Report - midrov.com/v0f1d4s7rq/e/203819/1/12/0

Report Overview

Visited public
2024-08-07 18:59:14
Tags
suspicious
URL
midrov.com/v0f1d4s7rq/e/203819/1/12/0
Finishing URL
midrov.com/v0f1d4s7rq/e/203819/1/12/0
IP / ASN
172.67.209.222
#13335 CLOUDFLARENET
Title
Midrov
Suspicious - Anti-debugging code

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Sent	Received	IP
o.pki.goog	unknown	1.3 kB	2.8 kB	142.250.74.131
mayi24313.mayicloud.com	unknown	905 B	2.0 MB	104.21.77.130
r11.o.lencr.org	unknown	327 B	888 B	23.33.119.27
cdnjs.cloudflare.com	235	467 B	83 kB	104.17.24.14
cdn.jwplayer.com	2208	410 B	44 kB	54.240.174.25
fonts.googleapis.com	8877	1.4 kB	11 kB	142.250.74.106
mayicloud.com	unknown	1.8 kB	878 kB	104.21.77.130
static.vecteezy.com	44978	452 B	962 B	0.0.0.0
vjs.zencdn.net	4968	1.7 kB	204 kB	151.101.66.217
cdn.jsdelivr.net	439	406 B	115 kB	151.101.65.229
ssl.p.jwpcdn.com	2512	1.2 kB	247 kB	151.101.194.114
fonts.gstatic.com	unknown	1.1 kB	66 kB	216.58.207.227
midrov.com	unknown	946 B	29 kB	104.21.23.88
ajax.googleapis.com	12905	428 B	32 kB	142.250.74.138
r10.o.lencr.org	unknown	2.9 kB	8.0 kB	23.36.77.32
image.tmdb.org	17757	459 B	54 kB	138.199.36.7
upload.wikimedia.org	2215	476 B	2.0 kB	185.15.59.240

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (20)

	URL	From	Size	First Seen	Last Seen
	midrov.com/v0f1d4s7rq/e/203819/1/12/0	ScriptElement	424 B	2024-08-07	2024-08-31
Pretty URL midrov.com/v0f1d4s7rq/e/203819/1/12/0 IP 104.21.23.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-07 20:59 Last Seen2024-08-31 08:35 Times Seen2 Hash ca89534658a28677953f24ebf9e212ca 3442bdbd3f3b9ca7818085ff00f388e577c079dc 46a96e1f1831114df64e56a7f89ddbd44f191cbd297d69043a2511ad0e18fa18 Loading...

	cdn.jsdelivr.net/npm/hls.js@latest	ScriptElement	413 kB	2024-08-07	2025-04-22
Pretty URL cdn.jsdelivr.net/npm/hls.js@latest IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-07 20:59 Last Seen2025-04-22 01:34 Times Seen41 Hash 74c8b3fc39f92e9faa2cb520ff28fe4b 8ae8321e02d9e4179310e5e5eba051798c3597aa f42d302c5e25e58148ac59344c6b5759e80f4583e01dfd07d85464a7a99528e4 Loading...

	midrov.com/v0f1d4s7rq/e/203819/1/12/0	ScriptElement	284 B	2024-08-19	2024-08-19
Pretty URL midrov.com/v0f1d4s7rq/e/203819/1/12/0 IP 104.21.23.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 14:16 Last Seen2024-08-19 14:16 Times Seen1 Hash 923c3ca6f5792b3fa999b6fd2c0db1c8 5750dcaab6b7b4ac2630ccaa8574cddcbf2c69b4 cb679c472db865babeaf1239e5b39fadf3a83d5f4f09a06e701aa72c76cec33f Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-04-25
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.74.138 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-04-25 23:43 Times Seen106152 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	ssl.p.jwpcdn.com/player/v/8.34.5/provider.hlsjs.js	ScriptElement	461 kB	2024-07-25	2025-04-19
Pretty URL ssl.p.jwpcdn.com/player/v/8.34.5/provider.hlsjs.js IP 151.101.194.114 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-25 08:59 Last Seen2025-04-19 06:19 Times Seen73 Hash 03e9a17ba5548f83f8bafe6f8e363a37 397b5927a521fe70be452ee2b31924eb5fcd4ef7 d937c02b1de25e9efce6ce297994e1003a4d345c24bf1effe88efd6dcc130ccc Loading...

	midrov.com/v0f1d4s7rq/e/203819/1/12/0	ScriptElement	241 B	2024-08-19	2024-08-19
Pretty URL midrov.com/v0f1d4s7rq/e/203819/1/12/0 IP 104.21.23.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 14:16 Last Seen2024-08-19 14:16 Times Seen1 Hash b58ba631ba2b17292e0dcda6a5869317 a69a389113bd88a1a2491db3e2e4cdc529c5c245 7c1d7123089581dbe4ea881226073cac8ce00a596421e712db8cb5369254e0d1 Loading...

	midrov.com/v0f1d4s7rq/e/203819/1/12/0	ScriptElement	472 B	2024-08-07	2024-08-31
Pretty URL midrov.com/v0f1d4s7rq/e/203819/1/12/0 IP 104.21.23.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-07 20:59 Last Seen2024-08-31 08:35 Times Seen2 Hash ce5d8b5d3762a4033aca631602d20712 68f8ebebc2ace9bd4bef56b5cd571a8a9d197442 db0bc1a06d80b1535d50a8e8b75f0b99b0270dc89747c89968cf8d3171881e66 Loading...

	vjs.zencdn.net/5.19.2/video.js	ScriptElement	864 kB	2023-03-11	2025-03-19
Pretty URL vjs.zencdn.net/5.19.2/video.js IP 151.101.66.217 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:32 Last Seen2025-03-19 18:41 Times Seen78 Hash 9e9c51f3bdffd66d6ed5ffcf3e317a0d 614ac82437fbf2eba57c2fb3a2b796a14a25ab38 fb1dfbc9f9010c08ab716ec864805f4444d4eca0d67a1cc0bbf68a2224d9b994 Loading...

	cdnjs.cloudflare.com/ajax/libs/videojs-contrib-hls/3.0.2/videojs-contrib-hls.js?_=1496850054232	ScriptElement	453 kB	2023-03-08	2025-03-19
Pretty URL cdnjs.cloudflare.com/ajax/libs/videojs-contrib-hls/3.0.2/videojs-contrib-hls.js?_=1496850054232 IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 09:05 Last Seen2025-03-19 18:41 Times Seen65 Hash 8f8b05faa0530dbe7c76df7d6f7f4de8 66575fe5fc926bfbcad9581801781f6db5a50e43 46807b2f7af7f9bde6d2b70932b298d4bf70e865af5b66c10599faec46e44832 Loading...

	mayicloud.com/iframe/Cg7OuVrgSu	ScriptElement	3.3 kB	2024-08-19	2024-08-19
Pretty URL mayicloud.com/iframe/Cg7OuVrgSu IP 104.21.77.130 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 14:16 Last Seen2024-08-19 14:16 Times Seen1 Hash fd65a6b30d7bc19cf745644def7e4ada 2f52d74cb2df6b3d316c1e50e4daa8dfa7658072 778274ded2e7963a2fad852c9ecd8a7c61787dcbbd17c8111a8e0c2e90ec400b Loading...

	mayicloud.com/iframe/Cg7OuVrgSu	ScriptElement	646 B	2024-08-19	2024-08-19
Pretty URL mayicloud.com/iframe/Cg7OuVrgSu IP 104.21.77.130 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 14:16 Last Seen2024-08-19 14:16 Times Seen1 Hash f6eb2c9ffad0791bf6f0f23eae55a453 7aae29bd83f1079ddfa1d1c1d4bd14318c2a9a52 d015713d6131ad02ea0b055d183ef49c9c0f3a45cc7e0fc0c563718dcf6875b9 Loading...

	mayicloud.com/videojs.hotkeys.js	ScriptElement	14 kB	2024-08-06	2024-10-21
Pretty URL mayicloud.com/videojs.hotkeys.js IP 104.21.77.130 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-06 01:01 Last Seen2024-10-21 02:28 Times Seen8 Hash 7105cd768027f325703d885e19c7c956 185ec8a54a7a0f0d2abcf2cf251fc68a722af77e 463b233955181d379d4514092ae30a0b062d28bfd06e85df78fbf54b1686b3df Loading...

	midrov.com/v0f1d4s7rq/e/203819/1/12/0	ScriptElement	1.5 kB	2024-08-07	2024-08-31
Pretty URL midrov.com/v0f1d4s7rq/e/203819/1/12/0 IP 104.21.23.88 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-07 20:59 Last Seen2024-08-31 08:35 Times Seen2 Hash 7d8cc41a95ce533731f8472fd844f5a6 3aba4ca3a109f9cf040731e7e61a674e56ced88a d5fb9d8bfde445315bf285ac8c98e5dda0e9e84b1b50b4d889ce9ab8c4c73a63 Loading...

	vjs.zencdn.net/ie8/1.1.2/videojs-ie8.min.js	ScriptElement	27 kB	2023-03-07	2025-04-17
Pretty URL vjs.zencdn.net/ie8/1.1.2/videojs-ie8.min.js IP 151.101.66.217 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03 Last Seen2025-04-17 15:05 Times Seen419 Hash 2ff9bb22f0b1789ac170247b0825488f f2b1471c6b72cef3df20d2b16fed14739c4831f1 3cea9fd4486e2820f34fdeb7970fd29c4fa531e79a285bf58aaab1ecdadfa99a Loading...

	cdn.jwplayer.com/libraries/KB5zFt7A.js	ScriptElement	115 kB	2024-08-19	2024-08-19
Pretty URL cdn.jwplayer.com/libraries/KB5zFt7A.js IP 54.240.174.25 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 14:16 Last Seen2024-08-19 14:16 Times Seen1 Hash 06290796c1687b232bf63f221a422539 1e0b2414f8767dbeabe0a85d77df33f3fa056b38 65d387fa730c5d8e6aaad23b57d43e02eec78b6c53c5029d870e3fdfc8bee868 Loading...

	mayicloud.com/iframe/Cg7OuVrgSu	ScriptElement	4.5 kB	2024-08-07	2025-03-19
Pretty URL mayicloud.com/iframe/Cg7OuVrgSu IP 104.21.77.130 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-07 20:59 Last Seen2025-03-19 18:41 Times Seen65 Hash 4c4c78eec72c9235431d168a4f216eca 8d3eb74e97e2fa2f3d6e4ba50b6a4d4d6009b1aa 5256a663d13932e4a030f617a8213a4bd14c623245bc2a7c9efc694c0fce9c4a Loading...

	mayicloud.com/iframe/Cg7OuVrgSu	ScriptElement	1.6 kB	2024-08-07	2025-03-19
Pretty URL mayicloud.com/iframe/Cg7OuVrgSu IP 104.21.77.130 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-07 20:59 Last Seen2025-03-19 18:41 Times Seen65 Hash c1587e81aaeab8e9f4175a9acc4e1b0f 3eb7b40cf3c5466426045463c5dca0de56656fd9 ce722e92ffa45137a5cf495cda6165bcb3943d0aa66c2b9c7c5fef92ca6d6825 Loading...

	ssl.p.jwpcdn.com/player/v/8.34.5/jwpsrv.js	ScriptElement	67 kB	2024-04-23	2025-04-15
Pretty URL ssl.p.jwpcdn.com/player/v/8.34.5/jwpsrv.js IP 151.101.194.114 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 16:41 Last Seen2025-04-15 12:10 Times Seen243 Hash d7f3733c71441c1881fc4eabe9c96086 8db1f2f35489a41d1fb63af5b9aad52388c58735 9f4c0014a4f36c11302077dc073ef529031ce3eebc04c0ca9bc1d7ea0ed95eca Loading...

	ssl.p.jwpcdn.com/player/v/8.34.5/jwplayer.core.controls.js	ScriptElement	329 kB	2024-07-25	2025-04-24
Pretty URL ssl.p.jwpcdn.com/player/v/8.34.5/jwplayer.core.controls.js IP 151.101.194.114 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-25 08:59 Last Seen2025-04-24 08:40 Times Seen223 Hash 6510d7affd80e4b580a98e325eaf95a0 f270428b8dfe9a4833679b4282da0538e256216f 60ba587021922d691624730f1d9faa7974c7e4f4f9cfc7a33a354d334bed2926 Loading...

	mayicloud.com/video.js	ScriptElement	794 kB	2024-08-07	2024-10-21
Pretty URL mayicloud.com/video.js IP 104.21.77.130 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-07 20:59 Last Seen2024-10-21 02:28 Times Seen9 Hash ca2ad146ef74a210c5e1d47c0c64d5bd 398fdf53b487aee657d9e889f221f665b82c30d9 7f9a8bab66a0d7a353873ce93f46f8c9d48bc72a4ab85433fa51ceccd110a5fa Loading...

HTTP Transactions (41)

URL IP Response Size

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
a4b0d33ac49c96c71e39bb632bda5673
f4a1b2c6888fbf71cf9f3a36170c0968463df973
b28c45ed35b17a62f81e5aa81541f61740e5dfb5d5c1baa572feed4a4e2db9c5

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "B28C45ED35B17A62F81E5AA81541F61740E5DFB5D5C1BAA572FEED4A4E2DB9C5"
Last-Modified: Tue, 06 Aug 2024 06:28:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10016
Expires: Wed, 07 Aug 2024 21:45:41 GMT
Date: Wed, 07 Aug 2024 18:58:45 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
361994b45d17874f3d57044be82a542d
ddad8ebd0d7ecdc2c9d07245d5aff4df9e3e0a56
bf3643f753112c9f8fa5204e8ee172a6e0374d160407b7f14e2c0708aa0daad5

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "BF3643F753112C9F8FA5204E8EE172A6E0374D160407B7F14E2C0708AA0DAAD5"
Last-Modified: Tue, 06 Aug 2024 06:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16894
Expires: Wed, 07 Aug 2024 23:40:19 GMT
Date: Wed, 07 Aug 2024 18:58:45 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
e7a128439c6dec237227cc4b883a2c99
7794fc9e9bc964823a96cec60a2ec829dbce9919
f0a648a200fc7849174d4b74c6fbfee82b5bd098c9c9cae7084bdafaba169e3b

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F0A648A200FC7849174D4B74C6FBFEE82B5BD098C9C9CAE7084BDAFABA169E3B"
Last-Modified: Tue, 06 Aug 2024 06:26:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10354
Expires: Wed, 07 Aug 2024 21:51:19 GMT
Date: Wed, 07 Aug 2024 18:58:45 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
ad08a2764470070a728a228f5cca3296
3e8d448130fe3c6ad6e88a0ff3dd170855740e6f
c508461997b3781963d5494bb2517544c6ad0b2a8029d1a1009a6bb3ff6b0fd7

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "C508461997B3781963D5494BB2517544C6AD0B2A8029D1A1009A6BB3FF6B0FD7"
Last-Modified: Tue, 06 Aug 2024 06:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10761
Expires: Wed, 07 Aug 2024 21:58:06 GMT
Date: Wed, 07 Aug 2024 18:58:45 GMT
Connection: keep-alive

r11.o.lencr.org/

23.33.119.27

504 B

URL
r11.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
3389fa97810a8c5e149b8e6a59c6836b
a7ed68e3a115b3a7a52e4f39685958ece35bb6bb
b72a00e2947fff65141686d4bd5cfa6ebab414d8aa2a11b8579892aa4c2f3da2

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "B72A00E2947FFF65141686D4BD5CFA6EBAB414D8AA2A11B8579892AA4C2F3DA2"
Last-Modified: Tue, 06 Aug 2024 07:07:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10250
Expires: Wed, 07 Aug 2024 21:49:36 GMT
Date: Wed, 07 Aug 2024 18:58:46 GMT
Connection: keep-alive

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c874c4740d04d22466a4181f4a57e3f3
7744e4386356bbcc43c9064830e7addc3a861b36
b9115430ce3d0b3da1f63c614e0d5d5a8579921f13b290213df357833b71b2b2

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Aug 2024 18:58:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

image.tmdb.org/t/p/w500/vNPfbjfWn0VatpFUwd2QHtUMPad.jpg

138.199.36.7

200 OK

53 kB

URL GET HTTP/2
image.tmdb.org/t/p/w500/vNPfbjfWn0VatpFUwd2QHtUMPad.jpg
IP
138.199.36.7:443
ASN
#60068 Datacamp Limited

Requested by
https://midrov.com/v0f1d4s7rq/e/203819/1/12/0
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint92:0F:04:8E:FE:C6:31:5F:3B:ED:C0:C6:7E:A6:B0:D9:11:68:30:CD
ValiditySun, 07 Jul 2024 17:08:24 GMT - Sat, 05 Oct 2024 17:08:23 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x750, components 3
Size
53 kB (52831 bytes)
Hash
b8747bae33559fda2662aedf5c6f5a5b
d1dbea33254909399708ce51f15b35d9cd3b8985
a00ebda311b967417c2c25bd08eaf0281e84d25c4adb41b07dade45387f7702b

HTTP Headers

GET /t/p/w500/vNPfbjfWn0VatpFUwd2QHtUMPad.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://midrov.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Aug 2024 18:58:46 GMT
content-type: image/jpeg
content-length: 52831
server: BunnyCDN-DE1-1047
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "65527271-ce5f"
last-modified: Mon, 13 Nov 2023 19:01:05 GMT
cdn-storageserver: NY-346
cdn-requestpullsuccess: True
cdn-fileserver: 716
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 12/27/2023 06:53:15
cdn-edgestorageid: 756
cdn-status: 200
cdn-requestid: f74e880c1d140b713bf0a69dba753dba
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c874c4740d04d22466a4181f4a57e3f3
7744e4386356bbcc43c9064830e7addc3a861b36
b9115430ce3d0b3da1f63c614e0d5d5a8579921f13b290213df357833b71b2b2

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Aug 2024 18:58:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

upload.wikimedia.org/wikipedia/commons/9/9d/Caret_down_font_awesome_whitevariation.svg

185.15.59.240

200 OK

862 B

URL GET HTTP/2
upload.wikimedia.org/wikipedia/commons/9/9d/Caret_down_font_awesome_whitevariation.svg
IP
185.15.59.240:443
ASN
#14907 WIKIMEDIA

Requested by
https://midrov.com/v0f1d4s7rq/e/203819/1/12/0
Certificate
IssuerDigiCert Inc
Subject*.wikipedia.org
Fingerprint48:3F:0C:71:F3:4A:E0:EA:30:D9:9B:D6:04:63:DC:DA:A8:F4:9D:FB
ValidityWed, 18 Oct 2023 00:00:00 GMT - Wed, 16 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
862 B (862 bytes)
Hash
4cde7b5a483c78b57719c6a1dee884c9
f1cf6a458277f0a731f94ded4d79c66d5713519a
56e0349bd96e9fce9e198e862f586120fe846f0d4d39846e718ec4835a3c71bf

HTTP Headers

GET /wikipedia/commons/9/9d/Caret_down_font_awesome_whitevariation.svg HTTP/1.1
Host: upload.wikimedia.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://midrov.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 07 Aug 2024 04:45:06 GMT
server: ATS/9.1.4
etag: W/4cde7b5a483c78b57719c6a1dee884c9
content-type: image/svg+xml
x-object-meta-sha1base36: s8uzgrrn9afb0avw2a30xjdryrt432y
last-modified: Wed, 31 Mar 2021 14:42:04 GMT
content-encoding: gzip
vary: Accept-Encoding
age: 51220
x-cache: cp3078 hit, cp3078 hit/424
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3078"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 91.90.42.154
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
accept-ranges: bytes
content-length: 862
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4087f60bf6f7e4ed4c526b7fb85fad1e
de7242afd1034f4ff630498396b9d873bf6b71c6
e166dd45dfc3b70503ccc9c37540cbfc5e90824a533dab35c3b0b4e31abdc5aa

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Aug 2024 18:58:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://midrov.com/v0f1d4s7rq/e/203819/1/12/0
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintF2:15:54:4E:F3:58:7F:5A:14:9D:F2:45:37:0E:B1:A6:48:C6:2B:14
ValidityTue, 30 Jul 2024 12:49:30 GMT - Tue, 22 Oct 2024 12:49:29 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48444, version 1.0
Size
48 kB (48444 bytes)
Hash
8e433c0592f77beb6dc527d7b90be120
d7402416753ae1bb4cbd4b10d33a0c10517838bd
f052ee44c3728dfd23aba8a4567150bc314d23903026fbb6ad089422c2df56af

HTTP Headers

GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://midrov.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48444
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Aug 2024 02:57:59 GMT
expires: Sun, 03 Aug 2025 02:57:59 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Jul 2024 22:51:01 GMT
content-type: font/woff2
age: 403247
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4087f60bf6f7e4ed4c526b7fb85fad1e
de7242afd1034f4ff630498396b9d873bf6b71c6
e166dd45dfc3b70503ccc9c37540cbfc5e90824a533dab35c3b0b4e31abdc5aa

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Aug 2024 18:58:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

midrov.com/favicon.png

104.21.23.88

200 OK

511 B

URL GET HTTP/3
midrov.com/favicon.png
IP
104.21.23.88:443
ASN
#13335 CLOUDFLARENET

Requested by
https://midrov.com/v0f1d4s7rq/e/203819/1/12/0
Certificate
IssuerGoogle Trust Services
Subjectmidrov.com
Fingerprint2D:57:F3:A6:24:79:A5:9D:D5:96:E3:16:8C:7D:58:7F:14:FD:11:D7
ValidityTue, 06 Aug 2024 18:08:59 GMT - Mon, 04 Nov 2024 18:08:58 GMT

File type
PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced
Size
511 B (511 bytes)
Hash
6d43a937a77827120a0159ecb247b77b
0beb97fa4dd91cb477ca4ca0372924aab01b9ffc
aae3cd6f98b3745aafc2d7cbb48ab5b85cc6ecb378f1434d8254882db6dfd086

HTTP Headers

GET /favicon.png HTTP/1.1
Host: midrov.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://midrov.com/v0f1d4s7rq/e/203819/1/12/0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 07 Aug 2024 18:58:46 GMT
content-type: image/png
content-length: 511
last-modified: Tue, 06 Aug 2024 20:03:39 GMT
etag: "1ff-61f094a297c4b"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ckpdi9%2BOVYnwK5VhKIfFv8Jtd%2BbYbVFZDlZI%2Fv%2BGDw11rTt1wULSnNkIZYtzbmKwRIRgSabvFRckQZBctF3Ylq3%2FsgobWInH5n5Bf2GYBqw1IEOcRBsRlNHqDHCo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8af980016ce6b4ed-OSL
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/videojs-contrib-hls/3.0.2/videojs-contrib-hls.js?_=1496850054232

104.17.24.14

200 OK

82 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/videojs-contrib-hls/3.0.2/videojs-contrib-hls.js?_=1496850054232
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint00:EC:C6:E9:D9:C1:6D:05:88:6E:33:AF:3B:E7:7B:86:81:20:66:CA
ValidityWed, 31 Jul 2024 04:16:10 GMT - Tue, 29 Oct 2024 04:16:09 GMT

File type
JavaScript source, ASCII text, with very long lines (857)
Size
82 kB (82372 bytes)
Hash
8f8b05faa0530dbe7c76df7d6f7f4de8
66575fe5fc926bfbcad9581801781f6db5a50e43
46807b2f7af7f9bde6d2b70932b298d4bf70e865af5b66c10599faec46e44832

HTTP Headers

GET /ajax/libs/videojs-contrib-hls/3.0.2/videojs-contrib-hls.js?_=1496850054232 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mayicloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 07 Aug 2024 18:58:46 GMT
content-type: application/javascript; charset=utf-8
content-length: 82372
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04020-6e8ed"
last-modified: Mon, 04 May 2020 16:17:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4778560
expires: Mon, 28 Jul 2025 18:58:46 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Bjtcq1K0gGu96UD6Snz6%2BuSIL9vhlAhOKwlLCdw0cS5O9EhyPsXWOenVXjFDS0H8yOYVoO4GXYBpqFALddS9y21jpvRGlTYUXkYfzxRvL8jxvISF4YLuo3Vm90OkaONQoTpZbcWI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8af9800259ad56b9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

vjs.zencdn.net/5.19.2/video-js.css

151.101.66.217

200 OK

14 kB

URL GET HTTP/2
vjs.zencdn.net/5.19.2/video-js.css
IP
151.101.66.217:443
ASN
#54113 FASTLY

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerGlobalSign nv-sa
Subjectvjs.zencdn.net
Fingerprint6B:3F:11:07:D7:05:FD:AF:4D:46:B4:BA:1C:8A:60:70:95:37:35:17
ValidityWed, 06 Mar 2024 21:50:11 GMT - Mon, 07 Apr 2025 21:50:10 GMT

File type
ASCII text, with very long lines (12739)
Size
14 kB (13821 bytes)
Hash
1f589f44cab33740ca5a6f6a3d2081b8
f8632c4d8cc47f92a8226680f70b35404751e178
30242a038378124d7055cc25972b8e194094650cac98d023a5f128f277b47f9d

HTTP Headers

GET /5.19.2/video-js.css HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mayicloud.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 19 Apr 2017 18:45:20 GMT
etag: "1f589f44cab33740ca5a6f6a3d2081b8"
cache-control: public, max-age=31536000
content-type: text/css; charset=utf-8
content-encoding: gzip
date: Wed, 07 Aug 2024 18:58:46 GMT
x-served-by: cache-hel1410024-HEL
x-cache: HIT
x-cache-hits: 12
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 13821
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js

142.250.74.138

200 OK

31 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintC4:3F:12:39:D2:EC:4C:2C:1C:0A:A6:18:8E:2A:97:2C:D8:C2:7E:AF
ValidityTue, 30 Jul 2024 12:49:45 GMT - Tue, 22 Oct 2024 12:49:44 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
31 kB (31021 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mayicloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Aug 2024 03:11:18 GMT
expires: Sun, 03 Aug 2025 03:11:18 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 402448
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

vjs.zencdn.net/5.19.2/video.js

151.101.66.217

200 OK

166 kB

URL GET HTTP/2
vjs.zencdn.net/5.19.2/video.js
IP
151.101.66.217:443
ASN
#54113 FASTLY

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerGlobalSign nv-sa
Subjectvjs.zencdn.net
Fingerprint6B:3F:11:07:D7:05:FD:AF:4D:46:B4:BA:1C:8A:60:70:95:37:35:17
ValidityWed, 06 Mar 2024 21:50:11 GMT - Mon, 07 Apr 2025 21:50:10 GMT

File type
JavaScript source, ASCII text, with very long lines (847)
Size
166 kB (165819 bytes)
Hash
9e9c51f3bdffd66d6ed5ffcf3e317a0d
614ac82437fbf2eba57c2fb3a2b796a14a25ab38
fb1dfbc9f9010c08ab716ec864805f4444d4eca0d67a1cc0bbf68a2224d9b994

HTTP Headers

GET /5.19.2/video.js HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mayicloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 19 Apr 2017 18:45:20 GMT
etag: "9e9c51f3bdffd66d6ed5ffcf3e317a0d"
cache-control: public, max-age=31536000
content-type: application/javascript; charset=utf-8
content-encoding: gzip
date: Wed, 07 Aug 2024 18:58:46 GMT
x-served-by: cache-hel1410024-HEL
x-cache: HIT
x-cache-hits: 0
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 165819
X-Firefox-Spdy: h2

vjs.zencdn.net/ie8/1.1.2/videojs-ie8.min.js

151.101.66.217

200 OK

8.9 kB

URL GET HTTP/2
vjs.zencdn.net/ie8/1.1.2/videojs-ie8.min.js
IP
151.101.66.217:443
ASN
#54113 FASTLY

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerGlobalSign nv-sa
Subjectvjs.zencdn.net
Fingerprint6B:3F:11:07:D7:05:FD:AF:4D:46:B4:BA:1C:8A:60:70:95:37:35:17
ValidityWed, 06 Mar 2024 21:50:11 GMT - Mon, 07 Apr 2025 21:50:10 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (27236), with no line terminators
Size
8.9 kB (8924 bytes)
Hash
2ff9bb22f0b1789ac170247b0825488f
f2b1471c6b72cef3df20d2b16fed14739c4831f1
3cea9fd4486e2820f34fdeb7970fd29c4fa531e79a285bf58aaab1ecdadfa99a

HTTP Headers

GET /ie8/1.1.2/videojs-ie8.min.js HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mayicloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 10 Feb 2016 20:27:09 GMT
etag: "2ff9bb22f0b1789ac170247b0825488f"
cache-control: public, max-age=31536000
content-type: application/javascript; charset=utf-8
content-encoding: gzip
date: Wed, 07 Aug 2024 18:58:46 GMT
x-served-by: cache-hel1410024-HEL
x-cache: HIT
x-cache-hits: 606
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 8924
X-Firefox-Spdy: h2

vjs.zencdn.net/5.10.7/video-js.css

151.101.66.217

200 OK

14 kB

URL GET HTTP/2
vjs.zencdn.net/5.10.7/video-js.css
IP
151.101.66.217:443
ASN
#54113 FASTLY

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerGlobalSign nv-sa
Subjectvjs.zencdn.net
Fingerprint6B:3F:11:07:D7:05:FD:AF:4D:46:B4:BA:1C:8A:60:70:95:37:35:17
ValidityWed, 06 Mar 2024 21:50:11 GMT - Mon, 07 Apr 2025 21:50:10 GMT

File type
Unicode text, UTF-8 text, with very long lines (12483)
Size
14 kB (13541 bytes)
Hash
b940c634174f3923947fede8e5e97576
eee8ab332fc47e30f2af145215926cb6c67ab259
2c11cd39f73484c38e7ab0331a6a814e3935e80bc60a4e07345deef80a1f2413

HTTP Headers

GET /5.10.7/video-js.css HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mayicloud.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Fri, 22 Jul 2016 19:44:04 GMT
etag: "b940c634174f3923947fede8e5e97576"
cache-control: public, max-age=31536000
content-type: text/css; charset=utf-8
content-encoding: gzip
date: Wed, 07 Aug 2024 18:58:46 GMT
x-served-by: cache-hel1410024-HEL
x-cache: HIT
x-cache-hits: 0
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 13541
X-Firefox-Spdy: h2

cdn.jwplayer.com/libraries/KB5zFt7A.js

54.240.174.25

200 OK

43 kB

URL GET HTTP/2
cdn.jwplayer.com/libraries/KB5zFt7A.js
IP
54.240.174.25:443
ASN
#16509 AMAZON-02

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerAmazon
Subjectjwplayer.com
Fingerprint1E:36:B3:05:8C:13:3B:38:7D:97:0E:97:1E:60:3F:62:06:F3:A6:33
ValidityFri, 27 Oct 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65143)
Size
43 kB (43271 bytes)
Hash
06290796c1687b232bf63f221a422539
1e0b2414f8767dbeabe0a85d77df33f3fa056b38
65d387fa730c5d8e6aaad23b57d43e02eec78b6c53c5029d870e3fdfc8bee868

HTTP Headers

GET /libraries/KB5zFt7A.js HTTP/1.1
Host: cdn.jwplayer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mayicloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 43271
access-control-allow-origin: *
cache-control: max-age=180
content-encoding: gzip
date: Wed, 07 Aug 2024 18:58:46 GMT
server: openresty
x-robots-tag: noindex, indexifembedded
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gCfsW7afhZ4HzSWnW3V17J2abfek2LuYxhzB07plVCFV--ThY3tzEg==
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/hls.js@latest

151.101.65.229

200 OK

114 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/hls.js@latest
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint6C:45:F5:9E:D3:37:60:0B:9C:A8:28:29:A4:E6:41:33:BB:2E:76:5C
ValidityTue, 30 Jul 2024 15:36:05 GMT - Sun, 31 Aug 2025 15:36:04 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
114 kB (114340 bytes)
Hash
74c8b3fc39f92e9faa2cb520ff28fe4b
8ae8321e02d9e4179310e5e5eba051798c3597aa
f42d302c5e25e58148ac59344c6b5759e80f4583e01dfd07d85464a7a99528e4

HTTP Headers

GET /npm/hls.js@latest HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mayicloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.5.14
x-jsd-version-type: version
etag: W/"64e20-iugyHgLZ5BeTEOXl66BReYw1l6o"
content-encoding: br
accept-ranges: bytes
date: Wed, 07 Aug 2024 18:58:46 GMT
age: 42603
x-served-by: cache-fra-eddf8230136-FRA, cache-hel1410029-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 114340
X-Firefox-Spdy: h2

fonts.gstatic.com/s/glory/v15/q5uasoi9Lf1w5t3Est24nq9blIRQwImzoXWc.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/glory/v15/q5uasoi9Lf1w5t3Est24nq9blIRQwImzoXWc.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintF2:15:54:4E:F3:58:7F:5A:14:9D:F2:45:37:0E:B1:A6:48:C6:2B:14
ValidityTue, 30 Jul 2024 12:49:30 GMT - Tue, 22 Oct 2024 12:49:29 GMT

File type
Web Open Font Format (Version 2), TrueType, length 16276, version 1.0
Size
16 kB (16276 bytes)
Hash
8c2b223503966964f850b68be26a4ad0
75c2b1a0dfbe3c752f7dcf6491be491384638369
4847ec926e80b893e59633aba265196c6e37216566a03b42e73c5ba2a78b2cf9

HTTP Headers

GET /s/glory/v15/q5uasoi9Lf1w5t3Est24nq9blIRQwImzoXWc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mayicloud.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16276
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Aug 2024 04:59:50 GMT
expires: Sun, 03 Aug 2025 04:59:50 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 24 Aug 2023 20:59:38 GMT
content-type: font/woff2
age: 395937
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ssl.p.jwpcdn.com/player/v/8.34.5/jwpsrv.js

151.101.194.114

200 OK

20 kB

URL GET HTTP/2
ssl.p.jwpcdn.com/player/v/8.34.5/jwpsrv.js
IP
151.101.194.114:443
ASN
#54113 FASTLY

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerGlobalSign nv-sa
Subject*.jwplayer.com
FingerprintEB:7D:6F:C0:96:2F:66:35:5C:60:21:FF:31:D2:7A:D1:4F:C7:CF:96
ValidityTue, 02 Jul 2024 18:10:25 GMT - Sun, 03 Aug 2025 18:10:24 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
20 kB (19879 bytes)
Hash
d7f3733c71441c1881fc4eabe9c96086
8db1f2f35489a41d1fb63af5b9aad52388c58735
9f4c0014a4f36c11302077dc073ef529031ce3eebc04c0ca9bc1d7ea0ed95eca

HTTP Headers

GET /player/v/8.34.5/jwpsrv.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=900, immutable
last-modified: Mon, 15 Jul 2024 22:45:13 GMT
etag: "d7f3733c71441c1881fc4eabe9c96086"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 07 Aug 2024 18:58:47 GMT
via: 1.1 varnish
age: 19
x-served-by: cache-hel1410033-HEL
x-cache: HIT
x-cache-hits: 704660
x-timer: S1723057127.488368,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 19879
X-Firefox-Spdy: h2

ssl.p.jwpcdn.com/player/v/8.34.5/provider.hlsjs.js

151.101.194.114

200 OK

140 kB

URL GET HTTP/2
ssl.p.jwpcdn.com/player/v/8.34.5/provider.hlsjs.js
IP
151.101.194.114:443
ASN
#54113 FASTLY

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerGlobalSign nv-sa
Subject*.jwplayer.com
FingerprintEB:7D:6F:C0:96:2F:66:35:5C:60:21:FF:31:D2:7A:D1:4F:C7:CF:96
ValidityTue, 02 Jul 2024 18:10:25 GMT - Sun, 03 Aug 2025 18:10:24 GMT

File type
JavaScript source, ASCII text, with very long lines (65143)
Size
140 kB (139649 bytes)
Hash
03e9a17ba5548f83f8bafe6f8e363a37
397b5927a521fe70be452ee2b31924eb5fcd4ef7
d937c02b1de25e9efce6ce297994e1003a4d345c24bf1effe88efd6dcc130ccc

HTTP Headers

GET /player/v/8.34.5/provider.hlsjs.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=31536000, immutable
last-modified: Mon, 15 Jul 2024 22:45:09 GMT
etag: "03e9a17ba5548f83f8bafe6f8e363a37"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 07 Aug 2024 18:58:47 GMT
via: 1.1 varnish
age: 1354104
x-served-by: cache-hel1410033-HEL
x-cache: HIT
x-cache-hits: 71057
x-timer: S1723057128.520089,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 139649
X-Firefox-Spdy: h2

ssl.p.jwpcdn.com/player/v/8.34.5/jwplayer.core.controls.js

151.101.194.114

200 OK

86 kB

URL GET HTTP/2
ssl.p.jwpcdn.com/player/v/8.34.5/jwplayer.core.controls.js
IP
151.101.194.114:443
ASN
#54113 FASTLY

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerGlobalSign nv-sa
Subject*.jwplayer.com
FingerprintEB:7D:6F:C0:96:2F:66:35:5C:60:21:FF:31:D2:7A:D1:4F:C7:CF:96
ValidityTue, 02 Jul 2024 18:10:25 GMT - Sun, 03 Aug 2025 18:10:24 GMT

File type
JavaScript source, ASCII text, with very long lines (65143)
Size
86 kB (86180 bytes)
Hash
6510d7affd80e4b580a98e325eaf95a0
f270428b8dfe9a4833679b4282da0538e256216f
60ba587021922d691624730f1d9faa7974c7e4f4f9cfc7a33a354d334bed2926

HTTP Headers

GET /player/v/8.34.5/jwplayer.core.controls.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=31536000, immutable
last-modified: Mon, 15 Jul 2024 22:45:06 GMT
etag: "6510d7affd80e4b580a98e325eaf95a0"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 07 Aug 2024 18:58:47 GMT
via: 1.1 varnish
age: 754678
x-served-by: cache-hel1410033-HEL
x-cache: HIT
x-cache-hits: 838779
x-timer: S1723057128.520914,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 86180
X-Firefox-Spdy: h2

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
327bc43a00e425dc5af5df4efab2ceaf
963d56a3437b86a9a87eb2aa01094b76a1b68fbb
e356c1bd222eb19ffd721062bca611a3791985070895ed0bd5f91382970e7bf9

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "E356C1BD222EB19FFD721062BCA611A3791985070895ED0BD5F91382970E7BF9"
Last-Modified: Tue, 06 Aug 2024 06:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14543
Expires: Wed, 07 Aug 2024 23:01:10 GMT
Date: Wed, 07 Aug 2024 18:58:47 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
327bc43a00e425dc5af5df4efab2ceaf
963d56a3437b86a9a87eb2aa01094b76a1b68fbb
e356c1bd222eb19ffd721062bca611a3791985070895ed0bd5f91382970e7bf9

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "E356C1BD222EB19FFD721062BCA611A3791985070895ED0BD5F91382970E7BF9"
Last-Modified: Tue, 06 Aug 2024 06:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14543
Expires: Wed, 07 Aug 2024 23:01:10 GMT
Date: Wed, 07 Aug 2024 18:58:47 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
327bc43a00e425dc5af5df4efab2ceaf
963d56a3437b86a9a87eb2aa01094b76a1b68fbb
e356c1bd222eb19ffd721062bca611a3791985070895ed0bd5f91382970e7bf9

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "E356C1BD222EB19FFD721062BCA611A3791985070895ED0BD5F91382970E7BF9"
Last-Modified: Tue, 06 Aug 2024 06:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14543
Expires: Wed, 07 Aug 2024 23:01:10 GMT
Date: Wed, 07 Aug 2024 18:58:47 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
327bc43a00e425dc5af5df4efab2ceaf
963d56a3437b86a9a87eb2aa01094b76a1b68fbb
e356c1bd222eb19ffd721062bca611a3791985070895ed0bd5f91382970e7bf9

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "E356C1BD222EB19FFD721062BCA611A3791985070895ED0BD5F91382970E7BF9"
Last-Modified: Tue, 06 Aug 2024 06:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14543
Expires: Wed, 07 Aug 2024 23:01:10 GMT
Date: Wed, 07 Aug 2024 18:58:47 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
327bc43a00e425dc5af5df4efab2ceaf
963d56a3437b86a9a87eb2aa01094b76a1b68fbb
e356c1bd222eb19ffd721062bca611a3791985070895ed0bd5f91382970e7bf9

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "E356C1BD222EB19FFD721062BCA611A3791985070895ED0BD5F91382970E7BF9"
Last-Modified: Tue, 06 Aug 2024 06:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14543
Expires: Wed, 07 Aug 2024 23:01:10 GMT
Date: Wed, 07 Aug 2024 18:58:47 GMT
Connection: keep-alive

mayi24313.mayicloud.com/files/Cg7OuVrgSu/N3D7iC8oqTA3dtuOdavaM7rTWVPnbHSZLv60.ts

104.21.77.130

200 OK

2.0 MB

URL GET HTTP/3
mayi24313.mayicloud.com/files/Cg7OuVrgSu/N3D7iC8oqTA3dtuOdavaM7rTWVPnbHSZLv60.ts
IP
104.21.77.130:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerGoogle Trust Services
Subjectmayicloud.com
Fingerprint98:AC:7E:4A:29:31:A4:CF:0B:33:8F:7B:FE:C1:8D:5F:51:C2:0B:CC
ValidityWed, 31 Jul 2024 17:51:16 GMT - Tue, 29 Oct 2024 17:51:15 GMT

File type
data
Size
2.0 MB (1976256 bytes)
Hash
7b2c43226d1125e75fd4b4ff7ffd2afe
c537d40614de3f2eb3e77d4c871517e9a064b1c0
7e188b7079f2fbbb2bb8b9dea9a96efa56f5a0bf6c59e4a87288caff1261cf8f

HTTP Headers

GET /files/Cg7OuVrgSu/N3D7iC8oqTA3dtuOdavaM7rTWVPnbHSZLv60.ts HTTP/1.1
Host: mayi24313.mayicloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mayicloud.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 07 Aug 2024 18:58:48 GMT
content-type: text/vnd.trolltech.linguist
content-length: 1976256
last-modified: Wed, 07 Aug 2024 17:30:17 GMT
etag: "1e27c0-61f1b4386b5b0"
accept-ranges: bytes
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=orfwppg%2B7Bm6otT3QXS3ahfaCzYz%2B25RDoVlp7AwIb1RYEJ2hoh4DzF398B7gEoH4EWbi%2FUj0B81djSc%2BuyiZj32kWVPTS23fQkb%2FZPFl8%2BFfAhV9TsjvBjrvpZjI%2BaHaUivgnBpRCVTmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8af9800ac9d40b49-OSL
alt-svc: h3=":443"; ma=86400

mayi24313.mayicloud.com/files/Cg7OuVrgSu/N3D7iC8oqTA3dtuOdavaM7rTWVPnbHSZLv6.m3u8

172.67.208.139

200 OK

13 kB

URL GET HTTP/2
mayi24313.mayicloud.com/files/Cg7OuVrgSu/N3D7iC8oqTA3dtuOdavaM7rTWVPnbHSZLv6.m3u8
IP
172.67.208.139:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerGoogle Trust Services
Subjectmayicloud.com
Fingerprint98:AC:7E:4A:29:31:A4:CF:0B:33:8F:7B:FE:C1:8D:5F:51:C2:0B:CC
ValidityWed, 31 Jul 2024 17:51:16 GMT - Tue, 29 Oct 2024 17:51:15 GMT

File type
M3U playlist, ASCII text
Size
13 kB (13254 bytes)
Hash
5d3b596ab93bc7387f1698c8b7b625bc
15896746321b4c75c1015708836d039395693344
9d7cbaabe178b7a310b34735670ea18355383d3f0258ed3d919edb5cd7f26554

HTTP Headers

GET /files/Cg7OuVrgSu/N3D7iC8oqTA3dtuOdavaM7rTWVPnbHSZLv6.m3u8 HTTP/1.1
Host: mayi24313.mayicloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mayicloud.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 07 Aug 2024 18:58:48 GMT
content-type: application/vnd.apple.mpegurl
last-modified: Wed, 07 Aug 2024 17:30:17 GMT
etag: W/"cc23-61f1b438058da"
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3sYp7lgwVkE5C60YHWAt2n%2BfjSUhsdZJ0r83jEoCAHdDwgRMGyBJlpYCBKs9%2FPk3OCwQHiU8HyT0QAjE1fEXh1dAflS3SpDZAJAIiYlHN9OfhmUNqIxTAMShw6510NGL0%2FCHwdXlyL4KFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8af980099a757129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Glory&family=Spinnaker&display=swap

142.250.74.106

200 OK

2.0 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Glory&family=Spinnaker&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintC4:3F:12:39:D2:EC:4C:2C:1C:0A:A6:18:8E:2A:97:2C:D8:C2:7E:AF
ValidityTue, 30 Jul 2024 12:49:45 GMT - Tue, 22 Oct 2024 12:49:44 GMT

File type
ASCII text, with very long lines (2045), with no line terminators
Size
2.0 kB (2000 bytes)
Hash
f382a03d644530d72ee7001bf8d302cf
eda1f8393c44844c20736473f5e9c45b697a474d
ad34cbdd136cd1f3ce06bb4ec2a7442b15b65a83c9243e0b07519dd91120b9f4

HTTP Headers

GET /css2?family=Glory&family=Spinnaker&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mayicloud.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Aug 2024 18:58:46 GMT
date: Wed, 07 Aug 2024 18:58:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

mayicloud.com/videojs.hotkeys.js

104.21.77.130

200 OK

14 kB

URL GET HTTP/3
mayicloud.com/videojs.hotkeys.js
IP
104.21.77.130:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerGoogle Trust Services
Subjectmayicloud.com
Fingerprint98:AC:7E:4A:29:31:A4:CF:0B:33:8F:7B:FE:C1:8D:5F:51:C2:0B:CC
ValidityWed, 31 Jul 2024 17:51:16 GMT - Tue, 29 Oct 2024 17:51:15 GMT

File type
JavaScript source, ASCII text
Size
14 kB (14256 bytes)
Hash
7105cd768027f325703d885e19c7c956
185ec8a54a7a0f0d2abcf2cf251fc68a722af77e
463b233955181d379d4514092ae30a0b062d28bfd06e85df78fbf54b1686b3df

HTTP Headers

GET /videojs.hotkeys.js HTTP/1.1
Host: mayicloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mayicloud.com/iframe/Cg7OuVrgSu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 07 Aug 2024 18:58:46 GMT
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 20:23:36 GMT
etag: W/"37b0-61ef573aa1621"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5035
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ewJT%2BXn0qHUBlK%2BR06UZ%2Fq4vWMHMUlt4eNpgrwvcI9nriL6SeU7wzwlB06xLUbvpvBSRnfs5f2NshKRYagoDR3LUXspX2qqs4SMNtygJl6Aoijc6wZEtyAYDvlu%2BEtKD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8af9800228b10b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

midrov.com/v0f1d4s7rq/e/203819/1/12/0

104.21.23.88

200 OK

27 kB

URL User Request GET HTTP/2
midrov.com/v0f1d4s7rq/e/203819/1/12/0
IP
104.21.23.88:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectmidrov.com
Fingerprint2D:57:F3:A6:24:79:A5:9D:D5:96:E3:16:8C:7D:58:7F:14:FD:11:D7
ValidityTue, 06 Aug 2024 18:08:59 GMT - Mon, 04 Nov 2024 18:08:58 GMT

File type

Size
27 kB (27138 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v0f1d4s7rq/e/203819/1/12/0 HTTP/1.1
Host: midrov.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 07 Aug 2024 18:58:45 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y8cgVNEHpWnjiiOByrrAv0TgTMXHSu7Ss9UOM0XgszWFbLk8INUqHt%2BKOKEpgquuLqyKkGkscI%2F9b8zZ7YlWmJx%2Bs6IHPDesHl4oUMUK2XFoBnGwlFZbaC0jx2pP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8af97ffbba901bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Inter:wght@100..900&display=swap

142.250.74.106

200 OK

2.4 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Inter:wght@100..900&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://midrov.com/v0f1d4s7rq/e/203819/1/12/0
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintC4:3F:12:39:D2:EC:4C:2C:1C:0A:A6:18:8E:2A:97:2C:D8:C2:7E:AF
ValidityTue, 30 Jul 2024 12:49:45 GMT - Tue, 22 Oct 2024 12:49:44 GMT

File type
ASCII text, with very long lines (2505), with no line terminators
Size
2.4 kB (2442 bytes)
Hash
69e2756d16808ca27f1dac1c7ed33076
51042a766fe5d06200cf77fc01cf041af59df6cd
64f8cae7fc20f9660c6371c613a6c2ebf62f88f23bde4d6166667d85fcb2f48b

HTTP Headers

GET /css2?family=Inter:wght@100..900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://midrov.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Aug 2024 18:58:46 GMT
date: Wed, 07 Aug 2024 18:58:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

mayicloud.com/iframe/Cg7OuVrgSu

104.21.77.130

200 OK

66 kB

URL GET HTTP/2
mayicloud.com/iframe/Cg7OuVrgSu
IP
104.21.77.130:443
ASN
#13335 CLOUDFLARENET

Requested by
https://midrov.com/v0f1d4s7rq/e/203819/1/12/0
Certificate
IssuerGoogle Trust Services
Subjectmayicloud.com
Fingerprint98:AC:7E:4A:29:31:A4:CF:0B:33:8F:7B:FE:C1:8D:5F:51:C2:0B:CC
ValidityWed, 31 Jul 2024 17:51:16 GMT - Tue, 29 Oct 2024 17:51:15 GMT

File type

Size
66 kB (66306 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - Anti-debugging code

HTTP Headers

GET /iframe/Cg7OuVrgSu HTTP/1.1
Host: mayicloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://midrov.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 07 Aug 2024 18:58:46 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q1zH%2BIO7g6wgY%2BaM87AaiEEDBFjQN6F7VLMQDJwTEXACiPFXUyvLbf3Whkd%2F165Mrmua5n5xr7awZLs%2BpgvLKowavWNvO8DABo0dac3R7zh8Sk7Tk2JHTLZMV1aQkjC8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8af980005a13569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

mayicloud.com/video.js

104.21.77.130

200 OK

794 kB

URL GET HTTP/3
mayicloud.com/video.js
IP
104.21.77.130:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerGoogle Trust Services
Subjectmayicloud.com
Fingerprint98:AC:7E:4A:29:31:A4:CF:0B:33:8F:7B:FE:C1:8D:5F:51:C2:0B:CC
ValidityWed, 31 Jul 2024 17:51:16 GMT - Tue, 29 Oct 2024 17:51:15 GMT

File type
JavaScript source, ASCII text, with very long lines (912), with CRLF line terminators
Size
794 kB (793653 bytes)
Hash
ca2ad146ef74a210c5e1d47c0c64d5bd
398fdf53b487aee657d9e889f221f665b82c30d9
7f9a8bab66a0d7a353873ce93f46f8c9d48bc72a4ab85433fa51ceccd110a5fa

HTTP Headers

GET /video.js HTTP/1.1
Host: mayicloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mayicloud.com/iframe/Cg7OuVrgSu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 07 Aug 2024 18:58:46 GMT
content-type: application/javascript
last-modified: Mon, 05 Aug 2024 20:23:39 GMT
etag: W/"c1c35-61ef573d96f03"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5353
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9bf6J6rytaA%2FsJU2oCee6x1TxkpHbc0C9P5JdbRl%2FTPhnPO7ZRhRSeM6da4ump3khI7yeCIu1RDAHyXTmxn1Tz8z5LfEBLYC749uOAdMzkg0XRvZUQQ6knRsMXGs1Net"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8af9800208920b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Rubik:wght@500;700&display=swap

142.250.74.106

200 OK

5.0 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Rubik:wght@500;700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintC4:3F:12:39:D2:EC:4C:2C:1C:0A:A6:18:8E:2A:97:2C:D8:C2:7E:AF
ValidityTue, 30 Jul 2024 12:49:45 GMT - Tue, 22 Oct 2024 12:49:44 GMT

File type
ASCII text, with very long lines (5094), with no line terminators
Size
5.0 kB (4986 bytes)
Hash
627a9b2e5d2c1f2e365f62d3951bfb49
aa18eb94fdab416fdaff18b9b569fea9197b9054
05b42bd8437772cfd2902fd510f24b681e7e0eb397aded79182bd7f61de64534

HTTP Headers

GET /css2?family=Rubik:wght@500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mayicloud.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Aug 2024 18:58:46 GMT
date: Wed, 07 Aug 2024 18:58:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

mayicloud.com/style/styleframe.css

104.21.77.130

200 OK

804 B

URL GET HTTP/3
mayicloud.com/style/styleframe.css
IP
104.21.77.130:443
ASN
#13335 CLOUDFLARENET

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerGoogle Trust Services
Subjectmayicloud.com
Fingerprint98:AC:7E:4A:29:31:A4:CF:0B:33:8F:7B:FE:C1:8D:5F:51:C2:0B:CC
ValidityWed, 31 Jul 2024 17:51:16 GMT - Tue, 29 Oct 2024 17:51:15 GMT

File type
ASCII text, with very long lines (916), with no line terminators
Size
804 B (804 bytes)
Hash
6312abef014e389a8ea28a4f59a8d572
9fa4ad6bfb019a430c36a04fd36e2318f4b2ca86
f714e2c0b788999861d00481784187ee73067a6f2b6608d6e8077fe773f4722e

HTTP Headers

GET /style/styleframe.css HTTP/1.1
Host: mayicloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mayicloud.com/iframe/Cg7OuVrgSu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 07 Aug 2024 18:58:46 GMT
content-type: text/css
last-modified: Wed, 31 Jul 2024 19:12:04 GMT
etag: W/"324-61e8fdea45cb5"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5035
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dUC6RDrH8cIASDtiHzzsots%2FXXG%2FpylHuYrsqyAcG7n1aqY5d4GrMvJoFwp6BUxjyj7FRtxpk%2B3EPcjNNDkGyhg74boYQmsZGzz3hNJhEO%2FD37GKs8IDEBwT8LYhmCrD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8af98001f88b0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

static.vecteezy.com/ti/photos-gratuite/p2/2008069-fond-de-ciel-etoile-3d-gratuit-photo.jpg

0.0.0.0

0 B

URL GET
static.vecteezy.com/ti/photos-gratuite/p2/2008069-fond-de-ciel-etoile-3d-gratuit-photo.jpg
IP
0.0.0.0:0
ASN
#0

Requested by
https://mayicloud.com/iframe/Cg7OuVrgSu
Certificate
IssuerCloudflare, Inc.
Subjectvecteezy.com
Fingerprint73:AC:4E:1A:7B:44:28:AD:F8:0D:26:84:E1:F1:F1:0E:E6:FC:CB:0E
ValidityMon, 11 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ti/photos-gratuite/p2/2008069-fond-de-ciel-etoile-3d-gratuit-photo.jpg HTTP/1.1
Host: static.vecteezy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 07 Aug 2024 18:58:47 GMT
content-type: text/plain
x-amzn-requestid: cfe6f3c1-1ef2-4dda-b374-92f453f4213d
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: h7Xc1i949pF-houSewloQVX49IrO3Yp18JHWfGLC0WbaLrp1PpPDPg==
last-modified: Wed, 07 Aug 2024 18:36:38 GMT
cf-cache-status: HIT
age: 1329
expires: Thu, 07 Aug 2025 18:58:47 GMT
cache-control: public, max-age=31536000
set-cookie: __cf_bm=9sHl1zfI9cv0ZZ3v4aND6iasWrKeF3Usd7LIM_wImlE-1723057127-1.0.1.1-Kv5aokrDeN7WjyWzeiXkU5LI4aXWp0oDfQJ5Re2oEnxTWF0ymjJf4n0eBrirrDQ4SyUPCwrmLZJkCTKs6qjabg; path=/; expires=Wed, 07-Aug-24 19:28:47 GMT; domain=.vecteezy.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; preload
server: cloudflare
cf-ray: 8af980094bdbb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (20)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by