
05c66a252a2368c62a488f0d76a8d7ffdf329331c57a2e2e9b653aa9d46efb4a

HTTP Headers

GET /contents/models/901/s1_DPhq8Y9E_400x400.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: image/jpeg
content-length: 4658
last-modified: Thu, 17 Jun 2021 17:13:28 GMT
etag: "60cb82b8-1232"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611257
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/models/764/s1_chi712_jpg%22;%20filename*=utf-8''chi712.jpg

186.2.163.12

200 OK

15 kB

URL GET HTTP/2
rule34video.com/contents/models/764/s1_chi712_jpg%22;%20filename*=utf-8''chi712.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, baseline, precision 8, 200x150, components 3
Size
15 kB (14712 bytes)
Hash
d166596051c687598e4554931854cf04
b8a6e7d8066759ea97a56608e5c2433e3c7964fe
e2acf5bda5ce370c1b5734cc1af60983615dae20dc03088377e51a8ff717622a

HTTP Headers

GET /contents/models/764/s1_chi712_jpg%22;%20filename*=utf-8''chi712.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: image/jpeg
content-length: 14712
last-modified: Sun, 05 Sep 2021 18:14:26 GMT
etag: "61350902-3978"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611257
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/categories/214/s1_214.jpg

186.2.163.12

200 OK

6.8 kB

URL GET HTTP/2
rule34video.com/contents/categories/214/s1_214.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3
Size
6.8 kB (6775 bytes)
Hash
b6d26c4c502b8ebe0382a6d8bfcc7e4f
4517656c6d1a187458ab8bed8dfafa40b4a5329e
076bdb49a10161a24ffd44ed4a28d5e4ae1f0ef47c61ec23830432eb315d54b8

HTTP Headers

GET /contents/categories/214/s1_214.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:18 GMT
content-type: image/jpeg
content-length: 6775
last-modified: Wed, 29 Nov 2023 20:00:15 GMT
etag: "6567984f-1a77"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611256
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/models/3/s1_cb359952-056f-4174-9321-e1282212c953-380x380_0x0_250x250.jpg

186.2.163.12

200 OK

4.1 kB

URL GET HTTP/2
rule34video.com/contents/models/3/s1_cb359952-056f-4174-9321-e1282212c953-380x380_0x0_250x250.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x200, components 3
Size
4.1 kB (4125 bytes)
Hash
42f5fd0b528cdfe8ffe6ec1a5932b2c0
1f3b855b7afd0f585edd056ccb66a9cbc6262383
1cc7b0733c6f759037ce601d0410c57b8c861fc8c85f514dafd55b52ec3da0f0

HTTP Headers

GET /contents/models/3/s1_cb359952-056f-4174-9321-e1282212c953-380x380_0x0_250x250.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: image/jpeg
content-length: 4125
last-modified: Tue, 26 Jan 2021 17:31:41 GMT
etag: "601051fd-101d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611257
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/player/kt_player.js?v=12.13.6

186.2.163.12

200 OK

58 kB

URL GET HTTP/2
rule34video.com/player/kt_player.js?v=12.13.6
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JavaScript source, ASCII text, with very long lines (33677)
Size
58 kB (57909 bytes)
Hash
b8254e4b327d8b56c11822242300bba9
c07968f5c4db0c50e49b088ad5e02a0798f823f4
6bbd633810d79c202d4d0717fda7a5280347f7f3325f7ff97dc8010d7a927c3a

HTTP Headers

GET /player/kt_player.js?v=12.13.6 HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:18 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 07 Jun 2023 18:44:44 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6480d01c-29292"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
content-encoding: br
age: 611256
content-length: 57909
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/categories/2809/s1_2809.jpg

186.2.163.12

200 OK

12 kB

URL GET HTTP/2
rule34video.com/contents/categories/2809/s1_2809.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3
Size
12 kB (11680 bytes)
Hash
e670da8d101a977cac9557942e5c8fb0
afbeba1671eb78da9c009126a0719b2855db034a
22f8cd8fef27f41ba16450786a493ee6a43388bc438bfa7cbbe7f7db3518c6dc

HTTP Headers

GET /contents/categories/2809/s1_2809.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:32:31 GMT
content-type: image/jpeg
content-length: 11680
last-modified: Tue, 26 Mar 2024 12:04:12 GMT
etag: "6602b9bc-2da0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611123
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/models/204/s1_tenor.gif

186.2.163.12

200 OK

23 kB

URL GET HTTP/2
rule34video.com/contents/models/204/s1_tenor.gif
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
GIF image data, version 89a, 128 x 128
Size
23 kB (22996 bytes)
Hash
91c9a1dd749bf34c3416ec1fd722d5ac
0a37c52b14901bf624521f8151ae780ac40b4615
aa2a055fca1ceaea539a40528f9f622ecda228e383b9a51668fc25e5c0d543a3

HTTP Headers

GET /contents/models/204/s1_tenor.gif HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:18 GMT
content-type: image/gif
content-length: 22996
last-modified: Tue, 26 Jan 2021 17:31:20 GMT
etag: "601051e8-59d4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611256
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/static/js/main.deps.min.js?v=1.2

186.2.163.12

200 OK

68 kB

URL GET HTTP/2
rule34video.com/static/js/main.deps.min.js?v=1.2
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Size
68 kB (67672 bytes)
Hash
83157ced4f018b04672c3f10bea1741b
491585d6241496d99b5e1344f4f7124300b5e006
eeb5a688663970568c6094673ed2e990a21a4f959d6a65a711a8e457d21fd101

HTTP Headers

GET /static/js/main.deps.min.js?v=1.2 HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 30 Jul 2023 11:09:04 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"64c644d0-35019"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
content-encoding: br
age: 611258
content-length: 67672
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/static/js/kvs.min.js?v=1.2

186.2.163.12

200 OK

26 kB

URL GET HTTP/2
rule34video.com/static/js/kvs.min.js?v=1.2
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65531), with no line terminators
Size
26 kB (25928 bytes)
Hash
73b2f40bbcb2aaef3d3341edac169b66
c52a6ddb780eb64d168814e0fa9f109220501a42
6b22268183fc871909e2d9bd765511f35f17182c352d21329d4924efb7fd81c7

HTTP Headers

GET /static/js/kvs.min.js?v=1.2 HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 30 Jul 2023 11:09:04 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"64c644d0-1ac33"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
content-encoding: br
age: 611257
content-length: 25928
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/static/js/assets.min.js?v=1.2

186.2.163.12

200 OK

4.9 kB

URL GET HTTP/2
rule34video.com/static/js/assets.min.js?v=1.2
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JavaScript source, ASCII text, with very long lines (20000)
Size
4.9 kB (4901 bytes)
Hash
9115dfae4d89650bfdb23f0bed6c48d6
26223764c2e3e34a36bb6763d1e449940629bdcb
8f7539092298a684de3402c620481413207e2c958c239fa1af095a238ea6d18e

HTTP Headers

GET /static/js/assets.min.js?v=1.2 HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 30 Jul 2023 11:09:30 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"64c644ea-4fdd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
content-encoding: br
age: 611257
content-length: 4901
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/static/js/jquery.autocomplete.min.js?v=1.2

186.2.163.12

200 OK

4.1 kB

URL GET HTTP/2
rule34video.com/static/js/jquery.autocomplete.min.js?v=1.2
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (12627), with no line terminators
Size
4.1 kB (4055 bytes)
Hash
5c9f48f920c28a108446b9f7bb1bbcd1
acf7636b592490b9778d84871ff2df281505ee0d
a3cbf0d97cbfe3b3e834ebd0f4b02760d47462e34ba24d98c381991c2badc0ea

HTTP Headers

GET /static/js/jquery.autocomplete.min.js?v=1.2 HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 30 Jul 2023 11:09:31 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"64c644eb-316d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
content-encoding: br
age: 611257
content-length: 4055
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/models/639/s1_7ae2b8b4-5104-49d6-b2ae-236332cf479f-380x380_0x0_250x250.gif

186.2.163.12

200 OK

5.2 kB

URL GET HTTP/2
rule34video.com/contents/models/639/s1_7ae2b8b4-5104-49d6-b2ae-236332cf479f-380x380_0x0_250x250.gif
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
GIF image data, version 89a, 128 x 128
Size
5.2 kB (5174 bytes)
Hash
f85cf5883e9f889452234416668b6aaf
70234e3a121cd6d07c560291f553a97aae6da24f
f6f833535522183f73db01e34f54292e5f8c4071d298f14287ab70b15d25cb93

HTTP Headers

GET /contents/models/639/s1_7ae2b8b4-5104-49d6-b2ae-236332cf479f-380x380_0x0_250x250.gif HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: image/gif
content-length: 5174
last-modified: Wed, 01 Dec 2021 18:03:16 GMT
etag: "61a7b8e4-1436"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611257
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/models/44/s1_5264703.jpg

186.2.163.12

200 OK

10 kB

URL GET HTTP/2
rule34video.com/contents/models/44/s1_5264703.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 200x200, components 3
Size
10 kB (10196 bytes)
Hash
608b5040fe6583cd1d66c5095ac37bc6
5dd4acc22e94cb94fcd42f6d4f9a50dd3a166278
763d9a3c376c30ff61f904710002b0ebdcd8b4f95491b663212cd7e366d44437

HTTP Headers

GET /contents/models/44/s1_5264703.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: image/jpeg
content-length: 10196
last-modified: Tue, 26 Jan 2021 17:31:50 GMT
etag: "60105206-27d4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611257
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/static/js/search-custom.min.js?v=1.2

186.2.163.12

200 OK

473 B

URL GET HTTP/2
rule34video.com/static/js/search-custom.min.js?v=1.2
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (985), with no line terminators
Size
473 B (473 bytes)
Hash
6431d1a5257a02e26cb41a381f439a93
009598b8bda8e25e37822ccab0ddc18b532a9a51
cc712b5caf7f53e38c308b3c2adfa9834913dac2751ebfa046ba9002846d68d0

HTTP Headers

GET /static/js/search-custom.min.js?v=1.2 HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 30 Jul 2023 11:17:57 GMT
etag: W/"64c646e5-3df"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 611257
content-length: 473
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/models/55/s1_rqEKXfQ0_400x400.jpg

186.2.163.12

200 OK

8.7 kB

URL GET HTTP/2
rule34video.com/contents/models/55/s1_rqEKXfQ0_400x400.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x200, components 3
Size
8.7 kB (8655 bytes)
Hash
28a1d9e4853ae8981cab3e90894dc6f0
b9a5742278e1c7d45ab2db95756519e74b4e228b
b6b9c9bd5834ecfa2e7f5d5b61a5c83bbb79dc7621b8ad9d505b189fdb114f91

HTTP Headers

GET /contents/models/55/s1_rqEKXfQ0_400x400.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: image/jpeg
content-length: 8655
last-modified: Tue, 26 Jan 2021 17:31:54 GMT
etag: "6010520a-21cf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611257
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/models/14/s1_iEbD7_Vl_400x400.jpg

186.2.163.12

200 OK

8.0 kB

URL GET HTTP/2
rule34video.com/contents/models/14/s1_iEbD7_Vl_400x400.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x200, components 3
Size
8.0 kB (7958 bytes)
Hash
e1164383350933e5330e16774ed7e0aa
576a8a22c7df2c563789ae777010f32f76fda4af
0912d99f8fb6bd425a5ece573eb69a63f81d8b32eba439a7a30181243d199229

HTTP Headers

GET /contents/models/14/s1_iEbD7_Vl_400x400.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: image/jpeg
content-length: 7958
last-modified: Tue, 26 Jan 2021 17:31:14 GMT
etag: "601051e2-1f16"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611257
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/static/js/custom.min.js?v=1.2

186.2.163.12

200 OK

4.6 kB

URL GET HTTP/2
rule34video.com/static/js/custom.min.js?v=1.2
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JavaScript source, ASCII text, with very long lines (17825), with no line terminators
Size
4.6 kB (4611 bytes)
Hash
f33b15c8fa1d4022c3d545a79d6d55e9
7628795366eb7ba39d8d96ee4666183ae6177b73
75c02d32f5bb695bd80445f4909a22b1cbeff76797f9f78112a1b56955b813aa

HTTP Headers

GET /static/js/custom.min.js?v=1.2 HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 30 Jul 2023 11:09:30 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"64c644ea-45a1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
content-encoding: br
age: 611258
content-length: 4611
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/contents/models/9/s1_rtsvN24n134O45hsCwaijiMedLvu8dY7HqD7b7NueqvQ6CfMd3iebXH19SZbMWlB_large_2.jpg

186.2.163.12

200 OK

22 kB

URL GET HTTP/2
rule34video.com/contents/models/9/s1_rtsvN24n134O45hsCwaijiMedLvu8dY7HqD7b7NueqvQ6CfMd3iebXH19SZbMWlB_large_2.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, baseline, precision 8, 200x200, components 3
Size
22 kB (22242 bytes)
Hash
13a9a346043aeedb3a947808f1818157
864332f69b4ee4bc124e99b6f4ab22e879747a9b
05faa9eafeb4b62373f43547b7f0a3def48e3c91b25db9bd885881601d8bdb0d

HTTP Headers

GET /contents/models/9/s1_rtsvN24n134O45hsCwaijiMedLvu8dY7HqD7b7NueqvQ6CfMd3iebXH19SZbMWlB_large_2.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: image/jpeg
content-length: 22242
last-modified: Tue, 26 Jan 2021 17:32:07 GMT
etag: "60105217-56e2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611257
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/static/fonts/icomoon.ttf?hry68i

186.2.163.12

200 OK

6.8 kB

URL GET HTTP/2
rule34video.com/static/fonts/icomoon.ttf?hry68i
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon
Size
6.8 kB (6848 bytes)
Hash
359f350e2f46515559316b700c4a1260
3ae8e16fed83271638c8703bb507a940168d42dc
3ebf6a368624d4662ddc99482ea09cdfcb1ba669da12038d84e1155c13333b9b

HTTP Headers

GET /static/fonts/icomoon.ttf?hry68i HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: application/octet-stream
content-length: 6848
last-modified: Sun, 30 Jul 2023 11:09:00 GMT
etag: "64c644cc-1ac0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611257
ddg-cache-status: HIT
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-QKBWZM1667

142.250.74.72

200 OK

106 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-QKBWZM1667
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1D:37:44:84:6B:B8:3D:A0:76:1D:03:64:7D:BD:4C:BA:D8:06:97:FC
ValidityTue, 21 May 2024 05:32:03 GMT - Tue, 13 Aug 2024 05:32:02 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
106 kB (106031 bytes)
Hash
53c4132ecc42dd860335d92bb5721388
455bd8c264cfb654b68f011e23b06cd6d9f01a67
4f754f58801bb359c5b7de429e14f6ad3a3a22d6e9229be24deb40c811056bf4

HTTP Headers

GET /gtag/js?id=G-QKBWZM1667 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 10 Jun 2024 20:17:54 GMT
expires: Mon, 10 Jun 2024 20:17:54 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 106031
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

rule34video.com/player/skin/youtube.css

186.2.163.12

200 OK

4.5 kB

URL GET HTTP/2
rule34video.com/player/skin/youtube.css
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
ASCII text
Size
4.5 kB (4494 bytes)
Hash
1cca0f4ded0ef0b2f8c9f2eca19a41b8
7ab8b011a9265fc9352161e4dee93a8ff1fd208b
8c41333349432a4d8ae7745b3dc50ba6194b7e416186d56e63f878f1bb3b259b

HTTP Headers

GET /player/skin/youtube.css HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: text/css
last-modified: Wed, 07 Jun 2023 18:44:44 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6480d01c-79bd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
content-encoding: br
age: 611258
content-length: 4494
ddg-cache-status: HIT
X-Firefox-Spdy: h2

vu.gombotrubu.com/tnkbvf0UPC7z/83409

23.109.170.72

200 OK

25 B

URL GET HTTP/1.1
vu.gombotrubu.com/tnkbvf0UPC7z/83409
IP
23.109.170.72:443
ASN
#7979 SERVERS-COM

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectvu.gombotrubu.com
Fingerprint0D:41:A3:06:D2:20:B7:1B:C7:02:97:FC:AA:61:73:79:BF:05:A9:30
ValidityTue, 04 Jun 2024 20:29:58 GMT - Mon, 02 Sep 2024 20:29:57 GMT

File type
ASCII text, with no line terminators
Size
25 B (25 bytes)
Hash
f7a2939527fd9e68723da600e96d76bd
a9e717b6364d2895ee0a716050db32ca0ef1bb42
d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tnkbvf0UPC7z/83409 HTTP/1.1
Host: vu.gombotrubu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 10 Jun 2024 20:17:55 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://rule34video.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Tue, 11-Jun-2024 20:17:55 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Tue, 11-Jun-2024 20:17:55 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

rule34video.com/static/images/touch-icon-ipad-retina.png

186.2.163.12

200 OK

2.4 kB

URL GET HTTP/2
rule34video.com/static/images/touch-icon-ipad-retina.png
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
PNG image data, 152 x 152, 8-bit colormap, non-interlaced
Size
2.4 kB (2354 bytes)
Hash
928bf1bd8371419cd65ac5fd2df65759
e313c4e94bf8661a9ec149b1ee75b7ec734d8cfb
caca50c2aba697a2bc5a4e8f1de8e3501ee2d555bcb0e6b157d470d478f7ef76

HTTP Headers

GET /static/images/touch-icon-ipad-retina.png HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154; kt_tcookie=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: image/png
content-length: 2354
last-modified: Sun, 30 Jul 2023 11:09:02 GMT
etag: "64c644ce-932"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611258
ddg-cache-status: HIT
X-Firefox-Spdy: h2

rule34video.com/favicon1.ico

186.2.163.12

200 OK

764 B

URL GET HTTP/2
rule34video.com/favicon1.ico
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Size
764 B (764 bytes)
Hash
a1b2866805d979a00b4b299984fcc4ea
a3ba47a73e7ae83db27d65ef213274df10eb2af5
7287df1159d94e50cb8353ac98fe6967f176282ce04e35224bbb69014fe9520b

HTTP Headers

GET /favicon1.ico HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154; kt_tcookie=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: image/x-icon
last-modified: Sun, 30 Jul 2023 11:08:38 GMT
etag: W/"64c644b6-47e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
age: 611258
content-length: 764
ddg-cache-status: HIT
X-Firefox-Spdy: h2

holahupa.com/solid.gif?z=1995185&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2364393982750208&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5

94.242.247.29

200 OK

43 B

URL POST HTTP/2
holahupa.com/solid.gif?z=1995185&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2364393982750208&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5
IP
94.242.247.29:443
ASN
#0

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint37:9C:0B:A5:86:57:C0:69:0E:03:5F:81:08:70:78:45:B6:3E:E8:17
ValidityTue, 14 May 2024 16:32:22 GMT - Sat, 09 Nov 2024 22:59:00 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /solid.gif?z=1995185&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2364393982750208&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5 HTTP/1.1
Host: holahupa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
Origin: https://rule34video.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
set-cookie: CHCK=1; Path=/; Expires=Mon, 14 Jul 2025 20:17:55 GMT; Secure; SameSite=None
UID=24061015175356597afafc47a4ad9160f6ef; Path=/; Expires=Mon, 14 Jul 2025 20:17:55 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2

o3sxhw5ad.com/get/1995194?zoneid=1995194&jp=_clp41g0hr66vu9qvhuer80&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=3490293889589248&eclog=0&im=1&cs=5&freq=0&uf=0

212.117.190.201

200 OK

3.0 kB

URL GET HTTP/2
o3sxhw5ad.com/get/1995194?zoneid=1995194&jp=_clp41g0hr66vu9qvhuer80&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=3490293889589248&eclog=0&im=1&cs=5&freq=0&uf=0
IP
212.117.190.201:443
ASN
#7979 SERVERS-COM

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
FingerprintFD:8B:D8:68:96:AF:8E:87:FC:C0:50:00:30:F9:83:58:CF:D6:BF:11
ValidityFri, 10 May 2024 15:37:32 GMT - Tue, 05 Nov 2024 22:59:00 GMT

File type
gzip compressed data, from Unix
Size
3.0 kB (2997 bytes)
Hash
7fd021c15f56caa12565d6422609edcb
52733fb0c6a422e90bf897da5afeca44c13762ae
295911d16463beb5344cca230d55a9aad80d95ffa905a3112d8cd1e0c6c61fe8

HTTP Headers

GET /get/1995194?zoneid=1995194&jp=_clp41g0hr66vu9qvhuer80&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=3490293889589248&eclog=0&im=1&cs=5&freq=0&uf=0 HTTP/1.1
Host: o3sxhw5ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: cart=1; cart_p=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: CHCK=1; Path=/; Expires=Mon, 14 Jul 2025 20:17:55 GMT; Secure; SameSite=None
UID=24061015177259392d0109406d936eb53221; Path=/; Expires=Mon, 14 Jul 2025 20:17:55 GMT; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2

holahupa.com/aas/r45d/vki/2027998/tghr.js

94.242.247.29

200 OK

45 kB

URL GET HTTP/2
holahupa.com/aas/r45d/vki/2027998/tghr.js
IP
94.242.247.29:443
ASN
#0

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint37:9C:0B:A5:86:57:C0:69:0E:03:5F:81:08:70:78:45:B6:3E:E8:17
ValidityTue, 14 May 2024 16:32:22 GMT - Sat, 09 Nov 2024 22:59:00 GMT

File type
gzip compressed data, max speed, from Unix
Size
45 kB (44845 bytes)
Hash
99a9a83a798047fdf5f203a6385620a3
27c70d932842dd646939d7cf7dec2e38f6b4f75a
b67b6229cf7c6c4fd00783868bdf9b3f63018f457bede51209a4245f33104c7f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /aas/r45d/vki/2027998/tghr.js HTTP/1.1
Host: holahupa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: application/javascript
last-modified: Mon, 10 Jun 2024 15:48:24 GMT
vary: Accept-Encoding
etag: W/"66672048-1bc44"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2

holahupa.com/solid.gif?z=2000486&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=6586518633431552&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5

94.242.247.29

200 OK

43 B

URL POST HTTP/2
holahupa.com/solid.gif?z=2000486&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=6586518633431552&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5
IP
94.242.247.29:443
ASN
#0

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint37:9C:0B:A5:86:57:C0:69:0E:03:5F:81:08:70:78:45:B6:3E:E8:17
ValidityTue, 14 May 2024 16:32:22 GMT - Sat, 09 Nov 2024 22:59:00 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /solid.gif?z=2000486&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=6586518633431552&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5 HTTP/1.1
Host: holahupa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
Origin: https://rule34video.com
DNT: 1
Connection: keep-alive
Cookie: CHCK=1; UID=24061015178e79d5e7464a40428560855854
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
set-cookie: CHCK=1; Path=/; Expires=Mon, 14 Jul 2025 20:17:55 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2

holahupa.com/get/2000486?zoneid=2000486&jp=_cl2efrx3bhl9vk15avbu2e&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=6586518633431552&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5&uf=0

94.242.247.29

200 OK

100 B

URL GET HTTP/2
holahupa.com/get/2000486?zoneid=2000486&jp=_cl2efrx3bhl9vk15avbu2e&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=6586518633431552&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5&uf=0
IP
94.242.247.29:443
ASN
#0

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint37:9C:0B:A5:86:57:C0:69:0E:03:5F:81:08:70:78:45:B6:3E:E8:17
ValidityTue, 14 May 2024 16:32:22 GMT - Sat, 09 Nov 2024 22:59:00 GMT

File type
gzip compressed data, from Unix
Size
100 B (100 bytes)
Hash
1edf4e18257b5a6b03aa2f6bbba37e0c
44182c9aaacc2561e3f32a8edcebbe4bcdfa1191
4a2e9f57b51da7ea3174200d627fe72b486e13672b957fe33e0800a24f1f4069

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /get/2000486?zoneid=2000486&jp=_cl2efrx3bhl9vk15avbu2e&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=6586518633431552&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5&uf=0 HTTP/1.1
Host: holahupa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: CHCK=1; UID=24061015178e79d5e7464a40428560855854
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: text/javascript
vary: Accept-Encoding
x-route-id: config
set-cookie: CHCK=1; Path=/; Expires=Mon, 14 Jul 2025 20:17:55 GMT; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2

cdn.cloudfrale.com/bn/db1/fc8/a8d/db1fc8a8dadd8a66dc20bacce73a0d2e9e9e2807.mp4

45.133.44.21

206 Partial Content

357 kB

URL GET HTTP/2
cdn.cloudfrale.com/bn/db1/fc8/a8d/db1fc8a8dadd8a66dc20bacce73a0d2e9e9e2807.mp4
IP
45.133.44.21:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint5F:02:E3:5B:0C:B7:FA:C1:27:2A:35:DA:29:17:01:A8:47:B5:F3:A8
ValidityWed, 10 Jan 2024 08:59:56 GMT - Sun, 07 Jul 2024 21:59:00 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
357 kB (357139 bytes)
Hash
d4938e1a3b06ac9ac6dd49f43af75fc2
db1fc8a8dadd8a66dc20bacce73a0d2e9e9e2807
6bfb40cb5c5f9367a399aa9804488db58012b397688884903eb7da571f53f5bb

HTTP Headers

GET /bn/db1/fc8/a8d/db1fc8a8dadd8a66dc20bacce73a0d2e9e9e2807.mp4 HTTP/1.1
Host: cdn.cloudfrale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: video/mp4
content-length: 357139
server: nginx/1.26.0
etag: d4938e1a3b06ac9ac6dd49f43af75fc2
last-modified: Sun, 05 Nov 2023 16:31:37 GMT
x-timestamp: 1699201896.46460
x-trans-id: txd5ed67e38c10499896339-00664f4f20
x-openstack-request-id: txd5ed67e38c10499896339-00664f4f20
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Wed, 12 Jun 2024 20:17:55 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
access-control-allow-origin: *
content-range: bytes 0-357138/357139
X-Firefox-Spdy: h2

cdn.cloudfrale.com/bn/ce7/c6b/c2a/ce7c6bc2aa6d1de8be97ff12c7b634006904f229.mp4

45.133.44.21

206 Partial Content

358 kB

URL GET HTTP/2
cdn.cloudfrale.com/bn/ce7/c6b/c2a/ce7c6bc2aa6d1de8be97ff12c7b634006904f229.mp4
IP
45.133.44.21:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint5F:02:E3:5B:0C:B7:FA:C1:27:2A:35:DA:29:17:01:A8:47:B5:F3:A8
ValidityWed, 10 Jan 2024 08:59:56 GMT - Sun, 07 Jul 2024 21:59:00 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
358 kB (357898 bytes)
Hash
cc7807a6c619a159872cf8818b0f6014
ce7c6bc2aa6d1de8be97ff12c7b634006904f229
5af9edbad95b428b489c69229952e20b4c7b5d64780c261e1c3d8bc66a873c63

HTTP Headers

GET /bn/ce7/c6b/c2a/ce7c6bc2aa6d1de8be97ff12c7b634006904f229.mp4 HTTP/1.1
Host: cdn.cloudfrale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: video/mp4
content-length: 357898
server: nginx/1.24.0
etag: cc7807a6c619a159872cf8818b0f6014
last-modified: Sun, 05 Nov 2023 16:31:45 GMT
x-timestamp: 1699201904.86130
x-trans-id: tx3c1807a866e2423c9bce6-00664f4f20
x-openstack-request-id: tx3c1807a866e2423c9bce6-00664f4f20
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Wed, 12 Jun 2024 20:17:55 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
access-control-allow-origin: *
content-range: bytes 0-357897/357898
X-Firefox-Spdy: h2

rule34video.com/player/skin/fonts/ktplayeryt.ttf?wqseia

186.2.163.12

200 OK

2.3 kB

URL GET HTTP/2
rule34video.com/player/skin/fonts/ktplayeryt.ttf?wqseia
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, ktplayeryt
Size
2.3 kB (2264 bytes)
Hash
c89ca428be45c3c212c5658a05823a10
74916a018bea5b27c223f164e2355ddb78422b4f
bf86d8eb9277b69e2c6202ca711c3b19c64a2a9a8cf4ba7bc33bdecacfb8a0b2

HTTP Headers

GET /player/skin/fonts/ktplayeryt.ttf?wqseia HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154; kt_tcookie=1; _ga_QKBWZM1667=GS1.1.1718050675.1.0.1718050675.0.0.0; _ga=GA1.1.1529480182.1718050676; __PPU_CAIFRQ=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE; __PPU_CAIFRT=ACzeRAAAAABmZ9nQACzeQwAAAABmZ9nQ; __PPU_MTIFRQ=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB; __PPU_MTIFRT=AD4XMAAAAABmZ9nQAD4XLwAAAABmZ9nQAD4XLgAAAABmZ9nQAD4XLQAAAABmZ9nQ; bnState_1995197={"impressions":2,"delayStarted":0}; bnState_1995194={"impressions":1,"delayStarted":0}; bnState_1995192={"impressions":1,"delayStarted":0}; bnState_1995198={"impressions":1,"delayStarted":0}
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:17 GMT
content-type: application/octet-stream
content-length: 2264
last-modified: Sun, 30 Jul 2023 11:07:49 GMT
etag: "64c64485-8d8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611259
ddg-cache-status: HIT
X-Firefox-Spdy: h2

o3sxhw5ad.com/lv/esnk/1995197/code.js

212.117.190.201

200 OK

374 kB

URL GET HTTP/2
o3sxhw5ad.com/lv/esnk/1995197/code.js
IP
212.117.190.201:443
ASN
#7979 SERVERS-COM

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
FingerprintFD:8B:D8:68:96:AF:8E:87:FC:C0:50:00:30:F9:83:58:CF:D6:BF:11
ValidityFri, 10 May 2024 15:37:32 GMT - Tue, 05 Nov 2024 22:59:00 GMT

File type
gzip compressed data, max speed, from Unix
Size
374 kB (374319 bytes)
Hash
7063c9fe72499eec6ebc7701ae7315b1
483ad1516204af7542360628fca7eca2ef6057e6
364691d5ec7914e732e7ba9dbdae3b82cac3da151dd3de98babf5d04b39f957e

HTTP Headers

GET /lv/esnk/1995197/code.js HTTP/1.1
Host: o3sxhw5ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: application/javascript
last-modified: Mon, 10 Jun 2024 15:48:24 GMT
vary: Accept-Encoding
etag: W/"66672048-1e862"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2

rule34video.com/get_file/6/681d4a9308541f6c4974a32154559872d42970809b/3348000/3348714/3348714_360.mp4/?br=1213&rnd=1718050675973

186.2.163.12

0 B

URL GET
rule34video.com/get_file/6/681d4a9308541f6c4974a32154559872d42970809b/3348000/3348714/3348714_360.mp4/?br=1213&rnd=1718050675973
IP
186.2.163.12:0
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /get_file/6/681d4a9308541f6c4974a32154559872d42970809b/3348000/3348714/3348714_360.mp4/?br=1213&rnd=1718050675973 HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://rule34video.com/
Range: bytes=0-
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154; kt_tcookie=1; _ga_QKBWZM1667=GS1.1.1718050675.1.0.1718050675.0.0.0; _ga=GA1.1.1529480182.1718050676; __PPU_CAIFRQ=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE; __PPU_CAIFRT=ACzeRAAAAABmZ9nQACzeQwAAAABmZ9nQ; __PPU_MTIFRQ=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB; __PPU_MTIFRT=AD4XMAAAAABmZ9nQAD4XLwAAAABmZ9nQAD4XLgAAAABmZ9nQAD4XLQAAAABmZ9nQ; bnState_1995197={"impressions":2,"delayStarted":0}; bnState_1995194={"impressions":1,"delayStarted":0}; bnState_1995192={"impressions":1,"delayStarted":0}; bnState_1995198={"impressions":1,"delayStarted":0}
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 10 Jun 2024 20:17:56 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://ams04-prem.rule34video.com/remote_control.php?time=1718050676&cv=e6d466c5a18d50f71c62a8162bd05a76&lr=454875&cv2=1c868ee7dc220d7e4826c2ec3364cda8&file=%2Fvideos1%2F3348000%2F3348714%2F3348714_360.mp4&cv3=7b148ffed7e5ddccd7d2456825ccfe56&cv4=7a572b456b5370485198a3bee0294d24
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
age: 0
ddg-cache-status: MISS
X-Firefox-Spdy: h2

cdn.cloudfrale.com/bn/b7c/ab3/a54/b7cab3a5435f14781949ee4473960540e35690f6.mp4

45.133.44.21

206 Partial Content

330 kB

URL GET HTTP/2
cdn.cloudfrale.com/bn/b7c/ab3/a54/b7cab3a5435f14781949ee4473960540e35690f6.mp4
IP
45.133.44.21:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint5F:02:E3:5B:0C:B7:FA:C1:27:2A:35:DA:29:17:01:A8:47:B5:F3:A8
ValidityWed, 10 Jan 2024 08:59:56 GMT - Sun, 07 Jul 2024 21:59:00 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
330 kB (329525 bytes)
Hash
7e77144a14e32644ed5e15f0f9fb030f
b7cab3a5435f14781949ee4473960540e35690f6
9915a8f845c921ea7c24aabcf3674f8aa0818a7800108cc1fa4d178f21a8bd5b

HTTP Headers

GET /bn/b7c/ab3/a54/b7cab3a5435f14781949ee4473960540e35690f6.mp4 HTTP/1.1
Host: cdn.cloudfrale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: video/mp4
content-length: 329525
server: nginx/1.26.0
etag: 7e77144a14e32644ed5e15f0f9fb030f
last-modified: Sun, 05 Nov 2023 16:10:26 GMT
x-timestamp: 1699200625.34816
x-trans-id: tx5014e19be84040579e5ec-00664f4f1f
x-openstack-request-id: tx5014e19be84040579e5ec-00664f4f1f
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Wed, 12 Jun 2024 20:17:55 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
access-control-allow-origin: *
content-range: bytes 0-329524/329525
X-Firefox-Spdy: h2

holahupa.com/get/1995185?zoneid=1995185&jp=_clcptlql4z41zkjh9udzvy&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2364393982750208&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5&uf=0

94.242.247.29

200 OK

124 kB

URL GET HTTP/2
holahupa.com/get/1995185?zoneid=1995185&jp=_clcptlql4z41zkjh9udzvy&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2364393982750208&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5&uf=0
IP
94.242.247.29:443
ASN
#0

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint37:9C:0B:A5:86:57:C0:69:0E:03:5F:81:08:70:78:45:B6:3E:E8:17
ValidityTue, 14 May 2024 16:32:22 GMT - Sat, 09 Nov 2024 22:59:00 GMT

File type
gzip compressed data, from Unix
Size
124 kB (124055 bytes)
Hash
8ace14c60ef79085cc4e943283705a28
8d96b71002ea83a1cc422ded536c92f0f5209cf1
0f89ed538e3e9f86d037f1c983e70049dc8fa687016a9411dca695aba2553ede

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /get/1995185?zoneid=1995185&jp=_clcptlql4z41zkjh9udzvy&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2364393982750208&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5&uf=0 HTTP/1.1
Host: holahupa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: text/javascript
vary: Accept-Encoding
x-route-id: config
set-cookie: CHCK=1; Path=/; Expires=Mon, 14 Jul 2025 20:17:55 GMT; Secure; SameSite=None
UID=24061015178e79d5e7464a40428560855854; Path=/; Expires=Mon, 14 Jul 2025 20:17:55 GMT; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2

cdn.cloudfrale.com/bn/ce7/c6b/c2a/ce7c6bc2aa6d1de8be97ff12c7b634006904f229.mp4

45.133.44.21

206 Partial Content

358 kB

URL GET HTTP/2
cdn.cloudfrale.com/bn/ce7/c6b/c2a/ce7c6bc2aa6d1de8be97ff12c7b634006904f229.mp4
IP
45.133.44.21:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint5F:02:E3:5B:0C:B7:FA:C1:27:2A:35:DA:29:17:01:A8:47:B5:F3:A8
ValidityWed, 10 Jan 2024 08:59:56 GMT - Sun, 07 Jul 2024 21:59:00 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
358 kB (357898 bytes)
Hash
cc7807a6c619a159872cf8818b0f6014
ce7c6bc2aa6d1de8be97ff12c7b634006904f229
5af9edbad95b428b489c69229952e20b4c7b5d64780c261e1c3d8bc66a873c63

HTTP Headers

GET /bn/ce7/c6b/c2a/ce7c6bc2aa6d1de8be97ff12c7b634006904f229.mp4 HTTP/1.1
Host: cdn.cloudfrale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: video/mp4
content-length: 357898
server: nginx/1.24.0
etag: cc7807a6c619a159872cf8818b0f6014
last-modified: Sun, 05 Nov 2023 16:31:45 GMT
x-timestamp: 1699201904.86130
x-trans-id: tx3c1807a866e2423c9bce6-00664f4f20
x-openstack-request-id: tx3c1807a866e2423c9bce6-00664f4f20
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Wed, 12 Jun 2024 20:17:55 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
access-control-allow-origin: *
content-range: bytes 0-357897/357898
X-Firefox-Spdy: h2

o3sxhw5ad.com/get/1995192?zoneid=1995192&jp=_cled0jbuyxp3tq46ll1x1s&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=3771768866339840&eclog=0&im=1&cs=5&freq=0&uf=0

212.117.190.201

200 OK

6.0 kB

URL GET HTTP/2
o3sxhw5ad.com/get/1995192?zoneid=1995192&jp=_cled0jbuyxp3tq46ll1x1s&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=3771768866339840&eclog=0&im=1&cs=5&freq=0&uf=0
IP
212.117.190.201:443
ASN
#7979 SERVERS-COM

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
FingerprintFD:8B:D8:68:96:AF:8E:87:FC:C0:50:00:30:F9:83:58:CF:D6:BF:11
ValidityFri, 10 May 2024 15:37:32 GMT - Tue, 05 Nov 2024 22:59:00 GMT

File type
gzip compressed data, from Unix
Size
6.0 kB (6027 bytes)
Hash
c0e6c88adc5faabe279b29877b629f5a
1e1499feb8f73c55e3e4e29c725bc620aaf98d16
9435b566f6c352d948594ab42eb6dc392c452411075450ae21ebd00cc11615ca

HTTP Headers

GET /get/1995192?zoneid=1995192&jp=_cled0jbuyxp3tq46ll1x1s&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=3771768866339840&eclog=0&im=1&cs=5&freq=0&uf=0 HTTP/1.1
Host: o3sxhw5ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: cart=1; cart_p=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: CHCK=1; Path=/; Expires=Mon, 14 Jul 2025 20:17:55 GMT; Secure; SameSite=None
UID=24061015173cdf490b84044881abf4ebb1bc; Path=/; Expires=Mon, 14 Jul 2025 20:17:55 GMT; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2

o3sxhw5ad.com/third.html

212.117.190.201

200 OK

4.1 kB

URL GET HTTP/2
o3sxhw5ad.com/third.html
IP
212.117.190.201:443
ASN
#7979 SERVERS-COM

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
FingerprintFD:8B:D8:68:96:AF:8E:87:FC:C0:50:00:30:F9:83:58:CF:D6:BF:11
ValidityFri, 10 May 2024 15:37:32 GMT - Tue, 05 Nov 2024 22:59:00 GMT

File type
gzip compressed data, max speed, from Unix
Size
4.1 kB (4110 bytes)
Hash
20c7a676e1c62512ffaf77b82527ee28
958b8abcb4bfc29d0c2342dfbee90006511c6fe0
16bbb1ed63d7b2d197bb88ab993c84fef8b555543917a79c503328cd437f4358

HTTP Headers

GET /third.html HTTP/1.1
Host: o3sxhw5ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: cart=1; cart_p=2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: text/html
last-modified: Mon, 10 Jun 2024 12:24:30 GMT
vary: Accept-Encoding
etag: W/"6666f07e-226"
x-js-ab: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2

o3sxhw5ad.com/get/1995197?zoneid=1995197&jp=_clte0nxp3w7i1mnmtf4q5p&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2082919006059008&eclog=0&im=1&cs=5&freq=0&uf=0

212.117.190.201

200 OK

8.7 kB

URL GET HTTP/2
o3sxhw5ad.com/get/1995197?zoneid=1995197&jp=_clte0nxp3w7i1mnmtf4q5p&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2082919006059008&eclog=0&im=1&cs=5&freq=0&uf=0
IP
212.117.190.201:443
ASN
#7979 SERVERS-COM

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
FingerprintFD:8B:D8:68:96:AF:8E:87:FC:C0:50:00:30:F9:83:58:CF:D6:BF:11
ValidityFri, 10 May 2024 15:37:32 GMT - Tue, 05 Nov 2024 22:59:00 GMT

File type
ASCII text, with very long lines (8916), with no line terminators
Size
8.7 kB (8744 bytes)
Hash
9722c93f224b5ac83bb5adca8669b2b4
19e22908b4ba6254745f9ca1664872ca6847476c
bc152d4ab41b22df244217a837b926b97977a11c4c9b0fc5cc1eeb325408a264

HTTP Headers

GET /get/1995197?zoneid=1995197&jp=_clte0nxp3w7i1mnmtf4q5p&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2082919006059008&eclog=0&im=1&cs=5&freq=0&uf=0 HTTP/1.1
Host: o3sxhw5ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: cart=1; cart_p=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: CHCK=1; Path=/; Expires=Mon, 14 Jul 2025 20:17:55 GMT; Secure; SameSite=None
UID=2406101517e4a64d6520574bc1b0c945138f; Path=/; Expires=Mon, 14 Jul 2025 20:17:55 GMT; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2

o3sxhw5ad.com/lv/esnk/1995194/code.js

212.117.190.201

200 OK

125 kB

URL GET HTTP/2
o3sxhw5ad.com/lv/esnk/1995194/code.js
IP
212.117.190.201:443
ASN
#7979 SERVERS-COM

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
FingerprintFD:8B:D8:68:96:AF:8E:87:FC:C0:50:00:30:F9:83:58:CF:D6:BF:11
ValidityFri, 10 May 2024 15:37:32 GMT - Tue, 05 Nov 2024 22:59:00 GMT

File type
JavaScript source, ASCII text, with very long lines (65078)
Size
125 kB (124834 bytes)
Hash
845461fc257768decd26d9f161f95704
a1e06ee26cff1ae429ca789f4e86d73a9b6be39f
4643966c3227eb7f77a6dc3243ce194ab2fe55c2bdd423341bff6aa0f62fc582

HTTP Headers

GET /lv/esnk/1995194/code.js HTTP/1.1
Host: o3sxhw5ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: application/javascript
last-modified: Mon, 10 Jun 2024 15:48:24 GMT
vary: Accept-Encoding
etag: W/"66672048-1e862"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2

rule34video.com/contents/videos_screenshots/3348000/3348714/preview_720p.mp4.jpg

186.2.163.12

200 OK

124 kB

URL GET HTTP/2
rule34video.com/contents/videos_screenshots/3348000/3348714/preview_720p.mp4.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp
Size
124 kB (123998 bytes)
Hash
e0d655f7a6b785fc320f4cd8a2985ac9
fed81407c0bed35d6b056d604afd3ee44d850d93
918c078346aba01082a726e54e230389d819b94e5e1c296d5c9a15763b1235fb

HTTP Headers

GET /contents/videos_screenshots/3348000/3348714/preview_720p.mp4.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154; kt_tcookie=1; _ga_QKBWZM1667=GS1.1.1718050675.1.0.1718050675.0.0.0; _ga=GA1.1.1529480182.1718050676; __PPU_CAIFRQ=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE; __PPU_CAIFRT=ACzeRAAAAABmZ9nQACzeQwAAAABmZ9nQ; __PPU_MTIFRQ=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB; __PPU_MTIFRT=AD4XMAAAAABmZ9nQAD4XLwAAAABmZ9nQAD4XLgAAAABmZ9nQAD4XLQAAAABmZ9nQ; bnState_1995197={"impressions":2,"delayStarted":0}; bnState_1995194={"impressions":1,"delayStarted":0}; bnState_1995192={"impressions":1,"delayStarted":0}; bnState_1995198={"impressions":1,"delayStarted":0}
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 10 Jun 2024 20:17:56 GMT
content-type: image/jpeg
content-length: 123998
last-modified: Thu, 21 Mar 2024 16:43:11 GMT
etag: "65fc639f-1e45e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 0
ddg-cache-status: MISS
X-Firefox-Spdy: h2

o3sxhw5ad.com/lv/esnk/1995198/code.js

212.117.190.201

200 OK

125 kB

URL GET HTTP/2
o3sxhw5ad.com/lv/esnk/1995198/code.js
IP
212.117.190.201:443
ASN
#7979 SERVERS-COM

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
FingerprintFD:8B:D8:68:96:AF:8E:87:FC:C0:50:00:30:F9:83:58:CF:D6:BF:11
ValidityFri, 10 May 2024 15:37:32 GMT - Tue, 05 Nov 2024 22:59:00 GMT

File type
JavaScript source, ASCII text, with very long lines (65078)
Size
125 kB (124834 bytes)
Hash
d87bb7361cdc8952f8f1ca523cb4231f
26b524f3482d09870b81506304f397743b713b60
92a138e9edaf8a083bb619e3517cf9c3a27411e3f965e09553a13fdc4df8b78b

HTTP Headers

GET /lv/esnk/1995198/code.js HTTP/1.1
Host: o3sxhw5ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: application/javascript
last-modified: Mon, 10 Jun 2024 15:48:24 GMT
vary: Accept-Encoding
etag: W/"66672048-1e862"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2

holahupa.com/get/2027998?zoneid=2027998&jp=_cl7us7sb9qctfo4lpzc4r4&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2927343936169472&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5&uf=0

94.242.247.29

200 OK

37 B

URL GET HTTP/2
holahupa.com/get/2027998?zoneid=2027998&jp=_cl7us7sb9qctfo4lpzc4r4&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2927343936169472&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5&uf=0
IP
94.242.247.29:443
ASN
#0

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint37:9C:0B:A5:86:57:C0:69:0E:03:5F:81:08:70:78:45:B6:3E:E8:17
ValidityTue, 14 May 2024 16:32:22 GMT - Sat, 09 Nov 2024 22:59:00 GMT

File type
ASCII text, with no line terminators
Size
37 B (37 bytes)
Hash
26c0446473cdbedd7eb18169ae75e0fd
c2a8a31848b22f49c044d0e8f2b4a48e856e08b8
c94588c2c490281057748a6bc21191dae810fb22ce8cc638b5e3fc7d390eb165

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /get/2027998?zoneid=2027998&jp=_cl7us7sb9qctfo4lpzc4r4&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2927343936169472&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5&uf=0 HTTP/1.1
Host: holahupa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: CHCK=1; UID=24061015178e79d5e7464a40428560855854
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: text/javascript
vary: Accept-Encoding
x-route-id: config
set-cookie: CHCK=1; Path=/; Expires=Mon, 14 Jul 2025 20:17:55 GMT; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2

cdn.cloudfrale.com/bn/681/72c/d48/68172cd48777e890d377b5fba39d218a84cfd02d.mp4

45.133.44.21

206 Partial Content

328 kB

URL GET HTTP/2
cdn.cloudfrale.com/bn/681/72c/d48/68172cd48777e890d377b5fba39d218a84cfd02d.mp4
IP
45.133.44.21:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint5F:02:E3:5B:0C:B7:FA:C1:27:2A:35:DA:29:17:01:A8:47:B5:F3:A8
ValidityWed, 10 Jan 2024 08:59:56 GMT - Sun, 07 Jul 2024 21:59:00 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
328 kB (328456 bytes)
Hash
27c5c28512a603c8d25a7ee3e0debe25
68172cd48777e890d377b5fba39d218a84cfd02d
9b82808c30e8b16094ff418069b9bbdfe0c5b0fb144b0914eed9ad26386e726b

HTTP Headers

GET /bn/681/72c/d48/68172cd48777e890d377b5fba39d218a84cfd02d.mp4 HTTP/1.1
Host: cdn.cloudfrale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: video/mp4
content-length: 328456
server: nginx/1.24.0
etag: 27c5c28512a603c8d25a7ee3e0debe25
last-modified: Sun, 05 Nov 2023 16:31:28 GMT
x-timestamp: 1699201887.17116
x-trans-id: tx6f4f7546039541fa957ba-00664f4f20
x-openstack-request-id: tx6f4f7546039541fa957ba-00664f4f20
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Wed, 12 Jun 2024 20:17:55 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
access-control-allow-origin: *
content-range: bytes 0-328455/328456
X-Firefox-Spdy: h2

o3sxhw5ad.com/lv/esnk/1995192/code.js

212.117.190.201

200 OK

125 kB

URL GET HTTP/2
o3sxhw5ad.com/lv/esnk/1995192/code.js
IP
212.117.190.201:443
ASN
#7979 SERVERS-COM

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
FingerprintFD:8B:D8:68:96:AF:8E:87:FC:C0:50:00:30:F9:83:58:CF:D6:BF:11
ValidityFri, 10 May 2024 15:37:32 GMT - Tue, 05 Nov 2024 22:59:00 GMT

File type
JavaScript source, ASCII text, with very long lines (65078)
Size
125 kB (124834 bytes)
Hash
d5cd0eb9f3bb70fdf9d99ba182a1c7b3
ebb0d8120dabe1d2a730324cde2d64e6a0979e14
f706e55101e635dc03931d8811c020928b59285054092c6d7da8e4275c26cb84

HTTP Headers

GET /lv/esnk/1995192/code.js HTTP/1.1
Host: o3sxhw5ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: application/javascript
last-modified: Mon, 10 Jun 2024 15:48:24 GMT
vary: Accept-Encoding
etag: W/"66672048-1e862"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2

o3sxhw5ad.com/get/1995198?zoneid=1995198&jp=_cl1dhb2jzit5hk8404o8nf&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=8275368493654016&eclog=0&im=1&cs=5&freq=0&uf=0

212.117.190.201

200 OK

4.5 kB

URL GET HTTP/2
o3sxhw5ad.com/get/1995198?zoneid=1995198&jp=_cl1dhb2jzit5hk8404o8nf&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=8275368493654016&eclog=0&im=1&cs=5&freq=0&uf=0
IP
212.117.190.201:443
ASN
#7979 SERVERS-COM

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
FingerprintFD:8B:D8:68:96:AF:8E:87:FC:C0:50:00:30:F9:83:58:CF:D6:BF:11
ValidityFri, 10 May 2024 15:37:32 GMT - Tue, 05 Nov 2024 22:59:00 GMT

File type
ASCII text, with very long lines (4573), with no line terminators
Size
4.5 kB (4469 bytes)
Hash
741f1ef12d0b11e39900717a627acf12
68095da8992251686ec676b386510854ffe8a7ba
4a61fdfb0789591f654450a19d56a0cc0e23942dbc3b62916b73768932dbc875

HTTP Headers

GET /get/1995198?zoneid=1995198&jp=_cl1dhb2jzit5hk8404o8nf&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=8275368493654016&eclog=0&im=1&cs=5&freq=0&uf=0 HTTP/1.1
Host: o3sxhw5ad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: cart=1; cart_p=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: CHCK=1; Path=/; Expires=Mon, 14 Jul 2025 20:17:55 GMT; Secure; SameSite=None
UID=2406101517aae27147c70b4ec99dce8412a5; Path=/; Expires=Mon, 14 Jul 2025 20:17:55 GMT; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2

holahupa.com/aas/r45d/vki/1995185/tghr.js

94.242.247.29

200 OK

114 kB

URL GET HTTP/2
holahupa.com/aas/r45d/vki/1995185/tghr.js
IP
94.242.247.29:443
ASN
#0

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint37:9C:0B:A5:86:57:C0:69:0E:03:5F:81:08:70:78:45:B6:3E:E8:17
ValidityTue, 14 May 2024 16:32:22 GMT - Sat, 09 Nov 2024 22:59:00 GMT

File type
JavaScript source, ASCII text, with very long lines (65078)
Size
114 kB (113538 bytes)
Hash
801915e45ee2dd1a1310b461e687a557
240b4e8c2071ab7e650399690b3dc5357a1d199f
37106aac58a112d2f36adf9163cb58ad4548b4c8c8b05b9a8be77292ca61d915

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /aas/r45d/vki/1995185/tghr.js HTTP/1.1
Host: holahupa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: application/javascript
last-modified: Mon, 10 Jun 2024 15:48:24 GMT
vary: Accept-Encoding
etag: W/"66672048-1bc44"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2

holahupa.com/solid.gif?z=2027998&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2927343936169472&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5

94.242.247.29

200 OK

43 B

URL POST HTTP/2
holahupa.com/solid.gif?z=2027998&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2927343936169472&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5
IP
94.242.247.29:443
ASN
#0

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint37:9C:0B:A5:86:57:C0:69:0E:03:5F:81:08:70:78:45:B6:3E:E8:17
ValidityTue, 14 May 2024 16:32:22 GMT - Sat, 09 Nov 2024 22:59:00 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /solid.gif?z=2027998&nojs=0&abvar=0&febuild=1.0.260&t=0&wcks=1&wgl=0&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=2&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=2927343936169472&caifrq=ACzeRAAAAAAAAAABACzeQwAAAAAAAAAE&mtifrq=AD4XMAAAAAAAAAABAD4XLwAAAAAAAAACAD4XLgAAAAAAAAABAD4XLQAAAAAAAAAB&eclog=0&im=1&cs=5 HTTP/1.1
Host: holahupa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
Origin: https://rule34video.com
DNT: 1
Connection: keep-alive
Cookie: CHCK=1; UID=24061015178e79d5e7464a40428560855854
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 200 OK
server: nginx
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
set-cookie: CHCK=1; Path=/; Expires=Mon, 14 Jul 2025 20:17:55 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2

rule34video.com/contents/categories/78/s1_78.jpg

186.2.163.12

200 OK

4.3 kB

URL GET HTTP/2
rule34video.com/contents/categories/78/s1_78.jpg
IP
186.2.163.12:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectrule34video.com
Fingerprint2A:A7:F1:43:6C:4C:5A:58:4B:AD:C7:A5:24:85:35:4A:44:0C:6C:9B
ValidityMon, 10 Jun 2024 09:22:59 GMT - Sun, 08 Sep 2024 09:22:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 240x135, components 3
Size
4.3 kB (4342 bytes)
Hash
2300069c8b2e980a7c18c351b3338b6d
a3e92c13540c370c57320f88c343bfe0b38b13c3
a22d086f885610c125a5311ba33b861ebf2c439f05e8efe04983b7a789c7ef4a

HTTP Headers

GET /contents/categories/78/s1_78.jpg HTTP/1.1
Host: rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 03 Jun 2024 18:30:16 GMT
content-type: image/jpeg
content-length: 4342
last-modified: Tue, 11 Oct 2022 04:36:05 GMT
etag: "6344f2b5-10f6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
accept-ranges: bytes
age: 611258
ddg-cache-status: HIT
X-Firefox-Spdy: h2

ams04-prem.rule34video.com/remote_control.php?time=1718050676&cv=e6d466c5a18d50f71c62a8162bd05a76&lr=454875&cv2=1c868ee7dc220d7e4826c2ec3364cda8&file=%2Fvideos1%2F3348000%2F3348714%2F3348714_360.mp4&cv3=7b148ffed7e5ddccd7d2456825ccfe56&cv4=7a572b456b5370485198a3bee0294d24

0.0.0.0

0 B

URL GET
ams04-prem.rule34video.com/remote_control.php?time=1718050676&cv=e6d466c5a18d50f71c62a8162bd05a76&lr=454875&cv2=1c868ee7dc220d7e4826c2ec3364cda8&file=%2Fvideos1%2F3348000%2F3348714%2F3348714_360.mp4&cv3=7b148ffed7e5ddccd7d2456825ccfe56&cv4=7a572b456b5370485198a3bee0294d24
IP
0.0.0.0:0
ASN
#0

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerLet's Encrypt
Subjectams04-prem.rule34video.com
Fingerprint47:A3:0F:A8:6A:2B:93:1A:9D:3B:B2:30:AF:46:D8:75:F9:EB:61:D5
ValidityWed, 08 May 2024 04:23:22 GMT - Tue, 06 Aug 2024 04:23:21 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /remote_control.php?time=1718050676&cv=e6d466c5a18d50f71c62a8162bd05a76&lr=454875&cv2=1c868ee7dc220d7e4826c2ec3364cda8&file=%2Fvideos1%2F3348000%2F3348714%2F3348714_360.mp4&cv3=7b148ffed7e5ddccd7d2456825ccfe56&cv4=7a572b456b5370485198a3bee0294d24 HTTP/1.1
Host: ams04-prem.rule34video.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br, identity
Range: bytes=0-
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=9RoFVb7ZdEwexwy55jZ8; PHPSESSID=mutfusan2cdts143rp6dj2amr8; kt_ips=91.90.42.154; _ga_QKBWZM1667=GS1.1.1718050675.1.0.1718050675.0.0.0; _ga=GA1.1.1529480182.1718050676
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
server: nginx
date: Mon, 10 Jun 2024 20:17:56 GMT
content-type: video/mp4
content-length: 32615154
last-modified: Thu, 21 Mar 2024 16:42:22 GMT
content-disposition: inline; filename="3348714_360.mp4"
etag: "65fc636e-1f1aaf2"
strict-transport-security: max-age=31536000;
content-range: bytes 0-32615153/32615154
X-Firefox-Spdy: h2

holahupa.com/aas/r45d/vki/2000486/tghr.js

94.242.247.29

200 OK

114 kB

URL GET HTTP/2
holahupa.com/aas/r45d/vki/2000486/tghr.js
IP
94.242.247.29:443
ASN
#0

Requested by
https://rule34video.com/video/3348714/dohna-dohna-medico-8-alice-soft/
Certificate
IssuerBuypass AS-983163327
Subject
Fingerprint37:9C:0B:A5:86:57:C0:69:0E:03:5F:81:08:70:78:45:B6:3E:E8:17
ValidityTue, 14 May 2024 16:32:22 GMT - Sat, 09 Nov 2024 22:59:00 GMT

File type
JavaScript source, ASCII text, with very long lines (65078)
Size
114 kB (113538 bytes)
Hash
40bd356b6fc0d68ac2251160cec7c343
005af00174f127a814e69ad87e39a55efd938704
ba65081f97709b3201a3739263c99c216803629723ca7c578cd4e11a0869a293

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /aas/r45d/vki/2000486/tghr.js HTTP/1.1
Host: holahupa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rule34video.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 10 Jun 2024 20:17:55 GMT
content-type: application/javascript
last-modified: Mon, 10 Jun 2024 15:48:24 GMT
vary: Accept-Encoding
etag: W/"66672048-1bc44"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by