embedy.cc/movies/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0=
185.178.208.107200 OK 7.9 kB URL HTTP/1.1 embedy.cc/movies/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0=
IP 185.178.208.107:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16771)
Hash 0dd48b10c3419625c83f26c243fc6409
7288d35ffd7ef8991026a169c45d4522e4c9b8d6
f1d119f01803d00b976a55f2ed917dbdf5bf080262e5c202844d03ec99f12fcd
GET /movies/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0= HTTP/1.1
Host: embedy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Date: Tue, 06 Sep 2022 14:47:36 GMT
Content-Type: text/html; charset=utf-8
Vary: Accept-Encoding
Set-Cookie: __ddg1_=vzR4jKxm3Jj3oaebv60h; Domain=.embedy.cc; HttpOnly; Path=/; Expires=Wed, 06-Sep-2023 14:47:36 GMT
PHPSESSID=losgmujs2oq3tm3943kfmui1s7; path=/
language=US; expires=Wed, 06-Sep-2023 14:47:36 GMT; path= /; samesite=None; secure
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Frame-Options: DENY
X-Powered-By: Embedy.cc
Content-Encoding: gzip
Transfer-Encoding: chunked
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 14:04:18 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JThKwOXW5VU5Av4x0tLWtl5-Abmh-hjMg0mlbBAkY_OWD-EjGxCGfw==
Age: 2598
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8595
Expires: Tue, 06 Sep 2022 17:10:51 GMT
Date: Tue, 06 Sep 2022 14:47:36 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zASk3mTLOlfR5pu7euJGBydG5EAZoHW69I0UsSDkZuGGAxGK4ThdKg==
age: 48739
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
embedy.cc/embed/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0=
185.178.208.107200 OK 1.6 kB URL HTTP/1.1 embedy.cc/embed/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0=
IP 185.178.208.107:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (333)
Hash 87e7868eab21389f4da7e9a9a0f6c8fa
3abe7b7af9a2593b78ef932bc95f37e9b25e0ac3
3f62b72ba632f59a0f2d4885993520061a462bceccb5d4e99247c0405ed9bae0
GET /embed/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0= HTTP/1.1
Host: embedy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/movies/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0=
Cookie: __ddg1_=vzR4jKxm3Jj3oaebv60h; PHPSESSID=losgmujs2oq3tm3943kfmui1s7
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Date: Tue, 06 Sep 2022 14:47:36 GMT
Content-Type: text/html; charset=utf-8
Vary: Accept-Encoding
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: language=US; expires=Wed, 06-Sep-2023 14:47:36 GMT; path= /; samesite=None; secure
X-Powered-By: Embedy.cc
Content-Encoding: gzip
Transfer-Encoding: chunked
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
142.250.74.138200 OK 30 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (32065)
Hash 6d973c8b7e2439d958e09c0a1ab9fe50
05ae0830200c20b9a2dfd5a825adc400481a60fb
f3c122dc227e829ed96b2a754296809201bd78abbad7ba50ef5079654e1cc894
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 30028
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 05 Sep 2022 10:53:35 GMT
Expires: Tue, 05 Sep 2023 10:53:35 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 100441
ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js
142.250.74.138200 OK 63 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (64562)
Hash 468446a7240461af44b59ebb2047c231
47b7c525dc91bece99df0c414960b9490b986ba8
ae1a0126552472d1e1347ceb8027ed725db3b93fcbc0b39745a92412cc1641a6
GET /ajax/libs/jqueryui/1.9.2/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 62563
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 05 Sep 2022 14:14:54 GMT
Expires: Tue, 05 Sep 2023 14:14:54 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 88362
embedy.cc/application/web/style/styles.css?E9HuAR
185.178.208.107200 OK 22 kB URL HTTP/1.1 embedy.cc/application/web/style/styles.css?E9HuAR
IP 185.178.208.107:0
File type ASCII text, with very long lines (46289)
Hash 5b525fbbd6270b20b2047b1598aab81f
eeec2635032af07a35a0271eaefa35d37bce43c4
268ba9003b27aeeb8e7df641121cb6bdba0da151f9ef121b2aea8f9f5160a3cb
GET /application/web/style/styles.css?E9HuAR HTTP/1.1
Host: embedy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/movies/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0=
Cookie: __ddg1_=vzR4jKxm3Jj3oaebv60h; PHPSESSID=losgmujs2oq3tm3943kfmui1s7
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Date: Tue, 06 Sep 2022 14:47:36 GMT
Content-Type: text/css
Last-Modified: Fri, 05 Mar 2021 17:39:33 GMT
Vary: Accept-Encoding
ETag: W/"60426cd5-f506"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
Age: 0
DDG-Cache-Status: MISS
Transfer-Encoding: chunked
embedy.cc/application/web/style/font-awesome-animation.css?E9HuAR
185.178.208.107200 OK 1.8 kB URL HTTP/1.1 embedy.cc/application/web/style/font-awesome-animation.css?E9HuAR
IP 185.178.208.107:0
File type ASCII text, with very long lines (16100)
Hash 4215d8006c1dbd13ab1d21322d11384c
02a38bf8447e42611bfc1cf332abcc7a5f6b35a9
b37d952e01bd4b9fe0be2c6caba9ae2126f4e3aecc6fb4a03715b4b428009f2f
GET /application/web/style/font-awesome-animation.css?E9HuAR HTTP/1.1
Host: embedy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/movies/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0=
Cookie: __ddg1_=vzR4jKxm3Jj3oaebv60h; PHPSESSID=losgmujs2oq3tm3943kfmui1s7
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Date: Tue, 06 Sep 2022 14:47:36 GMT
Content-Type: text/css
Last-Modified: Thu, 12 Apr 2018 12:27:57 GMT
Vary: Accept-Encoding
ETag: W/"5acf50cd-3f4e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
Age: 0
DDG-Cache-Status: MISS
Transfer-Encoding: chunked
embedy.cc/application/web/js/history.js?E9HuAR
185.178.208.107200 OK 5.7 kB URL HTTP/1.1 embedy.cc/application/web/js/history.js?E9HuAR
IP 185.178.208.107:0
File type ASCII text, with very long lines (16481), with no line terminators
Hash c6921028d8a4d7c70bcc0d7f268895d8
8a6ecc957cecfd1a6db6a939efbc14586e5b5ece
b45171632eb6da2dacd5fab43764ff5ba68aef2b3e702f98c96e5d65a69b2f07
GET /application/web/js/history.js?E9HuAR HTTP/1.1
Host: embedy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/movies/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0=
Cookie: __ddg1_=vzR4jKxm3Jj3oaebv60h; PHPSESSID=losgmujs2oq3tm3943kfmui1s7
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Date: Tue, 06 Sep 2022 14:47:36 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Mon, 01 Feb 2021 19:58:31 GMT
Vary: Accept-Encoding
ETag: W/"60185d67-4061"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
Age: 0
DDG-Cache-Status: MISS
Transfer-Encoding: chunked
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash c966064663c241f0ae6beede3fae85b4
4b67923585cfacddc15c27d3306c85bb26e60fc8
f66848eb46a3a3b76048dc7bcc8a55a620c44bb18aea4594d7921af94823c430
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:47:36 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 10 Sep 2022 13:18:32 GMT
ETag: "4b67923585cfacddc15c27d3306c85bb26e60fc8"
Last-Modified: Tue, 06 Sep 2022 13:18:33 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2491
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 746800367a720b02-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash c966064663c241f0ae6beede3fae85b4
4b67923585cfacddc15c27d3306c85bb26e60fc8
f66848eb46a3a3b76048dc7bcc8a55a620c44bb18aea4594d7921af94823c430
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:47:36 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 10 Sep 2022 13:18:32 GMT
ETag: "4b67923585cfacddc15c27d3306c85bb26e60fc8"
Last-Modified: Tue, 06 Sep 2022 13:18:33 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2491
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 746800367e2ab4ff-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash c966064663c241f0ae6beede3fae85b4
4b67923585cfacddc15c27d3306c85bb26e60fc8
f66848eb46a3a3b76048dc7bcc8a55a620c44bb18aea4594d7921af94823c430
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:47:36 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 10 Sep 2022 13:18:32 GMT
ETag: "4b67923585cfacddc15c27d3306c85bb26e60fc8"
Last-Modified: Tue, 06 Sep 2022 13:18:33 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2491
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 746800369a8c0b02-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash c966064663c241f0ae6beede3fae85b4
4b67923585cfacddc15c27d3306c85bb26e60fc8
f66848eb46a3a3b76048dc7bcc8a55a620c44bb18aea4594d7921af94823c430
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:47:36 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 10 Sep 2022 13:18:32 GMT
ETag: "4b67923585cfacddc15c27d3306c85bb26e60fc8"
Last-Modified: Tue, 06 Sep 2022 13:18:33 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2491
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7468003699690b39-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash c966064663c241f0ae6beede3fae85b4
4b67923585cfacddc15c27d3306c85bb26e60fc8
f66848eb46a3a3b76048dc7bcc8a55a620c44bb18aea4594d7921af94823c430
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:47:36 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 10 Sep 2022 13:18:32 GMT
ETag: "4b67923585cfacddc15c27d3306c85bb26e60fc8"
Last-Modified: Tue, 06 Sep 2022 13:18:33 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2491
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 746800369e63b4ff-OSL
embedy.cc/application/web/js/func.js?E9HuAR
185.178.208.107200 OK 20 kB URL HTTP/1.1 embedy.cc/application/web/js/func.js?E9HuAR
IP 185.178.208.107:0
File type Unicode text, UTF-8 text, with very long lines (42481), with no line terminators
Hash 1449994dd1ab459e00aaa75a70f7b9a0
73a5f1aab15142744cf23e99c94412ab7e112b4d
94b9518aa43b901ced7d843d116923edf7260e73c373c8011d0ca465bcb416db
GET /application/web/js/func.js?E9HuAR HTTP/1.1
Host: embedy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/movies/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0=
Cookie: __ddg1_=vzR4jKxm3Jj3oaebv60h; PHPSESSID=losgmujs2oq3tm3943kfmui1s7
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Date: Tue, 06 Sep 2022 14:47:36 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Mon, 07 Feb 2022 13:43:15 GMT
Vary: Accept-Encoding
ETag: W/"620121f3-b109"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
Age: 0
DDG-Cache-Status: MISS
Transfer-Encoding: chunked
embedy.cc/application/embed/css/style.css?kH2w98Q
185.178.208.107200 OK 1.4 kB URL HTTP/1.1 embedy.cc/application/embed/css/style.css?kH2w98Q
IP 185.178.208.107:0
File type ASCII text, with very long lines (4458), with no line terminators
Hash 341a458aa5c434769f00e0b5608cc547
1fc1b335f5236da97c296beecd224250e6d51c70
a574d26eccd11c576dc978efa23006ccce6f599f06c1b9934b92c7c57f7845e1
GET /application/embed/css/style.css?kH2w98Q HTTP/1.1
Host: embedy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/embed/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0=
Cookie: __ddg1_=vzR4jKxm3Jj3oaebv60h; PHPSESSID=losgmujs2oq3tm3943kfmui1s7
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Date: Tue, 06 Sep 2022 14:47:36 GMT
Content-Type: text/css
Last-Modified: Sat, 06 Feb 2021 14:11:50 GMT
Vary: Accept-Encoding
ETag: W/"601ea3a6-116a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
Age: 0
DDG-Cache-Status: MISS
Transfer-Encoding: chunked
embedy.cc/application/web/images/sprite.png
185.178.208.107200 OK 7.9 kB URL HTTP/1.1 embedy.cc/application/web/images/sprite.png
IP 185.178.208.107:0
File type PNG image data, 400 x 600, 8-bit colormap, non-interlaced\012- data
Hash b1829cbb7055210cbf93e2d5bce3f6ad
2f5e21edba03b6f064a92ccdfc0d1d7c708839c0
f4717cf98ae1cb2e24144f26ef581d12feb34f4107292efa5f93b6e97f9b02a6
GET /application/web/images/sprite.png HTTP/1.1
Host: embedy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/application/web/style/styles.css?E9HuAR
Cookie: __ddg1_=vzR4jKxm3Jj3oaebv60h; PHPSESSID=losgmujs2oq3tm3943kfmui1s7
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Date: Tue, 29 Mar 2022 13:02:25 GMT
Content-Type: image/png
Content-Length: 7870
Last-Modified: Thu, 03 May 2018 20:59:24 GMT
ETag: "5aeb782c-1ebe"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Age: 13916711
DDG-Cache-Status: HIT
embedy.cc/application/embed/videojs/video-js.min.css?kH2w98Q
185.178.208.107200 OK 4.4 kB URL HTTP/1.1 embedy.cc/application/embed/videojs/video-js.min.css?kH2w98Q
IP 185.178.208.107:0
File type ASCII text, with very long lines (20180)
Hash b5fa36eb919043ea757a24193c5915d2
2dcc1a120def400dcd4c4a1af7c24cec69a4a429
0fc09943df2533c5e8b1b73ff2da3cb3ce421c8e95982dd2121257e508df9535
GET /application/embed/videojs/video-js.min.css?kH2w98Q HTTP/1.1
Host: embedy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/embed/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0=
Cookie: __ddg1_=vzR4jKxm3Jj3oaebv60h; PHPSESSID=losgmujs2oq3tm3943kfmui1s7
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Date: Tue, 06 Sep 2022 14:47:36 GMT
Content-Type: text/css
Last-Modified: Thu, 01 Apr 2021 18:06:08 GMT
Vary: Accept-Encoding
ETag: W/"60660b90-4f4c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
Age: 0
DDG-Cache-Status: MISS
Transfer-Encoding: chunked
i.mycdn.me/getVideoPreview?id=2649859033770&idx=11&type=39&tkn=pu-PNP17sd-wB1heBlPjfPW6-4w&fn=vid_l
217.20.156.158200 OK 5.2 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2649859033770&idx=11&type=39&tkn=pu-PNP17sd-wB1heBlPjfPW6-4w&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8dd316d01d2b4112cfc50b9d03d11de1
24b51fd8ca51539c8ef56a4f67063d3d310a43e9
3f819dbe19ae4a8ca141741b357d3ae9b6b8e8d0aa717b1817949ee7840b42cf
GET /getVideoPreview?id=2649859033770&idx=11&type=39&tkn=pu-PNP17sd-wB1heBlPjfPW6-4w&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 5162
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=2719010589293&idx=12&type=39&tkn=7wBgzfw0nHrBZS_QBwAFVmCyDBM&fn=vid_l
217.20.156.158200 OK 5.9 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2719010589293&idx=12&type=39&tkn=7wBgzfw0nHrBZS_QBwAFVmCyDBM&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b7f0b5bb56c7ef1ecbd01cb12fc0aa7a
23c48750f91ca86f466626425faac482abdac578
8fdaf192a37772946ec3ecf6570410637071d2d6c1e15a7986e8affaacf06d6d
GET /getVideoPreview?id=2719010589293&idx=12&type=39&tkn=7wBgzfw0nHrBZS_QBwAFVmCyDBM&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 5898
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=2730085976814&idx=11&type=39&tkn=Eh8GGyGPyhy8Xv47dmZaRdawXrE&fn=vid_l
217.20.156.158200 OK 8.6 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2730085976814&idx=11&type=39&tkn=Eh8GGyGPyhy8Xv47dmZaRdawXrE&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4ba418c7577bb029bf113faba7a95fd0
5475a1dc6b1d4a4e4e6252ac5bc8b40f8ae25e03
26a7a4f7f81658dd713c72964dcb4cfb386d57d34222d894422723e180775fce
GET /getVideoPreview?id=2730085976814&idx=11&type=39&tkn=Eh8GGyGPyhy8Xv47dmZaRdawXrE&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 8564
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
embedy.cc/application/embed/js/jquery-3.4.1.min.js?kH2w98Q
185.178.208.107200 OK 31 kB URL HTTP/1.1 embedy.cc/application/embed/js/jquery-3.4.1.min.js?kH2w98Q
IP 185.178.208.107:0
File type ASCII text, with very long lines (65451)
Hash f8a10c76294be4282d55a848bb39b30f
1d7abbd795999774bc36977cd11d56488587d4c4
0266e9b70e37bd2a3d4a5d0a9460eb7b766e9c2efa1299555217b591ac623dff
GET /application/embed/js/jquery-3.4.1.min.js?kH2w98Q HTTP/1.1
Host: embedy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/embed/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0=
Cookie: __ddg1_=vzR4jKxm3Jj3oaebv60h; PHPSESSID=losgmujs2oq3tm3943kfmui1s7
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Date: Tue, 06 Sep 2022 14:47:36 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Fri, 23 Aug 2019 12:19:52 GMT
Vary: Accept-Encoding
ETag: W/"5d5fd9e8-15850"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
Age: 0
DDG-Cache-Status: MISS
Transfer-Encoding: chunked
embedy.cc/application/web/images/flags.png
185.178.208.107200 OK 23 kB URL HTTP/1.1 embedy.cc/application/web/images/flags.png
IP 185.178.208.107:0
File type PNG image data, 256 x 176, 8-bit colormap, non-interlaced\012- data
Hash 31643d9057721a884ad18cad97758b7d
8da2afeb724db36bf86e1c295a3a7b3458282f55
f279f07907722e06caa33de9ee45c24a6cb96b86859bef01c2753d78035ac418
GET /application/web/images/flags.png HTTP/1.1
Host: embedy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/application/web/style/styles.css?E9HuAR
Cookie: __ddg1_=vzR4jKxm3Jj3oaebv60h; PHPSESSID=losgmujs2oq3tm3943kfmui1s7
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Date: Tue, 29 Mar 2022 13:02:20 GMT
Content-Type: image/png
Content-Length: 23023
Last-Modified: Sat, 14 May 2016 18:47:17 GMT
ETag: "573772b5-59ef"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Age: 13916717
DDG-Cache-Status: HIT
i.mycdn.me/getVideoPreview?id=2748758755921&idx=6&type=39&tkn=a3h23-nz-xd-p5wGH92Q---Muow&fn=vid_l
217.20.156.158200 OK 7.0 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2748758755921&idx=6&type=39&tkn=a3h23-nz-xd-p5wGH92Q---Muow&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 54ebf73bcfaf74e885befddae8dc9c7f
f38f4083a34c3cf85d74b7abc6768ceb993c968f
885212d1e2a0c12842e922917fce1e6d540bcf342f6e967c2ed3301cc31559a4
GET /getVideoPreview?id=2748758755921&idx=6&type=39&tkn=a3h23-nz-xd-p5wGH92Q---Muow&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 7008
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=2639284931223&idx=6&type=39&tkn=cxJ7s9FXoY4ljKGKPD6DEEj5Qqk&fn=vid_l
217.20.156.158200 OK 5.9 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2639284931223&idx=6&type=39&tkn=cxJ7s9FXoY4ljKGKPD6DEEj5Qqk&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b34c45abe0bd79e52b0a5a0c5c347822
21176759ad8fe1db5feb5ecdf242e7c8db69d602
ea61ddc76ae77f82453419c74a8299a8c3c406636e3aa9d12d02449d306eb0da
GET /getVideoPreview?id=2639284931223&idx=6&type=39&tkn=cxJ7s9FXoY4ljKGKPD6DEEj5Qqk&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 5858
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
embedy.cc/application/web/fonts/fontawesome-webfont.woff2?v=4.4.0
185.178.208.107200 OK 77 kB URL HTTP/1.1 embedy.cc/application/web/fonts/fontawesome-webfont.woff2?v=4.4.0
IP 185.178.208.107:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /application/web/fonts/fontawesome-webfont.woff2?v=4.4.0 HTTP/1.1
Host: embedy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://embedy.cc/application/web/style/styles.css?E9HuAR
Cookie: __ddg1_=vzR4jKxm3Jj3oaebv60h; PHPSESSID=losgmujs2oq3tm3943kfmui1s7
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Date: Fri, 26 Aug 2022 07:18:29 GMT
Content-Type: application/octet-stream
Content-Length: 77160
Last-Modified: Mon, 19 Dec 2016 11:32:14 GMT
ETag: "5857c53e-12d68"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Age: 977347
DDG-Cache-Status: HIT
embedy.cc/application/embed/js/getembed.js?kH2w98Q
185.178.208.107200 OK 63 kB URL HTTP/1.1 embedy.cc/application/embed/js/getembed.js?kH2w98Q
IP 185.178.208.107:0
File type ASCII text, with very long lines (32264)
Hash f6548f524de0396e683748945e742aa8
d7d0363a9f3e7bcd7336db95db964e6be592344e
feefe8ae6978403346900d646e19eafcaf8db8888630500573b8ac4d0e823d88
GET /application/embed/js/getembed.js?kH2w98Q HTTP/1.1
Host: embedy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/embed/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0=
Cookie: __ddg1_=vzR4jKxm3Jj3oaebv60h; PHPSESSID=losgmujs2oq3tm3943kfmui1s7
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Date: Tue, 06 Sep 2022 14:47:36 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Mon, 05 Sep 2022 08:35:36 GMT
Vary: Accept-Encoding
ETag: W/"6315b4d8-3279c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
Age: 0
DDG-Cache-Status: MISS
Transfer-Encoding: chunked
i.mycdn.me/getVideoPreview?id=2478111328895&idx=6&type=39&tkn=TkhJ5EYuhRkJLBIljPZbt6F_glE&fn=vid_l
217.20.156.158200 OK 8.9 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2478111328895&idx=6&type=39&tkn=TkhJ5EYuhRkJLBIljPZbt6F_glE&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e346342d020b324bf573fac18912a317
901303555bb9d8837ecd9e6ca4cc7344460d96f6
f998e918fd8e4c7feb7f376f409ecdb69b152e570558c90ab33c784c55abff20
GET /getVideoPreview?id=2478111328895&idx=6&type=39&tkn=TkhJ5EYuhRkJLBIljPZbt6F_glE&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 8948
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=2748380089011&idx=12&type=39&tkn=PfThyHNg7-HjxPWd-dG7-R9EjRU&fn=vid_l
217.20.156.158200 OK 8.9 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2748380089011&idx=12&type=39&tkn=PfThyHNg7-HjxPWd-dG7-R9EjRU&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash db2e52888f756f9e7012bd4784574000
e3d4e96a6ff398f43d6dac2269e3976a9ab78d02
9f0efd0840c083f43e1efbd8974c5037b20fce09d0b333a3ce4a6dd349a52136
GET /getVideoPreview?id=2748380089011&idx=12&type=39&tkn=PfThyHNg7-HjxPWd-dG7-R9EjRU&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 8940
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=2707606342356&idx=14&type=39&tkn=N6_xXH0U5cYAWwgfAjqVkGd4JRw&fn=vid_l
217.20.156.158200 OK 7.0 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2707606342356&idx=14&type=39&tkn=N6_xXH0U5cYAWwgfAjqVkGd4JRw&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b79c040ef54505eda44e48d88928c139
73b9a87b4a36ba4ab65af378836a2ca6d62e6c9f
9e597cec87738b6226a07743afe2cd9fb176c2b35a487e4ad2854eb65bab0a42
GET /getVideoPreview?id=2707606342356&idx=14&type=39&tkn=N6_xXH0U5cYAWwgfAjqVkGd4JRw&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 7002
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=2747916487342&idx=2&type=39&tkn=Ke4rG5Tt71r4Z_I2wTaFuR-Rz6w&fn=vid_l
217.20.156.158200 OK 6.0 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2747916487342&idx=2&type=39&tkn=Ke4rG5Tt71r4Z_I2wTaFuR-Rz6w&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1ad531188faafe434876ffdb0a25870f
34fbd80233d3ca84b78538ec29642c88d31445d5
e5dc60eb110472dc390ccbc0b8de7f353a17fa3ca9c147d91ccd11be44067086
GET /getVideoPreview?id=2747916487342&idx=2&type=39&tkn=Ke4rG5Tt71r4Z_I2wTaFuR-Rz6w&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 6034
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=2477489916543&idx=14&type=39&tkn=BKbGc8KlAbv6OTIKL16tIxZ92U8&fn=vid_l
217.20.156.158200 OK 8.3 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2477489916543&idx=14&type=39&tkn=BKbGc8KlAbv6OTIKL16tIxZ92U8&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7ccb8309c31554a120f217637f0ae34e
03af7e2c7627b32faec769cdc99cc7f1c25f60f1
98eb7f2e4296090bcfd75ebd90b25a6ff94bc7e8ae6edc03f118b65b72588760
GET /getVideoPreview?id=2477489916543&idx=14&type=39&tkn=BKbGc8KlAbv6OTIKL16tIxZ92U8&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 8308
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=2768104655439&idx=11&type=39&tkn=1nWxSIWOaF-Z-EkWEsqZcfuc9Hc&fn=vid_l
217.20.156.158200 OK 8.5 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2768104655439&idx=11&type=39&tkn=1nWxSIWOaF-Z-EkWEsqZcfuc9Hc&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e9ba6e7a8c5891fbe623cbe76f93f02d
74a3136ad6040931b16ea662f6784313264b3cc1
fd63bb0ffec847d9778f49d1dc207c5265e18fb346d5909f8b6d44be34ab0acc
GET /getVideoPreview?id=2768104655439&idx=11&type=39&tkn=1nWxSIWOaF-Z-EkWEsqZcfuc9Hc&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 8480
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=2485134887586&idx=1&type=39&tkn=QOn12PC305uzd0TED01XTUJiaEI&fn=vid_l
217.20.156.158200 OK 7.5 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2485134887586&idx=1&type=39&tkn=QOn12PC305uzd0TED01XTUJiaEI&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 81611053691905658428fa38eb0dcfef
96dcde5c0ad0cd0146c850a01b5c4312646310de
ff506c185f0a8a2d3cd0396f848483e68469170eb81723be513290b85c2f4271
GET /getVideoPreview?id=2485134887586&idx=1&type=39&tkn=QOn12PC305uzd0TED01XTUJiaEI&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 7522
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=2525983607429&idx=8&type=39&tkn=ilLep8QHeAZHrvIAPFU1aGC-o8E&fn=vid_l
217.20.156.158200 OK 9.3 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2525983607429&idx=8&type=39&tkn=ilLep8QHeAZHrvIAPFU1aGC-o8E&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8af13c8ff251ac0450f58eb68d44f58a
a806cfa41f69637a906dd6a3bbe9f04bf378f0ec
cdd335adecf0c290b3e1cd1c5b3468aaf34352063e614ec64c62d2e33f6ce23c
GET /getVideoPreview?id=2525983607429&idx=8&type=39&tkn=ilLep8QHeAZHrvIAPFU1aGC-o8E&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 9290
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=2637315377677&idx=14&type=39&tkn=nw1t8F6nFQGBniMtWJ0X6QaWYOk&fn=vid_l
217.20.156.158200 OK 10 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2637315377677&idx=14&type=39&tkn=nw1t8F6nFQGBniMtWJ0X6QaWYOk&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3ae44c162ff3f5d895e5dd777fc732a8
8d8b17c1c590d0dadc5de2a9ceb0bd0fdc45547c
a110ef898ae70ba35df6fa89b2de1c1f956c1dea2d6f48297a171da67ba59cb7
GET /getVideoPreview?id=2637315377677&idx=14&type=39&tkn=nw1t8F6nFQGBniMtWJ0X6QaWYOk&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 10424
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=2657239960235&idx=8&type=39&tkn=3tiihO6tVsEq1LOVHX0UWNZC_ic&fn=vid_l
217.20.156.158200 OK 9.3 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2657239960235&idx=8&type=39&tkn=3tiihO6tVsEq1LOVHX0UWNZC_ic&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1ab5af6526f5fdbd795de93a5f586578
e5cad8efa2cc2f916be0703c3176439653a777c1
af017978523210e02b33d79d334aa67ebb1d9433658783becfc788a8bec232a3
GET /getVideoPreview?id=2657239960235&idx=8&type=39&tkn=3tiihO6tVsEq1LOVHX0UWNZC_ic&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 9332
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=2581047806561&idx=0&type=39&tkn=FW5r0aULT8CC33yucigcZT7B5pQ&fn=vid_l
217.20.156.158200 OK 3.0 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2581047806561&idx=0&type=39&tkn=FW5r0aULT8CC33yucigcZT7B5pQ&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4d879072cbcc7325a38c0179391257e9
8ff7cb1fef79f12b7b3055b607eb14b34ac7a55d
701e523994e433f3d6a86ee1d1421ec900d3016710403a8a81636a950d59cdf1
GET /getVideoPreview?id=2581047806561&idx=0&type=39&tkn=FW5r0aULT8CC33yucigcZT7B5pQ&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 2986
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=2344998996617&idx=4&type=39&tkn=a5I1FehehydAko_5aFe8yQP2hZo&fn=vid_l
217.20.156.158200 OK 5.9 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2344998996617&idx=4&type=39&tkn=a5I1FehehydAko_5aFe8yQP2hZo&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e52c2f328868817e6c09aa8f572fa335
883e0714efe77fa15dc12d025428ab694a85c208
8992787c4587c8db9a4356ffd528e46ddbab8b68a86e8d9c5aefc648807b6c36
GET /getVideoPreview?id=2344998996617&idx=4&type=39&tkn=a5I1FehehydAko_5aFe8yQP2hZo&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 5912
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=2596703701753&idx=2&type=39&tkn=RlzTOfCbaHojHollA_wLxjxzK0k&fn=vid_l
217.20.156.158200 OK 9.3 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2596703701753&idx=2&type=39&tkn=RlzTOfCbaHojHollA_wLxjxzK0k&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 05cc639bc99893c70cfc73b283f81e87
3b8f6317c2b588f096cce934b35e159d179a64e5
4a5cef3e3577d55d51e81fc24c8a8b3ffc85c8cfef8a764d38a0921bb7afce44
GET /getVideoPreview?id=2596703701753&idx=2&type=39&tkn=RlzTOfCbaHojHollA_wLxjxzK0k&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 9312
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=2625342540455&idx=5&type=39&tkn=g3hfK6-G-YDtOTTTeIMjKCYXaNs&fn=vid_l
217.20.156.158200 OK 12 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2625342540455&idx=5&type=39&tkn=g3hfK6-G-YDtOTTTeIMjKCYXaNs&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 29c73c7be4450b92930f81f071e1cce6
452c1146fe4075246bb6fc970d56184b5d3a8f48
8f5f807d743c7f7a25dab4bd3da36b12e8996fe0bd018b1ef0e4ef7870cdbc7a
GET /getVideoPreview?id=2625342540455&idx=5&type=39&tkn=g3hfK6-G-YDtOTTTeIMjKCYXaNs&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 12388
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=1530109692549&idx=6&type=39&tkn=5VHQ61Oh6gyM53IvuWVF9vFGFbw&fn=vid_l
217.20.156.158200 OK 6.5 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=1530109692549&idx=6&type=39&tkn=5VHQ61Oh6gyM53IvuWVF9vFGFbw&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ec3ee6d3eab52a729f697feae0a6b83d
bd70aa9a3ef40c08ccd1db21b70ee7ff928a8761
0640d6e8369fc22990b8af141bae40b9de9df6c4c35d6a9ee33caccbf650bfed
GET /getVideoPreview?id=1530109692549&idx=6&type=39&tkn=5VHQ61Oh6gyM53IvuWVF9vFGFbw&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 6548
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=782454753993&idx=1&type=39&tkn=HhoF6V_8NQNH7SXM46lcGNzNTKM&fn=vid_l
217.20.156.158200 OK 7.6 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=782454753993&idx=1&type=39&tkn=HhoF6V_8NQNH7SXM46lcGNzNTKM&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ef16894c63c76894c12fe990b90eb393
596663e5074de4f71dfcbc8a16af14d5d926ffd3
9a85574547bec8d900c027ef261861464cca286e7ab4db3a1778b50a9540efc0
GET /getVideoPreview?id=782454753993&idx=1&type=39&tkn=HhoF6V_8NQNH7SXM46lcGNzNTKM&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 7590
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=2712550967990&idx=4&type=39&tkn=cR-_ekEMLJg_52BUz4fH7W5qJms&fn=vid_l
217.20.156.158200 OK 6.3 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2712550967990&idx=4&type=39&tkn=cR-_ekEMLJg_52BUz4fH7W5qJms&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c9b89e5a3cc57d384d6e9fc5146cb87c
ec6a951b3f8af4c3d6fb42b011038bd5beabb54e
7d3b9e684a7653965c9edd10e03811b0942f8c9d8d09b1a3e8ee511eacba4ab6
GET /getVideoPreview?id=2712550967990&idx=4&type=39&tkn=cR-_ekEMLJg_52BUz4fH7W5qJms&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 6314
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb9bf29f1e0acaa7ac6d6566381370
dec1bea642dffbc11ebd6d65c94f87d6db95703a
b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 14:47:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.mycdn.me/getVideoPreview?id=2772653509324&idx=8&type=39&tkn=CjPe-BoT16lRLSgUegVHtqPkE0s&fn=vid_l
217.20.156.158200 OK 9.5 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2772653509324&idx=8&type=39&tkn=CjPe-BoT16lRLSgUegVHtqPkE0s&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 272958bcffbc8809c644a15cadb535d8
61cbb008d3cbec9f394c8a3dcadbb8b7de70b6bf
a1707c957e581381a96c80fa5938c0dfe966fb0cf9bcf023c7a740108b718097
GET /getVideoPreview?id=2772653509324&idx=8&type=39&tkn=CjPe-BoT16lRLSgUegVHtqPkE0s&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 9540
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.mycdn.me/getVideoPreview?id=2830142736913&idx=14&type=39&tkn=uIhOzilbyU4UajiMWxpcjKNRIuQ&fn=vid_l
217.20.156.158200 OK 8.2 kB URL HTTP/2 i.mycdn.me/getVideoPreview?id=2830142736913&idx=14&type=39&tkn=uIhOzilbyU4UajiMWxpcjKNRIuQ&fn=vid_l
IP 217.20.156.158:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d53cb3ee2416a90db4abd145ae2bf0ab
ecb74f5762f660457e9e3945e8cc8f0d411c728e
4bd9e3bff84858e8ec858594854e76e6466edf345ef4327511a3b49049ac0dd3
GET /getVideoPreview?id=2830142736913&idx=14&type=39&tkn=uIhOzilbyU4UajiMWxpcjKNRIuQ&fn=vid_l HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Tue, 06 Sep 2022 14:47:36 GMT
content-type: image/webp
content-length: 8218
accept-ranges: bytes
last-modified: Fri, 08 Jul 2022 14:47:36 GMT
expires: Sat, 03 Jun 2023 14:47:36 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-15423068-7
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-15423068-7
IP 142.250.74.72:0
File type ASCII text, with very long lines (1615)
Hash bbd877085c427b5d2cb7829fce9d949c
125f34f21df4edb8d8df0bd25c71d5da29ee5fcf
a8b3d284c98d834f6f6ad92be3a34126357031ef65f7e44f88c4273cd5e77da8
GET /gtag/js?id=UA-15423068-7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 14:47:36 GMT
expires: Tue, 06 Sep 2022 14:47:36 GMT
cache-control: private, max-age=900
last-modified: Tue, 06 Sep 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41845
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
embedy.disqus.com/embed.js
151.101.84.134301 Moved Permanently 219 B URL HTTP/1.1 embedy.disqus.com/embed.js
IP 151.101.84.134:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 6b22a8f71ae72ac4b781cff49386dfa9
a8e7202517458752851aeb18c9fb770e931fec34
186d5321baf20106cb6361d9ec524b818d876d773a5bd9dd5530ae5889d74be3
GET /embed.js HTTP/1.1
Host: embedy.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/
HTTP/1.1 301 Moved Permanently
Server: Varnish
Location: https://embedy.disqus.com/embed.js
Content-Type: text/html
Cache-Control: public, max-age=31536000
Content-Length: 219
Date: Tue, 06 Sep 2022 14:47:37 GMT
Connection: close
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
embedy.cc/favicon.ico
185.178.208.107200 OK 202 B IP 185.178.208.107:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 4782fee4e049aad0676efdb22682f009
ff568fa4917003b883c1100dbdce380f6f7f7ab6
5eecc7e5a9d73b8ac2dfc2a90f1e76c19f68791832886fe21f6add6bae20d8a9
GET /favicon.ico HTTP/1.1
Host: embedy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/movies/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0=
Cookie: __ddg1_=vzR4jKxm3Jj3oaebv60h; PHPSESSID=losgmujs2oq3tm3943kfmui1s7
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Date: Tue, 29 Mar 2022 17:43:52 GMT
Content-Type: image/x-icon
Last-Modified: Thu, 12 May 2016 10:08:56 GMT
ETag: W/"57345638-47e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Age: 13899825
DDG-Cache-Status: HIT
Content-Encoding: gzip
Vary: Accept-Encoding
Transfer-Encoding: chunked
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb9bf29f1e0acaa7ac6d6566381370
dec1bea642dffbc11ebd6d65c94f87d6db95703a
b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 14:47:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 06 Sep 2022 14:41:12 GMT
expires: Tue, 06 Sep 2022 16:41:12 GMT
cache-control: public, max-age=7200
age: 385
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
counter.yadro.ru/hit?t50.6;r;s1280*1024*24;uhttp%3A//embedy.cc/movies/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0%3D;0.6042236267975353
88.212.202.52302 Moved Temporarily 32 B URL HTTP/1.1 counter.yadro.ru/hit?t50.6;r;s1280*1024*24;uhttp%3A//embedy.cc/movies/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0%3D;0.6042236267975353
IP 88.212.202.52:0
ASN #39134 United Network LLC
File type HTML document, ASCII text
Hash 3e9c09a8c5a87f266e047a596f48578c
07d7b1940b7e3f9a3db43197458f9b8ef18a6bce
57fad7ae62012ff4a38ecb6045ac6e8e3a070a33bbd033b21ab6cad3566d9254
GET /hit?t50.6;r;s1280*1024*24;uhttp%3A//embedy.cc/movies/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0%3D;0.6042236267975353 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/
HTTP/1.1 302 Moved Temporarily
Date: Tue, 06 Sep 2022 14:47:37 GMT
Server: 0W/0.8c
Content-Type: text/html
Location: https://counter.yadro.ru/hit?t50.6;r;s1280*1024*24;uhttp%3A//embedy.cc/movies/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0%3D;0.6042236267975353
Content-Length: 32
Expires: Sun, 05 Sep 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 06 Sep 2022 14:38:18 GMT
Cache-Control: max-age=3600
Expires: Tue, 06 Sep 2022 15:34:05 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 18hndu7nbVvzviVFLeiaqNMaZZi-0CBILkSE45Fv-cAzkG9OAXgWjQ==
Age: 559
counter.yadro.ru/hit?t50.6;r;s1280*1024*24;uhttp%3A//embedy.cc/movies/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0%3D;0.6042236267975353
88.212.202.52200 OK 132 B URL HTTP/1.1 counter.yadro.ru/hit?t50.6;r;s1280*1024*24;uhttp%3A//embedy.cc/movies/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0%3D;0.6042236267975353
IP 88.212.202.52:0
ASN #39134 United Network LLC
File type GIF image data, version 87a, 31 x 31\012- data
Hash c13b0ec205fabd070b69a7df6971641b
d03360d12bf1f034e65c1cb299743eff3a226f3f
eb03d5c88046cd6bf4bf958b581f783cc1f6b1f21f91af45c3e0ce5cf137bd0c
GET /hit?t50.6;r;s1280*1024*24;uhttp%3A//embedy.cc/movies/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0%3D;0.6042236267975353 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://embedy.cc/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 06 Sep 2022 14:47:37 GMT
Content-Type: image/gif
Content-Length: 132
Connection: keep-alive
Expires: Sun, 05 Sep 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
embedy.disqus.com/embed.js
151.101.84.134200 OK 25 kB URL HTTP/1.1 embedy.disqus.com/embed.js
IP 151.101.84.134:0
File type ASCII text, with very long lines (32091)
Hash 52008015347b79e2d274f5bdd1c018db
569bfcab3dbcf8a4833dd6a6e4a5d378accb7a4a
fa3f8f33187cad6984647c79069eef404250b08618287a38a29016dff2fa0ef7
GET /embed.js HTTP/1.1
Host: embedy.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://embedy.cc/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 25376
Server: openresty
Content-Type: application/javascript; charset=utf-8
X-Service: router
Content-Encoding: gzip
Date: Tue, 06 Sep 2022 14:47:37 GMT
Age: 0
Vary: Accept-Encoding
Cache-Control: private, max-age=60
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
brunettemattersrefused.com/e8/5b/5c/e85b5c7bdb1a24cd4a76afc29fcc2f61.js
192.243.59.13200 OK 17 kB URL HTTP/1.1 brunettemattersrefused.com/e8/5b/5c/e85b5c7bdb1a24cd4a76afc29fcc2f61.js
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (53868), with no line terminators
Hash e5dc73453dd5479d927abde2a9b99dea
852edf5f54d574c90f049f3cd4595cf81cd8f4ff
e55699c94952374d4f7470af994660517ff941a7d5f7c8f115594c6a05877871
Analyzer Verdict Alert quad9 Sinkholed
GET /e8/5b/5c/e85b5c7bdb1a24cd4a76afc29fcc2f61.js HTTP/1.1
Host: brunettemattersrefused.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Tue, 06 Sep 2022 14:47:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 357d66845eaff6dc34c06e9fdedddb7c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e8952752ad4a452a575522a7eb737217
c5554fa2af05d7a7117032b0f99352de08988346
8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3059
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 14:47:37 GMT
Last-Modified: Tue, 06 Sep 2022 13:56:38 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
addresseepaper.com/sfp.js
104.21.235.2200 OK 23 kB URL HTTP/1.1 addresseepaper.com/sfp.js
IP 104.21.235.2:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 487ad2b48cd98e36abf708a3b60f4a36
ccf7b110523d50bb619becd48c3f013cc5fdce87
768eff747f795e1232d182eb859170e32d4f06ed29da872c09af5363c459668f
GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:47:37 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: max-age=14400
X-Request-ID: b0e84f43165a2ff9a0c74dbeda99f87b
Strict-Transport-Security: max-age=0; includeSubdomains
CF-Cache-Status: EXPIRED
Last-Modified: Tue, 06 Sep 2022 14:47:37 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9CQCmHrFILs1pV0jFUXxfAoMEczE3gtMTeAGUqtip909Z4rO6VhO3B41cxWwgT74ulPrq%2FiIqUkVTWicK8%2FzfDr%2BC5MNFZwMCO19hjLVUbZ8%2ByQe3QGdT8Gn0Apl4%2FfTY%2FBn8Sc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7468003a5fa076ea-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
c.disquscdn.com/next/embed/assets/img/disqus-social-icon-light.5a4245eaed6988115d6bd53f20074f71.svg
143.204.55.127200 OK 1.0 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/disqus-social-icon-light.5a4245eaed6988115d6bd53f20074f71.svg
IP 143.204.55.127:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5a4245eaed6988115d6bd53f20074f71
571736b1f0cabda0d635c7f5f9025f006f9ac246
62d25a3e68dbdcb532c9e7811f6f2d4d250545aba83dde06010c0b6b16e5200d
GET /next/embed/assets/img/disqus-social-icon-light.5a4245eaed6988115d6bd53f20074f71.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 1042
date: Tue, 16 Aug 2022 03:35:15 GMT
server: nginx
last-modified: Mon, 15 Aug 2022 15:49:09 GMT
etag: "62fa6af5-412"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 16 Aug 2023 03:35:15 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CwlBpPZljNoIz6475mxUfU4yGXQMVckHO_oHVazovUpre1F2X8zwQg==
age: 1854742
X-Firefox-Spdy: h2
referrer.disqus.com/juggler/stat.gif?event=lounge.loading.view
151.101.84.134200 OK 43 B URL HTTP/1.1 referrer.disqus.com/juggler/stat.gif?event=lounge.loading.view
IP 151.101.84.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/stat.gif?event=lounge.loading.view HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Tue, 06 Sep 2022 14:47:37 GMT
Cross-Origin-Resource-Policy: cross-origin
disqus.com/embed/comments/?base=default&f=embedy&t_u=http%3A%2F%2Fembedy.cc%2Fmovies%2FL242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0%3D&t_d=Manga%20porn%20loli%20raped%202%20%5Bporn%2CR34%2CHentai%2C%20SFM%2Crape%2Call%20sex%2C3D%20%D0%A5%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%2Cfellatio%2Cblowjob%2Chandjob%2Cdoggystyle%2Ccum%20inside%2Coral%2Cslave%5D&t_t=Manga%20porn%20loli%20raped%202%20%5Bporn%2CR34%2CHentai%2C%20SFM%2Crape%2Call%20sex%2C3D%20%D0%A5%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%2Cfellatio%2Cblowjob%2Chandjob%2Cdoggystyle%2Ccum%20inside%2Coral%2Cslave%5D&s_o=default
151.101.64.134200 OK 2.9 kB URL HTTP/1.1 disqus.com/embed/comments/?base=default&f=embedy&t_u=http%3A%2F%2Fembedy.cc%2Fmovies%2FL242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0%3D&t_d=Manga%20porn%20loli%20raped%202%20%5Bporn%2CR34%2CHentai%2C%20SFM%2Crape%2Call%20sex%2C3D%20%D0%A5%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%2Cfellatio%2Cblowjob%2Chandjob%2Cdoggystyle%2Ccum%20inside%2Coral%2Cslave%5D&t_t=Manga%20porn%20loli%20raped%202%20%5Bporn%2CR34%2CHentai%2C%20SFM%2Crape%2Call%20sex%2C3D%20%D0%A5%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%2Cfellatio%2Cblowjob%2Chandjob%2Cdoggystyle%2Ccum%20inside%2Coral%2Cslave%5D&s_o=default
IP 151.101.64.134:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2608)
Hash 3279d3897f4d5f2d08ffb9748be2fb16
2ecfc7adcb3139fdce13569bc84274e7290894a4
8e6146965fa3cf7d95f25f4b210ac5ef8f0ba4ec4e7907c1e82411fbde1795a7
GET /embed/comments/?base=default&f=embedy&t_u=http%3A%2F%2Fembedy.cc%2Fmovies%2FL242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0%3D&t_d=Manga%20porn%20loli%20raped%202%20%5Bporn%2CR34%2CHentai%2C%20SFM%2Crape%2Call%20sex%2C3D%20%D0%A5%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%2Cfellatio%2Cblowjob%2Chandjob%2Cdoggystyle%2Ccum%20inside%2Coral%2Cslave%5D&t_t=Manga%20porn%20loli%20raped%202%20%5Bporn%2CR34%2CHentai%2C%20SFM%2Crape%2Call%20sex%2C3D%20%D0%A5%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%2Cfellatio%2Cblowjob%2Chandjob%2Cdoggystyle%2Ccum%20inside%2Coral%2Cslave%5D&s_o=default HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 2934
Server: nginx
Content-Type: text/html; charset=utf-8
Content-Security-Policy: script-src https://*.twitter.com:* https://www.gstatic.com/recaptcha/ https://a.disquscdn.com https://c.disquscdn.com c.disquscdn.com https://*.services.disqus.com:* https://cdn.boomtrain.com/p13n/ https://apis.google.com https://cdn.syndication.twimg.com/tweets.json https://connect.facebook.net/en_US/sdk.js https://referrer.disqus.com/juggler/ 'unsafe-inline' https://com-disqus.netmng.com:* https://www.google.com/recaptcha/ https://cf.ignitionone.com:* https://disqus.com
Last-Modified: Tue, 24 May 2022 17:33:03 GMT
ETag: W/"lounge:view:7991630372.7e6f293742818712463c77403ecbc9e0.2"
Link: <https://c.disquscdn.com>;rel=preconnect,<https://c.disquscdn.com>;rel=dns-prefetch
Cache-Control: stale-if-error=3600, s-stalewhilerevalidate=3600, stale-while-revalidate=30, no-cache, must-revalidate, public, s-maxage=5
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Referrer-Policy: no-referrer-when-downgrade
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
Date: Tue, 06 Sep 2022 14:47:37 GMT
Age: 0
Vary: Accept-Encoding
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
c.disquscdn.com/next/embed/lounge.load.0837a7fb2afa86b68e4ee5098ec9905b.js
143.204.55.127200 OK 494 B URL HTTP/2 c.disquscdn.com/next/embed/lounge.load.0837a7fb2afa86b68e4ee5098ec9905b.js
IP 143.204.55.127:0
File type ASCII text, with very long lines (958), with no line terminators
Hash d525c599081cc243ee1606c485acac49
70d711b8925a504b1ec5050750c3fc3f6ea54b72
7cc1470688587ef371098cef3ca14d6d0a4a7edebf5f548b8a7534d843724a2e
GET /next/embed/lounge.load.0837a7fb2afa86b68e4ee5098ec9905b.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://disqus.com
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 494
date: Tue, 30 Aug 2022 18:28:42 GMT
server: nginx
last-modified: Tue, 30 Aug 2022 17:50:38 GMT
etag: "630e4dee-1ee"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 30 Aug 2023 18:28:42 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -Y3_ZgO5QtVRahwJF_FzeAjvb8MZegjXPl095Pjxnjv4TZTvOSPcnQ==
age: 591535
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/common.bundle.33bc87b2c4f9324203cc85b7dd1d0492.js
143.204.55.127200 OK 95 kB URL HTTP/2 c.disquscdn.com/next/embed/common.bundle.33bc87b2c4f9324203cc85b7dd1d0492.js
IP 143.204.55.127:0
File type ASCII text, with very long lines (32023)
Hash 7b99df04cc3984222b4f02f738de9fa4
f3eefe01e2f39579ceaca4927de1177711e01544
c64b6a193db830888df222e8c3d1d0c964cb9700e2ed62796e02dbe49a39d8ec
GET /next/embed/common.bundle.33bc87b2c4f9324203cc85b7dd1d0492.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 94755
date: Mon, 25 Jul 2022 05:21:29 GMT
server: nginx
last-modified: Fri, 22 Jul 2022 12:02:54 GMT
etag: "62da91ee-17223"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 25 Jul 2023 05:21:29 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cGV7jYExXuGOb9AyXJ8Op6XGfUPZwd9UTAcWxkm7wTZTuQfsMDKSew==
age: 3749168
X-Firefox-Spdy: h2
embedy.cc/video.get/
185.178.208.107200 OK 98 B IP 185.178.208.107:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 892a97f6f6b18766fc048d580318ff7c
7629567811b3b9f7402b89ae1c63567da09a4847
0768cc643cb26fcfd7faa6c52179b8650def068be0c8bd8819908dd13dc6ea13
POST /video.get/ HTTP/1.1
Host: embedy.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 79
Origin: http://embedy.cc
Connection: keep-alive
Referer: http://embedy.cc/embed/L242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0=
Cookie: __ddg1_=vzR4jKxm3Jj3oaebv60h; PHPSESSID=losgmujs2oq3tm3943kfmui1s7
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Date: Tue, 06 Sep 2022 14:47:37 GMT
Content-Type: application/json; charset=utf-8
Vary: Accept-Encoding
Access-Control-Allow-Origin: http://embedy.cc
Access-Control-Allow-Methods: HEAD, GET, OPTIONS
Access-Control-Allow-Headers: Content-Type, X-Requested-With, Origin, Accept, Range, Cache-Control
Access-Control-Allow-Credentials: true
X-Frame-Options: DENY
X-Powered-By: Embedy.cc
X-Served-By: srv1.embedy.cc
X-Token: d076dfac7df1ba8d080f0bad8c377f730f0d5d75c02d08921e278fc4baaa0e4c08ce43719eb46cb68c580
Content-Encoding: gzip
Transfer-Encoding: chunked
push.services.mozilla.com/
34.214.17.205101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.17.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mf2d8U97vQJigPXAXrxWgg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: X+oL5n2MmzS8/2zMsP/gGte4TNg=
c.disquscdn.com/next/embed/styles/lounge.4ceaf0673822a0def820ebdc38d84415.css
143.204.55.127200 OK 26 kB URL HTTP/2 c.disquscdn.com/next/embed/styles/lounge.4ceaf0673822a0def820ebdc38d84415.css
IP 143.204.55.127:0
File type ASCII text, with very long lines (65469)
Hash 562dca2947880c34049caa25b608163e
2d3400232c34275d53746a9ac01d9d37c20c020b
723cbb9fb0d3a0a5eb8305be7f896893e3bf6ab03a0578adda3e77535452bfee
GET /next/embed/styles/lounge.4ceaf0673822a0def820ebdc38d84415.css HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-length: 26448
date: Tue, 30 Aug 2022 18:28:42 GMT
server: nginx
last-modified: Tue, 30 Aug 2022 17:50:39 GMT
etag: "630e4def-6750"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 30 Aug 2023 18:28:42 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1VL3ByGjznBrN_ZarQxm1qp-yDy7OHg07I5xsYJ2jkgKquQImUOLJw==
age: 591535
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/lounge.bundle.8d28276e15f31af0eebfd934278922d1.js
143.204.55.127200 OK 125 kB URL HTTP/2 c.disquscdn.com/next/embed/lounge.bundle.8d28276e15f31af0eebfd934278922d1.js
IP 143.204.55.127:0
File type ASCII text, with very long lines (32035)
Size 125 kB (124861 bytes)
Hash b7529fb4e99080bdade176536dcd2f34
3003c5866b66518508c0e92ef84e6b6765108c48
f370600c6bb9219ce054ea20b074baf379d2a0c97378e0462848f61215d300e1
GET /next/embed/lounge.bundle.8d28276e15f31af0eebfd934278922d1.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 124861
date: Tue, 30 Aug 2022 18:28:42 GMT
server: nginx
last-modified: Tue, 30 Aug 2022 17:50:39 GMT
etag: "630e4def-1e7bd"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 30 Aug 2023 18:28:42 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Fuq2e6cD88dOakxME9JYuSZo_cZESGEoOMdtEUCKMhjPCH8OQjV9Jg==
age: 591535
X-Firefox-Spdy: h2
perryvolleyball.com/8b/59/63/8b5963c5770896045ef1536ef5a90d08.js
192.243.61.225200 OK 13 kB URL HTTP/1.1 perryvolleyball.com/8b/59/63/8b5963c5770896045ef1536ef5a90d08.js
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37146), with no line terminators
Hash f1de955f91f90abc7e72f1ae74c6791d
47371cdde48937ad3a25cdfd88400aa99c63e7ba
b3b501447a4bf2a7e9e1dd80ebfbbb04711cf8000c037033342eaa5bf9662912
Analyzer Verdict Alert quad9 Sinkholed
GET /8b/59/63/8b5963c5770896045ef1536ef5a90d08.js HTTP/1.1
Host: perryvolleyball.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 06 Sep 2022 14:47:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d35b206b30a0ccb4e550fb29a475d3fe
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
c.disquscdn.com/next/current/embed/lang/ru.js
143.204.55.127200 OK 11 kB URL HTTP/2 c.disquscdn.com/next/current/embed/lang/ru.js
IP 143.204.55.127:0
File type Unicode text, UTF-8 text, with very long lines (25288), with no line terminators
Hash 4d02fac64ebd2e66608aa472f8540cf4
5b577275da91229a0aa21f296d322ab03c539b4f
500061cb050c0b50a22a80c89e376cd87414e03c2437aef74206be1d461ff662
GET /next/current/embed/lang/ru.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 10805
server: nginx
last-modified: Tue, 30 Aug 2022 17:50:39 GMT
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
date: Tue, 06 Sep 2022 14:47:07 GMT
expires: Tue, 06 Sep 2022 14:51:53 GMT
cache-control: max-age=300, public
etag: "630e4def-2a35"
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4nr3qEWlDEYcrB5RG7fY5lfJEI6xPDfSPlXZoz9IHOi1thIrsWRp6A==
age: 44
X-Firefox-Spdy: h2
disqus.com/api/3.0/forums/details?forum=embedy&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
151.101.64.134200 OK 2.9 kB URL HTTP/1.1 disqus.com/api/3.0/forums/details?forum=embedy&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
IP 151.101.64.134:0
File type JSON data\012- , ASCII text, with very long lines (2869), with no line terminators
Hash e0962317888b75122a74bfbd41ce7e6a
5ceb29d3415398b55c5a64af07a1a768d4e60eb2
08f564d02f65ec49e9a641184509f80256c42906210066d74e1a06293992b293
GET /api/3.0/forums/details?forum=embedy&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=embedy&t_u=http%3A%2F%2Fembedy.cc%2Fmovies%2FL242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0%3D&t_d=Manga%20porn%20loli%20raped%202%20%5Bporn%2CR34%2CHentai%2C%20SFM%2Crape%2Call%20sex%2C3D%20%D0%A5%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%2Cfellatio%2Cblowjob%2Chandjob%2Cdoggystyle%2Ccum%20inside%2Coral%2Cslave%5D&t_t=Manga%20porn%20loli%20raped%202%20%5Bporn%2CR34%2CHentai%2C%20SFM%2Crape%2Call%20sex%2C3D%20%D0%A5%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%2Cfellatio%2Cblowjob%2Chandjob%2Cdoggystyle%2Ccum%20inside%2Coral%2Cslave%5D&s_o=default
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 2869
Server: nginx
Content-Type: application/json
X-Frame-Options: SAMEORIGIN
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Tue, 06 Sep 2022 14:47:37 GMT
Age: 82
Vary: Origin, Cookie
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
c.disquscdn.com/next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg
143.204.55.127200 OK 13 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg
IP 143.204.55.127:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (13079), with no line terminators
Hash 4da5413f5086c5755b46094b813dbfcd
87669f231ce245cdd9b7d80ebf8194e2ae62e7b1
3270642c89180c12db93775e2a774b6dadd9bd98cffc963075c85afd2c17b6e4
GET /next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.4ceaf0673822a0def820ebdc38d84415.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 13079
date: Mon, 25 Jul 2022 05:21:30 GMT
server: nginx
last-modified: Fri, 22 Jul 2022 12:02:55 GMT
etag: "62da91ef-3317"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 25 Jul 2023 05:21:30 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mTkJx4JPHe772CrrU0jVl9Mp2EG1NrXiegsIAge02BQivGwo4HmcHQ==
age: 3749168
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png
143.204.55.127200 OK 1.8 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png
IP 143.204.55.127:0
File type PNG image data, 172 x 81, 8-bit colormap, non-interlaced\012- data
Hash ad630a07080a45451f139a7487853ff8
c2673d7404fc947fab20eed21416f9656149018d
9714221c828961b20f45a782c3281c0596f6652cfe1299bee18097f98e8fb7b3
GET /next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.4ceaf0673822a0def820ebdc38d84415.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1763
date: Mon, 25 Jul 2022 05:21:30 GMT
server: nginx
last-modified: Fri, 22 Jul 2022 12:02:55 GMT
etag: "62da91ef-6e3"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 25 Jul 2023 05:21:30 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6wKidoRxfkyZuKFh9LtrHXIenktuhZ-MtY_k4_LQ9w419iTBFXzLKQ==
age: 3749168
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2
143.204.55.127200 OK 7.9 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2
IP 143.204.55.127:0
File type Web Open Font Format (Version 2), TrueType, length 7900, version 1.0\012- data
Hash 4cc7a703d2fdfe684151ff8ac24d45f1
046adee74e5ce76db11491906a21c09399391571
f2a341fc815d45c21da726d4c843c2c5d3e1f333465347c3c75d040d556df4e5
GET /next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2 HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
Connection: keep-alive
Referer: https://c.disquscdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 7900
date: Mon, 25 Jul 2022 05:21:30 GMT
server: nginx
last-modified: Fri, 22 Jul 2022 12:02:54 GMT
etag: "62da91ee-1edc"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 25 Jul 2023 05:21:30 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: g5RP39ggBkfrVw_iqEPkPj8CoCTEPcplmbCWQQOrhA8mhOtMZRFI3Q==
age: 3749168
X-Firefox-Spdy: h2
disqus.com/next/config.js
151.101.64.134200 OK 471 B URL HTTP/1.1 disqus.com/next/config.js
IP 151.101.64.134:0
Hash bb439f59c8d155bc837839ed089c527d
36c9258bd9882ebf12a46b04439f6b50d4be5b46
9928d01dd1e2c94b3dd9803cce428a5926cf0ad1196bae92c266022e8ef4ee4e
GET /next/config.js HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=embedy&t_u=http%3A%2F%2Fembedy.cc%2Fmovies%2FL242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0%3D&t_d=Manga%20porn%20loli%20raped%202%20%5Bporn%2CR34%2CHentai%2C%20SFM%2Crape%2Call%20sex%2C3D%20%D0%A5%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%2Cfellatio%2Cblowjob%2Chandjob%2Cdoggystyle%2Ccum%20inside%2Coral%2Cslave%5D&t_t=Manga%20porn%20loli%20raped%202%20%5Bporn%2CR34%2CHentai%2C%20SFM%2Crape%2Call%20sex%2C3D%20%D0%A5%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%2Cfellatio%2Cblowjob%2Chandjob%2Cdoggystyle%2Ccum%20inside%2Coral%2Cslave%5D&s_o=default
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 16127
Server: nginx
Content-Type: application/javascript; charset=UTF-8
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Cache-Control: public, stale-while-revalidate=300, s-stalewhilerevalidate=3600, max-age=60
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Tue, 06 Sep 2022 14:47:37 GMT
Age: 28
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
a.disquscdn.com/1660573036/images/noavatar92.png
151.101.86.49200 OK 1.6 kB URL HTTP/2 a.disquscdn.com/1660573036/images/noavatar92.png
IP 151.101.86.49:0
File type PNG image data, 92 x 92, 8-bit/color RGB, non-interlaced\012- data
Hash 675fb4b91ca717db030507f2d84bcfdf
c8728df74487f907230358a1b08ae1a1b25f9ed4
36ef66124133ca33c8b44c487293c3180e5ab681ff3cad3c728ea4f894ec3444
GET /1660573036/images/noavatar92.png HTTP/1.1
Host: a.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
server: nginx
last-modified: Fri, 26 Feb 2021 20:50:09 GMT
etag: "60395f01-66c"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 14 Sep 2022 20:00:35 GMT
cache-control: max-age=2592000
cross-origin-resource-policy: cross-origin
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: HaTRxAJkog3XAeeKuj4PvA9gd6AXdsmDT7VUmAnH8MIcd6_hyBWkag==
date: Tue, 06 Sep 2022 14:47:38 GMT
age: 1882023
strict-transport-security: max-age=300; includeSubdomains
content-length: 1644
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
3.127.140.33200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 3.127.140.33:0
File type ASCII text, with no line terminators
Hash 9d4af792e5df88fb8ba9980236bb9549
879695e6f95b6010458125dd273b26d57a9d3b31
d8a60ac23a39eb5f854605edbfa4b07c272b695065604b3cfcb058d83668f223
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://embedy.cc
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:47:38 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://embedy.cc
access-control-allow-credentials: true
set-cookie: uid_id2=5952e540-dda7-40a2-b964-b5823591356a:1:1; expires=Fri, 03 Sep 2032 14:47:38 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
creepingbrings.com/sfp.js
104.21.234.233200 OK 23 kB URL HTTP/1.1 creepingbrings.com/sfp.js
IP 104.21.234.233:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 487ad2b48cd98e36abf708a3b60f4a36
ccf7b110523d50bb619becd48c3f013cc5fdce87
768eff747f795e1232d182eb859170e32d4f06ed29da872c09af5363c459668f
GET /sfp.js HTTP/1.1
Host: creepingbrings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:47:38 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: max-age=14400
X-Request-ID: 34e8ea5d9b41e7ee20e183b7482ed402
Strict-Transport-Security: max-age=0; includeSubdomains
CF-Cache-Status: EXPIRED
Last-Modified: Tue, 06 Sep 2022 14:47:37 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C0taD9BkZvFO45zmfD8TQv8JY9edmT90TmBiwhfZ3mHt0Py5gJn3D6mrQvxLLoXapz1Ed8jDg%2BJk0S3%2FhaJmqN2g0IBndrZxRs30rFqi2bsJrW0d%2FSs%2FR3HG484N2Bhqq1lMSpw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7468003df83d88af-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
simplewebanalysis.com/stats
3.127.140.33200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 3.127.140.33:0
File type ASCII text, with no line terminators
Hash 9d4af792e5df88fb8ba9980236bb9549
879695e6f95b6010458125dd273b26d57a9d3b31
d8a60ac23a39eb5f854605edbfa4b07c272b695065604b3cfcb058d83668f223
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://embedy.cc
Connection: keep-alive
Referer: http://embedy.cc/
Cookie: uid_id2=5952e540-dda7-40a2-b964-b5823591356a:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:47:38 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://embedy.cc
access-control-allow-credentials: true
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
3.127.140.33200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 3.127.140.33:0
File type ASCII text, with no line terminators
Hash 9d4af792e5df88fb8ba9980236bb9549
879695e6f95b6010458125dd273b26d57a9d3b31
d8a60ac23a39eb5f854605edbfa4b07c272b695065604b3cfcb058d83668f223
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://embedy.cc
Connection: keep-alive
Referer: http://embedy.cc/
Cookie: uid_id2=5952e540-dda7-40a2-b964-b5823591356a:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:47:38 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://embedy.cc
access-control-allow-credentials: true
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js
143.204.55.127200 OK 27 kB URL HTTP/2 c.disquscdn.com/next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js
IP 143.204.55.127:0
File type ASCII text, with very long lines (32024)
Hash 0c2785ae737e4a3a6baf270c42954aaa
ba03fa7243d6e4f184c3f2f05f733f5f40b96cc3
75310b8dcb511e824684c40202fb6edb67136e7b747e2d42c71a628bce42c2f2
GET /next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 26578
date: Mon, 25 Jul 2022 05:21:30 GMT
server: nginx
last-modified: Fri, 22 Jul 2022 12:02:54 GMT
etag: "62da91ee-67d2"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 25 Jul 2023 05:21:30 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: G0AWV9uTv0p2bF19tdyecnWEMWLPj0TzoeQ_Tc3XGIjRNtbKM0Gtjg==
age: 3749168
X-Firefox-Spdy: h2
referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&load_time=345&event=init_embed&thread=7991630372&forum=embedy&forum_id=4238911&imp=28qcdi317pe22m&thread_slug=manga_porn_loli_raped_2_pornr34hentai_sfmrapeall_sex3d_fellatioblowjobhandjobdoggystylecum_insideora&user_type=anon&referrer=http%3A%2F%2Fembedy.cc%2F&theme=next&dnt=0&tracking_enabled=0&experiment=network_default&variant=fallthrough&service=dynamic&promoted_enabled=false&max_enabled=false
151.101.84.134200 OK 43 B URL HTTP/1.1 referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&load_time=345&event=init_embed&thread=7991630372&forum=embedy&forum_id=4238911&imp=28qcdi317pe22m&thread_slug=manga_porn_loli_raped_2_pornr34hentai_sfmrapeall_sex3d_fellatioblowjobhandjobdoggystylecum_insideora&user_type=anon&referrer=http%3A%2F%2Fembedy.cc%2F&theme=next&dnt=0&tracking_enabled=0&experiment=network_default&variant=fallthrough&service=dynamic&promoted_enabled=false&max_enabled=false
IP 151.101.84.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/event.gif?abe=0&embed_hidden=0&load_time=345&event=init_embed&thread=7991630372&forum=embedy&forum_id=4238911&imp=28qcdi317pe22m&thread_slug=manga_porn_loli_raped_2_pornr34hentai_sfmrapeall_sex3d_fellatioblowjobhandjobdoggystylecum_insideora&user_type=anon&referrer=http%3A%2F%2Fembedy.cc%2F&theme=next&dnt=0&tracking_enabled=0&experiment=network_default&variant=fallthrough&service=dynamic&promoted_enabled=false&max_enabled=false HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=embedy&t_u=http%3A%2F%2Fembedy.cc%2Fmovies%2FL242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0%3D&t_d=Manga%20porn%20loli%20raped%202%20%5Bporn%2CR34%2CHentai%2C%20SFM%2Crape%2Call%20sex%2C3D%20%D0%A5%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%2Cfellatio%2Cblowjob%2Chandjob%2Cdoggystyle%2Ccum%20inside%2Coral%2Cslave%5D&t_t=Manga%20porn%20loli%20raped%202%20%5Bporn%2CR34%2CHentai%2C%20SFM%2Crape%2Call%20sex%2C3D%20%D0%A5%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%2Cfellatio%2Cblowjob%2Chandjob%2Cdoggystyle%2Ccum%20inside%2Coral%2Cslave%5D&s_o=default
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Tue, 06 Sep 2022 14:47:38 GMT
Cross-Origin-Resource-Policy: cross-origin
gettube.co/play/27809/?rel=0&showinfo=0
185.178.208.167301 Moved Permanently 568 B URL HTTP/1.1 gettube.co/play/27809/?rel=0&showinfo=0
IP 185.178.208.167:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (564), with no line terminators
Hash 2761b98db33884ab29711096ab315edb
8cea6e53464aea178b72e06a906205d040f14ca5
9f7a07f69d9b9a5af186a79159ccea18935ab4103128ca967e3f3f8ae45fb3ee
GET /play/27809/?rel=0&showinfo=0 HTTP/1.1
Host: gettube.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: ddos-guard
Date: Tue, 06 Sep 2022 14:47:38 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Location: https://gettube.co/play/27809/?rel=0&showinfo=0
Content-Type: text/html; charset=utf8
Content-Length: 568
cdn.viglink.com/images/pixel.gif?ch=2&rn=2.648255308103913
104.16.162.13200 OK 43 B URL HTTP/1.1 cdn.viglink.com/images/pixel.gif?ch=2&rn=2.648255308103913
IP 104.16.162.13:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /images/pixel.gif?ch=2&rn=2.648255308103913 HTTP/1.1
Host: cdn.viglink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:47:38 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-id-2: 9/IvErEY22tX4ULfeOpcwqHi8mHdiTNKhfXoUKN0roNG9pzTaiSmoLJTr0lztCcSl1VPXSGb0pg=
x-amz-request-id: D8NBHA8SGYQB6X08
Last-Modified: Tue, 10 Feb 2015 03:29:39 GMT
ETag: "221d8352905f2c38b3cb2bd191d630b0"
Cache-Control: max-age=15, must-revalidate
CF-Cache-Status: HIT
Age: 3
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7468003fea4ab50f-OSL
cdn.viglink.com/images/pixel.gif?ch=1&rn=2.648255308103913
104.16.162.13200 OK 43 B URL HTTP/1.1 cdn.viglink.com/images/pixel.gif?ch=1&rn=2.648255308103913
IP 104.16.162.13:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /images/pixel.gif?ch=1&rn=2.648255308103913 HTTP/1.1
Host: cdn.viglink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:47:38 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-id-2: 9/IvErEY22tX4ULfeOpcwqHi8mHdiTNKhfXoUKN0roNG9pzTaiSmoLJTr0lztCcSl1VPXSGb0pg=
x-amz-request-id: D8NBHA8SGYQB6X08
Last-Modified: Tue, 10 Feb 2015 03:29:39 GMT
ETag: "221d8352905f2c38b3cb2bd191d630b0"
Cache-Control: max-age=15, must-revalidate
CF-Cache-Status: HIT
Age: 3
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7468003febb30af6-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 76c6ad39ad355f829170427e9076311a
26a82c7dd26986900a4964464e43d9837dfef1f8
40c6ca74d92e002befb684bce24ba4714c260ba30918cc4e9a4bb02ed4f809dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 14:47:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 76c6ad39ad355f829170427e9076311a
26a82c7dd26986900a4964464e43d9837dfef1f8
40c6ca74d92e002befb684bce24ba4714c260ba30918cc4e9a4bb02ed4f809dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 14:47:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-15423068-7&cid=1445106559.1662475651&jid=903216981&gjid=1197924954&_gid=1191296249.1662475651&_u=IEBAAEAAAAAAAC~&z=2024919072
142.251.1.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-15423068-7&cid=1445106559.1662475651&jid=903216981&gjid=1197924954&_gid=1191296249.1662475651&_u=IEBAAEAAAAAAAC~&z=2024919072
IP 142.251.1.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-15423068-7&cid=1445106559.1662475651&jid=903216981&gjid=1197924954&_gid=1191296249.1662475651&_u=IEBAAEAAAAAAAC~&z=2024919072 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://embedy.cc
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://embedy.cc
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 06 Sep 2022 14:47:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-15423068-7&cid=1445106559.1662475651&jid=726826664&gjid=547907335&_gid=1191296249.1662475651&_u=YEDAAUABAAAAAC~&z=567446794
142.251.1.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-15423068-7&cid=1445106559.1662475651&jid=726826664&gjid=547907335&_gid=1191296249.1662475651&_u=YEDAAUABAAAAAC~&z=567446794
IP 142.251.1.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-15423068-7&cid=1445106559.1662475651&jid=726826664&gjid=547907335&_gid=1191296249.1662475651&_u=YEDAAUABAAAAAC~&z=567446794 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://embedy.cc
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://embedy.cc
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 06 Sep 2022 14:47:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
referrer.disqus.com/juggler/event.js?experiment=network_default&variant=fallthrough&page_referrer=direct&product=embed&thread=7991630372&thread_id=7991630372&forum=embedy&forum_id=4238911&zone=thread&page_url=http%3A%2F%2Fembedy.cc%2Fmovies%2FL242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0%3D&service=dynamic&verb=view&object_type=product&object_id=embed&extra_data=%7B%22color_scheme%22%3A%22dark%22%2C%22anchor_color%22%3A%22rgb(204%2C204%2C204)%22%2C%22typeface%22%3A%22sans-serif%22%2C%22width%22%3A980%7D&event=activity&imp=28qcdi317pe22m§ion=default&area=n%2Fa
151.101.84.134200 OK 40 B URL HTTP/1.1 referrer.disqus.com/juggler/event.js?experiment=network_default&variant=fallthrough&page_referrer=direct&product=embed&thread=7991630372&thread_id=7991630372&forum=embedy&forum_id=4238911&zone=thread&page_url=http%3A%2F%2Fembedy.cc%2Fmovies%2FL242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0%3D&service=dynamic&verb=view&object_type=product&object_id=embed&extra_data=%7B%22color_scheme%22%3A%22dark%22%2C%22anchor_color%22%3A%22rgb(204%2C204%2C204)%22%2C%22typeface%22%3A%22sans-serif%22%2C%22width%22%3A980%7D&event=activity&imp=28qcdi317pe22m§ion=default&area=n%2Fa
IP 151.101.84.134:0
Hash 3f4a0f64733b8c0d50626043fd7886d6
b8a40d3642deca1cc0ea8648ddbfa3bfb0fc8a1e
f5627ea74eac809576ae16667ed7522b8dff46df48c38d9452dbe2eb208d2eef
GET /juggler/event.js?experiment=network_default&variant=fallthrough&page_referrer=direct&product=embed&thread=7991630372&thread_id=7991630372&forum=embedy&forum_id=4238911&zone=thread&page_url=http%3A%2F%2Fembedy.cc%2Fmovies%2FL242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0%3D&service=dynamic&verb=view&object_type=product&object_id=embed&extra_data=%7B%22color_scheme%22%3A%22dark%22%2C%22anchor_color%22%3A%22rgb(204%2C204%2C204)%22%2C%22typeface%22%3A%22sans-serif%22%2C%22width%22%3A980%7D&event=activity&imp=28qcdi317pe22m§ion=default&area=n%2Fa HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=embedy&t_u=http%3A%2F%2Fembedy.cc%2Fmovies%2FL242a0RsT1dydnNOblJpZzVrc1cwcXBoSEVxL25mb2VNUElKczc3K3JlQT0%3D&t_d=Manga%20porn%20loli%20raped%202%20%5Bporn%2CR34%2CHentai%2C%20SFM%2Crape%2Call%20sex%2C3D%20%D0%A5%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%2Cfellatio%2Cblowjob%2Chandjob%2Cdoggystyle%2Ccum%20inside%2Coral%2Cslave%5D&t_t=Manga%20porn%20loli%20raped%202%20%5Bporn%2CR34%2CHentai%2C%20SFM%2Crape%2Call%20sex%2C3D%20%D0%A5%D0%B5%D0%BD%D1%82%D0%B0%D0%B9%2Cfellatio%2Cblowjob%2Chandjob%2Cdoggystyle%2Ccum%20inside%2Coral%2Cslave%5D&s_o=default
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Content-Type: application/javascript
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Tue, 06 Sep 2022 14:47:38 GMT
Cross-Origin-Resource-Policy: cross-origin
transfer-encoding: chunked
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 10585eccdd73117e0bc71ecaf1cd02cb
7bda7ff7308cac8c8824a5a558097a15a2325f5e
6303f8b80751e64006c77524615f10709b136b0606695feb0f51b964e0c2163d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 14:47:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f53ebd30fa3351f320ca2c8764734ff1
9205e35b1cef1602414af2350ba6205f4129234c
d486cc21bbc47eac5718644e1b280d12a5a4bc92ec97a0e88f184bf6422cb6f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 14:47:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3df811ac19fde08f49ef246c29cef161
e1c8d54b357adaf32e80427028cc884fa35959e0
e2749178e0bf0c4045a96388a58029ddd92d13a866021737864cd68e11317292
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 14:47:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e1336388cf579034dbc18680696da587
6d633baf8cf123d56a6da8bba402659ad4cb7c08
7d44c52a9037bd2cf2069acccacc49bf38f4c392fd92a6d4f1bfd4623cdcc49e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 14:47:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3df811ac19fde08f49ef246c29cef161
e1c8d54b357adaf32e80427028cc884fa35959e0
e2749178e0bf0c4045a96388a58029ddd92d13a866021737864cd68e11317292
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 14:47:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-15423068-7&cid=1445106559.1662475651&jid=903216981&_u=IEBAAEAAAAAAAC~&z=329332465
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-15423068-7&cid=1445106559.1662475651&jid=903216981&_u=IEBAAEAAAAAAAC~&z=329332465
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-15423068-7&cid=1445106559.1662475651&jid=903216981&_u=IEBAAEAAAAAAAC~&z=329332465 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Sep 2022 14:47:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-15423068-7&cid=1445106559.1662475651&jid=903216981&_u=IEBAAEAAAAAAAC~&z=329332465
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-15423068-7&cid=1445106559.1662475651&jid=903216981&_u=IEBAAEAAAAAAAC~&z=329332465
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-15423068-7&cid=1445106559.1662475651&jid=903216981&_u=IEBAAEAAAAAAAC~&z=329332465 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Sep 2022 14:47:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8f1fa13723524f132e99889351c9d21c
3b5e185ff4fd8e814e9d795c95209934a570881f
99c2134bd9b5d6a35d440e42979956d8c42c04af42df1a01ed2bacf53382f15f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "99C2134BD9B5D6A35D440E42979956D8C42C04AF42DF1A01ED2BACF53382F15F"
Last-Modified: Sun, 04 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10018
Expires: Tue, 06 Sep 2022 17:34:36 GMT
Date: Tue, 06 Sep 2022 14:47:38 GMT
Connection: keep-alive
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-15423068-7&cid=1445106559.1662475651&jid=726826664&_u=YEDAAUABAAAAAC~&z=2090811014
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-15423068-7&cid=1445106559.1662475651&jid=726826664&_u=YEDAAUABAAAAAC~&z=2090811014
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-15423068-7&cid=1445106559.1662475651&jid=726826664&_u=YEDAAUABAAAAAC~&z=2090811014 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Sep 2022 14:47:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-15423068-7&cid=1445106559.1662475651&jid=726826664&_u=YEDAAUABAAAAAC~&z=2090811014
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-15423068-7&cid=1445106559.1662475651&jid=726826664&_u=YEDAAUABAAAAAC~&z=2090811014
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-15423068-7&cid=1445106559.1662475651&jid=726826664&_u=YEDAAUABAAAAAC~&z=2090811014 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Sep 2022 14:47:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e1336388cf579034dbc18680696da587
6d633baf8cf123d56a6da8bba402659ad4cb7c08
7d44c52a9037bd2cf2069acccacc49bf38f4c392fd92a6d4f1bfd4623cdcc49e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 14:47:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gettube.co/play/27809/?rel=0&showinfo=0
185.178.208.167403 Forbidden 8.2 kB URL HTTP/2 gettube.co/play/27809/?rel=0&showinfo=0
IP 185.178.208.167:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8028), with no line terminators
Hash a6bb0b43f2e655951abce70028b1267e
eeef150cf4ff03842c3ba839a7b12500dbcaa3ef
3ae6b0aa0ad7a4a3135967f6aa7317820d5b7a4b60e7bebbc0abca7c8fe045c2
GET /play/27809/?rel=0&showinfo=0 HTTP/1.1
Host: gettube.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://embedy.cc/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
server: ddos-guard
date: Tue, 06 Sep 2022 14:47:38 GMT
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddgid_=XPbfCmv1Co9tlF75; Domain=.gettube.co; HttpOnly; Path=/; Expires=Wed, 06-Sep-2023 14:47:38 GMT
__ddgmark_=xc96o3RTyZ2soimB; Domain=.gettube.co; HttpOnly; Path=/; Expires=Wed, 07-Sep-2022 14:47:38 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
content-length: 8176
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 80f29cbbe260408ee1418a6fbce5a537
96cfe52bcf90cfdba5cba7907d49a91f44adc032
de264b42b7c59bdadf606387adaca04af680705a947096d048f288c3e5be8517
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 14:47:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gettube.co/.well-known/ddos-guard/check?context=free_splash
185.178.208.167200 OK 94 kB URL HTTP/2 gettube.co/.well-known/ddos-guard/check?context=free_splash
IP 185.178.208.167:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash c32eb42484e91dedfc68e42bee8ef9b7
96b7268b6be4f96191a18a6cca2a122de06fc11b
e8ad60f8af33e8db9e91a6b54dab652bafd39d012cd299df50d7b1b5efbc9596
GET /.well-known/ddos-guard/check?context=free_splash HTTP/1.1
Host: gettube.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gettube.co/play/27809/?rel=0&showinfo=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Tue, 06 Sep 2022 14:47:38 GMT
content-type: application/javascript
expires: Tue, 06 Sep 2022 15:47:38 GMT
content-length: 93545
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 90a4b13edeeee89a6cbd8244eedbef23
116ba02a9a1afd4e3763925d5e8c39c0a16df4de
d3db5b2aecf0be6853ce1a7ddabc15a54d8756ba47334b73df8a4d358205bbf6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:47:38 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 05 Sep 2022 20:53:30 GMT
Expires: Mon, 12 Sep 2022 20:53:29 GMT
Etag: "116ba02a9a1afd4e3763925d5e8c39c0a16df4de"
Cache-Control: max-age=539750,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 746800423ccfb51d-OSL
gettube.co/.well-known/ddos-guard/mark/
185.178.208.167200 OK 0 B URL HTTP/2 gettube.co/.well-known/ddos-guard/mark/
IP 185.178.208.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /.well-known/ddos-guard/mark/ HTTP/1.1
Host: gettube.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 41268
Origin: https://gettube.co
Connection: keep-alive
Referer: https://gettube.co/play/27809/?rel=0&showinfo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Tue, 06 Sep 2022 14:47:38 GMT
content-length: 0
X-Firefox-Spdy: h2
check.ddos-guard.net/check.js
185.129.100.100200 OK 152 B URL HTTP/2 check.ddos-guard.net/check.js
IP 185.129.100.100:0
File type ASCII text, with no line terminators
Hash 81673de46fa62e186bbad60ce75ac027
e5a11da750acff28ffb2ebf451fd03f5a0c44c05
b147a991dd33e088ead97d61c20394eb2d184bee6aee6f136ca4f37840757adc
GET /check.js HTTP/1.1
Host: check.ddos-guard.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gettube.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ddos-guard
date: Tue, 06 Sep 2022 14:47:38 GMT
content-type: application/javascript
expires: Wed, 06 Sep 2023 14:47:38 GMT
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: private, s-maxage=0, max-age=31536000
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
etag: KMfkMHDZ3xXNlfwV
set-cookie: __ddg2=KMfkMHDZ3xXNlfwV; Domain=check.ddos-guard.net; Path=/; HttpOnly; SameSite=None; Secure; Expires=Wed, 06-Sep-2023 14:47:38 GMT
content-length: 152
X-Firefox-Spdy: h2
check.ddos-guard.net/set/id/KMfkMHDZ3xXNlfwV
185.129.100.100200 OK 68 B URL HTTP/2 check.ddos-guard.net/set/id/KMfkMHDZ3xXNlfwV
IP 185.129.100.100:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash e679fbd466a2d656f194a5da4fa083cd
2aa795c7607aa6ea41313be88f1b7a9c1ab516b3
f309b7c03d9cae63a9bedbee6ed655f3dbcdb194132943639344dead5f3b9710
GET /set/id/KMfkMHDZ3xXNlfwV HTTP/1.1
Host: check.ddos-guard.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gettube.co/
Cookie: __ddg2=KMfkMHDZ3xXNlfwV
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Tue, 06 Sep 2022 14:47:38 GMT
content-type: image/png
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache
pragma: no-cache
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
set-cookie: __ddg2=KMfkMHDZ3xXNlfwV; Domain=check.ddos-guard.net; Path=/; HttpOnly; SameSite=None; Secure; Expires=Wed, 06-Sep-2023 14:47:38 GMT
content-length: 68
X-Firefox-Spdy: h2
gettube.co/.well-known/ddos-guard/id/KMfkMHDZ3xXNlfwV
185.178.208.167200 OK 68 B URL HTTP/2 gettube.co/.well-known/ddos-guard/id/KMfkMHDZ3xXNlfwV
IP 185.178.208.167:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash e679fbd466a2d656f194a5da4fa083cd
2aa795c7607aa6ea41313be88f1b7a9c1ab516b3
f309b7c03d9cae63a9bedbee6ed655f3dbcdb194132943639344dead5f3b9710
GET /.well-known/ddos-guard/id/KMfkMHDZ3xXNlfwV HTTP/1.1
Host: gettube.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gettube.co/play/27809/?rel=0&showinfo=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Tue, 06 Sep 2022 14:47:38 GMT
content-type: image/png
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache
set-cookie: __ddg2_=KMfkMHDZ3xXNlfwV; Domain=gettube.co; Path=/; HttpOnly; Expires=Wed, 06-Sep-2023 14:47:38 GMT
content-length: 68
X-Firefox-Spdy: h2
links.services.disqus.com/api/ping
151.101.84.64200 OK 299 B URL HTTP/1.1 links.services.disqus.com/api/ping
IP 151.101.84.64:0
File type ASCII text, with no line terminators
Hash 6e3979af2a58a7d809a8d94cee72d1ad
a27e699d042598a6501ae4ade975ae413869bf81
f6f90e553cebd03c66faef5f724449a226bf769b9bcf80897ded7aa088f117c1
POST /api/ping HTTP/1.1
Host: links.services.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 195
Origin: http://embedy.cc
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 299
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://embedy.cc
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Date: Tue, 06 Sep 2022 14:47:38 GMT
Set-Cookie: vglnk.Agent.p=9b1aa6774a615c32ff663b7d3a98dbcb; Expires=Wed, 06 Sep 2023 14:47:38 GMT; path=/
vglnk.PartnerRfsh.p=; Expires=Wed, 06 Sep 2023 14:47:38 GMT; path=/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17900
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 14:47:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 983e705542fa78b4d5c876e0c1eada7e
5fc951e5236edd282d4975853ca35dab2e55fb17
fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6656
x-amzn-requestid: 2703eaf4-1a5a-41a6-859b-47255865efb0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-3F2ZIAMFpLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-6df026de5a9230ed429d08c1;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FIIvB2jeQ_PBDzi8XRN0jnNxze3OwDbz8TBaIcadRvmQd2EFhCwX7Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:45:42 GMT
age: 61316
etag: "5fc951e5236edd282d4975853ca35dab2e55fb17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0efc32eccbf76ac0d89f324d09a7fd1f
f8589eb3907582137d8b9373af745d80eddbf1bb
ee0f5e56c97e50e1c20801ad0a5379982feef16a11137f784f404d14e9c65824
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6482
x-amzn-requestid: 5e5b342b-0224-4916-8656-237b4c90ae66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-5FaYIAMFzjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-412f897b451130af70026eab;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8UExY-3ojiqMEfyXXKG6kJcB5CRiNnfgG5JQS3gWnd4t4bbKNzbsYA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:45:43 GMT
age: 61315
etag: "f8589eb3907582137d8b9373af745d80eddbf1bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ce50dfa23e7f34ff68cc6426c2823f7
b1685694999272feb4d9fc39296418cd95480678
4df89827b1b34bb577f28f281ed85067a2e34dd48923b9bae1561e81f67be49b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7152
x-amzn-requestid: 2571ff54-e2f8-4072-8a26-3d0dd4cd3523
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAWsfHz_IAMFaXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166b1c-6a598849314cdc433f9f82f7;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:33:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XjbO8y9D7PhQcN0XaBkmhcjzWCMRczO80wxAJa4gUFQZPrS6eb3Z3A==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:48:59 GMT
age: 61119
etag: "b1685694999272feb4d9fc39296418cd95480678"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
links.services.disqus.com/api/sync.gif?key=cfdfcf52dffd0a702a61bad27507376d
151.101.84.64200 OK 43 B URL HTTP/1.1 links.services.disqus.com/api/sync.gif?key=cfdfcf52dffd0a702a61bad27507376d
IP 151.101.84.64:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /api/sync.gif?key=cfdfcf52dffd0a702a61bad27507376d HTTP/1.1
Host: links.services.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: image/gif;charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 43
Date: Tue, 06 Sep 2022 14:47:38 GMT
Connection: keep-alive
Set-Cookie: vglnk.Agent.p=b51fc454655ceaee7e12d5c5ffb43ba5; Expires=Wed, 06 Sep 2023 14:47:38 GMT; path=/
vglnk.PartnerRfsh.p=; Expires=Wed, 06 Sep 2023 14:47:38 GMT; path=/
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c81f3df885bdee8cac46ea9495e6b63b
fc766bca874a352a4acb569577d4cf6527f4f074
e21473f88c613ca33ba6bbe1e0cab338274a06744cdcb088f14873c972445b36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4426
x-amzn-requestid: b5b68557-e46d-41cd-9b11-d996aabc0de7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzfYTHHFIAMFjFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631145ce-1d3504367cf6ef724a345564;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 23:52:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bSBSzzRMdrVdoV3Ld8hYWq2AwO7Mswcwa8Tk_AKa44j1SlrFugNqpg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:48:06 GMT
age: 61172
etag: "fc766bca874a352a4acb569577d4cf6527f4f074"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec466c0d472e43c11d36bf6fce068205
720d3624a76d060b8e2699e9aa7a320e3efd4878
5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12683
x-amzn-requestid: 6127e5b6-72f6-40df-b400-41a1f147f6da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8XmEe0IAMFQDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117430-2b27a2683d2d320172cef32e;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mj_IT5g7hGu2AunKK7mvierv5BQ8cAxhnbGaUNsL6hRNu6MRAzIBDw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 04:36:52 GMT
age: 36646
etag: "720d3624a76d060b8e2699e9aa7a320e3efd4878"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e36fad7-34cb-448b-b231-07f66a5adf7e.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e36fad7-34cb-448b-b231-07f66a5adf7e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3fe4a321dcd6a94a637a528d74f9321a
3f3aad2cc71226b39549db1a9baa6837d4f1d897
a19b6749429e8ecaeac8fc0849abc4d891bfc628489762b1619a3ee3064536e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e36fad7-34cb-448b-b231-07f66a5adf7e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12573
x-amzn-requestid: 92e03b26-883b-41e2-9033-379a6d02210c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYCdGy8oAMFQZw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d42-1c4ea2f74b796623574bde87;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: u1hKGB5UKEuuIVqcQ_Lx5wfBjy_hB32Jnp7_mDnF2BrsN4a6Mj_WJQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:46:16 GMT
etag: "3f3aad2cc71226b39549db1a9baa6837d4f1d897"
content-type: image/jpeg
age: 61282
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
links.services.disqus.com/api/domains
151.101.84.64200 OK 41 B URL HTTP/1.1 links.services.disqus.com/api/domains
IP 151.101.84.64:0
File type ASCII text, with no line terminators
Hash 715d9096dee34acd6027651317c36d44
67f4115c3e5b6465cd346e0e76ed9bc4c4d45d22
b4527e5b8161fd7a4a7bb16e7ec0eb2f133815f8d52d86b585952ffb04c1c35d
POST /api/domains HTTP/1.1
Host: links.services.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 235
Origin: http://embedy.cc
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 41
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://embedy.cc
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Date: Tue, 06 Sep 2022 14:47:38 GMT
Set-Cookie: vglnk.Agent.p=fffbff9e2d83172d2a2e8c405724cbdc; Expires=Wed, 06 Sep 2023 14:47:38 GMT; path=/
vglnk.PartnerRfsh.p=; Expires=Wed, 06 Sep 2023 14:47:38 GMT; path=/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0633ce31575611e72496f10899ff5c76
af79a8d931935207af176ae667c5c5f2bbf6e490
2dc0910e842c8cfd555712cdef87deaa71667368fa4514a21a5a7403d8e52cd4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2DC0910E842C8CFD555712CDEF87DEAA71667368FA4514A21A5A7403D8E52CD4"
Last-Modified: Sun, 04 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8923
Expires: Tue, 06 Sep 2022 17:16:21 GMT
Date: Tue, 06 Sep 2022 14:47:38 GMT
Connection: keep-alive
unseenreport.com/pxf.gif?uuid=5952e540-dda7-40a2-b964-b5823591356a&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.29&b_frame=1&pk=e85b5c7bdb1a24cd4a76afc29fcc2f61&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=14
192.243.61.227200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=5952e540-dda7-40a2-b964-b5823591356a&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.29&b_frame=1&pk=e85b5c7bdb1a24cd4a76afc29fcc2f61&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=14
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=5952e540-dda7-40a2-b964-b5823591356a&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.29&b_frame=1&pk=e85b5c7bdb1a24cd4a76afc29fcc2f61&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=14 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 06 Sep 2022 14:47:39 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e90c64cc36dcb30d3da3b8fdea285957
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=5952e540-dda7-40a2-b964-b5823591356a&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.29&b_frame=1&pk=8b5963c5770896045ef1536ef5a90d08&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=14
192.243.61.227200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=5952e540-dda7-40a2-b964-b5823591356a&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.29&b_frame=1&pk=8b5963c5770896045ef1536ef5a90d08&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=14
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=5952e540-dda7-40a2-b964-b5823591356a&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.29&b_frame=1&pk=8b5963c5770896045ef1536ef5a90d08&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=14 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 06 Sep 2022 14:47:39 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 179f2d483f827cb3489a8e156d79dfdc
Strict-Transport-Security: max-age=0; includeSubdomains
speechfountaindigestion.com/sbar.json?key=8b5963c5770896045ef1536ef5a90d08&uuid=5952e540-dda7-40a2-b964-b5823591356a%3A1%3A1
209.192.156.100200 OK 4.4 kB URL HTTP/1.1 speechfountaindigestion.com/sbar.json?key=8b5963c5770896045ef1536ef5a90d08&uuid=5952e540-dda7-40a2-b964-b5823591356a%3A1%3A1
IP 209.192.156.100:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6166), with no line terminators
Hash f61e48dc4ab60b3d84ac044dc1698484
bca5691487a629352e1c5d0bf1255bcc9e2041e2
e64f30ffeadee489c06113a4b9b20aa7b0772316c7b8a0c3ce776b32238fc80b
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=8b5963c5770896045ef1536ef5a90d08&uuid=5952e540-dda7-40a2-b964-b5823591356a%3A1%3A1 HTTP/1.1
Host: speechfountaindigestion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://embedy.cc
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 06 Sep 2022 14:47:39 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://embedy.cc
Access-Control-Allow-Origin: http://embedy.cc
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15601424; expires=Wed, 07 Sep 2022 14:47:39 GMT; secure; SameSite=None
uid_id2=5952e540-dda7-40a2-b964-b5823591356a:1:1; expires=Tue, 13 Sep 2022 14:47:39 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 07 Sep 2022 14:47:39 GMT; secure; SameSite=None
uncs=1; expires=Wed, 07 Sep 2022 14:47:39 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 07 Sep 2022 14:47:39 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 07 Sep 2022 14:47:39 GMT; secure; SameSite=None
slec8b5963c5770896045ef1536ef5a90d08=[3551993]; expires=Tue, 06 Sep 2022 14:47:44 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e12b808257a1a4e40df717594ecb47e3
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
speechfountaindigestion.com/ren.gif?sid=H4sIAAAAAAAC%2F1RS0WscRRyebfNSfLCVggha7sEHBXPZ3bvdu7MPxRojwdjU1qIPiszOzF2mmd1ZZnZvL3kKFqWgD%2Bc%2FIJvvksZqEfVJHyy6KQgGhJxPeTD%2FgOJLIaBPctdg9AfD75v5voHv9818uJkfEhc5PZh%2FXa9LpehcUHdrz73teRdrSzLJB7VBO3wvbF6smf6LnbDuPl97VbBVPee7nut6rldbkEZ09WBuQkKm9zpevePWm37dC5oYmP%2Fvbe7AUge8f0iegOTjmQfOeUhWIYm%2Fmhd2NdPpC6%2FEuaKZNujznRvJaqKLBPEJ7BoH3WTnWA1t9xfuQyfbU7vQ%2FX%2BFkRwT56f7iJKdY5OI%2BltTn5GCSBDxx1D0KwhVQdIKTN%2BC5PsEYBxXlpHEd65oU9C1RyydsGMyc%2FQQshiTmd%2FOI4m%2FvKzkoHZdqzyTOrEYdEvIQQXZq5Dmu8jWT0EWu2DZ%2B5D8FzJ3tIQk3lq2SkPyg2eDTuCLoOnOck5bs02X%2BrNRJ2zORkHbbwQdrxGEdBqQlBVkt4ISQ1DrIJ8s6SDvOshTBzE%2FqDHP81ouZ9Rtdxhr8JaIQu56tNX1qOeGbeRsMsMQWToEU0Mws4HUbGBVDmHyH2BXSljuwGYEfV6iEASFJSgoQSEJioyg6JfbXFnflne4snnkHXf%2FuDfKkc56m3RbZz2RkM30kJybBvfn42exKg5q7SjohA0WtFpuuxO6zUB0vaARim5AOy5327CyhLSnpmOuyzEhn%2F6NVO7f%2BAwR3YVVu2DyLGj%2BDGgxavku6Mqo2XaxntwVcST4Wp0xcF0izWaQrTmb6pA8NbUQ%2Bn9BsL1LP%2F7%2BwYVv3%2FgDzJRITYmb8gFBT90eXdMF2bqmC0u%2BXk4zGct1OnnX6xnNxOnPXxNrhTZ8cd4O777EJsQE3ntT2GyJJlwmPUu%2BuCw5F2ZBGybI94v2LRFdze3K5dwkebp09eWFxTg1wlqpkwpU7tuPweSYnKF6%2BmGfvvkdpKlg8hJxvkeOC1LvgqUbsOmJe6tPw6gTTZQ6KPJyZPzo5FDJMfEf%2Fgwl9i59c646OvNODTQqYcV%2FLp7gTXsbPXMBNLuFJC7RNyX6qgRVQ9j89ChLzd6lXxvTQqScUaSMsxUpoz55FK%2BVB7VWo%2BHSsBN4rRYVrajpt7uhxyn1m6EfhrSBzI7Zk%2B9%2B9A8AAAD%2F%2FwEAAP%2F%2FEl1WXn8EAAA%3D
209.192.156.100200 OK 7 B URL HTTP/1.1 speechfountaindigestion.com/ren.gif?sid=H4sIAAAAAAAC%2F1RS0WscRRyebfNSfLCVggha7sEHBXPZ3bvdu7MPxRojwdjU1qIPiszOzF2mmd1ZZnZvL3kKFqWgD%2Bc%2FIJvvksZqEfVJHyy6KQgGhJxPeTD%2FgOJLIaBPctdg9AfD75v5voHv9818uJkfEhc5PZh%2FXa9LpehcUHdrz73teRdrSzLJB7VBO3wvbF6smf6LnbDuPl97VbBVPee7nut6rldbkEZ09WBuQkKm9zpevePWm37dC5oYmP%2Fvbe7AUge8f0iegOTjmQfOeUhWIYm%2Fmhd2NdPpC6%2FEuaKZNujznRvJaqKLBPEJ7BoH3WTnWA1t9xfuQyfbU7vQ%2FX%2BFkRwT56f7iJKdY5OI%2BltTn5GCSBDxx1D0KwhVQdIKTN%2BC5PsEYBxXlpHEd65oU9C1RyydsGMyc%2FQQshiTmd%2FOI4m%2FvKzkoHZdqzyTOrEYdEvIQQXZq5Dmu8jWT0EWu2DZ%2B5D8FzJ3tIQk3lq2SkPyg2eDTuCLoOnOck5bs02X%2BrNRJ2zORkHbbwQdrxGEdBqQlBVkt4ISQ1DrIJ8s6SDvOshTBzE%2FqDHP81ouZ9Rtdxhr8JaIQu56tNX1qOeGbeRsMsMQWToEU0Mws4HUbGBVDmHyH2BXSljuwGYEfV6iEASFJSgoQSEJioyg6JfbXFnflne4snnkHXf%2FuDfKkc56m3RbZz2RkM30kJybBvfn42exKg5q7SjohA0WtFpuuxO6zUB0vaARim5AOy5327CyhLSnpmOuyzEhn%2F6NVO7f%2BAwR3YVVu2DyLGj%2BDGgxavku6Mqo2XaxntwVcST4Wp0xcF0izWaQrTmb6pA8NbUQ%2Bn9BsL1LP%2F7%2BwYVv3%2FgDzJRITYmb8gFBT90eXdMF2bqmC0u%2BXk4zGct1OnnX6xnNxOnPXxNrhTZ8cd4O777EJsQE3ntT2GyJJlwmPUu%2BuCw5F2ZBGybI94v2LRFdze3K5dwkebp09eWFxTg1wlqpkwpU7tuPweSYnKF6%2BmGfvvkdpKlg8hJxvkeOC1LvgqUbsOmJe6tPw6gTTZQ6KPJyZPzo5FDJMfEf%2Fgwl9i59c646OvNODTQqYcV%2FLp7gTXsbPXMBNLuFJC7RNyX6qgRVQ9j89ChLzd6lXxvTQqScUaSMsxUpoz55FK%2BVB7VWo%2BHSsBN4rRYVrajpt7uhxyn1m6EfhrSBzI7Zk%2B9%2B9A8AAAD%2F%2FwEAAP%2F%2FEl1WXn8EAAA%3D
IP 209.192.156.100:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RS0WscRRyebfNSfLCVggha7sEHBXPZ3bvdu7MPxRojwdjU1qIPiszOzF2mmd1ZZnZvL3kKFqWgD%2Bc%2FIJvvksZqEfVJHyy6KQgGhJxPeTD%2FgOJLIaBPctdg9AfD75v5voHv9818uJkfEhc5PZh%2FXa9LpehcUHdrz73teRdrSzLJB7VBO3wvbF6smf6LnbDuPl97VbBVPee7nut6rldbkEZ09WBuQkKm9zpevePWm37dC5oYmP%2Fvbe7AUge8f0iegOTjmQfOeUhWIYm%2Fmhd2NdPpC6%2FEuaKZNujznRvJaqKLBPEJ7BoH3WTnWA1t9xfuQyfbU7vQ%2FX%2BFkRwT56f7iJKdY5OI%2BltTn5GCSBDxx1D0KwhVQdIKTN%2BC5PsEYBxXlpHEd65oU9C1RyydsGMyc%2FQQshiTmd%2FOI4m%2FvKzkoHZdqzyTOrEYdEvIQQXZq5Dmu8jWT0EWu2DZ%2B5D8FzJ3tIQk3lq2SkPyg2eDTuCLoOnOck5bs02X%2BrNRJ2zORkHbbwQdrxGEdBqQlBVkt4ISQ1DrIJ8s6SDvOshTBzE%2FqDHP81ouZ9Rtdxhr8JaIQu56tNX1qOeGbeRsMsMQWToEU0Mws4HUbGBVDmHyH2BXSljuwGYEfV6iEASFJSgoQSEJioyg6JfbXFnflne4snnkHXf%2FuDfKkc56m3RbZz2RkM30kJybBvfn42exKg5q7SjohA0WtFpuuxO6zUB0vaARim5AOy5327CyhLSnpmOuyzEhn%2F6NVO7f%2BAwR3YVVu2DyLGj%2BDGgxavku6Mqo2XaxntwVcST4Wp0xcF0izWaQrTmb6pA8NbUQ%2Bn9BsL1LP%2F7%2BwYVv3%2FgDzJRITYmb8gFBT90eXdMF2bqmC0u%2BXk4zGct1OnnX6xnNxOnPXxNrhTZ8cd4O777EJsQE3ntT2GyJJlwmPUu%2BuCw5F2ZBGybI94v2LRFdze3K5dwkebp09eWFxTg1wlqpkwpU7tuPweSYnKF6%2BmGfvvkdpKlg8hJxvkeOC1LvgqUbsOmJe6tPw6gTTZQ6KPJyZPzo5FDJMfEf%2Fgwl9i59c646OvNODTQqYcV%2FLp7gTXsbPXMBNLuFJC7RNyX6qgRVQ9j89ChLzd6lXxvTQqScUaSMsxUpoz55FK%2BVB7VWo%2BHSsBN4rRYVrajpt7uhxyn1m6EfhrSBzI7Zk%2B9%2B9A8AAAD%2F%2FwEAAP%2F%2FEl1WXn8EAAA%3D HTTP/1.1
Host: speechfountaindigestion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Cookie: u_pl=15601424; uid_id2=5952e540-dda7-40a2-b964-b5823591356a:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec8b5963c5770896045ef1536ef5a90d08=[3551993]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 06 Sep 2022 14:47:39 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: de2c1d9d1a0997f9d0f7144aae1f6019
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 33fb6f8c1fb48f27b58d21e1d8d7bd27
23225ab4d426fbd7a0a44a33f747c1b7c0cf991d
8e801f87ac67f3c273535216d93c7ce19cb43c9be44e7e41741988ff92cfc75b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8E801F87AC67F3C273535216D93C7CE19CB43C9BE44E7E41741988FF92CFC75B"
Last-Modified: Mon, 05 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6884
Expires: Tue, 06 Sep 2022 16:42:23 GMT
Date: Tue, 06 Sep 2022 14:47:39 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bb22075867a180a59587c55e0facccb8
9af4960264c36cebebd5601a9a5a4fcc1b630c64
5d4e2ee6f555b320ef3e62390c1f3d8934f690e4f4d859cd19c015967f69a018
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "5D4E2EE6F555B320EF3E62390C1F3D8934F690E4F4D859CD19C015967F69A018"
Last-Modified: Mon, 05 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3257
Expires: Tue, 06 Sep 2022 15:41:56 GMT
Date: Tue, 06 Sep 2022 14:47:39 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bb22075867a180a59587c55e0facccb8
9af4960264c36cebebd5601a9a5a4fcc1b630c64
5d4e2ee6f555b320ef3e62390c1f3d8934f690e4f4d859cd19c015967f69a018
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "5D4E2EE6F555B320EF3E62390C1F3D8934F690E4F4D859CD19C015967F69A018"
Last-Modified: Mon, 05 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3257
Expires: Tue, 06 Sep 2022 15:41:56 GMT
Date: Tue, 06 Sep 2022 14:47:39 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bb22075867a180a59587c55e0facccb8
9af4960264c36cebebd5601a9a5a4fcc1b630c64
5d4e2ee6f555b320ef3e62390c1f3d8934f690e4f4d859cd19c015967f69a018
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "5D4E2EE6F555B320EF3E62390C1F3D8934F690E4F4D859CD19C015967F69A018"
Last-Modified: Mon, 05 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3257
Expires: Tue, 06 Sep 2022 15:41:56 GMT
Date: Tue, 06 Sep 2022 14:47:39 GMT
Connection: keep-alive
cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/img/close.svg
172.67.183.56200 OK 929 B URL HTTP/2 cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/img/close.svg
IP 172.67.183.56:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 0f3ae46f80c646adb300cbc8589259ea
cfc2c45473a44d3602ac7cd5a00747b3fe3a426b
46cc8b35d65d3c3e13996ace2613b10221644e0861044deaa8c216f44b7a68d0
GET /sb/ssp/utility/social-media/facebook/img/close.svg HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:47:40 GMT
content-type: image/svg+xml
last-modified: Thu, 11 Feb 2021 15:13:59 GMT
etag: W/"602549b7-52a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2954602
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QRlJY1wum9e%2BZTVGwRjwpg8UkWvm66v3rsvrVed4SgDQxpeRqBhps3uLe4U8xWAhGPuPnDi5ogEyBzr3LOIw3gUd46A0Aez9wn3wHLx07snuMrvtztP1sv6Va36oRIEAUYc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7468004b4bf91c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.10200 OK 660 B URL HTTP/1.1 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP 142.250.74.10:0
Hash 55130bf120bd75a4bba7d678be617cdf
77b172c0cc1d15e60ab95edccf3ac1e640d16812
262b9e8c2eeba18bdc3dd53ac7bbacdbbec713a9443ff5dc34e359de56ea040d
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Tue, 06 Sep 2022 14:47:40 GMT
Date: Tue, 06 Sep 2022 14:47:40 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fdaa3919b9ba998d302973cf78060da7
be8697f38399f372352bad57131fd4e4812525c3
ee1cf02126c1311b6da7d80d30bd3a69d33f592fe6d11ec8ded804465d0eba7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EE1CF02126C1311B6DA7D80D30BD3A69D33F592FE6D11EC8DED804465D0EBA7A"
Last-Modified: Sun, 04 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20667
Expires: Tue, 06 Sep 2022 20:32:07 GMT
Date: Tue, 06 Sep 2022 14:47:40 GMT
Connection: keep-alive
cdn.cloudimagesb.com/si/08/b7/01/08b7011771b43daf4a1ec90e6ee68d87/1658144859.jpg
45.133.44.10200 OK 15 kB URL HTTP/2 cdn.cloudimagesb.com/si/08/b7/01/08b7011771b43daf4a1ec90e6ee68d87/1658144859.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash 31d5ae1d770f3de9f1f0eee47a742413
8035479102b210a23041652b4d9785c5bcedd8ac
1f75948cdbace3e2b27343f401015d13f874bef6c9ee816ddbec9d79d99aa707
GET /si/08/b7/01/08b7011771b43daf4a1ec90e6ee68d87/1658144859.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:47:40 GMT
content-type: image/jpeg
content-length: 15363
server: nginx/1.17.6
last-modified: Mon, 18 Jul 2022 11:47:47 GMT
etag: "62d54863-3c03"
expires: Thu, 08 Sep 2022 14:47:40 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/au/b6/cf/48/b6cf48ca3e8ab4bdbcfaa2279b0fb2bc/1613726822.html
45.133.44.4200 OK 536 B URL HTTP/2 cdn.barscreative1.com/sb/au/b6/cf/48/b6cf48ca3e8ab4bdbcfaa2279b0fb2bc/1613726822.html
IP 45.133.44.4:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash cf7ee8349b818a3cd1fadd8d77db37d1
60e1a9ba542dbfaa699d3372d5659fd6fc74a88f
b2cb0aed6f41894e66409921d8fb1537ab5c94dcc15907d71a5eb59a64745999
Analyzer Verdict Alert fortinet Phishing
GET /sb/au/b6/cf/48/b6cf48ca3e8ab4bdbcfaa2279b0fb2bc/1613726822.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://embedy.cc
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:47:39 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Fri, 19 Feb 2021 09:27:09 GMT
etag: W/"602f846d-4fa"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Tue, 06 Sep 2022 15:47:39 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/css/style.css
172.67.183.56200 OK 1.5 kB URL HTTP/2 cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/css/style.css
IP 172.67.183.56:0
Hash 908dce303e802b45f99455bfa3c26ef2
2f064693d34a6eac3903455fc3de8477c4554e40
60eed66130c70fbeb214c6ab5a7f747cfaaad001a5f10d33d3da7d57f70d6f98
GET /sb/ssp/utility/social-media/facebook/css/style.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://embedy.cc
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:47:40 GMT
content-type: text/css
last-modified: Fri, 27 Aug 2021 12:19:14 GMT
etag: W/"6128d842-18be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zWJm6%2B014bEuV0waYu%2Bd5Mpksr20KNPAxY5ptFLOiN7dykeEwCFNh9TM8h90cFiiwJte4Hmy6HtgAZen2vQ3WMewGPx1BkS44cJxX1UXntEow4qOpr2nGBzvfrBAcUrEPUc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7468004aeb5c1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://embedy.cc
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15860
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 31 Aug 2022 20:15:25 GMT
Expires: Thu, 31 Aug 2023 20:15:25 GMT
Cache-Control: public, max-age=31536000
Age: 498735
Last-Modified: Wed, 11 May 2022 19:24:42 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://embedy.cc
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15744
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 31 Aug 2022 20:14:42 GMT
Expires: Thu, 31 Aug 2023 20:14:42 GMT
Cache-Control: public, max-age=31536000
Age: 498778
Last-Modified: Wed, 11 May 2022 19:24:48 GMT
Content-Type: font/woff2
cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/css/animate.css
172.67.183.56200 OK 4.8 kB URL HTTP/2 cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/css/animate.css
IP 172.67.183.56:0
Hash 21eb7a65c17a2c22ba104a7ecbf1dc0f
ea8c53be54889c7489aed04e30e3eb83af64dec9
090bd9ceb9a58da038e5ed4a39dfbb63ece49ed4f4f0656ce35f7faa41a3b237
GET /sb/ssp/utility/social-media/facebook/css/animate.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://embedy.cc
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:47:40 GMT
content-type: text/css
last-modified: Sat, 20 Feb 2021 08:44:40 GMT
etag: W/"6030cbf8-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vhi8Oy0Zw0oDm8agqEG3c4ELH8lA2nQ01gkAPTTzOuxbkW%2FuprFfUdnN%2FYa%2Fvcs2R3Jy7S1cj6pEq%2F3qhlNIjEKybcKMk9zZAIQBSaJnKUoE26OtHZ8WwoWPdXpdUveYuDw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7468004aeb531c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
speechfountaindigestion.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Ffacebook%2Fjs%2Fscript.js&l=444&fd=341
209.192.156.100200 OK 0 B URL HTTP/1.1 speechfountaindigestion.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Ffacebook%2Fjs%2Fscript.js&l=444&fd=341
IP 209.192.156.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Ffacebook%2Fjs%2Fscript.js&l=444&fd=341 HTTP/1.1
Host: speechfountaindigestion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://embedy.cc/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 06 Sep 2022 14:47:40 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/js/script.js
172.67.183.56200 OK 217 B URL HTTP/2 cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/js/script.js
IP 172.67.183.56:0
Hash deb27aa1dead3cceaea4742cfe879320
75536a9c2ff3289d861284903349f1607c1b6a8e
caa6c6869f34a13df5944d3702ad34300f50b34c5a6b6dac24124d55f27ba296
GET /sb/ssp/utility/social-media/facebook/js/script.js HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://embedy.cc
Connection: keep-alive
Referer: http://embedy.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:47:40 GMT
content-type: application/javascript
last-modified: Sat, 20 Feb 2021 08:47:14 GMT
etag: W/"6030cc92-1bc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8sX7mp9HfEnrXjpb29SjUwn%2FHPoFVlfdMwbBLgRGmrtVFmL2OsDgPBWUmopFneEFOYZQitcLdPujbJMtNTqJzI3k%2BXFeF%2BgHK02vOD7gdYQesdHfBgtaj2Gjf5CZqizwtwE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7468004aeb581c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gettube.co/play/27809/?rel=0&showinfo=0
185.178.208.167403 Forbidden 8.2 kB URL HTTP/2 gettube.co/play/27809/?rel=0&showinfo=0
IP 185.178.208.167:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8028), with no line terminators
Hash a6bb0b43f2e655951abce70028b1267e
eeef150cf4ff03842c3ba839a7b12500dbcaa3ef
3ae6b0aa0ad7a4a3135967f6aa7317820d5b7a4b60e7bebbc0abca7c8fe045c2
GET /play/27809/?rel=0&showinfo=0 HTTP/1.1
Host: gettube.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://embedy.cc/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
server: ddos-guard
date: Tue, 06 Sep 2022 14:47:40 GMT
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddgid_=UeFfe9zbpxyZAdCP; Domain=.gettube.co; HttpOnly; Path=/; Expires=Wed, 06-Sep-2023 14:47:40 GMT
__ddgmark_=gsOSytw3B8EaGQua; Domain=.gettube.co; HttpOnly; Path=/; Expires=Wed, 07-Sep-2022 14:47:40 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
content-length: 8176
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
speechfountaindigestion.com/pixel/sbs?c=1
209.192.156.100200 OK 0 B URL HTTP/1.1 speechfountaindigestion.com/pixel/sbs?c=1
IP 209.192.156.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: speechfountaindigestion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://embedy.cc/
Cookie: u_pl=15601424; uid_id2=5952e540-dda7-40a2-b964-b5823591356a:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec8b5963c5770896045ef1536ef5a90d08=[3551993]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 06 Sep 2022 14:47:40 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
check.ddos-guard.net/check.js
185.129.100.100200 OK 152 B URL HTTP/2 check.ddos-guard.net/check.js
IP 185.129.100.100:0
File type ASCII text, with no line terminators
Hash 81673de46fa62e186bbad60ce75ac027
e5a11da750acff28ffb2ebf451fd03f5a0c44c05
b147a991dd33e088ead97d61c20394eb2d184bee6aee6f136ca4f37840757adc
GET /check.js HTTP/1.1
Host: check.ddos-guard.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gettube.co/
Cookie: __ddg2=KMfkMHDZ3xXNlfwV
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
date: Tue, 06 Sep 2022 14:47:40 GMT
content-type: application/javascript
expires: Wed, 06 Sep 2023 14:47:40 GMT
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: private, s-maxage=0, max-age=31536000
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
etag: KMfkMHDZ3xXNlfwV
set-cookie: __ddg2=KMfkMHDZ3xXNlfwV; Domain=check.ddos-guard.net; Path=/; HttpOnly; SameSite=None; Secure; Expires=Wed, 06-Sep-2023 14:47:40 GMT
content-length: 152
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
gettube.co/.well-known/ddos-guard/check?context=free_splash
185.178.208.167200 OK 94 kB URL HTTP/2 gettube.co/.well-known/ddos-guard/check?context=free_splash
IP 185.178.208.167:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash c32eb42484e91dedfc68e42bee8ef9b7
96b7268b6be4f96191a18a6cca2a122de06fc11b
e8ad60f8af33e8db9e91a6b54dab652bafd39d012cd299df50d7b1b5efbc9596
GET /.well-known/ddos-guard/check?context=free_splash HTTP/1.1
Host: gettube.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gettube.co/play/27809/?rel=0&showinfo=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Tue, 06 Sep 2022 14:47:40 GMT
content-type: application/javascript
expires: Tue, 06 Sep 2022 15:47:40 GMT
content-length: 93545
X-Firefox-Spdy: h2
check.ddos-guard.net/set/id/KMfkMHDZ3xXNlfwV
185.129.100.100200 OK 68 B URL HTTP/2 check.ddos-guard.net/set/id/KMfkMHDZ3xXNlfwV
IP 185.129.100.100:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash e679fbd466a2d656f194a5da4fa083cd
2aa795c7607aa6ea41313be88f1b7a9c1ab516b3
f309b7c03d9cae63a9bedbee6ed655f3dbcdb194132943639344dead5f3b9710
GET /set/id/KMfkMHDZ3xXNlfwV HTTP/1.1
Host: check.ddos-guard.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gettube.co/
Cookie: __ddg2=KMfkMHDZ3xXNlfwV
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Tue, 06 Sep 2022 14:47:41 GMT
content-type: image/png
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache
pragma: no-cache
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
set-cookie: __ddg2=KMfkMHDZ3xXNlfwV; Domain=check.ddos-guard.net; Path=/; HttpOnly; SameSite=None; Secure; Expires=Wed, 06-Sep-2023 14:47:41 GMT
content-length: 68
X-Firefox-Spdy: h2
gettube.co/.well-known/ddos-guard/id/KMfkMHDZ3xXNlfwV
185.178.208.167200 OK 68 B URL HTTP/2 gettube.co/.well-known/ddos-guard/id/KMfkMHDZ3xXNlfwV
IP 185.178.208.167:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash e679fbd466a2d656f194a5da4fa083cd
2aa795c7607aa6ea41313be88f1b7a9c1ab516b3
f309b7c03d9cae63a9bedbee6ed655f3dbcdb194132943639344dead5f3b9710
GET /.well-known/ddos-guard/id/KMfkMHDZ3xXNlfwV HTTP/1.1
Host: gettube.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gettube.co/play/27809/?rel=0&showinfo=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Tue, 06 Sep 2022 14:47:41 GMT
content-type: image/png
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache
set-cookie: __ddg2_=KMfkMHDZ3xXNlfwV; Domain=gettube.co; Path=/; HttpOnly; Expires=Wed, 06-Sep-2023 14:47:41 GMT
content-length: 68
X-Firefox-Spdy: h2
gettube.co/.well-known/ddos-guard/mark/
185.178.208.167200 OK 0 B URL HTTP/2 gettube.co/.well-known/ddos-guard/mark/
IP 185.178.208.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /.well-known/ddos-guard/mark/ HTTP/1.1
Host: gettube.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 41268
Origin: https://gettube.co
Connection: keep-alive
Referer: https://gettube.co/play/27809/?rel=0&showinfo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Tue, 06 Sep 2022 14:47:41 GMT
content-length: 0
X-Firefox-Spdy: h2
gettube.co/play/27809/?rel=0&showinfo=0
185.178.208.167403 Forbidden 8.2 kB URL HTTP/2 gettube.co/play/27809/?rel=0&showinfo=0
IP 185.178.208.167:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8028), with no line terminators
Hash a6bb0b43f2e655951abce70028b1267e
eeef150cf4ff03842c3ba839a7b12500dbcaa3ef
3ae6b0aa0ad7a4a3135967f6aa7317820d5b7a4b60e7bebbc0abca7c8fe045c2
GET /play/27809/?rel=0&showinfo=0 HTTP/1.1
Host: gettube.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://embedy.cc/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
server: ddos-guard
date: Tue, 06 Sep 2022 14:47:43 GMT
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddgid_=SAPTnjEF5nPrV3Hr; Domain=.gettube.co; HttpOnly; Path=/; Expires=Wed, 06-Sep-2023 14:47:43 GMT
__ddgmark_=3tpHOzoXoKY8UC0m; Domain=.gettube.co; HttpOnly; Path=/; Expires=Wed, 07-Sep-2022 14:47:43 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
content-length: 8176
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
check.ddos-guard.net/check.js
185.129.100.100200 OK 152 B URL HTTP/2 check.ddos-guard.net/check.js
IP 185.129.100.100:0
File type ASCII text, with no line terminators
Hash 81673de46fa62e186bbad60ce75ac027
e5a11da750acff28ffb2ebf451fd03f5a0c44c05
b147a991dd33e088ead97d61c20394eb2d184bee6aee6f136ca4f37840757adc
GET /check.js HTTP/1.1
Host: check.ddos-guard.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gettube.co/
Cookie: __ddg2=KMfkMHDZ3xXNlfwV
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
date: Tue, 06 Sep 2022 14:47:43 GMT
content-type: application/javascript
expires: Wed, 06 Sep 2023 14:47:43 GMT
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: private, s-maxage=0, max-age=31536000
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
etag: KMfkMHDZ3xXNlfwV
set-cookie: __ddg2=KMfkMHDZ3xXNlfwV; Domain=check.ddos-guard.net; Path=/; HttpOnly; SameSite=None; Secure; Expires=Wed, 06-Sep-2023 14:47:43 GMT
content-length: 152
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
gettube.co/.well-known/ddos-guard/check?context=free_splash
185.178.208.167200 OK 94 kB URL HTTP/2 gettube.co/.well-known/ddos-guard/check?context=free_splash
IP 185.178.208.167:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash c32eb42484e91dedfc68e42bee8ef9b7
96b7268b6be4f96191a18a6cca2a122de06fc11b
e8ad60f8af33e8db9e91a6b54dab652bafd39d012cd299df50d7b1b5efbc9596
GET /.well-known/ddos-guard/check?context=free_splash HTTP/1.1
Host: gettube.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gettube.co/play/27809/?rel=0&showinfo=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Tue, 06 Sep 2022 14:47:43 GMT
content-type: application/javascript
expires: Tue, 06 Sep 2022 15:47:43 GMT
content-length: 93545
X-Firefox-Spdy: h2
check.ddos-guard.net/set/id/KMfkMHDZ3xXNlfwV
185.129.100.100200 OK 68 B URL HTTP/2 check.ddos-guard.net/set/id/KMfkMHDZ3xXNlfwV
IP 185.129.100.100:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash e679fbd466a2d656f194a5da4fa083cd
2aa795c7607aa6ea41313be88f1b7a9c1ab516b3
f309b7c03d9cae63a9bedbee6ed655f3dbcdb194132943639344dead5f3b9710
GET /set/id/KMfkMHDZ3xXNlfwV HTTP/1.1
Host: check.ddos-guard.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gettube.co/
Cookie: __ddg2=KMfkMHDZ3xXNlfwV
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Tue, 06 Sep 2022 14:47:43 GMT
content-type: image/png
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache
pragma: no-cache
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
set-cookie: __ddg2=KMfkMHDZ3xXNlfwV; Domain=check.ddos-guard.net; Path=/; HttpOnly; SameSite=None; Secure; Expires=Wed, 06-Sep-2023 14:47:43 GMT
content-length: 68
X-Firefox-Spdy: h2
gettube.co/.well-known/ddos-guard/id/KMfkMHDZ3xXNlfwV
185.178.208.167200 OK 68 B URL HTTP/2 gettube.co/.well-known/ddos-guard/id/KMfkMHDZ3xXNlfwV
IP 185.178.208.167:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash e679fbd466a2d656f194a5da4fa083cd
2aa795c7607aa6ea41313be88f1b7a9c1ab516b3
f309b7c03d9cae63a9bedbee6ed655f3dbcdb194132943639344dead5f3b9710
GET /.well-known/ddos-guard/id/KMfkMHDZ3xXNlfwV HTTP/1.1
Host: gettube.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gettube.co/play/27809/?rel=0&showinfo=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Tue, 06 Sep 2022 14:47:43 GMT
content-type: image/png
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache
set-cookie: __ddg2_=KMfkMHDZ3xXNlfwV; Domain=gettube.co; Path=/; HttpOnly; Expires=Wed, 06-Sep-2023 14:47:43 GMT
content-length: 68
X-Firefox-Spdy: h2
gettube.co/.well-known/ddos-guard/mark/
185.178.208.167200 OK 0 B URL HTTP/2 gettube.co/.well-known/ddos-guard/mark/
IP 185.178.208.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /.well-known/ddos-guard/mark/ HTTP/1.1
Host: gettube.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 41268
Origin: https://gettube.co
Connection: keep-alive
Referer: https://gettube.co/play/27809/?rel=0&showinfo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Tue, 06 Sep 2022 14:47:43 GMT
content-length: 0
X-Firefox-Spdy: h2