Report - videzz.net/embed-gf4k2ra2ygab.html

Report Overview

Submitted URL
videzz.net/embed-gf4k2ra2ygab.html
IP
78.142.18.54
ASN
#208046 ColocationX Ltd.
Submitted
2024-05-05 13:02:46
Access
public
Website Title
Vidoza
Final URL
videzz.net/embed-gf4k2ra2ygab.html
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
34

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fleraprt.com	unknown	2022-01-14	2022-01-14	2024-05-03	559 B	478 B	139.45.195.254
cdn.itskiddien.club	unknown	2022-10-06	2022-10-06	2024-04-26	1.6 kB	42 kB	139.45.197.236
tzegilo.com	unknown	2022-01-14	2022-01-14	2024-05-02	391 B	11 kB	172.67.193.52
www.linkbux.com	157995	2017-05-31	2020-06-14	2024-05-04	1.3 kB	2.1 kB	163.181.1.224
dog.seetron.net	unknown	unknown	No data	No data	2.4 kB	157 kB	135.181.208.216
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-05	2.7 kB	95 kB	142.250.74.163
r.secprf.com	unknown	2021-10-28	2022-06-02	2024-04-30	1.4 kB	884 B	18.202.86.139
xml.cachegorilla.com	unknown	2021-07-23	2023-11-27	2024-05-04	559 B	137 B	173.239.53.20
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-05-04	421 B	417 B	52.29.105.35
str32.vidoza.net	unknown	unknown	No data	No data	1.5 kB	36 kB	213.152.165.117
bid.bidclickmedia.com	unknown	2022-09-19	2023-03-09	2024-03-22	7.9 kB	12 kB	172.67.205.77
veepteero.com	unknown	2023-05-08	2023-05-09	2024-04-30	1.5 kB	6.2 kB	139.45.197.242
app.launchdarkly.com	1861	2014-07-15	2015-06-15	2024-05-04	2.3 kB	2.6 kB	151.101.130.217
cdn.o333o.com	158144	2015-02-16	2015-05-28	2024-03-08	395 B	311 kB	143.204.55.93
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-05	1.3 kB	7.1 kB	216.58.207.234
xml.green-resultsbid.com	unknown	2023-07-05	2023-07-11	2024-04-30	539 B	223 B	198.134.116.29
ocsp.e2m02.amazontrust.com	unknown	2007-05-11	2022-12-07	2024-05-04	676 B	1.5 kB	3.164.222.26
static.addtoany.com	4091	2006-03-10	2012-05-21	2024-05-04	5.0 kB	93 kB	172.67.39.148
track.jajaloop.com	unknown	2024-03-28	2024-03-31	2024-05-04	1.5 kB	2.2 kB	143.204.55.107
xml-click-oax.adstork.com	unknown	2019-03-01	2023-06-22	2024-04-12	1.2 kB	598 B	23.226.122.79
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-05-04	814 B	173 kB	188.114.96.1
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-05-05	905 B	13 kB	104.17.25.14
my.rtmark.net	9054	2014-10-29	2015-02-04	2024-05-04	453 B	739 B	139.45.195.8
www.torcklmi.com	unknown	unknown	No data	No data	1.2 kB	531 B	142.93.240.225
static-landing-assets.project1content.com	125763	2018-04-17	2021-09-02	2024-05-01	34 kB	12 MB	64.210.135.114
aistekso.net	unknown	2023-10-16	2023-10-16	2024-04-30	395 B	92 kB	139.45.197.244
t7rsx24c5.com	unknown	2019-05-20	2019-08-06	2023-06-10	972 B	3.2 kB	159.69.42.212
yd.cottoidearldom.com	unknown	unknown	No data	No data	402 B	1.2 kB	23.109.170.255
profitablegatecpm.com	unknown	2024-02-05	2024-02-06	2024-04-18	435 B	17 kB	172.240.253.132
www.google.no	25607	2001-02-26	2016-04-05	2024-05-05	575 B	578 B	142.250.74.163
cdn.yourwebbars.com	62037	2020-08-21	2021-01-29	2024-05-04	471 B	1.2 kB	172.67.74.218
trafforsrv.com	101761	2017-12-28	2018-01-12	2024-04-18	596 B	415 B	216.18.168.28
s.pemsrv.com	unknown	2023-08-01	2023-08-04	2024-05-03	1.3 kB	2.5 kB	95.211.229.248
ossgogoaton.com	unknown	2022-04-18	2022-04-18	2024-04-17	397 B	82 kB	172.67.184.45
olivedinflats.space	unknown	2020-04-16	2020-07-04	2024-04-11	1.1 kB	1.4 kB	143.204.55.60
images-assets-ht.project1content.com	140041	2018-04-17	2018-06-19	2024-05-01	470 B	2.5 kB	64.210.135.114
t.bawixi.xyz	unknown	unknown	No data	No data	1.2 kB	4.6 kB	104.21.31.224
zv.7vid.net	unknown	2018-07-27	2023-07-29	2024-02-22	593 B	541 B	135.181.208.216
myliveforyoudreder.com	unknown	2023-07-27	2023-07-27	2024-03-20	404 B	2.3 kB	172.67.151.245
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21	2024-05-04	338 B	942 B	3.164.222.26
region1.analytics.google.com	unknown	1997-09-15	2022-03-17	2024-05-04	732 B	441 B	216.239.32.36
events.launchdarkly.com	1653	2014-07-15	2016-02-06	2024-05-04	1.3 kB	1.0 kB	52.206.204.68
t.yunaga.xyz	unknown	2022-06-08	2022-07-15	2024-02-15	1.1 kB	6.1 kB	104.21.56.136
videzz.net	unknown	2024-02-28	2024-03-04	2024-04-30	7.6 kB	1.9 MB	78.142.18.54
xml.xmlking.com	unknown	2020-07-27	2020-11-12	2024-04-20	1.1 kB	1.6 kB	174.137.133.17
lernodydenknow.info	unknown	2023-12-31	2024-01-24	2024-05-02	533 B	732 B	143.204.55.50
unseenreport.com	unknown	2022-03-30	2022-03-30	2024-05-04	1.5 kB	846 B	192.243.59.13
tfosrv.com	65142	2020-11-17	2020-11-18	2024-03-08	1.3 kB	1.0 kB	216.18.168.29
static2-ma-ht.project1content.com	unknown	2018-04-17	2022-07-17	2024-05-01	4.2 kB	1.0 MB	64.210.135.114
xml.zeusadx.com	330930	2019-08-07	2019-09-23	2024-03-08	1.7 kB	1.8 kB	174.137.133.17
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-05	1.7 kB	523 kB	142.250.74.72
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18	2024-05-04	1.0 kB	87 kB	104.18.11.207
xmlclick.adcannyxml.com	unknown	2020-03-23	2022-03-04	2024-04-18	600 B	265 B	23.226.122.79
clientstream.launchdarkly.com	1222	2014-07-15	2017-04-20	2024-05-04	753 B	571 B	0.0.0.0
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15	2024-05-03	2.9 kB	258 kB	188.114.97.1
xml.bidding-win.com	unknown	unknown	No data	No data	1.1 kB	1.3 kB	172.67.161.62
xmlserving.mobagent.com	401604	2016-09-27	2017-09-10	2024-03-15	538 B	222 B	173.239.53.17
tgp1.brazzersnetwork.com	143376	2006-12-23	2019-05-08	2024-03-24	11 kB	1.0 MB	66.254.114.234
s.o333o.com	unknown	2015-02-16	2015-03-05	2024-04-30	389 B	1.2 kB	85.10.205.45
wrinkleirritateoverrated.com	unknown	unknown	No data	No data	8.0 kB	42 kB	192.243.59.20
furnitureapplicationberth.com	unknown	unknown	No data	No data	491 B	467 B	172.240.253.132
status.rapidssl.com	6946	2002-04-05	2018-06-15	2024-05-04	331 B	735 B	192.229.221.95
allvideometrika.com	unknown	2022-05-16	2022-05-16	2024-05-02	520 B	697 B	104.21.83.61

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-05	medium	cottoidearldom.com	Sinkholed
2024-05-05	medium	wrinkleirritateoverrated.com	Sinkholed
2024-05-05	medium	wrinkleirritateoverrated.com	Sinkholed
2024-05-05	medium	wrinkleirritateoverrated.com	Sinkholed
2024-05-05	medium	furnitureapplicationberth.com	Sinkholed
2024-05-05	medium	wrinkleirritateoverrated.com	Sinkholed
2024-05-05	medium	wrinkleirritateoverrated.com	Sinkholed
2024-05-05	medium	wrinkleirritateoverrated.com	Sinkholed
2024-05-05	medium	wrinkleirritateoverrated.com	Sinkholed
2024-05-05	medium	veepteero.com	Sinkholed
2024-05-05	medium	unseenreport.com	Sinkholed
2024-05-05	medium	unseenreport.com	Sinkholed
2024-05-05	medium	ossgogoaton.com	Sinkholed
2024-05-05	medium	wrinkleirritateoverrated.com	Sinkholed
2024-05-05	medium	wrinkleirritateoverrated.com	Sinkholed
2024-05-05	medium	veepteero.com	Sinkholed
2024-05-05	medium	aistekso.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (84)

	URL	Size	First Seen	Last Seen
	t7rsx24c5.com/i/3144?nsid=1&partner_subid=2	20 B	2023-05-14	2024-05-17
Pretty URL t7rsx24c5.com/i/3144?nsid=1&partner_subid=2 IP 159.69.42.212 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-14 22:56:59 Last Seen2024-05-17 15:57:20 Times Seen19 Hash 22765cbf8a39ae559365379602fe9558 ea242d6fa84acd5cfd0ed5075dfbef46b67411de 746850c6c0289e65d8f77d5d0c2219d98b5bb06ec4fb800476e08416b019b3c2 Loading...

	www.googletagmanager.com/gtag/js?id=UA-158623850-1	208 kB	2024-05-05	2024-05-05
Pretty URL www.googletagmanager.com/gtag/js?id=UA-158623850-1 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 15:02:57 Last Seen2024-05-05 15:02:58 Times Seen2 Hash a8186578f826197f2444f46f6e33aae1 809d47b1962c8ca2a545a32fe22e60c13b607eb9 8dc246b48dff7b82d29cc145a25f9aadd1577224963aa614d6b2ecf91750dfc1 Loading...

	videzz.net/sandbox%20eval%20code	147 B	2023-04-11	2024-05-18
Pretty URL videzz.net/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-18 21:27:04 Times Seen350404 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-18
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-18 21:27:04 Times Seen349889 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	aistekso.net/401/5708419	91 kB	2024-05-05	2024-05-05
Pretty URL aistekso.net/401/5708419 IP 139.45.197.244 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 15:02:57 Last Seen2024-05-05 15:03:00 Times Seen2 Hash 2a6a89a8c381f9857ce78d4c4e98b0f4 cf8c32435a3f6be48e8ccebaa833fde7f971dc64 a56eebcfcd6bfcad04eafbccf75d33cb6d085168e87ebf1a5a2f8f2c5227c1e2 Loading...

	t7rsx24c5.com/banner_ads.js	111 B	2023-03-08	2024-05-17
Pretty URL t7rsx24c5.com/banner_ads.js IP 159.69.42.212 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:20:47 Last Seen2024-05-17 15:57:20 Times Seen222 Hash b55398d3f22571b3e9dcaba2eb37cf70 9ab8cd7e33d19a6a5f7a58b15aa6a598202ae054 4aa355b64f75bc8293836eb2ca7ff4a0d7230f361c2e9b1b2d7394ac7c540f90 Loading...

	static.addtoany.com/menu/page.js	3.0 kB	2024-04-12	2024-05-18
Pretty URL static.addtoany.com/menu/page.js IP 172.67.39.148 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 02:34:00 Last Seen2024-05-18 21:17:05 Times Seen1110 Hash 5f984fdd1d3384220c67422c1f544a95 79c8a48b5fab47972dd69ce7dfd08cee895006b5 6e0cc78c402cbc02fdfd41cd77c5fd6ffbd8066cc07935ea8eb5f3fcc59744a3 Loading...

	dog.seetron.net/lx4oag1.js	239 kB	2024-03-22	2024-05-18
Pretty URL dog.seetron.net/lx4oag1.js IP 135.181.208.216 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-22 21:45:50 Last Seen2024-05-18 20:05:21 Times Seen687 Hash a6781eeb8be115c2cc64c5b4898e5b9d 76001e6e130f936956842ce1fb672ca16be2370e cb8949c4918f30d767c8a97d1b1ddb36eabccf8d93659a80f4e850caa3701da2 Loading...

	tgp1.brazzersnetwork.com/_p1cdn/tour/atlaslib-js.6f2e1c48.js	40 kB	2024-04-27	2024-05-18
Pretty URL tgp1.brazzersnetwork.com/_p1cdn/tour/atlaslib-js.6f2e1c48.js IP 66.254.114.234 ASN #29789 REFLECTED Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-27 16:26:02 Last Seen2024-05-18 14:09:08 Times Seen66 Hash 44086a9f945c2c345183cb951c5e8b60 72f7e7293a1b8862436f457b2d82589a12ce17f5 c0a3c7e552bc83c5678550d191559c46761c1e6d8d49060912b3c3d8460fba0b Loading...

	static2-ma-ht.project1content.com/tour/@one/blocks/async/RowBlock.3b6ad7f7.js	421 B	2024-03-12	2024-05-18
Pretty URL static2-ma-ht.project1content.com/tour/@one/blocks/async/RowBlock.3b6ad7f7.js IP 64.210.135.114 ASN #30361 SWIFTWILL2 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-12 20:15:37 Last Seen2024-05-18 14:09:08 Times Seen111 Hash a94050f26199e41905e348fbc2ad9724 4ad81ca158f6008863628a9dccd0232870a66a05 a97ab9aa6b0d346531f8fab56ba39727ccf80b4101a4b3f09af3eab4d895108d Loading...

	videzz.net/embed-gf4k2ra2ygab.html	162 B	2023-03-07	2024-05-18
Pretty URL videzz.net/embed-gf4k2ra2ygab.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:08:16 Last Seen2024-05-18 20:05:20 Times Seen153 Hash 035c117549bb95ad0992ae461d89e44e 2f45bc18613030f169e7c8ef25553df24e7003b6 0d89ce1d538634aeb6d56fa061bb107311c5daaa1c59aed01cb4e18c48081a96 Loading...

	videzz.net/embed-gf4k2ra2ygab.html	357 B	2023-03-07	2024-05-18
Pretty URL videzz.net/embed-gf4k2ra2ygab.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:08:16 Last Seen2024-05-18 20:05:20 Times Seen153 Hash 824c86e507e4c27bb34b991feedb5820 06bd36505ef9492db28ebb53c740d5c17d4516b4 0c45ee272e41a3a37bb7d5a0881665e4d54b762e20921cdb145bf5539fe4f551 Loading...

	videzz.net/embed-gf4k2ra2ygab.html	87 B	2023-03-08	2024-05-18
Pretty URL videzz.net/embed-gf4k2ra2ygab.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 20:28:37 Last Seen2024-05-18 20:05:20 Times Seen107 Hash 0a672ce747f1a359a1a6ef6d23ea6202 47662e53c52c0e4d4004acd5c72d4fd34f8fc439 49013788910cc5aee4e70354bdde9cce7f9c9912a142dd141622a68bb9d2293f Loading...

	videzz.net/embed-gf4k2ra2ygab.html	42 B	2023-03-12	2024-05-18
Pretty URL videzz.net/embed-gf4k2ra2ygab.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 17:26:16 Last Seen2024-05-18 20:05:20 Times Seen82 Hash ef7ab1eb5fe88b692b3d8d65ff95a2c4 1339642288bd1758b6b3864292da22d085349752 c2ba1c539107eb3a3ceb346cf19e3ba42b4e7104ac2c96dd5495aafb48d0b021 Loading...

	unknown	627 B	2023-10-28	2024-05-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-28 00:22:41 Last Seen2024-05-18 20:05:20 Times Seen30 Hash d9334270bd31fdac18496fe7cd079dfb e073469dca5a3738953b029031ce516484ef8d8f 130a71372360348a1038494c9302c2adb48133f40cf352112d9dd0753b6fa69e Loading...

	videzz.net/embed-gf4k2ra2ygab.html	388 B	2024-01-07	2024-05-18
Pretty URL videzz.net/embed-gf4k2ra2ygab.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-07 20:19:39 Last Seen2024-05-18 20:05:20 Times Seen20 Hash 96a496a5bf450a896816f85c31924113 801e85a60ef83b8a62d9baab51e19fd87939bab5 2c11a4117b0af03ef327bea399f1fd132e66e97a6fc001ebe9ac831845f25baf Loading...

	videzz.net/embed-gf4k2ra2ygab.html	82 B	2023-03-07	2024-05-18
Pretty URL videzz.net/embed-gf4k2ra2ygab.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:08:17 Last Seen2024-05-18 20:05:20 Times Seen149 Hash 67b70174cc2854586ec824f84b79d825 c9bde16aa4e39ab912e1a20fe298b028a3432596 a979d312087118fa753a8ed59077b51936c9595eb2a37cd369a6b4f579eebafd Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2024-03-29	2024-05-17
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 13:13:34 Last Seen2024-05-17 14:49:08 Times Seen3553 Hash f4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716 Loading...

	t7rsx24c5.com/i/3144?nsid=1&partner_subid=2	0 B	2023-03-07	2024-05-18
Pretty URL t7rsx24c5.com/i/3144?nsid=1&partner_subid=2 IP 159.69.42.212 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-18 21:28:10 Times Seen37800600 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	s.o333o.com/adgpt.js	2.0 kB	2024-03-22	2024-05-18
Pretty URL s.o333o.com/adgpt.js IP 85.10.205.45 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-22 21:45:49 Last Seen2024-05-18 20:05:21 Times Seen381 Hash 55f8db8e0ec58b646f0b5425b405fdd0 0c79af1239cafc7ec4783f20b0b886a61daccc09 3ec8849ba857ec32cdc682ea93f0c1f8e8ab97980af4f1d8ec312684ed0f5237 Loading...

	www.linkbux.com/track/5688a24WID8UxvMohYseQZhAkydyNmU8CLVEZrksGrHD8ZY6E9i8jRNlxzN2w68kFf9qTtonRw_c_c?url=http%3A%2F%2Fwww.barbershop.no&uid=ws5h4ihtiojtpt2139hd5uuk&uid2=6354964	0 B	2023-03-07	2024-05-18
Pretty URL www.linkbux.com/track/5688a24WID8UxvMohYseQZhAkydyNmU8CLVEZrksGrHD8ZY6E9i8jRNlxzN2w68kFf9qTtonRw_c_c?url=http%3A%2F%2Fwww.barbershop.no&uid=ws5h4ihtiojtpt2139hd5uuk&uid2=6354964 IP 163.181.1.227 ASN #24429 Zhejiang Taobao Network Co.,Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-18 21:28:10 Times Seen37800600 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.googletagmanager.com/gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c	275 kB	2024-05-05	2024-05-05
Pretty URL www.googletagmanager.com/gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 15:02:58 Last Seen2024-05-05 15:03:00 Times Seen2 Hash ec8b0e618c573c683ba69b0fcb2af487 8a0c76b8884d346224240ac1206b3d747353b883 f29279fd41925337303b06188b35b5bad825ba9e2eeefe3b721f2a526c04407a Loading...

	tzegilo.com/stattag.js	19 kB	2024-02-10	2024-05-18
Pretty URL tzegilo.com/stattag.js IP 172.67.193.52 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-10 03:00:18 Last Seen2024-05-18 20:05:21 Times Seen1797 Hash 70ebd404c2e1e7bad13998538b56887c 86e57af8ba3cfc2c004da3311835f6b54ba6d848 d71ea61938136a384e4c53c5a7a3c36e68fcc70a68bae691e270987d5d2eb11f Loading...

	static2-ma-ht.project1content.com/tour/@one/blocks/async/ImageBlock.9e0ed0d5.js	5.2 kB	2024-05-03	2024-05-18
Pretty URL static2-ma-ht.project1content.com/tour/@one/blocks/async/ImageBlock.9e0ed0d5.js IP 64.210.135.114 ASN #30361 SWIFTWILL2 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 00:55:15 Last Seen2024-05-18 14:09:08 Times Seen41 Hash 1fdd630216d7091b61cf1dbcac2e2b6a 521e641f5101c6f95f20d34399403c694abc9802 97b09d394c83b743dc3e6b8d16ac85823b6df0c6c14bf67ce9c643da58c5a0ef Loading...

	unknown	623 B	2023-10-28	2024-05-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-28 00:22:42 Last Seen2024-05-18 20:05:20 Times Seen30 Hash 448bf6ba1a81b08fc827beeab1762a8f aa93a42c463893e0753c4b8ef2a1a4536fe79ee1 ba80fe3447201708f905503a252055c3593ce907fbce00c61770f33d63e83710 Loading...

	videzz.net/embed-gf4k2ra2ygab.html	488 B	2023-03-07	2024-05-18
Pretty URL videzz.net/embed-gf4k2ra2ygab.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:08:16 Last Seen2024-05-18 20:05:20 Times Seen149 Hash c88a098ddb34ae8eb653079349e1eb71 c273d06595b90b3f3eadde95865d4fd88a2cdc4a f8be9aff934fb09a35261e76d411268402098e38f3c1468679a0ffddf96cb8cd Loading...

	videzz.net/embed-gf4k2ra2ygab.html	1.8 kB	2024-05-05	2024-05-05
Pretty URL videzz.net/embed-gf4k2ra2ygab.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-05 15:02:58 Last Seen2024-05-05 15:02:58 Times Seen1 Hash c1393b96feae4edea57d14e731f4bfbf 1372938ed799a95e11d599be482775dfc437c35f b42099e882af0b3a86ea24aed7565a96062eedab2c8947aaf816d188c5941880 Loading...

	videzz.net/embed-gf4k2ra2ygab.html	1.9 kB	2023-03-26	2024-05-18
Pretty URL videzz.net/embed-gf4k2ra2ygab.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-26 09:32:06 Last Seen2024-05-18 20:05:20 Times Seen133 Hash 82e1ab0f6fb26e1a626e1ad6812a2e50 ff89302fd6c7736cfe3c0ce1bea0da569a763ced c1133cdc2ae23220a521a156d0edc736cea501341435673899a05f4d54597373 Loading...

	unknown	654 B	2023-12-02	2024-05-16
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-02 22:02:09 Last Seen2024-05-16 17:16:22 Times Seen30 Hash 23fc70c20089168d050ef5eaddbf7ee6 5a80fea5f23400aae85a0cda6e784a7630713a27 b62d7d1ce2825740f2bf6ee197b23ee9e4f2c4189fca72142c4fa049588e665e Loading...

	static.addtoany.com/menu/svg/icons/facebook.js	429 B	2024-04-12	2024-05-18
Pretty URL static.addtoany.com/menu/svg/icons/facebook.js IP 172.67.39.148 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 16:11:44 Last Seen2024-05-18 20:05:20 Times Seen212 Hash 014bcc757e484e12e3aea6c9d768fd4b 4c17157d0012f8002e4e6cf77c5f4a9747792cf4 4b475960843a5619b907af1f0a89e3136bd5e6a4a700ec78cb417f302647cf49 Loading...

	videzz.net/embed-gf4k2ra2ygab.html	1.9 kB	2023-05-14	2024-05-18
Pretty URL videzz.net/embed-gf4k2ra2ygab.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-14 23:54:05 Last Seen2024-05-18 20:05:20 Times Seen132 Hash a692b14c46b795baddef6cde7925aec0 83421ee7434ca7916a53f711c1a207c04e264e3c 0a136fef0aef4b2b4d90057c95c48e84618ecebe376ad324594150d0b8588f90 Loading...

	static.addtoany.com/menu/svg/icons/twitter.js	645 B	2024-04-12	2024-05-18
Pretty URL static.addtoany.com/menu/svg/icons/twitter.js IP 172.67.39.148 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 16:11:45 Last Seen2024-05-18 20:05:21 Times Seen200 Hash ca05cf90bd32d6134c0b92464c343f9a 187feb5cc71d225717838268487a0abc9b8d405c 3003867b66a32c12fdafeefc27cf06d906e5a99ba275550ab757f4bb04834636 Loading...

	t7rsx24c5.com/i/3144?nsid=1&partner_subid=2	0 B	2023-03-07	2024-05-18
Pretty URL t7rsx24c5.com/i/3144?nsid=1&partner_subid=2 IP 159.69.42.212 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-18 21:28:10 Times Seen37800600 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	videzz.net/embed-gf4k2ra2ygab.html	221 B	2024-05-05	2024-05-05
Pretty URL videzz.net/embed-gf4k2ra2ygab.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-05 15:02:58 Last Seen2024-05-05 15:02:58 Times Seen1 Hash 71980bf913377a478e88de0a7611925a 4b97a326afc692d73fbc2582e05dc72a6116cd8c c5c7f5795568f286144bc2d3e01055299d289eb0ec7b46b01c4dc7de904aee74 Loading...

	videzz.net/embed-gf4k2ra2ygab.html	1.9 kB	2023-09-20	2024-05-18
Pretty URL videzz.net/embed-gf4k2ra2ygab.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-20 05:49:22 Last Seen2024-05-18 20:05:20 Times Seen121 Hash ea18635ebabe6012d41f9fe215f59b54 4bb7351c02f51a2d10b55eb8daecf0862aec3db7 4e69daf6970b0700406f701311ff61bf0623749d951327a09de054a9906c8056 Loading...

	videzz.net/js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42	140 kB	2023-03-08	2024-05-18
Pretty URL videzz.net/js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:32:59 Last Seen2024-05-18 20:05:20 Times Seen154 Hash 8986804e792bac03d992cfa0d65281de 4a406ba9ac7ead8cfc1d181c6abd2340dae2bf44 e94d1a4f4bfe4d0efd8dc95e86573d32172fa8a0f08ee328c377962379bd9295 Loading...

	static.addtoany.com/menu/locale/ru.js	2.1 kB	2023-03-07	2024-05-18
Pretty URL static.addtoany.com/menu/locale/ru.js IP 172.67.39.148 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:36:27 Last Seen2024-05-18 20:05:21 Times Seen193 Hash c0717dc8cde3baa722c4e7d4c12a2cb0 6e8702b80bdcbe0cd5fc183ce582b2add61d0863 cde5eaa4da56876821229a97a09a4b53e929ea30b7310848d0e84212a5137397 Loading...

	unknown	658 B	2023-12-02	2024-05-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-02 22:02:09 Last Seen2024-05-18 20:05:20 Times Seen36 Hash f2a627f60c3e858d02c665cb50e29998 cf946e95e052f6c63ec09abbfd64890f893b9341 74b81147b6d910383e801b755eabad4dc3df3f82e797aa8fa720bb00497cfc76 Loading...

	static.addtoany.com/menu/svg/icons/viber.js	1.0 kB	2024-04-12	2024-05-18
Pretty URL static.addtoany.com/menu/svg/icons/viber.js IP 172.67.39.148 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 13:25:33 Last Seen2024-05-18 20:05:20 Times Seen178 Hash aeffbbeba6dd343b89fdc22cdf23f8c8 7be9f0a8fbd22f85cd4408ed04b69e98cbb79de7 c38246b300667ea8ab28940a729e65168f981baf8adc8d708c299e85b9e2dcee Loading...

	static2-ma-ht.project1content.com/tour/main.f95fa135.js	466 kB	2024-05-03	2024-05-07
Pretty URL static2-ma-ht.project1content.com/tour/main.f95fa135.js IP 64.210.135.114 ASN #30361 SWIFTWILL2 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 00:55:16 Last Seen2024-05-07 19:22:58 Times Seen23 Hash 10348d9e95977ee53d458a15e11b6658 84959c026ccf29b4d504c5b5178b45cba126d43d 04e22fa7c4fe2049f9da0ff068807e24129473f3e0693cddc5406cf07ebb807e Loading...

	static2-ma-ht.project1content.com/tour/@one/blocks/async/FooterBlock.39e014d8.js	3.4 kB	2024-05-03	2024-05-18
Pretty URL static2-ma-ht.project1content.com/tour/@one/blocks/async/FooterBlock.39e014d8.js IP 64.210.135.114 ASN #30361 SWIFTWILL2 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 00:55:15 Last Seen2024-05-18 14:09:07 Times Seen41 Hash dfb7b4e7dd147ab4b18cc3fd916d244a 7d20ad251172d8d8b85a1a2a8eadefa20e2095d7 f9a30058bb952c22bfba509c73ed1997eb58006ebd5de34478b738bf20429be9 Loading...

	static.addtoany.com/menu/svg/icons/telegram.js	360 B	2023-03-08	2024-05-18
Pretty URL static.addtoany.com/menu/svg/icons/telegram.js IP 172.67.39.148 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:33:09 Last Seen2024-05-18 20:05:20 Times Seen921 Hash 48f25c508c92c3601cf047609318001f 59117e825084c63a0dda48edec82c14a60e16f23 6415561e892cf9d614e7179f71353af4ceadfd641d71c42fe54c9420eb0d0138 Loading...

	tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A	542 B	2024-05-05	2024-05-05
Pretty URL tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A IP 66.254.114.234 ASN #29789 REFLECTED Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-05 15:02:58 Last Seen2024-05-05 15:02:58 Times Seen1 Hash ab154db6da16f578ba8584faeb415fa5 d3098738f65cb6ae02ba2405409e2af7897df74a 976a4a298bcc3c6c115bc706173bd57c48a7f329df033dd2f7745d32f3e9513e Loading...

	static.addtoany.com/menu/svg/icons/whatsapp.js	1.1 kB	2024-04-12	2024-05-18
Pretty URL static.addtoany.com/menu/svg/icons/whatsapp.js IP 172.67.39.148 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 13:25:33 Last Seen2024-05-18 20:05:21 Times Seen202 Hash 0e8b3ac6bda5451ff39c5ecd6d7b3873 fb477a11167000a30e45369e686ec43dd62d026b c15e1379ca2c59f99912500bbc23a0d1d88f43198cbe1b53d87776fa351385eb Loading...

	unknown	656 B	2023-12-02	2024-05-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-02 22:02:10 Last Seen2024-05-18 20:05:20 Times Seen36 Hash 0cb63a542cc8304f1b414eb985b358d8 62b35a29974ed7788d74efbbf6f37bc0603a7a57 f1a1ce1f8c7cfcebe82f6c3e05267fcdc1d052073de83232c3f65a6a246a927c Loading...

	videzz.net/js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42	416 kB	2023-03-07	2024-05-18
Pretty URL videzz.net/js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:08:16 Last Seen2024-05-18 20:05:20 Times Seen155 Hash 9721700ae4b3d8e0e81f9c6c1c8d511b 1c987ebb7fac787eaa3b2190c9b53bb685d5b8ea d4098ce7457b5191970d2df49c8b8f6c2ffc0d8510673777a08910f0b68d5c2f Loading...

	ossgogoaton.com/tag.min.js	81 kB	2024-05-05	2024-05-05
Pretty URL ossgogoaton.com/tag.min.js IP 172.67.184.45 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 01:13:36 Last Seen2024-05-05 15:03:00 Times Seen8 Hash 14d554ae8ff1eb2bce0d64811f24b33c 3333891142b7dda1146e8fbabf6803ceaff3866c 39f02dd35b16792971ac79825eb74332c87e2cea1677ee73812e36f5668742b1 Loading...

	static2-ma-ht.project1content.com/tour/@one/blocks/async/ContainerBlock.877c97af.js	232 B	2023-03-14	2024-05-18
Pretty URL static2-ma-ht.project1content.com/tour/@one/blocks/async/ContainerBlock.877c97af.js IP 64.210.135.114 ASN #30361 SWIFTWILL2 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 05:15:36 Last Seen2024-05-18 14:09:08 Times Seen110 Hash ed2f44cc9f2871d8668252e176c16e33 efa4750156409a21bc47ae02827d792d14ca899d 5544d0dd2f72ed204f9d4e9ca610e167ceb31854b27d188e55b1360319962e1b Loading...

	videzz.net/js/jquery.min.js	96 kB	2023-03-07	2024-05-18
Pretty URL videzz.net/js/jquery.min.js IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-18 20:05:21 Times Seen48029 Hash 8101d596b2b8fa35fe3a634ea342d7c3 d6c1f41972de07b09bfa63d2e50f9ab41ec372bd 540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441 Loading...

	videzz.net/embed-gf4k2ra2ygab.html	1.9 kB	2023-09-20	2024-05-18
Pretty URL videzz.net/embed-gf4k2ra2ygab.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-20 05:49:22 Last Seen2024-05-18 20:05:20 Times Seen121 Hash af6177bd7ff00168d56dcbb2dfad8aad b0565c811d5bc5e2b4923cc1194a81126512010c 68848e296ab0993815dd2ae9efbb9b41e1bddf7d57aafd1ce37fcb6588b09901 Loading...

	static.addtoany.com/menu/svg/icons/reddit.js	893 B	2024-04-16	2024-05-18
Pretty URL static.addtoany.com/menu/svg/icons/reddit.js IP 172.67.39.148 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 17:58:32 Last Seen2024-05-18 20:05:20 Times Seen165 Hash 408cc755e613b4f00fbe10d7411ed087 14341990ed687477b3addbdd1a3b50ae8a98589b 68ed9b82b62d45cf5d12587a7e9566a4ddeb94d69bcb225e9e3c7268c76b3cbb Loading...

	www.googletagmanager.com/gtm.js?id=GTM-56DK3TH	209 kB	2024-05-05	2024-05-05
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-56DK3TH IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 15:02:58 Last Seen2024-05-05 15:02:58 Times Seen2 Hash 719cd3ef6ade8e8f7a439edb9c590798 165b698a95cacc05283d1e4b39fe057e03acde32 295b6bb54ede55404128ed7a5e8187f240863df4c5f38ac840fdbc4cb528fc8f Loading...

	static.addtoany.com/menu/modules/core.BRQnzO8v.js	72 kB	2024-04-12	2024-05-18
Pretty URL static.addtoany.com/menu/modules/core.BRQnzO8v.js IP 172.67.39.148 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 02:34:00 Last Seen2024-05-18 21:17:07 Times Seen1655 Hash 629401c31553d2f42a6ca46e58c2a97b 0ab6084caa72f90913c7e4119f491838726ec5c2 91b9b24f0aa59668e4d0a770ee7a294b9baa361a76a20ade8128cd0482a5d805 Loading...

	cdn.itskiddien.club/apu.php?zoneid=5902452&var=5708419	94 kB	2024-05-05	2024-05-05
Pretty URL cdn.itskiddien.club/apu.php?zoneid=5902452&var=5708419 IP 139.45.197.236 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 15:02:58 Last Seen2024-05-05 15:02:58 Times Seen1 Hash 134fb3f0c74381ea1216d35f8b6b54c1 e89a86ae021024e16d2d6c9aef7031c6559770ac fe63552268c4f81e0690f497d274f4957d290d17b0526296829520cf4ea372fb Loading...

	dog.seetron.net/api/users/59846?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&sid=e322800e-4aca-4f20-b3cf-d98366f0be01&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908	637 B	2024-05-05	2024-05-05
Pretty URL dog.seetron.net/api/users/59846?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&sid=e322800e-4aca-4f20-b3cf-d98366f0be01&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908 IP 135.181.208.216 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 15:02:58 Last Seen2024-05-05 15:02:58 Times Seen1 Hash ae0a7b7a39494f187d20415e38d4bb71 d5c32ba994e6dd69f9d4d3db9bd103f1d8e3d7e8 e2ae00bc008168dfc397b4bfb1c08573df2e35ef2389f1b491329341bd9152d0 Loading...

	static2-ma-ht.project1content.com/tour/@one/blocks/async/ColumnBlock.8745db90.js	435 B	2023-03-14	2024-05-18
Pretty URL static2-ma-ht.project1content.com/tour/@one/blocks/async/ColumnBlock.8745db90.js IP 64.210.135.114 ASN #30361 SWIFTWILL2 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 05:15:36 Last Seen2024-05-18 14:09:08 Times Seen110 Hash bba82fdfdc2684ce6c44701d57090667 8625624d8247f8c9a94ab6ff74e977e54ee1d083 9116e30438d4725883a76b2efb55417c33529009297515869f1b92dd89d7f602 Loading...

	t7rsx24c5.com/i/3144?nsid=1&partner_subid=2	0 B	2023-03-07	2024-05-18
Pretty URL t7rsx24c5.com/i/3144?nsid=1&partner_subid=2 IP 159.69.42.212 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-18 21:28:10 Times Seen37800600 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	videzz.net/js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42	159 kB	2023-03-07	2024-05-18
Pretty URL videzz.net/js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:08:17 Last Seen2024-05-18 20:05:21 Times Seen259 Hash 7c33538390b466ae717449d729bb32ea 49ea1eb1dc06467f516eae28e09863a23b244a31 a2f37fa7aee9e9248856735b807b028c93be60eb6bb9916595ba123690513f02 Loading...

	unknown	662 B	2023-12-02	2024-05-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-02 22:02:10 Last Seen2024-05-18 20:05:20 Times Seen33 Hash 2a5e6e1741ecff15c9b8353884d70b4e b3c484dd4bdf6d7d89aa3d13a26e66ee253ef318 2a4a2bc469d46ae85dae6362bfd3a172c38404575b09d80bae244c664dd8af83 Loading...

	wrinkleirritateoverrated.com/f1/77/6d/f1776d24271c5ad55c5f1492e2d01e10.js	84 kB	2024-05-05	2024-05-05
Pretty URL wrinkleirritateoverrated.com/f1/77/6d/f1776d24271c5ad55c5f1492e2d01e10.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 15:02:58 Last Seen2024-05-05 15:02:59 Times Seen2 Hash 42a21aea71c9127e81a065c752fb052a 455f3d733a9339fd322e8d423359977951f8e39d c41a66755249b04ebec1b2113ced04e663a4f476d44b91063b6ffb17a50029a0 Loading...

	cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js	18 kB	2023-03-07	2024-05-18
Pretty URL cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-05-18 21:22:29 Times Seen2972 Hash 12dd498bf90c536803c2aad708b66c2b 5f9363d39a405d1c94328cf2303ff4a05c0ad163 c4e20f53f5ef0ed44b783437aa3f4638a9a56cc4aa29ae83ed9212eb2807052a Loading...

	videzz.net/js/ads.js?v=1.0	211 B	2023-03-07	2024-05-18
Pretty URL videzz.net/js/ads.js?v=1.0 IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:08:16 Last Seen2024-05-18 20:05:20 Times Seen274 Hash 09f34de71e8853387dd398fbb263af69 4ccb7007fcebcffe64eaa80f2991509fdbac55d5 6ca7e6aebc6e3eec26d39e540e255a738fd9e48e9b97bd0e2a714686377ac523 Loading...

	unknown	625 B	2023-10-28	2024-05-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-28 00:22:41 Last Seen2024-05-18 20:05:20 Times Seen30 Hash c792d5d07a8195cc1c0c3391296d9540 c251471b68199fd4baf055ec3a6fe010f2878a71 d0ddb0d20e6a09a1dbc9fe02f3d386995f163f0dc403301fb2692ec7eeb94cfe Loading...

	unknown	652 B	2023-11-02	2024-05-16
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 00:44:33 Last Seen2024-05-16 17:16:23 Times Seen31 Hash 90a7fb6f3fd2e87d1af6ef8356ae8573 8a88de6448927a9008ddf081f9bc5473c3b59e67 a7e229056bbef6f07db2831da9341f40f48d71f93f4fff8c29e325c1e721c4cc Loading...

	videzz.net/sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42	42 kB	2023-03-07	2024-05-18
Pretty URL videzz.net/sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:08:16 Last Seen2024-05-18 20:05:21 Times Seen248 Hash 764aafd976dd9cd9f33279bfafa02908 e9ad856ec00bccfdcbe17b79113681685c943b8d 2c20e295faeb1ef24dae1e26caa5089fdb2ba5a36a86a6a26780b8a515ca99aa Loading...

	videzz.net/js/pop.js?v=1.0	35 B	2023-03-07	2024-05-18
Pretty URL videzz.net/js/pop.js?v=1.0 IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:29 Last Seen2024-05-18 20:05:20 Times Seen289 Hash da4bf5414bf75eefb21872f9b59fe6fc e34335e0705397a4ad02c406a2e92333e6d2b0e5 d48b428c1788391a1aef29802daaa691077732dc7b821d0968831bc50b19278d Loading...

	unknown	660 B	2023-12-02	2024-05-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-02 22:02:10 Last Seen2024-05-18 20:05:20 Times Seen33 Hash 6fd1be1abc624d10186974c2a6ef4502 8d975476c4defc975a3ca622558427daec6c3f38 44adf544834a165ce516122963884d91f0aaa353c313e469faea995aed849fab Loading...

	static2-ma-ht.project1content.com/tour/vendors~main.d3f090c2.js	1.3 MB	2024-05-03	2024-05-07
Pretty URL static2-ma-ht.project1content.com/tour/vendors~main.d3f090c2.js IP 64.210.135.114 ASN #30361 SWIFTWILL2 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 00:55:15 Last Seen2024-05-07 19:22:58 Times Seen19 Hash 262ae818870c5669ac0e9b9bb9061780 47654653cf65ab87f0cb5929f91c8ac0ed1397f7 cfc17e546c02b638c1c2091a0f8ef6947a5ea8d9d8fbf9a3c9a0cb3408cf8cbf Loading...

	videzz.net/embed-gf4k2ra2ygab.html	1.9 kB	2023-12-02	2024-05-18
Pretty URL videzz.net/embed-gf4k2ra2ygab.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-02 22:02:10 Last Seen2024-05-18 20:05:20 Times Seen112 Hash 861dcaf645aae37b6316256c150d9dfb 3a9f80b6a4bf4c7807b354238ee1092098ef0592 8580955f289133f8987846865a71337744c9e2f39defb5c7bad0df0752a47ae7 Loading...

	myliveforyoudreder.com/vidozza.js	1.6 kB	2023-03-08	2024-05-18
Pretty URL myliveforyoudreder.com/vidozza.js IP 172.67.151.245 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:28:37 Last Seen2024-05-18 20:05:20 Times Seen188 Hash b340619418518ced51fbbc860814ea19 e2cbf47a089e8941bcdb6f24c64fad9004852348 ebbf367cc151e337e4c4d375e86682b6e1593b25224c6c733b4cea4f507c4000 Loading...

	videzz.net/js/videojs.stm.5.min.js?0.18986998703047	7.2 kB	2024-03-08	2024-05-18
Pretty URL videzz.net/js/videojs.stm.5.min.js?0.18986998703047 IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-08 05:50:53 Last Seen2024-05-18 20:05:20 Times Seen110 Hash 4630f52d883cdd6dc5b7e0aee209fe40 ae08102d07ab32e76d5dbd12fa7db315e6f51f4e b74ebfdefad877a934b2e7d38afb3a56ad4db4ebbd88a72b7ae4a44fad74c0d3 Loading...

	tgp1.brazzersnetwork.com/_p1cdn/tour/vortex.modern.min.js	38 kB	2024-02-06	2024-05-18
Pretty URL tgp1.brazzersnetwork.com/_p1cdn/tour/vortex.modern.min.js IP 66.254.114.234 ASN #29789 REFLECTED Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-06 13:03:22 Last Seen2024-05-18 14:09:09 Times Seen94 Hash 06031ae29667c65eb61158093cd96589 1b2eb0f574ed2a8147515b01dbcfa1d59b15aa87 27c67af023f2e2441f9e51f334267c1cab79c99d1f957e82992de8a62b0bd9f3 Loading...

	cdn.o333o.com/vast-im.js	310 kB	2024-03-22	2024-05-18
Pretty URL cdn.o333o.com/vast-im.js IP 143.204.55.93 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-22 21:45:50 Last Seen2024-05-18 20:05:20 Times Seen382 Hash 04bdb2fd7797c33d38ad8a6a0997b389 a69a0999b9106aa1e49a6728c84b3e82b899276d 3039a1d2d40fce3b96ce115bc8fb858539ed084667fb0ee69fe68e0a682d9286 Loading...

	unknown	9.7 kB	2024-05-04	2024-05-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 17:23:27 Last Seen2024-05-18 20:05:20 Times Seen41 Hash 9b10afef621b188725357ddc3cb354e8 eafa5d3550def25ab84004fe5bb6c764bae8c7b4 5a40b246cfe96dd29952c1ecc925968fc02689639f96a763ac22dfbbd51dcef4 Loading...

	videzz.net/js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42	4.5 kB	2023-03-08	2024-05-18
Pretty URL videzz.net/js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:28:37 Last Seen2024-05-18 20:05:20 Times Seen109 Hash b3415295ff8e1f9ac2ee3804686e8000 aa440d72b1f380d6b63cea2615984bddfd78c3d0 e5b0442a1e812c047177f669bec8d9f81678b0e26d4cc98c642a00da19ccb1b7 Loading...

	videzz.net/embed-gf4k2ra2ygab.html	416 B	2023-03-07	2024-05-18
Pretty URL videzz.net/embed-gf4k2ra2ygab.html IP 78.142.18.54 ASN #208046 ColocationX Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:08:16 Last Seen2024-05-18 20:05:20 Times Seen153 Hash 7b2ab585a733a8e54eb7117dbe673331 38ba49b934ea93104d43c095a34cbebabee2416b 161196e2eb45160ec056dcf19476aaf0a8694cd099ce5ddb43f53f58fa86d0d8 Loading...

	yd.cottoidearldom.com/1clkn/14903	6 B	2023-03-07	2024-05-18
Pretty URL yd.cottoidearldom.com/1clkn/14903 IP 23.109.170.255 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:04 Last Seen2024-05-18 20:30:40 Times Seen15136 Hash 9082dc37e5e8046929da411544ad071a 41e0e3963ed94e59e8a2f115994c382712411537 b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550 Loading...

	dog.seetron.net/api/users/424503?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&sid=e322800e-4aca-4f20-b3cf-d98366f0be01&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908	674 B	2024-05-05	2024-05-05
Pretty URL dog.seetron.net/api/users/424503?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&sid=e322800e-4aca-4f20-b3cf-d98366f0be01&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908 IP 135.181.208.216 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 15:02:58 Last Seen2024-05-05 15:02:58 Times Seen1 Hash bfdd2b9cabe5fddf562c59c1bf965ebb 7b36a6da9a38034f8cf55305e0473d35414fb286 040ae115a5a3c1cbef000e848f2c5e3065d399ddb0494a2731dba0855d9343d3 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 73497a37c3561adbd8ce84e4f017b368	9 B	2023-03-07	2024-05-18
Pretty Observations First Seen2023-03-07 01:03:23 Last Seen2024-05-18 20:50:12 Times Seen2455 Hash 73497a37c3561adbd8ce84e4f017b368 9193ae73cb3dd2833be8c942714d5544bfb628c9 9312a1adbbf0a4c05fc296d158ec3bd39acfe50e9e98ff02688139aad6fc3351 Loading...

		Size	First Seen	Last Seen
	#1 Write - bf6e0ef92ae84c6ac72a2e33e3bd0ba5	614 B	2023-09-20	2024-05-18
Pretty Observations First Seen2023-09-20 05:49:23 Last Seen2024-05-18 20:05:20 Times Seen121 Hash bf6e0ef92ae84c6ac72a2e33e3bd0ba5 dd276e9188ea2de2da9b957adbb91c7e2b08d4ec 5f5f7af99db9aecf63f1ae5480d2b95a82e350abcdd3a765f5537235d12a4744 Loading...

	#2 Write - ab34ea7c979c46402352a8ce4c7b87cf	614 B	2023-12-02	2024-05-18
Pretty Observations First Seen2023-12-02 22:02:11 Last Seen2024-05-18 20:05:20 Times Seen112 Hash ab34ea7c979c46402352a8ce4c7b87cf 4ec90223aeea83fe3850db77b92c11eed50c99d3 fd21c10a5b8c554e00e76da6ce58475053e414d4280741ed032a857cf9876978 Loading...

	#3 Write - 7aea427efe0ebb35cac7f6c65074feaa	613 B	2023-03-26	2024-05-18
Pretty Observations First Seen2023-03-26 09:32:06 Last Seen2024-05-18 20:05:20 Times Seen133 Hash 7aea427efe0ebb35cac7f6c65074feaa 7f7025ff75b6c305cf0f7258c68dcc5c3b787ea6 d72f60419e2549dc6934524845bed150c6aa5e1541b5eac18dd5c145f40d2857 Loading...

	#4 Write - 43449de866396eb0131d8111f4fa3895	613 B	2023-05-14	2024-05-18
Pretty Observations First Seen2023-05-14 23:54:06 Last Seen2024-05-18 20:05:20 Times Seen132 Hash 43449de866396eb0131d8111f4fa3895 d74126ea9f2c40f8395c79b3e7f69760f91702fc a67ffe15bbd54d8f4cc64a1e458fc3b742f73783efb009b827b9cf3e9b502add Loading...

	#5 Write - c661bb9a7cc33ed4849427e94a91858c	614 B	2023-09-20	2024-05-18
Pretty Observations First Seen2023-09-20 05:49:23 Last Seen2024-05-18 20:05:20 Times Seen120 Hash c661bb9a7cc33ed4849427e94a91858c 4be38292beb83aa1b58a668283dfe08ed97d7a42 e56ca9ad4497b40fd4b7c14e2c5e6c5b58563af9cb588188992d2189d22dc477 Loading...

HTTP Transactions (229)

URL IP Response Size

videzz.net/js/pop.js?v=1.0

78.142.18.54

200 OK

35 B

URL GET HTTP/2
videzz.net/js/pop.js?v=1.0
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33
ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT

File type
ASCII text
Size
35 B (35 bytes)
Hash
da4bf5414bf75eefb21872f9b59fe6fc
e34335e0705397a4ad02c406a2e92333e6d2b0e5
d48b428c1788391a1aef29802daaa691077732dc7b821d0968831bc50b19278d

HTTP Headers

GET /js/pop.js?v=1.0 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-gf4k2ra2ygab.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 May 2024 13:02:02 GMT
content-type: application/javascript
content-length: 35
last-modified: Sat, 27 Apr 2024 07:30:38 GMT
etag: "662ca99e-23"
expires: Tue, 04 Jun 2024 12:57:59 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

videzz.net/js/ads.js?v=1.0

78.142.18.54

200 OK

211 B

URL GET HTTP/2
videzz.net/js/ads.js?v=1.0
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33
ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT

File type
Unicode text, UTF-8 text
Size
211 B (211 bytes)
Hash
09f34de71e8853387dd398fbb263af69
4ccb7007fcebcffe64eaa80f2991509fdbac55d5
6ca7e6aebc6e3eec26d39e540e255a738fd9e48e9b97bd0e2a714686377ac523

HTTP Headers

GET /js/ads.js?v=1.0 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-gf4k2ra2ygab.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 May 2024 13:02:02 GMT
content-type: application/javascript
content-length: 211
last-modified: Sat, 27 Apr 2024 07:30:42 GMT
etag: "662ca9a2-d3"
expires: Tue, 04 Jun 2024 12:57:59 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

dog.seetron.net/lx4oag1.js

135.181.208.216

200 OK

77 kB

URL GET HTTP/2
dog.seetron.net/lx4oag1.js
IP
135.181.208.216:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjecta.bdsmz.tube
FingerprintAA:4D:03:7A:4E:94:8C:76:58:6E:53:CC:8E:99:24:E6:51:84:BF:05
ValidityFri, 03 May 2024 10:27:08 GMT - Thu, 01 Aug 2024 10:27:07 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Size
77 kB (76790 bytes)
Hash
a6781eeb8be115c2cc64c5b4898e5b9d
76001e6e130f936956842ce1fb672ca16be2370e
cb8949c4918f30d767c8a97d1b1ddb36eabccf8d93659a80f4e850caa3701da2

HTTP Headers

GET /lx4oag1.js HTTP/1.1
Host: dog.seetron.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 13:02:02 GMT
content-type: application/javascript
content-length: 76790
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
vary: Accept-Encoding
etag: "65fd69b1-12bf6"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 201
cf-ray: 8685d408ccf5d995-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2

videzz.net/images-newtheme/adb_logo.png

78.142.18.54

200 OK

8.3 kB

URL GET HTTP/2
videzz.net/images-newtheme/adb_logo.png
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33
ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT

File type
PNG image data, 178 x 178, 8-bit/color RGBA, non-interlaced
Size
8.3 kB (8308 bytes)
Hash
98fcd22c469a5aa46df8ec4e7a8eafc9
e8d95f175d3008736995a482d7304410a1da490a
b1e79e219bf46ca5ef14a9619c5440e78c2ebdbc34b8f0c65f0777a8b02fc30c

HTTP Headers

GET /images-newtheme/adb_logo.png HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-gf4k2ra2ygab.html
Cookie: lang=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 May 2024 13:02:02 GMT
content-type: image/png
content-length: 8308
last-modified: Sat, 27 Apr 2024 07:30:42 GMT
etag: "662ca9a2-2074"
expires: Tue, 04 Jun 2024 12:58:03 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

videzz.net/images-newtheme/attention.png

78.142.18.54

200 OK

6.4 kB

URL GET HTTP/2
videzz.net/images-newtheme/attention.png
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33
ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT

File type
PNG image data, 263 x 231, 8-bit/color RGBA, non-interlaced
Size
6.4 kB (6377 bytes)
Hash
d28ebe1b4425fa4ab5d804792b5aa626
3183e2c59cdaed547de5fb1fc940709ed5117003
36fc8d817d7a356b2b8e8697697a5ce86bedadfea8df2a4e88f9514bb1ce02f6

HTTP Headers

GET /images-newtheme/attention.png HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-gf4k2ra2ygab.html
Cookie: lang=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 May 2024 13:02:02 GMT
content-type: image/png
content-length: 6377
last-modified: Sat, 27 Apr 2024 07:30:38 GMT
etag: "662ca99e-18e9"
expires: Tue, 04 Jun 2024 12:58:20 GMT
cache-control: max-age=2592000
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

dog.seetron.net/LrfK7A3.js

135.181.208.216

200 OK

77 kB

URL GET HTTP/2
dog.seetron.net/LrfK7A3.js
IP
135.181.208.216:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjecta.bdsmz.tube
FingerprintAA:4D:03:7A:4E:94:8C:76:58:6E:53:CC:8E:99:24:E6:51:84:BF:05
ValidityFri, 03 May 2024 10:27:08 GMT - Thu, 01 Aug 2024 10:27:07 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Size
77 kB (76790 bytes)
Hash
a6781eeb8be115c2cc64c5b4898e5b9d
76001e6e130f936956842ce1fb672ca16be2370e
cb8949c4918f30d767c8a97d1b1ddb36eabccf8d93659a80f4e850caa3701da2

HTTP Headers

GET /LrfK7A3.js HTTP/1.1
Host: dog.seetron.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 13:02:02 GMT
content-type: application/javascript
content-length: 76790
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
vary: Accept-Encoding
etag: "65fd69b1-12bf6"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 201
cf-ray: 8685d408ccf5d995-HEL
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-158623850-1

142.250.74.72

200 OK

75 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-158623850-1
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
75 kB (74901 bytes)
Hash
a8186578f826197f2444f46f6e33aae1
809d47b1962c8ca2a545a32fe22e60c13b607eb9
8dc246b48dff7b82d29cc145a25f9aadd1577224963aa614d6b2ecf91750dfc1

HTTP Headers

GET /gtag/js?id=UA-158623850-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 May 2024 13:02:02 GMT
expires: Sun, 05 May 2024 13:02:02 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74901
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css

104.17.25.14

200 OK

5.6 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (30837)
Size
5.6 kB (5631 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:02 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 311587
expires: Fri, 25 Apr 2025 13:02:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vnGaDQ%2FFKkaEx3KMVH5MiytZZlBEENfO2KMrOpsRI01Vx2ogMVd5%2FXwUt4VjdByRqsQ1a1hUbsMdJ2iaKQYHsSA9qlfLNuS3K8v5YYaA0vNfGHXJT70WDkZqvnWw4pRyHL8xISwz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87f0ec32bf790b45-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

yd.cottoidearldom.com/1clkn/14903

23.109.170.255

200 OK

26 B

URL GET HTTP/1.1
yd.cottoidearldom.com/1clkn/14903
IP
23.109.170.255:443
ASN
#7979 SERVERS-COM

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectyd.cottoidearldom.com
Fingerprint2A:D0:1B:ED:00:0F:4A:13:3B:97:DD:33:66:5B:7E:F8:F8:E9:C8:CE
ValidityThu, 25 Apr 2024 06:21:32 GMT - Wed, 24 Jul 2024 06:21:31 GMT

File type
ASCII text, with no line terminators
Size
26 B (26 bytes)
Hash
9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1clkn/14903 HTTP/1.1
Host: yd.cottoidearldom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 May 2024 13:02:02 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Mon, 06-May-2024 13:02:02 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Mon, 06-May-2024 13:02:02 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

www.googletagmanager.com/gtm.js?id=GTM-56DK3TH

142.250.74.72

200 OK

74 kB

URL GET HTTP/3
www.googletagmanager.com/gtm.js?id=GTM-56DK3TH
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (3287)
Size
74 kB (73688 bytes)
Hash
719cd3ef6ade8e8f7a439edb9c590798
165b698a95cacc05283d1e4b39fe057e03acde32
295b6bb54ede55404128ed7a5e8187f240863df4c5f38ac840fdbc4cb528fc8f

HTTP Headers

GET /gtm.js?id=GTM-56DK3TH HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 May 2024 13:02:02 GMT
expires: Sun, 05 May 2024 13:02:02 GMT
cache-control: private, max-age=900
last-modified: Sun, 05 May 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73688
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

s.o333o.com/adgpt.js

85.10.205.45

200 OK

820 B

URL GET HTTP/2
s.o333o.com/adgpt.js
IP
85.10.205.45:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerSectigo Limited
Subjects.o333o.com
FingerprintC1:C0:0F:C0:EF:0F:F7:7A:36:2F:00:9E:5C:55:63:54:63:A3:A6:46
ValidityMon, 12 Feb 2024 00:00:00 GMT - Fri, 28 Feb 2025 23:59:59 GMT

File type
ASCII text, with very long lines (2040), with no line terminators
Size
820 B (820 bytes)
Hash
55f8db8e0ec58b646f0b5425b405fdd0
0c79af1239cafc7ec4783f20b0b886a61daccc09
3ec8849ba857ec32cdc682ea93f0c1f8e8ab97980af4f1d8ec312684ed0f5237

HTTP Headers

GET /adgpt.js HTTP/1.1
Host: s.o333o.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 13:02:03 GMT
content-type: application/javascript
content-length: 820
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
vary: Accept-Encoding
etag: "65fd69b1-334"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
X-Firefox-Spdy: h2

profitablegatecpm.com/fd/40/b6/fd40b682a05e4aaf489d29601350aa66.js

172.240.253.132

200 OK

16 kB

URL GET HTTP/1.1
profitablegatecpm.com/fd/40/b6/fd40b682a05e4aaf489d29601350aa66.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectprofitablegatecpm.com
Fingerprint9D:FB:8C:AD:4D:64:98:6B:85:78:33:54:E7:A3:BB:10:ED:77:63:30
ValidityFri, 05 Apr 2024 18:10:33 GMT - Thu, 04 Jul 2024 18:10:32 GMT

File type
JavaScript source, ASCII text, with very long lines (45451), with no line terminators
Size
16 kB (16081 bytes)
Hash
5aaa239eb688770dca3298a8694b75ff
85fec975b9d9aeeabfcfff2c50d2ec4cc1641bff
6a0a046b9cc153b805ab28edef0ca6b549593b482f86ec97dabdfc40cff4ee46

HTTP Headers

GET /fd/40/b6/fd40b682a05e4aaf489d29601350aa66.js HTTP/1.1
Host: profitablegatecpm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 05 May 2024 13:02:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-3448=1; expires=Wed, 08 May 2024 16:02:02 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8376f4cb42312841ece96aeb71022b01
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

ocsp.r2m03.amazontrust.com/

3.164.222.26

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
3.164.222.26:0
ASN
#0

File type
data
Size
471 B (471 bytes)
Hash
691c3f87e4fe41a736328d3c71e2dbdc
fd76f455b38ba18f00a6fb81e3585201eb3c43f6
8ac709de568d48e4c9e64b75afa6cd3fed58e2cf0c21e823af01ab342e6794b9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sun, 05 May 2024 13:02:03 GMT
Last-Modified: Sun, 05 May 2024 11:24:45 GMT
Server: ECAcc (ska/F6E3)
X-Cache: Miss from cloudfront
Via: 1.1 61fafbbf54e5560686b2d414df132838.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN53-P1
X-Amz-Cf-Id: NgaqDh8T_W3tpitVmPaejzmG4GnqL4YH8I5y5wZ9S93UHL6Uvl7KxA==
Age: 5839

proftrafficcounter.com/stats

52.29.105.35

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
52.29.105.35:443
ASN
#16509 AMAZON-02

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
2e7caaa9feac5b6aae9414208f5934a2
edd3fbeb0b43bee00e00b10f286c347c6313b2a1
5c7695d729a5c4180b5136c836b7d969e5b20d9771425a1ccf87b12c6f6d6c55

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://videzz.net
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=40246040-5b8b-4cc1-bc17-64359c1d0fbb:2:1; expires=Wed, 03 May 2034 13:02:03 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

static.addtoany.com/menu/sm.25.html

172.67.39.148

1.1 kB

URL
static.addtoany.com/menu/sm.25.html
IP
172.67.39.148:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (624)
Size
1.1 kB (1059 bytes)
Hash
41b7ed0cbe240173eea85148fcba633e
39acd5fe099974486a1c9ba11ba0fe7be6bc97ca
274d4116239b63097bb7c16e56e27cbb5a77be20392fb8e2317c0a0235185cad

HTTP Headers

GET /menu/sm.25.html HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KDW4diA%2BEdy8OJCA%2BpLQ3gmSCi7vKsIXChBvTfZhzGq8tW7aSgoBp4ko5y0Wfi66JNOUEgnNTCRlGyJjb1nGdgevGDDRtPFAHoY%2BbgJySZ8EQL4gSUts1vSKtTOhLXaOnaC5J7u8rg4y8pfyPKUkaxP0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 8604
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87f0ec354a2ab517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

videzz.net/sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42

78.142.18.54

200 OK

134 kB

URL GET HTTP/2
videzz.net/sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33
ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT

File type
gzip compressed data, from Unix
Size
134 kB (133794 bytes)
Hash
689103f8973a134aa087800a3a4d07ba
f9c8020e23d95fe224363e292e3342919b3315ad
42dec813e25ed8083f7e6497f9b74f472870268949c29dcf4ec34606dbca5960

HTTP Headers

GET /sw.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-gf4k2ra2ygab.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 May 2024 13:02:02 GMT
content-type: application/javascript
last-modified: Sat, 27 Apr 2024 07:30:42 GMT
vary: Accept-Encoding
etag: W/"662ca9a2-a554"
expires: Tue, 04 Jun 2024 13:01:24 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2

str32.vidoza.net/i/04/05638/gf4k2ra2ygab.jpg?v=1714914122

213.152.165.117

200 OK

36 kB

URL GET HTTP/2
str32.vidoza.net/i/04/05638/gf4k2ra2ygab.jpg?v=1714914122
IP
213.152.165.117:443
ASN
#49453 Global Layer B.V.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectvidoza.net
FingerprintDD:9C:2A:D1:7E:90:60:D1:BE:1C:39:29:07:29:9C:34:6A:76:A6:C6
ValidityWed, 14 Feb 2024 01:21:54 GMT - Tue, 14 May 2024 01:21:53 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 720x405, components 3
Size
36 kB (35454 bytes)
Hash
388dd2535c5215f773b4cd54f7829b34
99d815c7c40afb8277a05764dcfac7090489deaa
60f73f36eda3ecb19e76389ca591311189df1862b6c5aae4b7638139c6f8969c

HTTP Headers

GET /i/04/05638/gf4k2ra2ygab.jpg?v=1714914122 HTTP/1.1
Host: str32.vidoza.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.20.1
date: Sun, 05 May 2024 13:02:03 GMT
content-type: image/jpeg
content-length: 35454
last-modified: Thu, 09 Nov 2023 08:59:57 GMT
etag: "654c9f8d-8a7e"
expires: Sun, 19 May 2024 13:02:03 GMT
cache-control: max-age=1209600
accept-ranges: bytes
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0

104.18.11.207

200 OK

77 kB

URL GET HTTP/3
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 19:08:24
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 0a41a35b44b9a221d4e11fe69e9304aa
cdn-cache: HIT
cf-cache-status: HIT
age: 420217
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87f0ec3a2d42b4f7-OSL
alt-svc: h3=":443"; ma=86400

wrinkleirritateoverrated.com/f1/77/6d/f1776d24271c5ad55c5f1492e2d01e10.js

192.243.59.20

200 OK

30 kB

URL GET HTTP/1.1
wrinkleirritateoverrated.com/f1/77/6d/f1776d24271c5ad55c5f1492e2d01e10.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectwrinkleirritateoverrated.com
Fingerprint46:45:35:2E:47:FA:80:A7:9C:B4:55:C1:EB:97:F3:A4:0A:88:10:FB
ValidityFri, 03 May 2024 09:21:04 GMT - Thu, 01 Aug 2024 09:21:03 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
30 kB (30417 bytes)
Hash
42a21aea71c9127e81a065c752fb052a
455f3d733a9339fd322e8d423359977951f8e39d
c41a66755249b04ebec1b2113ced04e663a4f476d44b91063b6ffb17a50029a0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /f1/77/6d/f1776d24271c5ad55c5f1492e2d01e10.js HTTP/1.1
Host: wrinkleirritateoverrated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 05 May 2024 13:02:03 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b917ec66700a3eb66751c26b95646280
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

wrinkleirritateoverrated.com/sbar.json?key=fd40b682a05e4aaf489d29601350aa66&psid=CF-3448_1

192.243.59.20

200 OK

6.2 kB

URL GET HTTP/1.1
wrinkleirritateoverrated.com/sbar.json?key=fd40b682a05e4aaf489d29601350aa66&psid=CF-3448_1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectwrinkleirritateoverrated.com
Fingerprint46:45:35:2E:47:FA:80:A7:9C:B4:55:C1:EB:97:F3:A4:0A:88:10:FB
ValidityFri, 03 May 2024 09:21:04 GMT - Thu, 01 Aug 2024 09:21:03 GMT

File type
JSON text data
Size
6.2 kB (6174 bytes)
Hash
224dc3da861ee56d4503dc2e572a68b2
66f364141d537e2b81a48de6c697997a418a39e5
c94604c711b8b6e438a8118f57e6405f28e03f1fceb137aae5ab4260e9bcb47c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sbar.json?key=fd40b682a05e4aaf489d29601350aa66&psid=CF-3448_1 HTTP/1.1
Host: wrinkleirritateoverrated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 05 May 2024 13:02:04 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://videzz.net
Access-Control-Allow-Origin: https://videzz.net
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=19071538; expires=Mon, 06 May 2024 13:02:04 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 06 May 2024 13:02:04 GMT; secure; SameSite=None
uncs=1; expires=Mon, 06 May 2024 13:02:04 GMT; secure; SameSite=None
pdhtkv29=true; expires=Mon, 06 May 2024 13:02:04 GMT; secure; SameSite=None
uncs29=1; expires=Mon, 06 May 2024 13:02:04 GMT; secure; SameSite=None
slecfd40b682a05e4aaf489d29601350aa66=[5210995,5210997]; expires=Sun, 05 May 2024 13:02:09 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0259ee5274161b7ce16975468fc705a4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

wrinkleirritateoverrated.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuHrNeFETdmwiDIiisk%2B6emZ4Z9xDcn0gwbtZdRUFxqe6qnpSp7mqquqYnA0IwIHvwMHjx2vkm2bDr4s9JUFxlElAICBlPOZib4sGLCHvxIjOGDT7ofu%2FV9xV873v10ZY9Jj4sPbr0mhoIKel8s%2BZWn3%2Fb885Xl0Vq%2B9V%2BO7gRNM5Xde%2BlTlBzX6i%2BwqM1Ne%2B7nut6rlddFJrHqj8%2FBSGyux2v1nFrDb%2FmNRvo6%2F%2F3xjow1AHrHZMnINhkbt85CxGNkSZfXuJmLVfZucuJlTRXGj22%2B2a6lqoiRXJaxtpBnO6esKHM4eI9qHRnJheq94AYiglxfryHMN09EYmwtz3TGUrwFCF7BEVvDC7HEHSMSG1CsEMCRAxXVpAmt64oXdD1%2F1A6RSdk7v7fEMWEzP16Fmny%2BQUp%2BtXrStpcqNSgH5cQ%2FTFEd4zM7iEfVCCKPUT5hxDsZzJ%2Ffxlpsr1ipIJg5Wx2IcYQ8RiSD0GNAzv9hAMbO7CZg4QdVSPP81oui6jb7kRRnbV4GDDXo63Yo54btGGjqbwh8myISA4R6Q1kegNrYghtf4BZLWGYA5NPiPP6BnqsRMEJCkNQUIJCEBQ5QdErd5g0vilvMWls6J1k%2FyTXy5HKu1t0R%2BVdnhJQPYRm5VZ2TB6f%2BuM8W%2FGxxo%2BqMWu4YdD2qdvkDUrjRrvD%2FE7gevWmS2kQwIjbFxdfrDca7RsehKnMZh%2BICXku%2FhqZmJBHfyII6R6M3EMkngS1T4MWJehqiUH6RUJFWusJpga0lvIcTJXI8jnk686WPCZPzba1smnAo4OFvz5ePf79zj4iXSLTJd4X%2BwRdeXN0TRVk%2B5oqDPlqJctFIgZ0usnrOc35mTuv8vVCabZ0yQxvvxxNgWl59w1u8mWaMpF2DfnsgmCM60WlI06%2BWzJv8fCqNasXrE5ttnz14uJSkmlujFDpGFQcXv4UkZiQx75%2Fd%2FZEz73zG4QeQ9sSiT0gJwGh9hBlGzDZwcKf%2F7jPPPztGRhFoOUpJ8wcFLYcaT88PZSCQPLTnoYlDD9Y%2BGPpm%2FeaCx8g5A%2FsGGk6vU1FuWVuoqsroPkm0qRET5foyRJUDmHsQ6M80wcLv9RngVBWRqHUle1QavnJzOTpz8KIo2qrXndp0Gl6rRblrbDht%2BPAY5T6jcAPAlpHbiZxa3P5XwAAAP%2F%2FAQAA%2F%2F9DbtxKfAQAAA%3D%3D

192.243.59.20

200 OK

7 B

URL GET HTTP/1.1
wrinkleirritateoverrated.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuHrNeFETdmwiDIiisk%2B6emZ4Z9xDcn0gwbtZdRUFxqe6qnpSp7mqquqYnA0IwIHvwMHjx2vkm2bDr4s9JUFxlElAICBlPOZib4sGLCHvxIjOGDT7ofu%2FV9xV873v10ZY9Jj4sPbr0mhoIKel8s%2BZWn3%2Fb885Xl0Vq%2B9V%2BO7gRNM5Xde%2BlTlBzX6i%2BwqM1Ne%2B7nut6rlddFJrHqj8%2FBSGyux2v1nFrDb%2FmNRvo6%2F%2F3xjow1AHrHZMnINhkbt85CxGNkSZfXuJmLVfZucuJlTRXGj22%2B2a6lqoiRXJaxtpBnO6esKHM4eI9qHRnJheq94AYiglxfryHMN09EYmwtz3TGUrwFCF7BEVvDC7HEHSMSG1CsEMCRAxXVpAmt64oXdD1%2F1A6RSdk7v7fEMWEzP16Fmny%2BQUp%2BtXrStpcqNSgH5cQ%2FTFEd4zM7iEfVCCKPUT5hxDsZzJ%2Ffxlpsr1ipIJg5Wx2IcYQ8RiSD0GNAzv9hAMbO7CZg4QdVSPP81oui6jb7kRRnbV4GDDXo63Yo54btGGjqbwh8myISA4R6Q1kegNrYghtf4BZLWGYA5NPiPP6BnqsRMEJCkNQUIJCEBQ5QdErd5g0vilvMWls6J1k%2FyTXy5HKu1t0R%2BVdnhJQPYRm5VZ2TB6f%2BuM8W%2FGxxo%2BqMWu4YdD2qdvkDUrjRrvD%2FE7gevWmS2kQwIjbFxdfrDca7RsehKnMZh%2BICXku%2FhqZmJBHfyII6R6M3EMkngS1T4MWJehqiUH6RUJFWusJpga0lvIcTJXI8jnk686WPCZPzba1smnAo4OFvz5ePf79zj4iXSLTJd4X%2BwRdeXN0TRVk%2B5oqDPlqJctFIgZ0usnrOc35mTuv8vVCabZ0yQxvvxxNgWl59w1u8mWaMpF2DfnsgmCM60WlI06%2BWzJv8fCqNasXrE5ttnz14uJSkmlujFDpGFQcXv4UkZiQx75%2Fd%2FZEz73zG4QeQ9sSiT0gJwGh9hBlGzDZwcKf%2F7jPPPztGRhFoOUpJ8wcFLYcaT88PZSCQPLTnoYlDD9Y%2BGPpm%2FeaCx8g5A%2FsGGk6vU1FuWVuoqsroPkm0qRET5foyRJUDmHsQ6M80wcLv9RngVBWRqHUle1QavnJzOTpz8KIo2qrXndp0Gl6rRblrbDht%2BPAY5T6jcAPAlpHbiZxa3P5XwAAAP%2F%2FAQAA%2F%2F9DbtxKfAQAAA%3D%3D
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectwrinkleirritateoverrated.com
Fingerprint46:45:35:2E:47:FA:80:A7:9C:B4:55:C1:EB:97:F3:A4:0A:88:10:FB
ValidityFri, 03 May 2024 09:21:04 GMT - Thu, 01 Aug 2024 09:21:03 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuHrNeFETdmwiDIiisk%2B6emZ4Z9xDcn0gwbtZdRUFxqe6qnpSp7mqquqYnA0IwIHvwMHjx2vkm2bDr4s9JUFxlElAICBlPOZib4sGLCHvxIjOGDT7ofu%2FV9xV873v10ZY9Jj4sPbr0mhoIKel8s%2BZWn3%2Fb885Xl0Vq%2B9V%2BO7gRNM5Xde%2BlTlBzX6i%2BwqM1Ne%2B7nut6rlddFJrHqj8%2FBSGyux2v1nFrDb%2FmNRvo6%2F%2F3xjow1AHrHZMnINhkbt85CxGNkSZfXuJmLVfZucuJlTRXGj22%2B2a6lqoiRXJaxtpBnO6esKHM4eI9qHRnJheq94AYiglxfryHMN09EYmwtz3TGUrwFCF7BEVvDC7HEHSMSG1CsEMCRAxXVpAmt64oXdD1%2F1A6RSdk7v7fEMWEzP16Fmny%2BQUp%2BtXrStpcqNSgH5cQ%2FTFEd4zM7iEfVCCKPUT5hxDsZzJ%2Ffxlpsr1ipIJg5Wx2IcYQ8RiSD0GNAzv9hAMbO7CZg4QdVSPP81oui6jb7kRRnbV4GDDXo63Yo54btGGjqbwh8myISA4R6Q1kegNrYghtf4BZLWGYA5NPiPP6BnqsRMEJCkNQUIJCEBQ5QdErd5g0vilvMWls6J1k%2FyTXy5HKu1t0R%2BVdnhJQPYRm5VZ2TB6f%2BuM8W%2FGxxo%2BqMWu4YdD2qdvkDUrjRrvD%2FE7gevWmS2kQwIjbFxdfrDca7RsehKnMZh%2BICXku%2FhqZmJBHfyII6R6M3EMkngS1T4MWJehqiUH6RUJFWusJpga0lvIcTJXI8jnk686WPCZPzba1smnAo4OFvz5ePf79zj4iXSLTJd4X%2BwRdeXN0TRVk%2B5oqDPlqJctFIgZ0usnrOc35mTuv8vVCabZ0yQxvvxxNgWl59w1u8mWaMpF2DfnsgmCM60WlI06%2BWzJv8fCqNasXrE5ttnz14uJSkmlujFDpGFQcXv4UkZiQx75%2Fd%2FZEz73zG4QeQ9sSiT0gJwGh9hBlGzDZwcKf%2F7jPPPztGRhFoOUpJ8wcFLYcaT88PZSCQPLTnoYlDD9Y%2BGPpm%2FeaCx8g5A%2FsGGk6vU1FuWVuoqsroPkm0qRET5foyRJUDmHsQ6M80wcLv9RngVBWRqHUle1QavnJzOTpz8KIo2qrXndp0Gl6rRblrbDht%2BPAY5T6jcAPAlpHbiZxa3P5XwAAAP%2F%2FAQAA%2F%2F9DbtxKfAQAAA%3D%3D HTTP/1.1
Host: wrinkleirritateoverrated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecfd40b682a05e4aaf489d29601350aa66=[5210995,5210997]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 05 May 2024 13:02:04 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4ae6f66fe7dcafec01347588a62a5632
Strict-Transport-Security: max-age=0; includeSubdomains

furnitureapplicationberth.com/pixel/purst?dl=0&th=0&sc=0&rs=2068&rd=2068&fd=876&bv=24.5.6485&tmpl=136

172.240.253.132

200 OK

0 B

URL GET HTTP/1.1
furnitureapplicationberth.com/pixel/purst?dl=0&th=0&sc=0&rs=2068&rd=2068&fd=876&bv=24.5.6485&tmpl=136
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectfurnitureapplicationberth.com
Fingerprint85:7E:62:1B:52:D4:4B:48:0D:70:D9:16:19:46:A6:6E:BD:F5:B2:26
ValiditySun, 28 Apr 2024 09:59:07 GMT - Sat, 27 Jul 2024 09:59:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=2068&rd=2068&fd=876&bv=24.5.6485&tmpl=136 HTTP/1.1
Host: furnitureapplicationberth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 05 May 2024 13:02:04 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

wrinkleirritateoverrated.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Findex.html&l=1444&fd=88

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
wrinkleirritateoverrated.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Findex.html&l=1444&fd=88
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectwrinkleirritateoverrated.com
Fingerprint46:45:35:2E:47:FA:80:A7:9C:B4:55:C1:EB:97:F3:A4:0A:88:10:FB
ValidityFri, 03 May 2024 09:21:04 GMT - Thu, 01 Aug 2024 09:21:03 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Findex.html&l=1444&fd=88 HTTP/1.1
Host: wrinkleirritateoverrated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecfd40b682a05e4aaf489d29601350aa66=[5210995,5210997]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 05 May 2024 13:02:04 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/animate.css

188.114.97.1

200 OK

5.4 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/animate.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
5.4 kB (5371 bytes)
Hash
49a38187f94418e173e4bcc50c96dc4b
b64e899d0c6bbb13e6f63e191b77b3eb5e5a6293
92db03d6a48c8756e15b1b2ffb9d1ea5aae5e2d9a706b630f93f73e3debbb3b0

HTTP Headers

GET /sb/notifications/gambling/default/android-btn/8/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:04 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: W/"65aa8644-13365"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 396310
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ou8LpGkyXWlMay%2FkmY2YSSf1KOtgnMCYVUzSphhUpQdM5mJxzMZeBZALbR4QsmYRF%2B7AR2VtYFFb3r%2FfV96MMI2eJvdWf285bP1pJEgQhbYeWksbRrrJonMlTh5ltWArfhIsenwFQ3uJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87f0ec3e7ffcb4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/style.css

188.114.97.1

200 OK

1.5 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/style.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
1.5 kB (1522 bytes)
Hash
af19abbabe1a862a20cb0e0a3ef31c7e
efcc04c4011905e4f013adae56ea928dc47ac7ef
8a72b4d48ce36805c492e3927213e1327c8d924544a595527da9955fd8916e19

HTTP Headers

GET /sb/notifications/gambling/default/android-btn/8/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:04 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: W/"65aa8644-d14"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 396310
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WvYcGjs%2BEfwaPD9uxokSE6jFwFH5sOsDf0%2FdA85DyFHpiFRL17TXXNiNDYEuXdwLAD%2BUXR%2FkHAC7RdeMfmCPH2413R3o32TNbadMoxf2GpLF3ClLkXhiHPWwU%2FUgIcZaxjkh%2FaVEsCYY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87f0ec3e8806b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

videzz.net/js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42

78.142.18.54

200 OK

11 kB

URL GET HTTP/2
videzz.net/js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33
ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT

File type
gzip compressed data, from Unix
Size
11 kB (11167 bytes)
Hash
73b0f73e82cf7916f703d2e8d6d3f92f
3eff793e23d30a09a65f5d7a8ca37829597a2991
8bd8c7c67dc24ae4422ce7131bc619c0bff37859b4b99daac04d5368afe72082

HTTP Headers

GET /js/embed.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-gf4k2ra2ygab.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 May 2024 13:02:02 GMT
content-type: application/javascript
last-modified: Sat, 27 Apr 2024 07:30:33 GMT
vary: Accept-Encoding
etag: W/"662ca999-1183"
expires: Tue, 04 Jun 2024 12:59:16 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/confetti.gif

188.114.97.1

200 OK

206 kB

URL GET HTTP/3
cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/confetti.gif
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
GIF image data, version 89a, 480 x 360
Size
206 kB (206291 bytes)
Hash
0b33face774f2203446507ce5f075538
1dd3522529bce7739df0687f47f5bc84356698a0
ac345899461d5634d25c47281b10e3c1886abb33019e2ce8140573a79e9f52f2

HTTP Headers

GET /sb/notifications/gambling/default/android-btn/8/img/confetti.gif HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 13:02:04 GMT
content-type: image/gif
content-length: 206291
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: "65aa8644-325d3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 411751
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=blXIrKP10q9CuGzh8qzXbfpiORn0XSNfaM8As7VIv%2B4hD5kthUGZI0zKC2p0y%2BWVUq7vrFNuZ2BxrkDrOr9AWtiQKFtvbHJ3%2BPMA3VyVx2rYReu0REBT8shoNXh2qTv5TyM3AeaCcOUN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87f0ec3f7ca5712a-OSL
alt-svc: h3=":443"; ma=86400

cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/bonus-stars-6593305-5446274.mp4

188.114.97.1

206 Partial Content

34 kB

URL GET HTTP/3
cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/bonus-stars-6593305-5446274.mp4
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]
Size
34 kB (34238 bytes)
Hash
69e52ff16a779d8ab66a1156cc50ab23
27f8897a2acc3bcfd319c267d137aaa4650fb3c5
2048e8325f6d17e0fefb2226c4191a9e300c562f2bc46543ac616d49ff971d61

HTTP Headers

GET /sb/notifications/gambling/default/android-btn/8/img/bonus-stars-6593305-5446274.mp4 HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 206 Partial Content
date: Sun, 05 May 2024 13:02:04 GMT
content-type: video/mp4
content-length: 34238
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: "65aa8644-85be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 411742
content-range: bytes 0-34237/34238
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=76idRgQBNGJx55s6Rv%2Fm2sSw7OGo%2BM%2B46WJp410FRN4xzDP%2BqXSiLe23yrKtXbYL0cbg2tWli7HIBF2UiLOhbmmiCQHgcpFoftKTPkTzoiiL7qM8qkMbiqDSxfTQbSuTiC0syHQX3LDW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87f0ec3f7cac712a-OSL
alt-svc: h3=":443"; ma=86400

wrinkleirritateoverrated.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fstyle.css&l=3348&fd=76

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
wrinkleirritateoverrated.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fstyle.css&l=3348&fd=76
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectwrinkleirritateoverrated.com
Fingerprint46:45:35:2E:47:FA:80:A7:9C:B4:55:C1:EB:97:F3:A4:0A:88:10:FB
ValidityFri, 03 May 2024 09:21:04 GMT - Thu, 01 Aug 2024 09:21:03 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fstyle.css&l=3348&fd=76 HTTP/1.1
Host: wrinkleirritateoverrated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecfd40b682a05e4aaf489d29601350aa66=[5210995,5210997]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 05 May 2024 13:02:04 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

wrinkleirritateoverrated.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fanimate.css&l=78693&fd=77

192.243.59.13

200 OK

0 B

URL GET HTTP/1.1
wrinkleirritateoverrated.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fanimate.css&l=78693&fd=77
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectwrinkleirritateoverrated.com
Fingerprint46:45:35:2E:47:FA:80:A7:9C:B4:55:C1:EB:97:F3:A4:0A:88:10:FB
ValidityFri, 03 May 2024 09:21:04 GMT - Thu, 01 Aug 2024 09:21:03 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fanimate.css&l=78693&fd=77 HTTP/1.1
Host: wrinkleirritateoverrated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecfd40b682a05e4aaf489d29601350aa66=[5210995,5210997]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 05 May 2024 13:02:04 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

region1.analytics.google.com/g/collect?v=2&tid=G-HEX1BG8H46&gtm=45je4510v9104348843za200&_p=1714914122804&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=705405948.1714914124&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=1&sid=1714914123&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&dt=Vidoza&en=page_view&_fv=1&_nsi=1&_ss=2&tfd=2025

216.239.32.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-HEX1BG8H46&gtm=45je4510v9104348843za200&_p=1714914122804&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=705405948.1714914124&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=1&sid=1714914123&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&dt=Vidoza&en=page_view&_fv=1&_nsi=1&_ss=2&tfd=2025
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-HEX1BG8H46&gtm=45je4510v9104348843za200&_p=1714914122804&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=705405948.1714914124&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AAAI&_s=1&sid=1714914123&sct=1&seg=0&dl=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&dt=Vidoza&en=page_view&_fv=1&_nsi=1&_ss=2&tfd=2025 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://videzz.net
date: Sun, 05 May 2024 13:02:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42

104.18.11.207

200 OK

7.9 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
ASCII text, with very long lines (30837)
Size
7.9 kB (7889 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:02 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 03/18/2024 12:28:12
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 2ab8316fdef76f530c15e660f59a896d
cdn-cache: HIT
cf-cache-status: HIT
age: 420216
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87f0ec312a56b4fd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-HEX1BG8H46&cid=705405948.1714914124&gtm=45je4510v9104348843za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&z=1684806291

142.250.74.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-HEX1BG8H46&cid=705405948.1714914124&gtm=45je4510v9104348843za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&z=1684806291
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint7D:68:6D:B1:32:34:52:51:20:C9:53:FF:B9:B7:8F:7E:05:F9:F5:97
ValidityTue, 16 Apr 2024 04:31:00 GMT - Tue, 09 Jul 2024 04:30:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-HEX1BG8H46&cid=705405948.1714914124&gtm=45je4510v9104348843za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&z=1684806291 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 05 May 2024 13:02:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

216.58.207.234

200 OK

717 B

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text
Size
717 B (717 bytes)
Hash
5e48f11f5e65274412215f94f73f8c49
4dd35e5b5136df76bd7ff9da1f119d0ec0e57ff7
40992eb57d95a0165a6d56399cd9afd60cc2cac6f06579b8d87079ccaab91e29

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 May 2024 13:02:04 GMT
date: Sun, 05 May 2024 13:02:04 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

bid.bidclickmedia.com/load

172.67.205.77

302 Found

361 B

URL POST HTTP/3
bid.bidclickmedia.com/load
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text
Size
361 B (361 bytes)
Hash
6610c77cad5adb691fd5f9ffa06b9486
d003b0d6d8bb61e5fd17dc635c017f6393e0c24c
83695861f8ded5db81f9c1e185cdf9177d18c57bfe1196b03468f2d8ac22bc50

HTTP Headers

POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/Pj8pz0z
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Sun, 05 May 2024 13:02:04 GMT
content-type: text/html; charset=utf-8
location: https://xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0KZwUpkPKOzZKAJQttX3IgojCz5%2FYjDeD5o8gRNNDhLpQjWu7Qt8R0f5GJ%2B6exKuL8URhECah3kJUdyFUaqXJmMkis7Jn%2FpCKPDSm5J2kFUPOnXDe3wx6cDCumqeNU2gdu2WPZ39TyM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec3b6b1c5697-OSL
alt-svc: h3=":443"; ma=86400

xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183

174.137.133.17

302 Found

0 B

URL GET HTTP/1.1
xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183
IP
174.137.133.17:443
ASN
#27257 WEBAIR-INTERNET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerSectigo Limited
Subject*.xmlking.com
Fingerprint61:F0:9B:53:D2:DF:03:A0:08:09:BE:79:B1:70:10:34:65:07:7B:6D
ValidityWed, 26 Jul 2023 00:00:00 GMT - Fri, 26 Jul 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect?feed=591364&auth=oodr9S&pubid=195183 HTTP/1.1
Host: xml.xmlking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx
Date: Sun, 05 May 2024 13:02:05 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://track.jajaloop.com/717a0983-e961-4ed5-98dc-35fbb30c40f8?banner=6354964&pubfeed=606180&siteid=&cost=0.0006&conversion=BVMQGDekQ8s

bid.bidclickmedia.com/load

172.67.205.77

302 Found

361 B

URL POST HTTP/3
bid.bidclickmedia.com/load
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text
Size
361 B (361 bytes)
Hash
4809a9602dd55d531906123e570b6d77
626fe0b9eeeda00a0ce401ee5a4e13f8256facb9
046c0a16886d7e34df54c815c1fee7740a3608671d33fd56c837dca5a1ac9c9f

HTTP Headers

POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/31pnK5n
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Sun, 05 May 2024 13:02:04 GMT
content-type: text/html; charset=utf-8
location: https://xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kC9yP1t1y0Ee%2FuVBbuAcpezQP3xDoLh%2Bnr3ICni7Fe4SLZIU%2B9I1mzlmbvndH5E0HC%2BXgvQRri5SgzsdOpTXBYiMneRwEVueiP7U37%2Bn9D9UIrvxENS5Pr3jSH2mv%2FyeccoPDW%2BIpzY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec3c9c685697-OSL
alt-svc: h3=":443"; ma=86400

wrinkleirritateoverrated.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuHrNeFETdmwiDIiisk%2B75H%2FcQ3J9IMG7WXUVBcamuqp6Uqe5qqrqmJwNCMCB78DB48dr5Jtmw6%2BLPSVBcZRJQCAgZTzmYm%2BLBiwh78SIzhg0%2B6H7v1fcVfO979dGWOyZVOHp06TU9kErR%2BUbFLz%2F%2FdhCcLy%2FLxPXL%2FXbzRrN%2Bvmx6L3WaFf%2BF8iuCren5qh%2F4fuAH5UVpRKT781MQMr3bCSodv1KvVoJGHX3z%2F946D5Z64L1j8gQkn8zte2ch2RhJ%2FOUlYdcynZ67HDtFM23Q47tvJmuJzhPEp2VkPETJ7gkb2h4u3oNOdmZyoXsPiKGcEO%2FHewiT3RORCHvbM52hgkgQ8keQ98YQagxJx2B6E5IfEoBxXFlBEt%2B6ok1O1%2F9D6RSdkLn7f0PmEzL361kk8ecXlOyXr2vlMqkTi35UQPbHkN0xUreHbFCCzPfAsg8h%2Bc9k%2Fv4yknh7xSoNyYvZ7FKOIaMxlBiCWg9u%2BkkPLvLgUg8xPyqzIAhaPmfUb3cYq%2FGWCJvcD2grCmjgN9twbCpviCwdgqkhmNlAajawJocw7gfY1QKWe7DZhHivb6DHC%2BSCILcEOSXIJUGeEeS9YocrW7XFLa6sC4OTXD3JtWKks%2B4W3dFZVyQE1AxheLGVHpPHp%2F54z5aqWBNH5YjX%2FbDZrlK%2FIeqURvV2h1c7TT%2BoNXxKm01Yefvi4ou1er19I4C0pdnsAzkhz0VfI5UT8uhPBCHdg1V7YPJJUPc0aF6ArhYYJF%2FEVCaVnuR6QCuJyMB1gTSbQ7bubalj8tRsWyubFoIdLPz18erx73f2wUyB1BR4X%2B4TdNXN0TWdk%2B1rOrfkq5U0k7Ec0Okmr2c0E2fuvCrWc2340iU7vP0ymwLT8u4bwmbLNOEy6Vry2QXJuTCL2jBBvluyb4nwqrOrF5xJXLp89eLiUpwaYa3UyRhUHl7%2BFExOyGPfvzt7oufe%2BQ3SjGFcgdgdkJOA1Htg6QZserDw5z%2F%2BMw9%2FewZWExh1yglTD7krRqYanh4qSaDEaU%2FDAlYcLPyx9M17jYUPEIoHdowMnd6mstiyN9E1JdBsE0lcoGcK9FQBqoaw7qFRlpqDhV9qs0CoSqNQmdJ2qIz6ZGby9Odg5VG55vNWKCLRCkW9UY8E42GjEfosYmGNt9sMmZ1Erc3lfwEAAP%2F%2FAQAA%2F%2F%2FDugmifAQAAA%3D%3D

192.243.59.13

200 OK

7 B

URL GET HTTP/1.1
wrinkleirritateoverrated.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuHrNeFETdmwiDIiisk%2B75H%2FcQ3J9IMG7WXUVBcamuqp6Uqe5qqrqmJwNCMCB78DB48dr5Jtmw6%2BLPSVBcZRJQCAgZTzmYm%2BLBiwh78SIzhg0%2B6H7v1fcVfO979dGWOyZVOHp06TU9kErR%2BUbFLz%2F%2FdhCcLy%2FLxPXL%2FXbzRrN%2Bvmx6L3WaFf%2BF8iuCren5qh%2F4fuAH5UVpRKT781MQMr3bCSodv1KvVoJGHX3z%2F946D5Z64L1j8gQkn8zte2ch2RhJ%2FOUlYdcynZ67HDtFM23Q47tvJmuJzhPEp2VkPETJ7gkb2h4u3oNOdmZyoXsPiKGcEO%2FHewiT3RORCHvbM52hgkgQ8keQ98YQagxJx2B6E5IfEoBxXFlBEt%2B6ok1O1%2F9D6RSdkLn7f0PmEzL361kk8ecXlOyXr2vlMqkTi35UQPbHkN0xUreHbFCCzPfAsg8h%2Bc9k%2Fv4yknh7xSoNyYvZ7FKOIaMxlBiCWg9u%2BkkPLvLgUg8xPyqzIAhaPmfUb3cYq%2FGWCJvcD2grCmjgN9twbCpviCwdgqkhmNlAajawJocw7gfY1QKWe7DZhHivb6DHC%2BSCILcEOSXIJUGeEeS9YocrW7XFLa6sC4OTXD3JtWKks%2B4W3dFZVyQE1AxheLGVHpPHp%2F54z5aqWBNH5YjX%2FbDZrlK%2FIeqURvV2h1c7TT%2BoNXxKm01Yefvi4ou1er19I4C0pdnsAzkhz0VfI5UT8uhPBCHdg1V7YPJJUPc0aF6ArhYYJF%2FEVCaVnuR6QCuJyMB1gTSbQ7bubalj8tRsWyubFoIdLPz18erx73f2wUyB1BR4X%2B4TdNXN0TWdk%2B1rOrfkq5U0k7Ec0Okmr2c0E2fuvCrWc2340iU7vP0ymwLT8u4bwmbLNOEy6Vry2QXJuTCL2jBBvluyb4nwqrOrF5xJXLp89eLiUpwaYa3UyRhUHl7%2BFExOyGPfvzt7oufe%2BQ3SjGFcgdgdkJOA1Htg6QZserDw5z%2F%2BMw9%2FewZWExh1yglTD7krRqYanh4qSaDEaU%2FDAlYcLPyx9M17jYUPEIoHdowMnd6mstiyN9E1JdBsE0lcoGcK9FQBqoaw7qFRlpqDhV9qs0CoSqNQmdJ2qIz6ZGby9Odg5VG55vNWKCLRCkW9UY8E42GjEfosYmGNt9sMmZ1Erc3lfwEAAP%2F%2FAQAA%2F%2F%2FDugmifAQAAA%3D%3D
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectwrinkleirritateoverrated.com
Fingerprint46:45:35:2E:47:FA:80:A7:9C:B4:55:C1:EB:97:F3:A4:0A:88:10:FB
ValidityFri, 03 May 2024 09:21:04 GMT - Thu, 01 Aug 2024 09:21:03 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuHrNeFETdmwiDIiisk%2B75H%2FcQ3J9IMG7WXUVBcamuqp6Uqe5qqrqmJwNCMCB78DB48dr5Jtmw6%2BLPSVBcZRJQCAgZTzmYm%2BLBiwh78SIzhg0%2B6H7v1fcVfO979dGWOyZVOHp06TU9kErR%2BUbFLz%2F%2FdhCcLy%2FLxPXL%2FXbzRrN%2Bvmx6L3WaFf%2BF8iuCren5qh%2F4fuAH5UVpRKT781MQMr3bCSodv1KvVoJGHX3z%2F946D5Z64L1j8gQkn8zte2ch2RhJ%2FOUlYdcynZ67HDtFM23Q47tvJmuJzhPEp2VkPETJ7gkb2h4u3oNOdmZyoXsPiKGcEO%2FHewiT3RORCHvbM52hgkgQ8keQ98YQagxJx2B6E5IfEoBxXFlBEt%2B6ok1O1%2F9D6RSdkLn7f0PmEzL361kk8ecXlOyXr2vlMqkTi35UQPbHkN0xUreHbFCCzPfAsg8h%2Bc9k%2Fv4yknh7xSoNyYvZ7FKOIaMxlBiCWg9u%2BkkPLvLgUg8xPyqzIAhaPmfUb3cYq%2FGWCJvcD2grCmjgN9twbCpviCwdgqkhmNlAajawJocw7gfY1QKWe7DZhHivb6DHC%2BSCILcEOSXIJUGeEeS9YocrW7XFLa6sC4OTXD3JtWKks%2B4W3dFZVyQE1AxheLGVHpPHp%2F54z5aqWBNH5YjX%2FbDZrlK%2FIeqURvV2h1c7TT%2BoNXxKm01Yefvi4ou1er19I4C0pdnsAzkhz0VfI5UT8uhPBCHdg1V7YPJJUPc0aF6ArhYYJF%2FEVCaVnuR6QCuJyMB1gTSbQ7bubalj8tRsWyubFoIdLPz18erx73f2wUyB1BR4X%2B4TdNXN0TWdk%2B1rOrfkq5U0k7Ec0Okmr2c0E2fuvCrWc2340iU7vP0ymwLT8u4bwmbLNOEy6Vry2QXJuTCL2jBBvluyb4nwqrOrF5xJXLp89eLiUpwaYa3UyRhUHl7%2BFExOyGPfvzt7oufe%2BQ3SjGFcgdgdkJOA1Htg6QZserDw5z%2F%2BMw9%2FewZWExh1yglTD7krRqYanh4qSaDEaU%2FDAlYcLPyx9M17jYUPEIoHdowMnd6mstiyN9E1JdBsE0lcoGcK9FQBqoaw7qFRlpqDhV9qs0CoSqNQmdJ2qIz6ZGby9Odg5VG55vNWKCLRCkW9UY8E42GjEfosYmGNt9sMmZ1Erc3lfwEAAP%2F%2FAQAA%2F%2F%2FDugmifAQAAA%3D%3D HTTP/1.1
Host: wrinkleirritateoverrated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecfd40b682a05e4aaf489d29601350aa66=[5210995,5210997]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 05 May 2024 13:02:05 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: cc8734a534e5ec2ffa1e482453aadfdc
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/js/script.js

188.114.97.1

200 OK

4.3 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/js/script.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
Unicode text, UTF-8 text
Size
4.3 kB (4323 bytes)
Hash
d943b190d575fbacd2190a6c68ac5414
612abd865a7368e2af9f36be39ea79d3fac0bd15
78dfd0ad0dde93524dbca9e6e500bac9027b762e1d8d0b94574b75a654704ff8

HTTP Headers

GET /sb/notifications/gambling/default/android-btn/8/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:04 GMT
content-type: application/javascript
last-modified: Tue, 20 Feb 2024 10:37:31 GMT
etag: W/"65d480eb-24fa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 238745
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pqL%2BSaB57Yy%2BZILlQAK3TkXqN3FE5Evmp9YDGwBJR1w0aUXH98YFvzzz5zqv%2BpcXH%2FHsSEYSHP4HzNGo0NrabgcGIjaRmrR49Y2WkL24QcNsV28FVrXlclgx%2Fptst521RRJaVjm94Pd4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87f0ec3e981bb4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 06:08:19 GMT
expires: Sat, 03 May 2025 06:08:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 197626
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

track.jajaloop.com/717a0983-e961-4ed5-98dc-35fbb30c40f8?banner=6354964&pubfeed=606180&siteid=&cost=0.0006&conversion=BVMQGDekQ8s

143.204.55.107

302 Found

0 B

URL GET HTTP/2
track.jajaloop.com/717a0983-e961-4ed5-98dc-35fbb30c40f8?banner=6354964&pubfeed=606180&siteid=&cost=0.0006&conversion=BVMQGDekQ8s
IP
143.204.55.107:443
ASN
#16509 AMAZON-02

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerAmazon
Subjecttrack.jajaloop.com
FingerprintB2:8B:F7:DA:FA:DB:BD:98:DB:88:6D:5F:F8:30:A6:60:19:63:73:FE
ValidityWed, 17 Apr 2024 00:00:00 GMT - Fri, 16 May 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /717a0983-e961-4ed5-98dc-35fbb30c40f8?banner=6354964&pubfeed=606180&siteid=&cost=0.0006&conversion=BVMQGDekQ8s HTTP/1.1
Host: track.jajaloop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-length: 0
location: https://www.linkbux.com/track/b5b20v1WkH7yi3TVxNZSP_bZiP8BiX_bmVlpBSmwsA0XJAnB4zpMQWeZu6ygAKfBA4KJDLBkXLkA_c_c?url=http%3A%2F%2Fwww.dyrekassen.no&uid=w656ln2irjeqmt213le25e9o&uid2=6354964
date: Sun, 05 May 2024 13:02:05 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: 717a0983-e961-4ed5-98dc-35fbb30c40f8-v4=0yLYHFAW8vd34ngMKhSbfm9xg-UaA5QIUbOJH0ZA20g; Max-Age=86400; Expires=Mon, 06-May-2024 13:02:05 GMT; Domain=track.jajaloop.com; Path=/; Secure; HttpOnly;SameSite=None
voluum-cid-v4=%7B%22cid%22%3A%22w656ln2irjeqmt213le25e9o%22%2C%22caid%22%3A%22717a0983-e961-4ed5-98dc-35fbb30c40f8%22%7D; Max-Age=31536000; Expires=Mon, 05-May-2025 13:02:05 GMT; Domain=track.jajaloop.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -NkyTRef_OzZG2oaAafr2uwgj3xCxvKLDsUvDkrnXTQoQWQPm-YxAQ==
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Apr 2024 10:46:32 GMT
expires: Wed, 30 Apr 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 440133
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js

104.17.25.14

200 OK

5.1 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (17660)
Size
5.1 kB (5117 bytes)
Hash
12dd498bf90c536803c2aad708b66c2b
5f9363d39a405d1c94328cf2303ff4a05c0ad163
c4e20f53f5ef0ed44b783437aa3f4638a9a56cc4aa29ae83ed9212eb2807052a

HTTP Headers

GET /ajax/libs/postscribe/2.0.8/postscribe.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 13:02:05 GMT
content-type: application/javascript; charset=utf-8
content-length: 5117
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03faa-45f4"
last-modified: Mon, 04 May 2020 16:15:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 316557
expires: Fri, 25 Apr 2025 13:02:05 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IDRdozdezwJHSFOH7lIes71qqCFpgRt35RxORBbDuROxA465tywvuwLaHdeQCsEI%2F2I7xwRACavmpUU1xnRJHn1DrMZ0fzDKhxAH2ml79mgKZmvdn%2BGcUSWvCuurEcpzaFUuqdji"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87f0ec438bb57128-OSL
alt-svc: h3=":443"; ma=86400

xml-click-oax.adstork.com/nrtb/click?bid=PNsozjkb91qsdNJZR09wFrnoHfpwBwFEPRlc50ksKOc2Flto3nHqp2JRtgRXCs5T_0_42

23.226.122.79

302 Found

72 B

URL GET HTTP/2
xml-click-oax.adstork.com/nrtb/click?bid=PNsozjkb91qsdNJZR09wFrnoHfpwBwFEPRlc50ksKOc2Flto3nHqp2JRtgRXCs5T_0_42
IP
23.226.122.79:443
ASN
#29802 HVC-AS

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerSectigo Limited
Subject*.adstork.com
Fingerprint90:C7:C6:2C:5F:EF:4A:42:2C:2D:9A:35:14:D4:1B:8B:73:B6:E3:86
ValiditySun, 21 Apr 2024 00:00:00 GMT - Mon, 21 Apr 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
72 B (72 bytes)
Hash
5dc2baed645aeff371c05729910ab53f
a5bf025974ce0d5486022f0f8748431172117bbf
a4f3c7447e1c5841e70c31ba8bde22dc94fc2f30f0761b9020fbb39c77ae5c6e

HTTP Headers

GET /nrtb/click?bid=PNsozjkb91qsdNJZR09wFrnoHfpwBwFEPRlc50ksKOc2Flto3nHqp2JRtgRXCs5T_0_42 HTTP/1.1
Host: xml-click-oax.adstork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 May 2024 13:02:05 GMT
content-type: text/html; charset=utf-8
content-length: 72
location: https://xml.bidding-win.com/click?i=he6Wql9in0o_0
X-Firefox-Spdy: h2

lernodydenknow.info/redirect?tid=1039225

143.204.55.50

302 Found

0 B

URL GET HTTP/2
lernodydenknow.info/redirect?tid=1039225
IP
143.204.55.50:443
ASN
#16509 AMAZON-02

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerAmazon
Subjectlernodydenknow.info
Fingerprint0B:53:BB:D6:51:E9:8D:1C:38:77:BA:75:C6:18:21:E5:31:71:DC:5B
ValidityWed, 24 Jan 2024 00:00:00 GMT - Fri, 21 Feb 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect?tid=1039225 HTTP/1.1
Host: lernodydenknow.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: text/plain
content-length: 0
location: http://xml.vespymedia.com/click?i=989kc3OTlNw_0
date: Sun, 05 May 2024 13:02:05 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: csu=5682c242-05bd-444a-b1ed-685d88d78b06
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ukCQxunbYlrVcxniuKONvI2ErsVfwn_FZ6Bi7ix7NFqoXyI1uhXiEQ==
X-Firefox-Spdy: h2

xml.bidding-win.com/click?i=he6Wql9in0o_0

172.67.161.62

302 Found

0 B

URL GET HTTP/2
xml.bidding-win.com/click?i=he6Wql9in0o_0
IP
172.67.161.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidding-win.com
FingerprintCC:F2:28:6C:11:60:87:DF:59:5A:E6:89:9E:46:26:60:C4:F3:90:41
ValidityWed, 01 May 2024 06:10:06 GMT - Tue, 30 Jul 2024 06:10:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /click?i=he6Wql9in0o_0 HTTP/1.1
Host: xml.bidding-win.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Sun, 05 May 2024 13:02:05 GMT
content-length: 0
location: https://track.jajaloop.com/717a0983-e961-4ed5-98dc-35fbb30c40f8?banner=6354964&pubfeed=658956&siteid=7541&cost=0.0006&conversion=bMdRs7x-FDI
cache-control: no-store
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OKz0ioz5H8Zqly59TOBNceHe%2FnmlgAZraur%2BY45zanbw%2FKERiwVrj9lsEKCBoNDBDn1ZFQj5itlJCT5NfT60%2FUusL%2FZDDnj%2FaUaJ92WOwfV1wMWYF7tWxP%2Ffz%2BotCbpH8qQg7x0n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec43de87568e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bid.bidclickmedia.com/load

172.67.205.77

302 Found

361 B

URL POST HTTP/3
bid.bidclickmedia.com/load
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text
Size
361 B (361 bytes)
Hash
6610c77cad5adb691fd5f9ffa06b9486
d003b0d6d8bb61e5fd17dc635c017f6393e0c24c
83695861f8ded5db81f9c1e185cdf9177d18c57bfe1196b03468f2d8ac22bc50

HTTP Headers

POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/Pj8pz0z
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Sun, 05 May 2024 13:02:04 GMT
content-type: text/html; charset=utf-8
location: https://xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=og43xvf4cNJs04VQMpt1C1VWu6IXg%2FkrrbXm%2BDw2h5Z%2BF9R7aQb5%2Bm7WshseI3P9AnxbOcxKg6rWdzfrZXt3B892bF5FuVkGLfen4topDwlMjuEJxeUyR2BYSJGhRXUugDOhwe6QOrg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec3bdbad5697-OSL
alt-svc: h3=":443"; ma=86400

track.jajaloop.com/717a0983-e961-4ed5-98dc-35fbb30c40f8?banner=6354964&pubfeed=658956&siteid=7541&cost=0.0006&conversion=bMdRs7x-FDI

143.204.55.107

302 Found

0 B

URL GET HTTP/2
track.jajaloop.com/717a0983-e961-4ed5-98dc-35fbb30c40f8?banner=6354964&pubfeed=658956&siteid=7541&cost=0.0006&conversion=bMdRs7x-FDI
IP
143.204.55.107:443
ASN
#16509 AMAZON-02

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerAmazon
Subjecttrack.jajaloop.com
FingerprintB2:8B:F7:DA:FA:DB:BD:98:DB:88:6D:5F:F8:30:A6:60:19:63:73:FE
ValidityWed, 17 Apr 2024 00:00:00 GMT - Fri, 16 May 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /717a0983-e961-4ed5-98dc-35fbb30c40f8?banner=6354964&pubfeed=658956&siteid=7541&cost=0.0006&conversion=bMdRs7x-FDI HTTP/1.1
Host: track.jajaloop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Cookie: 717a0983-e961-4ed5-98dc-35fbb30c40f8-v4=0yLYHFAW8vd34ngMKhSbfm9xg-UaA5QIUbOJH0ZA20g; voluum-cid-v4=%7B%22cid%22%3A%22w656ln2irjeqmt213le25e9o%22%2C%22caid%22%3A%22717a0983-e961-4ed5-98dc-35fbb30c40f8%22%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
content-length: 0
location: https://www.linkbux.com/track/5688a24WID8UxvMohYseQZhAkydyNmU8CLVEZrksGrHD8ZY6E9i8jRNlxzN2w68kFf9qTtonRw_c_c?url=http%3A%2F%2Fwww.barbershop.no&uid=ws5h4ihtiojtpt2139hd5uuk&uid2=6354964
date: Sun, 05 May 2024 13:02:05 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: 717a0983-e961-4ed5-98dc-35fbb30c40f8-v4=6uK1zXpZxg3tjIzxn0UiU3nV-Jz6sn5lnNTtvKVzTSM; Max-Age=86400; Expires=Mon, 06-May-2024 13:02:05 GMT; Domain=track.jajaloop.com; Path=/; Secure; HttpOnly;SameSite=None
voluum-cid-v4=%7B%22cid%22%3A%22ws5h4ihtiojtpt2139hd5uuk%22%2C%22caid%22%3A%22717a0983-e961-4ed5-98dc-35fbb30c40f8%22%7D; Max-Age=31536000; Expires=Mon, 05-May-2025 13:02:05 GMT; Domain=track.jajaloop.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: M8G45m8Bg_A3j4JPsTqCEef1go8UFSk2BbkD44jv5WGk1ZmN0IdNSQ==
X-Firefox-Spdy: h2

veepteero.com/88/104

139.45.197.242

200 OK

2.0 kB

URL GET HTTP/2
veepteero.com/88/104
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectveepteero.com
Fingerprint13:68:56:48:EC:67:A6:93:BE:E0:36:BC:FA:04:75:6D:6E:D2:C1:91
ValiditySat, 23 Mar 2024 05:18:36 GMT - Fri, 21 Jun 2024 05:18:35 GMT

File type
gzip compressed data, max speed, from Unix
Size
2.0 kB (1959 bytes)
Hash
ca9c8d7fbc10cc10990db2a30cbec286
52b1ccecb08598d039a26577bdfe80f156f6e680
482ac53ec760bcbc6fea97a388f4b3a03c199111f72d0c7e85bcfcde62921f13

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /88/104 HTTP/1.1
Host: veepteero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 13:02:05 GMT
content-type: application/json
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://videzz.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

status.rapidssl.com/

192.229.221.95

471 B

URL
status.rapidssl.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
529423bb674a483eb25d26ec85ac2ac7
18b8f3ebf3310851444304e398162d854d7425be
2a761c72bde3830557d9399c8a0af236547896a86d8e6c2b719f64b032426b8b

HTTP Headers

POST / HTTP/1.1
Host: status.rapidssl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4587
Cache-Control: max-age=7200
Content-Type: application/ocsp-response
Date: Sun, 05 May 2024 13:02:05 GMT
Last-Modified: Sun, 05 May 2024 11:45:38 GMT
Server: ECAcc (ska/F775)
X-Cache: HIT
Content-Length: 471

xml-click-oax.adstork.com/nrtb/click?bid=2ZEvneKdqCoNtkEogLpx-SAWzJoI_wi-WjFwUoEzrHWnNpRAEvl3aZFw_i-nfaec_0_42

23.226.122.79

302 Found

72 B

URL GET HTTP/2
xml-click-oax.adstork.com/nrtb/click?bid=2ZEvneKdqCoNtkEogLpx-SAWzJoI_wi-WjFwUoEzrHWnNpRAEvl3aZFw_i-nfaec_0_42
IP
23.226.122.79:443
ASN
#29802 HVC-AS

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerSectigo Limited
Subject*.adstork.com
Fingerprint90:C7:C6:2C:5F:EF:4A:42:2C:2D:9A:35:14:D4:1B:8B:73:B6:E3:86
ValiditySun, 21 Apr 2024 00:00:00 GMT - Mon, 21 Apr 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
72 B (72 bytes)
Hash
d1fe9fbe8ec3026e3b58e6945becbf0d
cc606e0e3fda1814156e7c89b532f4c17f371480
59f5bdfa5c7a80555964d68b8bbcbc09d45f720efe41088047742f0b1e18e158

HTTP Headers

GET /nrtb/click?bid=2ZEvneKdqCoNtkEogLpx-SAWzJoI_wi-WjFwUoEzrHWnNpRAEvl3aZFw_i-nfaec_0_42 HTTP/1.1
Host: xml-click-oax.adstork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 May 2024 13:02:05 GMT
content-type: text/html; charset=utf-8
content-length: 72
location: https://xml.bidding-win.com/click?i=PIJvcjYadtk_0
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?userId=008053440db24810ef1abf59c6c8ddfb

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?userId=008053440db24810ef1abf59c6c8ddfb
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC
ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT

File type
JSON text data
Size
65 B (65 bytes)
Hash
80d89ebe997527acdc05b439f1d8cb27
9fa97c2f787432ba1ab72f46751acdebbd20337d
8f381df41d77cdeb6aaace5868334381de0515a2bc902ca007fb8e0fbd56ec3b

HTTP Headers

GET /gid.js?userId=008053440db24810ef1abf59c6c8ddfb HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 13:02:05 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://videzz.net
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=008053440db24810ef1abf59c6c8ddfb; expires=Mon, 05 May 2025 13:02:05 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

bid.bidclickmedia.com/load

172.67.205.77

302 Found

361 B

URL POST HTTP/3
bid.bidclickmedia.com/load
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text
Size
361 B (361 bytes)
Hash
6610c77cad5adb691fd5f9ffa06b9486
d003b0d6d8bb61e5fd17dc635c017f6393e0c24c
83695861f8ded5db81f9c1e185cdf9177d18c57bfe1196b03468f2d8ac22bc50

HTTP Headers

POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/Pj8pz0z
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Sun, 05 May 2024 13:02:04 GMT
content-type: text/html; charset=utf-8
location: https://xml.xmlking.com/redirect?feed=591364&auth=oodr9S&pubid=195183
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7lC47eBmLBoaCzkWaFz1tSxIxsHBRPRNEnC6gUkBfibwQpKEGXLxHkerLnV82XiOoRaasG5T%2ByAMAu%2BoygzCVbtoTl9fU8ZnJLEnQL1Q6lBF4RyX2nHNw7xIaoNszYwZh3GWJXFRJMU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec3c3bfc5697-OSL
alt-svc: h3=":443"; ma=86400

unseenreport.com/pxf.gif?uuid=40246040-5b8b-4cc1-bc17-64359c1d0fbb&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=f1776d24271c5ad55c5f1492e2d01e10&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13

192.243.59.13

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=40246040-5b8b-4cc1-bc17-64359c1d0fbb&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=f1776d24271c5ad55c5f1492e2d01e10&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=40246040-5b8b-4cc1-bc17-64359c1d0fbb&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=f1776d24271c5ad55c5f1492e2d01e10&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 05 May 2024 13:02:05 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 05b0609c75378235c131ed45023dca17
Strict-Transport-Security: max-age=0; includeSubdomains

unseenreport.com/pxf.gif?uuid=40246040-5b8b-4cc1-bc17-64359c1d0fbb&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=fd40b682a05e4aaf489d29601350aa66&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13

192.243.59.13

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=40246040-5b8b-4cc1-bc17-64359c1d0fbb&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=fd40b682a05e4aaf489d29601350aa66&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=40246040-5b8b-4cc1-bc17-64359c1d0fbb&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=fd40b682a05e4aaf489d29601350aa66&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 05 May 2024 13:02:05 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c5f568bd6c6904aaab295a769a7b20da
Strict-Transport-Security: max-age=0; includeSubdomains

www.linkbux.com/track/b5b20v1WkH7yi3TVxNZSP_bZiP8BiX_bmVlpBSmwsA0XJAnB4zpMQWeZu6ygAKfBA4KJDLBkXLkA_c_c?url=http%3A%2F%2Fwww.dyrekassen.no&uid=w656ln2irjeqmt213le25e9o&uid2=6354964

163.181.1.224

200 OK

560 B

URL GET HTTP/1.1
www.linkbux.com/track/b5b20v1WkH7yi3TVxNZSP_bZiP8BiX_bmVlpBSmwsA0XJAnB4zpMQWeZu6ygAKfBA4KJDLBkXLkA_c_c?url=http%3A%2F%2Fwww.dyrekassen.no&uid=w656ln2irjeqmt213le25e9o&uid2=6354964
IP
163.181.1.224:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerDigiCert Inc
Subject*.linkbux.com
Fingerprint85:43:2D:A8:86:CB:B4:03:47:26:A7:87:5A:80:9D:1E:E1:55:C2:92
ValidityWed, 26 Jul 2023 00:00:00 GMT - Thu, 08 Aug 2024 23:59:59 GMT

File type
HTML document, ASCII text
Size
560 B (560 bytes)
Hash
0289faa6cac4a26110b20216eb0bf7d2
0c71774c93b56ad4dd98f474b8fcf30e70472e5e
ead519d0d8293ae9fcf878e10751d10ed2ac5347f4615a0884aa5cb8fa4fabd3

HTTP Headers

GET /track/b5b20v1WkH7yi3TVxNZSP_bZiP8BiX_bmVlpBSmwsA0XJAnB4zpMQWeZu6ygAKfBA4KJDLBkXLkA_c_c?url=http%3A%2F%2Fwww.dyrekassen.no&uid=w656ln2irjeqmt213le25e9o&uid2=6354964 HTTP/1.1
Host: www.linkbux.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 05 May 2024 13:02:05 GMT
Vary: Accept-Encoding
Set-Cookie: discuz_2132_saltkey=T4HbltUu; expires=Tue, 04-Jun-2024 13:02:05 GMT; Max-Age=2592000; path=/; httponly
discuz_2132_lang=en; path=/
discuz_2132_lang=en; path=/
Content-Encoding: gzip
Via: cache23.l2us2[104,0], cache2.ru6[278,0]
Timing-Allow-Origin: *
EagleId: a3b5019617149141257905424e

xml.bidding-win.com/click?i=PIJvcjYadtk_0

172.67.161.62

302 Found

0 B

URL GET HTTP/3
xml.bidding-win.com/click?i=PIJvcjYadtk_0
IP
172.67.161.62:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidding-win.com
FingerprintCC:F2:28:6C:11:60:87:DF:59:5A:E6:89:9E:46:26:60:C4:F3:90:41
ValidityWed, 01 May 2024 06:10:06 GMT - Tue, 30 Jul 2024 06:10:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /click?i=PIJvcjYadtk_0 HTTP/1.1
Host: xml.bidding-win.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Sun, 05 May 2024 13:02:06 GMT
content-length: 0
location: https://olivedinflats.space/redirect?tid=926092&subid=658956.6953
cache-control: no-store
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zW7OH08fSt5lNPwgjQdTrBPCzgXyRkT0EfH36xcP6iDfiaWVHhGXFjzkxeFpMSUsORAXftMo25deSB5QlPnOcBdvXeWyHT1e5W8LalRdhlDhPgorB4vsAjq7D%2FthEc1GdRwDefdG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec46289356c5-OSL
alt-svc: h3=":443"; ma=86400

www.linkbux.com/track/5688a24WID8UxvMohYseQZhAkydyNmU8CLVEZrksGrHD8ZY6E9i8jRNlxzN2w68kFf9qTtonRw_c_c?url=http%3A%2F%2Fwww.barbershop.no&uid=ws5h4ihtiojtpt2139hd5uuk&uid2=6354964

163.181.1.227

200 OK

558 B

URL GET HTTP/1.1
www.linkbux.com/track/5688a24WID8UxvMohYseQZhAkydyNmU8CLVEZrksGrHD8ZY6E9i8jRNlxzN2w68kFf9qTtonRw_c_c?url=http%3A%2F%2Fwww.barbershop.no&uid=ws5h4ihtiojtpt2139hd5uuk&uid2=6354964
IP
163.181.1.227:443
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerDigiCert Inc
Subject*.linkbux.com
Fingerprint85:43:2D:A8:86:CB:B4:03:47:26:A7:87:5A:80:9D:1E:E1:55:C2:92
ValidityWed, 26 Jul 2023 00:00:00 GMT - Thu, 08 Aug 2024 23:59:59 GMT

File type
HTML document, ASCII text
Size
558 B (558 bytes)
Hash
27ec9a24c5c284c66117ad9b69c2387c
125922fa356a2ab64a0b9bf8a66860b463055d9a
913dd7b3ebd4e98f91e4ff4b10a067b1090320415401bf9c8881ea35a896a685

HTTP Headers

GET /track/5688a24WID8UxvMohYseQZhAkydyNmU8CLVEZrksGrHD8ZY6E9i8jRNlxzN2w68kFf9qTtonRw_c_c?url=http%3A%2F%2Fwww.barbershop.no&uid=ws5h4ihtiojtpt2139hd5uuk&uid2=6354964 HTTP/1.1
Host: www.linkbux.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 05 May 2024 13:02:06 GMT
Vary: Accept-Encoding
Set-Cookie: discuz_2132_saltkey=xEd4CYGf; expires=Tue, 04-Jun-2024 13:02:05 GMT; Max-Age=2592000; path=/; httponly
discuz_2132_lang=en; path=/
discuz_2132_lang=en; path=/
Content-Encoding: gzip
Via: cache19.l2us2[103,0], cache9.ru6[278,0]
Timing-Allow-Origin: *
EagleId: a3b5019d17149141258192733e

bid.bidclickmedia.com/load

172.67.205.77

302 Found

361 B

URL POST HTTP/3
bid.bidclickmedia.com/load
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text
Size
361 B (361 bytes)
Hash
df061fb4dfb37e95d4e0a2d1981251d2
eccdd447dfa92af7f474978ed596be9b6cb1d7e8
ef712eaabe9f00b4048c74b413208880d1644101b82c37b0c2de2dcd69ef5f76

HTTP Headers

POST /load HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: https://bid.bidclickmedia.com
DNT: 1
Connection: keep-alive
Referer: https://bid.bidclickmedia.com/sub/0YDX8OE
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Sun, 05 May 2024 13:02:04 GMT
content-type: text/html; charset=utf-8
location: https://xml.xmlking.com/redirect?feed=591363&auth=0yfQfB&pubid=195183
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5n4Zo4xqpHaOsYe9SNMXiKxjq0dRsQBCoNiL3Sv0mfuvfq8jPjD%2FmVoi1iaZNS6PXOQo8nA8hZ0lx0j7RVHUO4Hccxo4EpzETkLYAkBmo9MpiqiEmdmB2qfkOKQBCpNf9NphZr9WiBk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec3b9b7a5697-OSL
alt-svc: h3=":443"; ma=86400

cdn.yourwebbars.com/sb/notifications/gambling/default/android-btn/8/index.html

172.67.74.218

200 OK

480 B

URL GET HTTP/2
cdn.yourwebbars.com/sb/notifications/gambling/default/android-btn/8/index.html
IP
172.67.74.218:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49
ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
HTML document, ASCII text
Size
480 B (480 bytes)
Hash
988cd00695890a395de736ef1f43180a
fc35045adb5a0bb89e9150574db517cffb44b0c9
100f83963832c14a85c4d7095f0279b0962b83ee6323481ece9b1b2b39515036

HTTP Headers

GET /sb/notifications/gambling/default/android-btn/8/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:04 GMT
content-type: text/html
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 165112
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7hiMVpPKtmFUOU92NCkPDhWnrCjSKxp5V9ME9A%2BF3S3ETMZo2mbBDlsEYHkeMCzS%2BuWEmu4P2aH6Iqz4QHtJW9yuSm9cjFLyXZx8wArIekFgts%2FFoyjzpZee2ySzLXBCYZF6V%2F8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87f0ec3cef99b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2

fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=f7fc0203-dacc-49bf-9594-4e426217c2ee

139.45.195.254

200 OK

12 B

URL POST HTTP/1.1
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=f7fc0203-dacc-49bf-9594-4e426217c2ee
IP
139.45.195.254:443
ASN
#9002 RETN Limited

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerSectigo Limited
Subjectfleraprt.com
Fingerprint32:DB:C5:24:21:ED:1D:C3:40:C3:46:9F:CF:EE:98:4D:72:29:4C:3C
ValidityTue, 09 Jan 2024 00:00:00 GMT - Mon, 13 Jan 2025 23:59:59 GMT

File type
JSON text data
Size
12 B (12 bytes)
Hash
adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed

HTTP Headers

POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=f7fc0203-dacc-49bf-9594-4e426217c2ee HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1404
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Sun, 05 May 2024 13:02:06 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://videzz.net
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true

r.secprf.com/v1/redirect?url=http%3A%2F%2Fwww.barbershop.no&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Fbid.bidclickmedia.com%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_4zsk37a

18.202.86.139

403 Forbidden

64 B

URL GET HTTP/2
r.secprf.com/v1/redirect?url=http%3A%2F%2Fwww.barbershop.no&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Fbid.bidclickmedia.com%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_4zsk37a
IP
18.202.86.139:443
ASN
#16509 AMAZON-02

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectlinksprf.com
FingerprintFB:04:66:40:AF:53:56:65:25:C8:A3:54:2D:ED:20:75:A5:4C:EB:58
ValidityThu, 02 May 2024 08:32:50 GMT - Wed, 31 Jul 2024 08:32:49 GMT

File type
JSON text data
Size
64 B (64 bytes)
Hash
230f3184f7e87fdc27cc80c18d7469db
da8d5755a286768df236dcf4271ee8f79bec3b64
a5ce28d5884fbc7b73ba9e667b01319a7c0f5cbfee43ef32a1334b5ee5d54025

HTTP Headers

GET /v1/redirect?url=http%3A%2F%2Fwww.barbershop.no&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Fbid.bidclickmedia.com%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_4zsk37a HTTP/1.1
Host: r.secprf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkbux.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
date: Sun, 05 May 2024 13:02:06 GMT
content-type: application/json
content-length: 64
set-cookie: ykuid=c505ebebc63a492e84eb44e9471bf075; Path=/; Secure; Domain=.secprf.com; Max-Age=31536000; SameSite=None
JSESSIONID=0849E78DB58C516714EBE9C24ECDBDA5; Path=/; HttpOnly
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

r.secprf.com/v1/redirect?url=http%3A%2F%2Fwww.dyrekassen.no&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Fbid.bidclickmedia.com%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_4zsnxzy

18.202.86.139

403 Forbidden

64 B

URL GET HTTP/2
r.secprf.com/v1/redirect?url=http%3A%2F%2Fwww.dyrekassen.no&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Fbid.bidclickmedia.com%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_4zsnxzy
IP
18.202.86.139:443
ASN
#16509 AMAZON-02

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectlinksprf.com
FingerprintFB:04:66:40:AF:53:56:65:25:C8:A3:54:2D:ED:20:75:A5:4C:EB:58
ValidityThu, 02 May 2024 08:32:50 GMT - Wed, 31 Jul 2024 08:32:49 GMT

File type
JSON text data
Size
64 B (64 bytes)
Hash
461aac27812357eb2ec6ec551e07e844
6e7ec03793636d8e48f239bc5a2919c8e0134661
03b9a2b4389b129d5d8ab51d2c96a796c6c5f2904f0f93323dc6dc1ff825a8a1

HTTP Headers

GET /v1/redirect?url=http%3A%2F%2Fwww.dyrekassen.no&api_key=6e214a2e5eaa4f87f699b7c54a542a6a&type=url&source=https%3A%2F%2Fbid.bidclickmedia.com%2F&site_id=2588750acba045468d0d6283a3c3afec&yk_tag=lb_4zsnxzy HTTP/1.1
Host: r.secprf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkbux.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
date: Sun, 05 May 2024 13:02:06 GMT
content-type: application/json
content-length: 64
set-cookie: ykuid=949f3f70754d4fcea20c0267366c07dc; Path=/; Secure; Domain=.secprf.com; Max-Age=31536000; SameSite=None
JSESSIONID=7596240AC9780670102A007D944BDC5B; Path=/; HttpOnly
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

xml.cachegorilla.com/redirect?feed=612977&auth=kAeZgJ&pubid=197570

173.239.53.20

200 OK

0 B

URL GET HTTP/1.1
xml.cachegorilla.com/redirect?feed=612977&auth=kAeZgJ&pubid=197570
IP
173.239.53.20:443
ASN
#27257 WEBAIR-INTERNET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerSectigo Limited
Subject*.cachegorilla.com
Fingerprint29:B3:53:29:E3:6F:D3:48:F6:66:3E:78:57:05:A6:19:12:0D:2C:4A
ValidityFri, 10 Nov 2023 00:00:00 GMT - Sun, 10 Nov 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect?feed=612977&auth=kAeZgJ&pubid=197570 HTTP/1.1
Host: xml.cachegorilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 May 2024 13:02:06 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store

cdn.itskiddien.club/apu.php?zoneid=5902452&var=5708419

139.45.197.236

200 OK

37 kB

URL GET HTTP/2
cdn.itskiddien.club/apu.php?zoneid=5902452&var=5708419
IP
139.45.197.236:443
ASN
#9002 RETN Limited

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectitskiddien.club
FingerprintF8:F5:E1:2A:73:41:2E:21:C2:B1:A0:A3:DE:9D:2D:B2:87:3F:8E:5D
ValidityFri, 29 Mar 2024 21:36:27 GMT - Thu, 27 Jun 2024 21:36:26 GMT

File type
gzip compressed data, max speed, from Unix
Size
37 kB (37146 bytes)
Hash
b4a57583646fd96ccd366d830888fb05
1accfb0098a8248b738e7aedbe07b8d8a9af3e3a
9aec0507dd10a33409dc15355e2dc54a2e098f7b18ce3262925784ca564b8c91

HTTP Headers

GET /apu.php?zoneid=5902452&var=5708419 HTTP/1.1
Host: cdn.itskiddien.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 13:02:06 GMT
content-type: application/javascript
x-trace-id: 8c23df40a713a2b33134441828bd671e
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=0080536b02084940f5507fe909717117; expires=Mon, 05 May 2025 13:02:06 GMT; path=/; secure; SameSite=None
oaidts=1714914126; expires=Mon, 05 May 2025 13:02:06 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

www.torcklmi.com/feed/click/?t1=128&tid=876&uid=102&subid=152850&id=a1aee858956f7c56c9df41cd3751a235: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

142.93.240.225

302 Found

152 B

URL GET HTTP/1.1
www.torcklmi.com/feed/click/?t1=128&tid=876&uid=102&subid=152850&id=a1aee858956f7c56c9df41cd3751a235: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
IP
142.93.240.225:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectwww.torcklmi.com
FingerprintB1:E0:A9:36:C8:55:54:10:91:5B:EB:AE:07:39:B9:27:F6:73:27:0A
ValidityMon, 29 Apr 2024 04:17:53 GMT - Sun, 28 Jul 2024 04:17:52 GMT

File type
HTML document, ASCII text, with no line terminators
Size
152 B (152 bytes)
Hash
efe15679e91fa87d809222593f1f4d04
854da5bb6f74fa781e365921bf4f65f760219e79
2b8bb8e563fa99976749c072b9bafe405c5ba81c8739c259e95b743d628056af

HTTP Headers

GET /feed/click/?t1=128&tid=876&uid=102&subid=152850&id=a1aee858956f7c56c9df41cd3751a235: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 HTTP/1.1
Host: www.torcklmi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
X-Powered-By: Express
Surrogate-Control: no-store
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate
Expires: 0
Location: https://xml.green-resultsbid.com/click?i=7O8aIKNN3sA_0
Vary: Accept
Content-Type: text/html; charset=utf-8
Content-Length: 152
Date: Sun, 05 May 2024 13:02:06 GMT
Connection: keep-alive
Keep-Alive: timeout=5

xmlclick.adcannyxml.com/nrtb/click?bid=-W3mT8DYdlAuHsq6cY2He4J__O_2w0cf35sTxDAlC0AVBQY1io2nCa9ievZ2dI-0_0_9

23.226.122.79

302 Found

55 B

URL GET HTTP/2
xmlclick.adcannyxml.com/nrtb/click?bid=-W3mT8DYdlAuHsq6cY2He4J__O_2w0cf35sTxDAlC0AVBQY1io2nCa9ievZ2dI-0_0_9
IP
23.226.122.79:443
ASN
#29802 HVC-AS

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerUnizeto Technologies S.A.
Subject*.adcannyxml.com
Fingerprint94:3C:B1:37:BD:FA:9C:E1:1E:F4:57:BB:30:0F:66:33:53:31:41:24
ValidityMon, 18 Mar 2024 07:29:56 GMT - Tue, 18 Mar 2025 07:29:55 GMT

File type
HTML document, ASCII text
Size
55 B (55 bytes)
Hash
397f81a4f18e04a060c75e5b71f7cee1
557f585b9711a7f867cff5a443ed2bce8eefcf8b
bb44fc266d7d490de9db213118e1a22f9edf87f963b26ba9a02e923a9b5a4b1f

HTTP Headers

GET /nrtb/click?bid=-W3mT8DYdlAuHsq6cY2He4J__O_2w0cf35sTxDAlC0AVBQY1io2nCa9ievZ2dI-0_0_9 HTTP/1.1
Host: xmlclick.adcannyxml.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 May 2024 13:02:06 GMT
content-type: text/html; charset=utf-8
content-length: 55
location: https://t.bawixi.xyz/1/?zid=9776
X-Firefox-Spdy: h2

olivedinflats.space/redirect?tid=926092&subid=658956.6953

143.204.55.60

302 Found

0 B

URL GET HTTP/2
olivedinflats.space/redirect?tid=926092&subid=658956.6953
IP
143.204.55.60:443
ASN
#16509 AMAZON-02

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerAmazon
Subjectolivedinflats.space
FingerprintB8:33:05:64:86:FB:77:78:F9:E4:EE:40:9E:67:DB:10:D2:EE:BB:EF
ValiditySun, 11 Feb 2024 00:00:00 GMT - Mon, 10 Mar 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect?tid=926092&subid=658956.6953 HTTP/1.1
Host: olivedinflats.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: text/plain
content-length: 0
location: https://xmlserving.mobagent.com/click?i=XnLQY9cteMA_0
date: Sun, 05 May 2024 13:02:06 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: csu=d5139120-49b2-4f79-ba97-eaab7d4caf2e
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3AYjaQL8B0UHl6tOdPDjZijTY0E6DLWEDriqyoPgQt1Dq93N6-xd9Q==
X-Firefox-Spdy: h2

xml.green-resultsbid.com/click?i=7O8aIKNN3sA_0

198.134.116.29

302 Found

0 B

URL GET HTTP/1.1
xml.green-resultsbid.com/click?i=7O8aIKNN3sA_0
IP
198.134.116.29:443
ASN
#27257 WEBAIR-INTERNET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectgreen-resultsbid.com
Fingerprint6E:35:B6:DB:09:24:88:76:BC:E6:96:50:8D:3B:BA:3D:86:F1:06:EA
ValidityMon, 29 Apr 2024 06:46:57 GMT - Sun, 28 Jul 2024 06:46:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /click?i=7O8aIKNN3sA_0 HTTP/1.1
Host: xml.green-resultsbid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx
Date: Sun, 05 May 2024 13:02:07 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://olivedinflats.space/redirect?tid=926092&subid=623703.876_152850

olivedinflats.space/redirect?tid=926092&subid=623703.876_152850

143.204.55.60

204 No Content

0 B

URL GET HTTP/2
olivedinflats.space/redirect?tid=926092&subid=623703.876_152850
IP
143.204.55.60:443
ASN
#16509 AMAZON-02

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerAmazon
Subjectolivedinflats.space
FingerprintB8:33:05:64:86:FB:77:78:F9:E4:EE:40:9E:67:DB:10:D2:EE:BB:EF
ValiditySun, 11 Feb 2024 00:00:00 GMT - Mon, 10 Mar 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect?tid=926092&subid=623703.876_152850 HTTP/1.1
Host: olivedinflats.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Sun, 05 May 2024 13:02:07 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: csu=7cbc2271-8360-4fa0-adcf-3bd0e99a48af
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: G1MD3SLpSI6FWtEQlEtneeXhxRDgU5tAYAET_UGeuzAH9sFbWULnZA==
X-Firefox-Spdy: h2

xmlserving.mobagent.com/click?i=XnLQY9cteMA_0

173.239.53.17

302 Found

0 B

URL GET HTTP/1.1
xmlserving.mobagent.com/click?i=XnLQY9cteMA_0
IP
173.239.53.17:443
ASN
#27257 WEBAIR-INTERNET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectmobagent.com
Fingerprint32:5B:6D:B0:12:83:B4:06:40:1B:82:8F:82:24:66:F8:56:1C:A7:93
ValidityWed, 03 Apr 2024 06:41:11 GMT - Tue, 02 Jul 2024 06:41:10 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /click?i=XnLQY9cteMA_0 HTTP/1.1
Host: xmlserving.mobagent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx
Date: Sun, 05 May 2024 13:02:07 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://tfosrv.com/show_std.php?id_site=13111&id_channel=60781&uf=true

www.googletagmanager.com/gtag/js?id=G-LTZ10XBX1X

142.250.74.72

200 OK

97 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-LTZ10XBX1X
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://t7rsx24c5.com/i/3144?nsid=1&partner_subid=2
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (7711)
Size
97 kB (97364 bytes)
Hash
e732577f51c236c1c889fe52d1549d7c
11adc97d8bd4ed0f568dc9acae62749c35f6d81a
1562a70a581149453f6316205df631a7af3a6464542ff6715662baf231820ce0

HTTP Headers

GET /gtag/js?id=G-LTZ10XBX1X HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://t7rsx24c5.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 May 2024 13:02:07 GMT
expires: Sun, 05 May 2024 13:02:07 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 97364
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

t7rsx24c5.com/banner_ads.js

159.69.42.212

200 OK

111 B

URL GET HTTP/2
t7rsx24c5.com/banner_ads.js
IP
159.69.42.212:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://t7rsx24c5.com/i/3144?nsid=1&partner_subid=2
Certificate
IssuerLet's Encrypt
Subjectt7rsx24c5.com
FingerprintBD:7C:E4:B6:A6:DB:3D:9B:78:EF:9B:42:91:71:88:3B:D2:40:56:0D
ValidityThu, 28 Mar 2024 13:29:20 GMT - Wed, 26 Jun 2024 13:29:19 GMT

File type
ASCII text
Size
111 B (111 bytes)
Hash
b55398d3f22571b3e9dcaba2eb37cf70
9ab8cd7e33d19a6a5f7a58b15aa6a598202ae054
4aa355b64f75bc8293836eb2ca7ff4a0d7230f361c2e9b1b2d7394ac7c540f90

HTTP Headers

GET /banner_ads.js HTTP/1.1
Host: t7rsx24c5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://t7rsx24c5.com/i/3144?nsid=1&partner_subid=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sun, 05 May 2024 12:47:41 GMT
content-type: application/javascript
content-length: 111
last-modified: Thu, 26 Sep 2019 08:13:05 GMT
etag: "5d8c7311-6f"
expires: Tue, 04 Jun 2024 12:47:41 GMT
pragma: public
cache-control: max-age=2592000, public
accept-ranges: bytes
X-Firefox-Spdy: h2

tfosrv.com/show_std.php?id_site=13111&id_channel=60781&uf=true

216.18.168.29

302 Found

0 B

URL GET HTTP/1.1
tfosrv.com/show_std.php?id_site=13111&id_channel=60781&uf=true
IP
216.18.168.29:443
ASN
#29789 REFLECTED

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerSectigo Limited
Subject*.tfosrv.com
Fingerprint17:0E:13:E0:E3:EE:17:88:09:10:8F:63:F4:7E:31:5A:D9:33:7D:80
ValidityTue, 31 Oct 2023 00:00:00 GMT - Mon, 18 Nov 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /show_std.php?id_site=13111&id_channel=60781&uf=true HTTP/1.1
Host: tfosrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
server: nginx
date: Sun, 05 May 2024 13:02:07 GMT
content-length: 0
location: https://tfosrv.com/impression.php?channel_id=60781&id=e7b6185a-6eff-4ae8-ba8c-edc4afa658fb%3A4d72b8d0-edde-4f20-b4ab-3bdb5eff67b1&site_id=13111&uuid=67e17abd-e4fb-48d6-a9ad-c2d63d7b90b9
set-cookie: sppc_uuid=3c9d3edb-c709-47e4-80fc-b4e9c5a7fdb7; max-age=31536000; path=/; secure; SameSite=None
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version

tfosrv.com/impression.php?channel_id=60781&id=e7b6185a-6eff-4ae8-ba8c-edc4afa658fb%3A4d72b8d0-edde-4f20-b4ab-3bdb5eff67b1&site_id=13111&uuid=67e17abd-e4fb-48d6-a9ad-c2d63d7b90b9

216.18.168.29

302 Found

0 B

URL GET HTTP/1.1
tfosrv.com/impression.php?channel_id=60781&id=e7b6185a-6eff-4ae8-ba8c-edc4afa658fb%3A4d72b8d0-edde-4f20-b4ab-3bdb5eff67b1&site_id=13111&uuid=67e17abd-e4fb-48d6-a9ad-c2d63d7b90b9
IP
216.18.168.29:443
ASN
#29789 REFLECTED

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerSectigo Limited
Subject*.tfosrv.com
Fingerprint17:0E:13:E0:E3:EE:17:88:09:10:8F:63:F4:7E:31:5A:D9:33:7D:80
ValidityTue, 31 Oct 2023 00:00:00 GMT - Mon, 18 Nov 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /impression.php?channel_id=60781&id=e7b6185a-6eff-4ae8-ba8c-edc4afa658fb%3A4d72b8d0-edde-4f20-b4ab-3bdb5eff67b1&site_id=13111&uuid=67e17abd-e4fb-48d6-a9ad-c2d63d7b90b9 HTTP/1.1
Host: tfosrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Cookie: sppc_uuid=3c9d3edb-c709-47e4-80fc-b4e9c5a7fdb7
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
server: nginx
date: Sun, 05 May 2024 13:02:07 GMT
content-length: 0
location: https://trafforsrv.com/click.php?id=e7b6185a-6eff-4ae8-ba8c-edc4afa658fb%3A4d72b8d0-edde-4f20-b4ab-3bdb5eff67b1
set-cookie: sppc_uuid=67e17abd-e4fb-48d6-a9ad-c2d63d7b90b9; max-age=31536000; path=/; secure; SameSite=None
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version

trafforsrv.com/click.php?id=e7b6185a-6eff-4ae8-ba8c-edc4afa658fb%3A4d72b8d0-edde-4f20-b4ab-3bdb5eff67b1

216.18.168.28

302 Found

0 B

URL GET HTTP/1.1
trafforsrv.com/click.php?id=e7b6185a-6eff-4ae8-ba8c-edc4afa658fb%3A4d72b8d0-edde-4f20-b4ab-3bdb5eff67b1
IP
216.18.168.28:443
ASN
#29789 REFLECTED

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerSectigo Limited
Subject*.trafforsrv.com
FingerprintC4:DD:C6:65:15:A0:54:82:7D:C9:E3:43:74:BA:ED:16:CC:DD:F5:00
ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 16 Nov 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /click.php?id=e7b6185a-6eff-4ae8-ba8c-edc4afa658fb%3A4d72b8d0-edde-4f20-b4ab-3bdb5eff67b1 HTTP/1.1
Host: trafforsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
server: nginx
date: Sun, 05 May 2024 13:02:08 GMT
content-length: 0
location: https://s.pemsrv.com/splash.php?idzone=5040978&type=8
set-cookie: sppc_uuid=4702968b-0295-4e16-94a1-ffcf8419e019; max-age=31536000; path=/; secure; SameSite=None
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version

s.pemsrv.com/splash.php?idzone=5040978&type=8

95.211.229.248

200 OK

478 B

URL GET HTTP/1.1
s.pemsrv.com/splash.php?idzone=5040978&type=8
IP
95.211.229.248:443
ASN
#60781 LeaseWeb Netherlands B.V.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectpemsrv.com
FingerprintBA:AA:AB:1F:22:EF:D5:0A:2D:0C:D0:E8:1C:F5:D4:F5:29:2A:0D:5D
ValidityTue, 30 Apr 2024 07:53:35 GMT - Mon, 29 Jul 2024 07:53:34 GMT

File type
HTML document, ASCII text, with very long lines (717)
Size
478 B (478 bytes)
Hash
0a0facbef164c9e58f80ef97a1a0827e
11213522b288f0683c8f640b87b1e4e246ad8030
8b9ce633f14b63226137606c6901f59c4b354efbce58f82c4def4f93e5ed9aaf

HTTP Headers

GET /splash.php?idzone=5040978&type=8 HTTP/1.1
Host: s.pemsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 May 2024 13:02:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: X-CH-VALUES
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2266378350111c29.342099643596580306%22%3B%7D; expires=Tue, 05 May 2026 13:02:08 GMT; path=; domain=.pemsrv.com; Secure; SameSite=none
Accept-Ch: Sec-Ch-Ua,Sec-Ch-Ua-Mobile,Sec-Ch-Ua-Full-Version,Sec-Ch-Ua-Full-Version-list,Sec-Ch-Ua-Platform,Sec-Ch-Ua-Platform-Version,Sec-Ch-Ua-Bitness,Sec-Ch-Ua-Arch
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

s.pemsrv.com/splash.php?idzone=5040978&type=8&p=https%3A%2F%2Fbid.bidclickmedia.com%2F&tested=1&check=4982d74cc5945eb5f443cbeab8c29c8c&screen_resolution=1280x1024&container_resolution=1916x1076&iframe=1

95.211.229.248

302 Found

0 B

URL GET HTTP/1.1
s.pemsrv.com/splash.php?idzone=5040978&type=8&p=https%3A%2F%2Fbid.bidclickmedia.com%2F&tested=1&check=4982d74cc5945eb5f443cbeab8c29c8c&screen_resolution=1280x1024&container_resolution=1916x1076&iframe=1
IP
95.211.229.248:443
ASN
#60781 LeaseWeb Netherlands B.V.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectpemsrv.com
FingerprintBA:AA:AB:1F:22:EF:D5:0A:2D:0C:D0:E8:1C:F5:D4:F5:29:2A:0D:5D
ValidityTue, 30 Apr 2024 07:53:35 GMT - Mon, 29 Jul 2024 07:53:34 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /splash.php?idzone=5040978&type=8&p=https%3A%2F%2Fbid.bidclickmedia.com%2F&tested=1&check=4982d74cc5945eb5f443cbeab8c29c8c&screen_resolution=1280x1024&container_resolution=1916x1076&iframe=1 HTTP/1.1
Host: s.pemsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s.pemsrv.com/splash.php?idzone=5040978&type=8
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2266378350111c29.342099643596580306%22%3B%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx
Date: Sun, 05 May 2024 13:02:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: X-CH-VALUES
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2266378350111c29.342099643596580306%22%3B%7D; expires=Tue, 05 May 2026 13:02:08 GMT; path=; domain=.pemsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-link%22%3A%22v4%7C%7CNOR%7C5040978%7C95887222%7C203714%7C%7C508%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C66378350111c29.342099643596580306%7Cc83b2609dce0c49ddeb451cf74df4f3a%7C0%7Cbid.bidclickmedia.com%7C1280x1024%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C1714914128%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Caaf11a86ee56910d7ce15e4e513c3548%7Cok%22%7D; expires=Sat, 03 Aug 2024 13:02:08 GMT; path=/; domain=.pemsrv.com; Secure; SameSite=none
Location: https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Accept-CH: 
X-Robots-Tag: noindex, follow

tzegilo.com/stattag.js

172.67.193.52

200 OK

9.8 kB

URL GET HTTP/2
tzegilo.com/stattag.js
IP
172.67.193.52:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjecttzegilo.com
Fingerprint28:2E:D0:DF:04:78:60:5A:D2:5B:1F:EA:59:80:9C:2F:89:C1:9D:D1
ValiditySat, 30 Mar 2024 15:54:48 GMT - Fri, 28 Jun 2024 15:54:47 GMT

File type
JavaScript source, ASCII text, with very long lines (18486)
Size
9.8 kB (9810 bytes)
Hash
70ebd404c2e1e7bad13998538b56887c
86e57af8ba3cfc2c004da3311835f6b54ba6d848
d71ea61938136a384e4c53c5a7a3c36e68fcc70a68bae691e270987d5d2eb11f

HTTP Headers

GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:06 GMT
content-type: application/javascript
last-modified: Wed, 07 Feb 2024 12:51:13 GMT
etag: W/"65c37cc1-4ac0"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 2948
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UI7ca5sUPfBlyljojVuKD445yjZCRkSc1vklV6AlJkBVilwkcZH8Cs7fDgLgNw0TCd0CtD7DwpU4PwAJBkDuBXd8g98UJoyH7gry1CSR7D0eTF9dVYcmYUm4%2B%2BxKmg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87f0ec47abe456ab-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static2-ma-ht.project1content.com/tour/@one/blocks/async/ContainerBlock.877c97af.js

64.210.135.114

200 OK

232 B

URL GET HTTP/2
static2-ma-ht.project1content.com/tour/@one/blocks/async/ContainerBlock.877c97af.js
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with no line terminators
Size
232 B (232 bytes)
Hash
ed2f44cc9f2871d8668252e176c16e33
efa4750156409a21bc47ae02827d792d14ca899d
5544d0dd2f72ed204f9d4e9ca610e167ceb31854b27d188e55b1360319962e1b

HTTP Headers

GET /tour/@one/blocks/async/ContainerBlock.877c97af.js HTTP/1.1
Host: static2-ma-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:09 GMT
content-type: application/javascript
content-length: 232
last-modified: Fri, 16 Feb 2024 21:44:10 GMT
etag: "3a99970fe-e8-61186a4e49e80"
expires: Thu, 20 Jun 2024 23:30:37 GMT
cache-control: max-age=10511277
vary: Accept-Encoding
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
accept-ranges: bytes
x-cdn-diag: ams5-7846-2-65147-h-0-0---;6140-24-12905----0-0-1
X-Firefox-Spdy: h2

static2-ma-ht.project1content.com/tour/@one/blocks/async/RowBlock.3b6ad7f7.js

64.210.135.114

200 OK

421 B

URL GET HTTP/2
static2-ma-ht.project1content.com/tour/@one/blocks/async/RowBlock.3b6ad7f7.js
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (421), with no line terminators
Size
421 B (421 bytes)
Hash
a94050f26199e41905e348fbc2ad9724
4ad81ca158f6008863628a9dccd0232870a66a05
a97ab9aa6b0d346531f8fab56ba39727ccf80b4101a4b3f09af3eab4d895108d

HTTP Headers

GET /tour/@one/blocks/async/RowBlock.3b6ad7f7.js HTTP/1.1
Host: static2-ma-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:09 GMT
content-type: application/javascript
content-length: 421
last-modified: Fri, 16 Feb 2024 21:44:10 GMT
etag: "3a953ca06-1a5-61186a4e49e80"
expires: Thu, 20 Jun 2024 23:30:37 GMT
cache-control: max-age=10511277
vary: Accept-Encoding
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
accept-ranges: bytes
x-cdn-diag: ams5-6139-3-1871-h-0-0---;6140-23-12905----0-0-1
X-Firefox-Spdy: h2

static2-ma-ht.project1content.com/tour/@one/blocks/async/ColumnBlock.8745db90.js

64.210.135.114

200 OK

435 B

URL GET HTTP/2
static2-ma-ht.project1content.com/tour/@one/blocks/async/ColumnBlock.8745db90.js
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (435), with no line terminators
Size
435 B (435 bytes)
Hash
bba82fdfdc2684ce6c44701d57090667
8625624d8247f8c9a94ab6ff74e977e54ee1d083
9116e30438d4725883a76b2efb55417c33529009297515869f1b92dd89d7f602

HTTP Headers

GET /tour/@one/blocks/async/ColumnBlock.8745db90.js HTTP/1.1
Host: static2-ma-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:09 GMT
content-type: application/javascript
content-length: 435
last-modified: Tue, 12 Mar 2024 14:28:25 GMT
etag: "3aaacc525-1b3-61377788ff440"
expires: Sun, 14 Jul 2024 07:27:02 GMT
cache-control: max-age=10658011
vary: Accept-Encoding
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
accept-ranges: bytes
x-cdn-diag: ams5-6249-3-14647-h-0-0---;6140-22-12905----0-0-0
X-Firefox-Spdy: h2

app.launchdarkly.com/sdk/goals/63bdba6ee6d64c12826b8bff

151.101.130.217

200 OK

23 B

URL GET HTTP/2
app.launchdarkly.com/sdk/goals/63bdba6ee6d64c12826b8bff
IP
151.101.130.217:443
ASN
#54113 FASTLY

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerGlobalSign nv-sa
Subjectapp.launchdarkly.com
Fingerprint0E:80:83:6E:DA:34:B1:44:89:98:74:A9:22:2A:70:56:1D:54:1E:3F
ValidityThu, 04 Apr 2024 00:55:36 GMT - Tue, 06 May 2025 00:55:35 GMT

File type
gzip compressed data
Size
23 B (23 bytes)
Hash
f0d79988b7772c003d04a28bd7417a62
58423a999eec2997bcfffb247e9ecd3dfd0abf44
30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f

HTTP Headers

OPTIONS /sdk/goals/63bdba6ee6d64c12826b8bff HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-launchdarkly-user-agent,x-launchdarkly-wrapper
Referer: https://tgp1.brazzersnetwork.com/
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Authorization,X-Requested-With,X-LD-Private,X-LD-AccountId,X-LD-EnvId,X-LD-PrjId,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper,LD-API-Version,X-LaunchDarkly-Tags
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-max-age: 3600
allow: GET, OPTIONS, HEAD
content-encoding: gzip
ld-region: us-east-1
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
date: Sun, 05 May 2024 13:02:09 GMT
via: 1.1 varnish
x-served-by: cache-hel1410025-HEL
x-cache: HIT
x-cache-hits: 91
x-timer: S1714914130.753131,VS0,VE0
vary: Accept-Encoding
age: 0
content-length: 23
X-Firefox-Spdy: h2

tgp1.brazzersnetwork.com/_p1cdn/tour/vortex.modern.min.js

66.254.114.234

200 OK

9.9 kB

URL GET HTTP/2
tgp1.brazzersnetwork.com/_p1cdn/tour/vortex.modern.min.js
IP
66.254.114.234:443
ASN
#29789 REFLECTED

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerLet's Encrypt
Subjectbrazzersnetwork.com
Fingerprint88:AB:08:D2:E9:0E:FD:34:1F:CD:0A:B3:E0:9F:DB:C8:07:2F:D4:AA
ValidityWed, 10 Apr 2024 00:01:06 GMT - Tue, 09 Jul 2024 00:01:05 GMT

File type
JavaScript source, ASCII text
Size
9.9 kB (9858 bytes)
Hash
8615bee9068b817379cf2786e159cdae
299c43921b6e0cb729e31535f23961a450a2ba79
9cb41441c631e1b63421ead1af686cc5a88943bf4480792b667fbb4d47009fec

HTTP Headers

GET /_p1cdn/tour/vortex.modern.min.js HTTP/1.1
Host: tgp1.brazzersnetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:09 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 08 Feb 2024 21:05:55 GMT
etag: W/"3a8c4c948-94e3-610e52d5eb2c0"
expires: Sat, 15 Jun 2024 11:16:34 GMT
cache-control: max-age=10694520
content-encoding: gzip
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
x-cdn-diag: dfw1-15026-1-4074284-h-0-0---;15011-127-41362----0-0-1
set-cookie: __s=66378350-42FE72EA01BB7E0DD-2506B9;
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

app.launchdarkly.com/sdk/evalx/63bdba6ee6d64c12826b8bff/users/eyJrZXkiOiJ1c2VyLWtleS10b3VyIiwibmFtZSI6IlRvdXIgTGF1bmNoRGFya2x5IiwiZW1haWwiOiJtaW5kZ2Vla0BleGFtcGxlLmNvbSIsImN1c3RvbSI6eyJicmFuZElkIjozLCJpbnN0YW5jZUlkIjoyODE2ODEsImlzRGV2IjpmYWxzZSwiaXNJbnRlcm5hbFVzZXIiOmZhbHNlLCJyb290RW52IjoicHJvZCIsInNpdGVJZCI6MTMwMX19

151.101.130.217

200 OK

23 B

URL GET HTTP/2
app.launchdarkly.com/sdk/evalx/63bdba6ee6d64c12826b8bff/users/eyJrZXkiOiJ1c2VyLWtleS10b3VyIiwibmFtZSI6IlRvdXIgTGF1bmNoRGFya2x5IiwiZW1haWwiOiJtaW5kZ2Vla0BleGFtcGxlLmNvbSIsImN1c3RvbSI6eyJicmFuZElkIjozLCJpbnN0YW5jZUlkIjoyODE2ODEsImlzRGV2IjpmYWxzZSwiaXNJbnRlcm5hbFVzZXIiOmZhbHNlLCJyb290RW52IjoicHJvZCIsInNpdGVJZCI6MTMwMX19
IP
151.101.130.217:443
ASN
#54113 FASTLY

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerGlobalSign nv-sa
Subjectapp.launchdarkly.com
Fingerprint0E:80:83:6E:DA:34:B1:44:89:98:74:A9:22:2A:70:56:1D:54:1E:3F
ValidityThu, 04 Apr 2024 00:55:36 GMT - Tue, 06 May 2025 00:55:35 GMT

File type
gzip compressed data
Size
23 B (23 bytes)
Hash
f0d79988b7772c003d04a28bd7417a62
58423a999eec2997bcfffb247e9ecd3dfd0abf44
30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f

HTTP Headers

OPTIONS /sdk/evalx/63bdba6ee6d64c12826b8bff/users/eyJrZXkiOiJ1c2VyLWtleS10b3VyIiwibmFtZSI6IlRvdXIgTGF1bmNoRGFya2x5IiwiZW1haWwiOiJtaW5kZ2Vla0BleGFtcGxlLmNvbSIsImN1c3RvbSI6eyJicmFuZElkIjozLCJpbnN0YW5jZUlkIjoyODE2ODEsImlzRGV2IjpmYWxzZSwiaXNJbnRlcm5hbFVzZXIiOmZhbHNlLCJyb290RW52IjoicHJvZCIsInNpdGVJZCI6MTMwMX19 HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-launchdarkly-user-agent,x-launchdarkly-wrapper
Referer: https://tgp1.brazzersnetwork.com/
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Authorization,X-Requested-With,X-LD-Private,X-LD-AccountId,X-LD-EnvId,X-LD-PrjId,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper,LD-API-Version,X-LaunchDarkly-Tags
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-max-age: 3600
allow: GET, OPTIONS, HEAD
content-encoding: gzip
ld-region: us-east-1
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
date: Sun, 05 May 2024 13:02:09 GMT
via: 1.1 varnish
x-served-by: cache-hel1410025-HEL
x-cache: HIT
x-cache-hits: 105
x-timer: S1714914130.785495,VS0,VE0
vary: Accept-Encoding
age: 0
content-length: 23
X-Firefox-Spdy: h2

151.101.130.217

200 OK

180 B

URL GET HTTP/2
app.launchdarkly.com/sdk/evalx/63bdba6ee6d64c12826b8bff/users/eyJrZXkiOiJ1c2VyLWtleS10b3VyIiwibmFtZSI6IlRvdXIgTGF1bmNoRGFya2x5IiwiZW1haWwiOiJtaW5kZ2Vla0BleGFtcGxlLmNvbSIsImN1c3RvbSI6eyJicmFuZElkIjozLCJpbnN0YW5jZUlkIjoyODE2ODEsImlzRGV2IjpmYWxzZSwiaXNJbnRlcm5hbFVzZXIiOmZhbHNlLCJyb290RW52IjoicHJvZCIsInNpdGVJZCI6MTMwMX19
IP
151.101.130.217:443
ASN
#54113 FASTLY

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerGlobalSign nv-sa
Subjectapp.launchdarkly.com
Fingerprint0E:80:83:6E:DA:34:B1:44:89:98:74:A9:22:2A:70:56:1D:54:1E:3F
ValidityThu, 04 Apr 2024 00:55:36 GMT - Tue, 06 May 2025 00:55:35 GMT

File type
JSON text data
Size
180 B (180 bytes)
Hash
f49df299358be8bb6965fe98c18d3de8
1db004cb4142b82410913fa0aa8ef4700ed3af0e
1d9765e0ef4d9d7b952a82a0ebbecde9e35d6eff68b7134c2b971779f886540b

HTTP Headers

GET /sdk/evalx/63bdba6ee6d64c12826b8bff/users/eyJrZXkiOiJ1c2VyLWtleS10b3VyIiwibmFtZSI6IlRvdXIgTGF1bmNoRGFya2x5IiwiZW1haWwiOiJtaW5kZ2Vla0BleGFtcGxlLmNvbSIsImN1c3RvbSI6eyJicmFuZElkIjozLCJpbnN0YW5jZUlkIjoyODE2ODEsImlzRGV2IjpmYWxzZSwiaXNJbnRlcm5hbFVzZXIiOmZhbHNlLCJyb290RW52IjoicHJvZCIsInNpdGVJZCI6MTMwMX19 HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-LaunchDarkly-User-Agent: JSClient/2.24.2
X-LaunchDarkly-Wrapper: react-client-sdk/2.29.2
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/json
cache-control: max-age=0
etag: "3dbb"
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-methods: OPTIONS, GET
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization, X-Requested-With, X-LD-Private, X-LD-AccountId, X-LD-EnvId, X-LD-PrjId, X-LaunchDarkly-Event-Schema, X-LaunchDarkly-User-Agent, X-LaunchDarkly-Wrapper, Ld-Api-Version
content-encoding: gzip
accept-ranges: bytes
date: Sun, 05 May 2024 13:02:09 GMT
via: 1.1 varnish
x-served-by: cache-hel1410032-HEL, cache-hel1410025-HEL
x-cache: HIT
x-cache-hits: 25
x-timer: S1714914130.833787,VS0,VE0
vary: Authorization, Accept-Encoding
age: 0
content-length: 180
X-Firefox-Spdy: h2

static2-ma-ht.project1content.com/tour/assets/probiller.5f27a427.png

64.210.135.114

200 OK

8.5 kB

URL GET HTTP/2
static2-ma-ht.project1content.com/tour/assets/probiller.5f27a427.png
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
PNG image data, 170 x 43, 8-bit/color RGBA, non-interlaced
Size
8.5 kB (8497 bytes)
Hash
5f27a427e3542a7170d713e12763ed5e
c57ffdec39259bec85aa633529df86c8e25638ae
ce087c55c6cfa777c2070304a44b3a756c57a31f124a9befcfe69af6bd103483

HTTP Headers

GET /tour/assets/probiller.5f27a427.png HTTP/1.1
Host: static2-ma-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:10 GMT
content-type: image/png
content-length: 8497
last-modified: Tue, 23 Jan 2024 22:03:01 GMT
etag: "3a75bac57-2131-60fa41c1d4f40"
expires: Fri, 31 May 2024 23:00:31 GMT
cache-control: max-age=10641991
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
accept-ranges: bytes
x-cdn-diag: ams5-7846-3-65311-h-0-0---;6140-26-12905----0-0-1
X-Firefox-Spdy: h2

fonts.gstatic.com/s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2

142.250.74.163

200 OK

21 kB

URL GET HTTP/2
fonts.gstatic.com/s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 21224, version 1.0
Size
21 kB (21224 bytes)
Hash
13bdfb843f942ccd9f485eb6c0bc1934
2bad44362ff7569f24f2a3df2521b27a97ec1297
7a291479495fbb281655d5e870c6d118dc6b7ed18e8c235aef5974c1e9de4e6c

HTTP Headers

GET /s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21224
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 09:10:08 GMT
expires: Sat, 03 May 2025 09:10:08 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:04:18 GMT
content-type: font/woff2
age: 186722
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2

142.250.74.163

200 OK

22 kB

URL GET HTTP/2
fonts.gstatic.com/s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 22376, version 1.0
Size
22 kB (22376 bytes)
Hash
e6af16165f9bfda6aafd0088b8c01daa
c9c0ee8309619643e65ba1b22bfffcd1a7ca1e51
e803cd8c5031ac6b0d099a2d96ba1c3ee44782649a7f7c6f0d09b6410d93e216

HTTP Headers

GET /s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22376
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:06:28 GMT
expires: Fri, 02 May 2025 02:06:28 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:25:01 GMT
content-type: font/woff2
age: 298542
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 06:08:19 GMT
expires: Sat, 03 May 2025 06:08:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 197631
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

tgp1.brazzersnetwork.com/_ats/eta/guid?app_id=&eventName=&

66.254.114.234

200 OK

128 B

URL GET HTTP/2
tgp1.brazzersnetwork.com/_ats/eta/guid?app_id=&eventName=&
IP
66.254.114.234:443
ASN
#29789 REFLECTED

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerLet's Encrypt
Subjectbrazzersnetwork.com
Fingerprint88:AB:08:D2:E9:0E:FD:34:1F:CD:0A:B3:E0:9F:DB:C8:07:2F:D4:AA
ValidityWed, 10 Apr 2024 00:01:06 GMT - Tue, 09 Jul 2024 00:01:05 GMT

File type
JSON text data
Size
128 B (128 bytes)
Hash
7cc314c17f4fd34832b902cd0e956d8f
44fbaff82aa3f86addd2a7d2814da140ce135134
241213266853dcb51aa534eb53dcd4ddf25051a73c7cdd971dd8c8093a8db2e1

HTTP Headers

GET /_ats/eta/guid?app_id=&eventName=& HTTP/1.1
Host: tgp1.brazzersnetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Content-Type: application/x-www-form-urlencoded
DNT: 1
Connection: keep-alive
Cookie: ats=eyJhIjoxNDksImNuIjoiRlJFRV82NTI5NzQ0IiwibiI6MTQsInMiOjkwLCJlIjo5MDY3LCJwIjozMzl9; atstrackPiece1=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; atstrackPiece2=b3J0ZXhkYXRhIjp7Il9zc2NyZWVuIjoiMTI4MCB4IDEwMjQiLCJfc2Jyb3dzZXIiOiJGaXJlZm94IiwiX3Nicm93c2VyVmVyc2lvbiI6Ijk2LjAiLCJfYm1vYmlsZSI6ZmFsc2UsIl9zb3MiOiJMaW51eCIsIl9zb3NWZXJzaW9uIjoiLSIsIl9iY29va2llcyI6dHJ1ZSwiX3NmbGFzaFZlcnNpb24iOiJubyBjaGVjayIsIl9zbGFuZ3VhZ2VzIjoiZW4tVVMsZW4iLCJfc3BsdWdpbnMiOiJQREYgVmlld2VyLENocm9tZSBQREYgVmlld2VyLENocm9taXVtIFBERiBWaWV3ZXIsTWljcm9zb2Z0IEVkZ2UgUERGIFZpZXdlcixXZWJLaXQgYnVpbHQtaW4gUERGIn19
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 13:02:10 GMT
content-type: application/json
content-length: 128
set-cookie: eta_guid=e62769b8-6228-4ada-a4db-12a344ad028a_1714914130;Path=/;Max-Age=315360000;Expires=Wed, 12 Jul 2034 00:00:01 UTC;SameSite=None;HttpOnly;
sessionid=89b0066e-5036-4d41-9069-a5d60aeb1f2b; Path=/; SameSite=None;HttpOnly;
__s=66378351-42FE72EA01BB7E0DD-2506D2;
access-control-allow-methods: GET, POST
access-control-allow-credentials: true
cache-control: no-cache, no-transform
content-disposition: inline
x-content-type-options: nosniff
x-xss-protection: 0
pragma: no-cache
timing-allow-origin: *
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Droid+Sans:400,700

216.58.207.234

200 OK

2.4 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Droid+Sans:400,700
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
gzip compressed data, max compression
Size
2.4 kB (2379 bytes)
Hash
c2fb87d7a3202f59ff65282c5c9e9958
bf3288b9ac20c1cc4bb4db36a60720634e4865cd
749b5bb897ab8871ecd929236d73ca686d092ec56f7eefe283ad087030762f4f

HTTP Headers

GET /css?family=Droid+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 May 2024 13:02:09 GMT
date: Sun, 05 May 2024 13:02:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

static-landing-assets.project1content.com/p1/Integration/Corp_Address/Default/PC/corp_pc.png

64.210.135.114

200 OK

12 kB

URL GET HTTP/2
static-landing-assets.project1content.com/p1/Integration/Corp_Address/Default/PC/corp_pc.png
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
PNG image data, 1120 x 100, 8-bit/color RGBA, non-interlaced
Size
12 kB (12017 bytes)
Hash
5cbda9703656566001fc4a34a314371e
52cdd8b1bfa196763731ad13fd4860497d041265
7959f5b954ae8b21dadc7b1c0ab61d3bd973f3e1fc516967a18134e13ed76d35

HTTP Headers

GET /p1/Integration/Corp_Address/Default/PC/corp_pc.png HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:10 GMT
content-type: image/png
content-length: 12017
last-modified: Thu, 31 Aug 2023 19:22:50 GMT
etag: "385cc9a28-2ef1-6043cf843b680"
expires: Sat, 27 Jan 2024 14:33:35 GMT
cache-control: max-age=10602479
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6140-1-29612-h-0-0---;6140-20-12905----0-0-2
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/header.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/header.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/header.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6249-2-14422-h-0-0---;6140-20-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R1_01.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R1_01.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R1_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6139-1-1611-h-0-0---;6140-20-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/navbar.png

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/navbar.png
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/navbar.png HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7619-1-8522-h-0-0---;6140-20-12905----0-0-2
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R2_01.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R2_01.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R2_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7846-2-65145-h-0-0---;6140-20-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R1_03.gif

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R1_03.gif
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R1_03.gif HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6139-2-1675-h-0-0---;6140-20-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R2_02.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R2_02.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R2_02.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7619-3-8852-h-0-0---;6140-20-12905----0-0-4
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R2_03.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R2_03.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R2_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7619-1-8525-h-0-0---;6140-20-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R2_04.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R2_04.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R2_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6139-3-1870-h-0-0---;6140-18-12905----0-0-2
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R3_01.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R3_01.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R3_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6141-1-49085-h-0-0---;6140-21-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R3_02.gif

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R3_02.gif
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R3_02.gif HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6140-3-29849-h-0-0---;6140-25-12905----0-0-2
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static2-ma-ht.project1content.com/tour/vendors~main.d3f090c2.js

64.210.135.114

200 OK

544 kB

URL GET HTTP/2
static2-ma-ht.project1content.com/tour/vendors~main.d3f090c2.js
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
gzip compressed data, max speed, from Unix
Size
544 kB (543971 bytes)
Hash
f0970819c9239ab2a623032693c40bf7
8c0bd5d7a7f6d24815e383ac93cebdf41b090134
8470f86dc21fab10111027203057834005bca3324bf80e2df2d0f77c2c2cc922

HTTP Headers

GET /tour/vendors~main.d3f090c2.js HTTP/1.1
Host: static2-ma-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:09 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 01 May 2024 18:44:38 GMT
etag: W/"3ad9f7801-1490ef-61768e0ee1180"
expires: Sun, 01 Sep 2024 20:29:28 GMT
cache-control: max-age=10556379
content-encoding: gzip
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
x-cdn-diag: ams5-6140-1-29600-h-0-0---;6140-19-12905----0-0-0
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_01.jpg

64.210.135.114

200 OK

180 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_01.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x430, components 3
Size
180 kB (179481 bytes)
Hash
ab996ce13f3af31146afd0b0842cff59
4391f0438425854d5bd3cc99099707b834988722
64f97309beb5cc9f3a37989731a356b74b3326ab76e99a0e94a8c67834b317be

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:10 GMT
content-type: image/jpeg
content-length: 179481
last-modified: Thu, 16 Nov 2023 04:41:03 GMT
etag: "372544014-2bd19-60a3da08ad5c0"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7619-2-8586-h-0-0---;6140-25-12905----0-0-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R3_03.mp4

64.210.135.114

206 Partial Content

960 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R3_03.mp4
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
960 kB (959567 bytes)
Hash
a9d44769af464fda47084dd169fb0b7c
928a29127de05ff300ebfe3f5a0994f6a2530b0b
3924f2fc632cb0bd500cdb2e44a39d92a7a73606ca4047b397564fb67becbc63

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R3_03.mp4 HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
date: Sun, 05 May 2024 13:02:10 GMT
content-type: video/mp4
content-length: 959567
last-modified: Wed, 13 Mar 2024 13:59:17 GMT
etag: "3aa8bdbfa-ea44f-6138b2e36f740"
expires: Wed, 31 Jul 2024 13:47:36 GMT
cache-control: max-age=10514826
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
content-range: bytes 0-959566/959567
x-cdn-diag: ams5-6141-2-49142-h-0-0---;6140-25-12905----0-0-1
X-Firefox-Spdy: h2

videzz.net/js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42

78.142.18.54

200 OK

205 kB

URL GET HTTP/2
videzz.net/js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33
ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT

File type
gzip compressed data, from Unix
Size
205 kB (205149 bytes)
Hash
2809be842368e1fe0b83e65c2d233601
2adcae6f3c607abce965a654315967e88468bc3d
55f258c4c219d2176f4d15834bf4290bff805f072dae58274f4f29d18cb551b3

HTTP Headers

GET /js/static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-gf4k2ra2ygab.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 May 2024 13:02:02 GMT
content-type: application/javascript
last-modified: Sat, 27 Apr 2024 07:30:28 GMT
vary: Accept-Encoding
etag: W/"662ca994-26cb6"
expires: Tue, 04 Jun 2024 12:56:57 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R4_01.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R4_01.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R4_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6141-1-49066-h-0-0---;6140-17-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R4_02.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R4_02.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R4_02.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6249-3-14637-h-0-0---;6140-17-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R4_03.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R4_03.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R4_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6141-3-684-h-0-0---;6140-18-12905----0-0-0
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R4_04.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R4_04.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R4_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6249-3-14656-h-0-0---;6140-20-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/navbar.jpg

64.210.135.114

200 OK

18 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/navbar.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, baseline, precision 8, 1920x60, components 3
Size
18 kB (17505 bytes)
Hash
00d0fbf802a635e66b5583a06aa4591d
9d9626eea9d83c077b9041225abf629429ee082b
1897b71f137b582ae4d1b387056fd3327d5f2901202302139617336b18c14c86

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/navbar.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:10 GMT
content-type: image/jpeg
content-length: 17505
last-modified: Mon, 17 May 2021 15:18:35 GMT
etag: "372544007-4461-5c2881b6ca8c0"
expires: Tue, 26 Mar 2024 09:30:30 GMT
cache-control: max-age=10582779
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6139-3-1869-h-0-0---;6140-20-12905----0-0-0
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R5_01.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R5_01.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R5_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7619-3-8841-h-0-0---;6140-23-12905----0-0-2
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_03.gif

64.210.135.114

200 OK

22 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_03.gif
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
GIF image data, version 89a, 430 x 430
Size
22 kB (22470 bytes)
Hash
d1cb4a33278891010a9b5ca11bb4d52f
c2074a00a054f602eb1d300c40f2c44e77f87eae
8b55330deb61941b4a7bca977b596613649ba46da272732df3750596d7631cf1

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_03.gif HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:10 GMT
content-type: image/gif
content-length: 22470
last-modified: Fri, 05 Apr 2024 14:37:28 GMT
etag: "372544011-57c6-6155a651e7a00"
expires: Sun, 04 Aug 2024 15:14:50 GMT
cache-control: max-age=10456589
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7846-1-65082-h-0-0---;6140-23-12905----0-0-0
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R5_03.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R5_03.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R5_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7619-2-8585-h-0-0---;6140-18-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R5_04.gif

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R5_04.gif
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R5_04.gif HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7846-1-65082-h-0-0---;6140-17-12905----0-0-2
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R6_01.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R6_01.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R6_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6249-1-14351-h-0-0---;6140-17-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R6_02.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R6_02.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R6_02.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6249-1-14351-h-0-0---;6140-17-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R6_04.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R6_04.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R6_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6139-1-1622-h-0-0---;6140-17-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R6_03.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R6_03.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R6_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6140-2-29663-h-0-0---;6140-17-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_01.jpg

64.210.135.114

200 OK

313 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_01.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x860, components 3
Size
313 kB (313006 bytes)
Hash
1e32c301641cea6322f2f54133ed2c86
3ed0508c91b665500abb8d884d1460b607c9c6dd
46718d7309f7365bdad00e7881347b457e43d8f085c5cd4f2a51e755dec569c2

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:10 GMT
content-type: image/jpeg
content-length: 313006
last-modified: Thu, 16 Nov 2023 04:41:03 GMT
etag: "372544005-4c6ae-60a3da08ad5c0"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7846-3-65311-h-0-0---;6140-23-12905----0-0-0
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_04.jpg

64.210.135.114

200 OK

123 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_04.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=860, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=430], progressive, precision 8, 430x860, components 3
Size
123 kB (123394 bytes)
Hash
547a80d5e5659356fc62e3e65c0a457b
5b560836c9416a470d9a72bbd6dc52f37a647bf5
b7dda80acc242a57ace51329208bd154eca6b229ec05811857b205b9b7991da6

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:10 GMT
content-type: image/jpeg
content-length: 123394
last-modified: Fri, 21 Apr 2023 19:30:28 GMT
etag: "372543fe4-1e202-5f9ddb082bd00"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6139-1-1611-h-0-0---;6140-17-12905----0-0-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_01.jpg

64.210.135.114

200 OK

145 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_01.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x430, components 3
Size
145 kB (145190 bytes)
Hash
3e6d2c66532e25d77f9c896f3f6af568
a8c6529ded410ec48c366c9c51659646b83e028e
dc8f3b7283f6fe88934917fd9f17a10220786237fdde918693f14d9f8551ef28

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:10 GMT
content-type: image/jpeg
content-length: 145190
last-modified: Thu, 16 Nov 2023 04:40:56 GMT
etag: "37254400a-23726-60a3da0200600"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7846-1-65082-h-0-0---;6140-17-12905----0-0-0
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_03.jpg

64.210.135.114

200 OK

352 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_03.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x860, components 3
Size
352 kB (351717 bytes)
Hash
ca6e546dd596cae0fe66b6b778391e3b
faff8021254a4310114072e86ef131186d72590f
5f7ee56b4077fa1ea6ee829cbe7fa1695374bdadb29b0c8fa0e296eb69c445ae

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:10 GMT
content-type: image/jpeg
content-length: 351717
last-modified: Thu, 16 Nov 2023 04:41:04 GMT
etag: "372544012-55de5-60a3da09a1800"
expires: Tue, 27 Aug 2024 05:25:29 GMT
cache-control: max-age=10680049
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6249-3-14656-h-0-0---;6140-18-12905----0-0-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_02.gif

64.210.135.114

200 OK

22 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_02.gif
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
GIF image data, version 89a, 430 x 430
Size
22 kB (22470 bytes)
Hash
d1cb4a33278891010a9b5ca11bb4d52f
c2074a00a054f602eb1d300c40f2c44e77f87eae
8b55330deb61941b4a7bca977b596613649ba46da272732df3750596d7631cf1

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_02.gif HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:10 GMT
content-type: image/gif
content-length: 22470
last-modified: Fri, 05 Apr 2024 14:37:28 GMT
etag: "37254400b-57c6-6155a651e7a00"
expires: Sun, 04 Aug 2024 15:14:50 GMT
cache-control: max-age=10456589
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7846-2-65144-h-0-0---;6140-18-12905----0-0-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_02.jpg

64.210.135.114

200 OK

415 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_02.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x860, components 3
Size
415 kB (414696 bytes)
Hash
dfe6826b28b53dc0e3208440c1a7bfef
d05bf5c6ebbb9f3db5c99468ce7bba92bb308068
2184f23f705ebe17c81d540f84fb15cc40ad2bc9978b7a81bc4f22dae88dfd4f

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R2_02.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:10 GMT
content-type: image/jpeg
content-length: 414696
last-modified: Thu, 16 Nov 2023 04:41:04 GMT
etag: "372544004-653e8-60a3da09a1800"
expires: Tue, 27 Aug 2024 05:19:28 GMT
cache-control: max-age=10679589
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6141-1-49075-h-0-0---;6140-18-12905----0-0-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R1_02.mp4

64.210.135.114

206 Partial Content

1.1 MB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R1_02.mp4
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
1.1 MB (1134366 bytes)
Hash
667b9cbbc0b6d5d2bd1dcc463c5ce416
a86a2917da699d3de08f7b1867f86a50ffac25da
01dcc6a1ba40ba2aa0debc83d037d19acf5317241c37a5606564f5702c54b534

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R1_02.mp4 HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
date: Sun, 05 May 2024 13:02:10 GMT
content-type: video/mp4
content-length: 2111098
last-modified: Wed, 13 Mar 2024 13:25:41 GMT
etag: "3aabc361a-20367a-6138ab60d3f40"
expires: Fri, 23 Aug 2024 23:24:11 GMT
cache-control: max-age=10399078
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
content-range: bytes 0-2111097/2111098
x-cdn-diag: ams5-6141-3-670-h-0-0---;6140-20-12905----0-0-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R7_02.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R7_02.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R7_02.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6249-3-14656-h-0-0---;6140-18-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R7_03.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R7_03.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R7_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6249-2-14404-h-0-0---;6140-18-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R7_04.jpg

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R7_04.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R7_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6140-1-29601-h-0-0---;6140-18-12905----0-0-5
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/cta.png

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/cta.png
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/cta.png HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7846-3-65311-h-0-0---;6140-19-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/footer-logo.png

64.210.135.114

404 Not Found

213 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/footer-logo.png
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
HTML document, ASCII text
Size
213 B (213 bytes)
Hash
6fecd14f70325f2d628b78d654504561
19e94676a4b6d082182531cad97eed51f741bcb0
4963381010fbc88562fcde9a599a12291546653e92ba259247d22a2403c6b180

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/footer-logo.png HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6139-3-1868-h-0-0---;6140-18-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_03.mp4

64.210.135.114

206 Partial Content

857 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_03.mp4
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
857 kB (856740 bytes)
Hash
b1abf3f2bed89edc2c115a258b0a8bd8
2c8747aa049628e5fb39f5b2f36472267c7a5f4f
234f8c95d9a99b391597d3bd6e2a3ab5282eac6996645d5f634d6ada0fbe8307

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_03.mp4 HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
date: Sun, 05 May 2024 13:02:10 GMT
content-type: video/mp4
content-length: 856740
last-modified: Thu, 23 Nov 2023 15:21:48 GMT
etag: "372543ff9-d12a4-60ad364ee9b00"
expires: Mon, 26 Aug 2024 19:36:32 GMT
cache-control: max-age=10644609
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
content-range: bytes 0-856739/856740
x-cdn-diag: ams5-6249-3-14637-h-0-0---;6140-17-12905----0-0-0
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_02.mp4

64.210.135.114

206 Partial Content

1.2 MB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_02.mp4
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
1.2 MB (1172034 bytes)
Hash
530e48bdfb1268cb0f0718aec6ed3c0a
c2ff2417208eb72ac20705cdb686f953179ea9e8
75fbbd069f160f6a198df5ed3b452b9c7aa89b6967303cb48970dad6aea49c95

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_02.mp4 HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
date: Sun, 05 May 2024 13:02:10 GMT
content-type: video/mp4
content-length: 1172034
last-modified: Thu, 23 Nov 2023 15:21:48 GMT
etag: "37254400e-11e242-60ad364ee9b00"
expires: Tue, 26 Mar 2024 09:30:30 GMT
cache-control: max-age=10582779
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
content-range: bytes 0-1172033/1172034
x-cdn-diag: ams5-7846-2-65159-h-0-0---;6140-21-12905----0-0-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_02.jpg

64.210.135.114

200 OK

42 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_02.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 430x860, Scaling: [none]x[none], YUV color, decoders should clamp
Size
42 kB (41556 bytes)
Hash
3677af641794d26d28c7220465405d6e
314ab8bedf8b1156a3c6c60111421c356046791c
d84f6db47c465e638bbcc56289af97eb3b5e11061f35be7c1ec65180677abefb

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_02.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:11 GMT
content-type: image/jpeg
content-length: 41556
last-modified: Fri, 21 Apr 2023 19:30:32 GMT
etag: "372544010-a254-5f9ddb0bfc600"
expires: Sat, 24 Aug 2024 02:28:49 GMT
cache-control: max-age=10410240
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6249-1-14341-h-0-0---;6140-24-12905----0-0-2
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_04.jpg

64.210.135.114

200 OK

172 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_04.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x430, components 3
Size
172 kB (172413 bytes)
Hash
fbed5e6f82a2a0fffa75568738189ecd
8e56833943a0d0a2091cceb746647bdcf14f3636
f7d57169eb7555af36f7e7e263871b78db43783b8a8fc35531904e6fd73617f2

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R3_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:11 GMT
content-type: image/jpeg
content-length: 172413
last-modified: Thu, 16 Nov 2023 04:40:57 GMT
etag: "372543fec-2a17d-60a3da02f4840"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6139-3-1868-h-0-0---;6140-24-12905----0-0-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_03.jpg

64.210.135.114

200 OK

354 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_03.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x860, components 3
Size
354 kB (353535 bytes)
Hash
6ac205baf17d912571649964c6e33f29
86b5141039979f6ff8a1a5385245983160290cb2
776de6099c08e361fafad4e28a83d6225f376ce285f76510e991b125037e95b8

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:11 GMT
content-type: image/jpeg
content-length: 353535
last-modified: Thu, 16 Nov 2023 04:40:57 GMT
etag: "372544013-564ff-60a3da02f4840"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7846-3-65310-h-0-0---;6140-24-12905----0-0-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_01.jpg

64.210.135.114

200 OK

373 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_01.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x860, components 3
Size
373 kB (373109 bytes)
Hash
7af19804cd5bc79c7f75ad4389e21e05
340d20d546a6dd03eb39ef9a5edaaac7c253473a
4c8fc85b04c4b602ea19a3f4fb3e5b2892dc392ef3ab6202881e99a0cbf88124

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:11 GMT
content-type: image/jpeg
content-length: 373109
last-modified: Thu, 16 Nov 2023 04:40:57 GMT
etag: "372543fe9-5b175-60a3da02f4840"
expires: Tue, 30 Jul 2024 23:13:47 GMT
cache-control: max-age=10462360
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6249-2-14413-h-0-0---;6140-24-12905----0-0-2
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R5_02.mp4

64.210.135.114

206 Partial Content

804 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R5_02.mp4
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
804 kB (803535 bytes)
Hash
6793f7e8f831fb7b989d4154e2d6aca4
32fb53e4a8a5254ab522d217bdf96ed3775c8b5b
41d358730157ef78a873812c03835ab11717cbd5eec3c7c884cd6101e0bab783

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R5_02.mp4 HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
date: Sun, 05 May 2024 13:02:10 GMT
content-type: video/mp4
content-length: 875767
last-modified: Wed, 13 Mar 2024 13:59:17 GMT
etag: "3aad5265f-d5cf7-6138b2e36f740"
expires: Sun, 04 Aug 2024 05:20:34 GMT
cache-control: max-age=10656553
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
content-range: bytes 0-875766/875767
x-cdn-diag: ams5-6249-3-14637-h-0-0---;6140-21-12905----0-0-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_01.jpg

64.210.135.114

200 OK

175 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_01.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x430, components 3
Size
175 kB (174930 bytes)
Hash
82b6243c23f0d953afb882aac3895849
b1f439a942a9fb581eb5cddda3b2610ac398946f
f813a507a547043121bbe682fb0593635903d3b0e60265f24d129253b2974515

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:11 GMT
content-type: image/jpeg
content-length: 174930
last-modified: Thu, 16 Nov 2023 04:40:58 GMT
etag: "372543ff6-2ab52-60a3da03e8a80"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7846-3-65311-h-0-0---;6140-19-12905----0-0-2
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_04.mp4

64.210.135.114

206 Partial Content

960 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_04.mp4
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
960 kB (959567 bytes)
Hash
a9d44769af464fda47084dd169fb0b7c
928a29127de05ff300ebfe3f5a0994f6a2530b0b
3924f2fc632cb0bd500cdb2e44a39d92a7a73606ca4047b397564fb67becbc63

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R1_04.mp4 HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
date: Sun, 05 May 2024 13:02:11 GMT
content-type: video/mp4
content-length: 959567
last-modified: Thu, 23 Nov 2023 15:21:48 GMT
etag: "372544008-ea44f-60ad364ee9b00"
expires: Tue, 23 Jul 2024 20:06:17 GMT
cache-control: max-age=10621309
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
content-range: bytes 0-959566/959567
x-cdn-diag: ams5-7846-3-65309-h-0-0---;6140-29-12905----0-0-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_02.mp4

64.210.135.114

206 Partial Content

792 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_02.mp4
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
792 kB (792045 bytes)
Hash
1dc90607fba6c99b83e64ac19a6df301
52d464c003bd9f22a433d963e9a737d2f469c0da
3c983e1ca58d8b4b91856e808bbaba78b1033cde0124b038f3122e4cf61b8e6a

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_02.mp4 HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
date: Sun, 05 May 2024 13:02:11 GMT
content-type: video/mp4
content-length: 792045
last-modified: Thu, 23 Nov 2023 15:21:48 GMT
etag: "372543fe7-c15ed-60ad364ee9b00"
expires: Thu, 11 Jul 2024 15:52:55 GMT
cache-control: max-age=10429136
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
content-range: bytes 0-792044/792045
x-cdn-diag: ams5-7619-3-8843-h-0-0---;6140-19-12905----0-0-0
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_03.jpg

64.210.135.114

200 OK

172 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_03.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x430, components 3
Size
172 kB (171482 bytes)
Hash
2a8ab8d25cab12f4494a84cb38c01b2e
0f060cb27a26e930a2c6ea516ccaa496b7758e5d
93b6ac6d9a80a72ef2574e5d254b10069cb6022b6fea7c9c8d4ece0f4b7a01f8

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:11 GMT
content-type: image/jpeg
content-length: 171482
last-modified: Thu, 16 Nov 2023 04:40:59 GMT
etag: "372544006-29dda-60a3da04dccc0"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6140-2-29664-h-0-0---;6140-24-12905----0-0-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_04.gif

64.210.135.114

200 OK

22 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_04.gif
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
GIF image data, version 89a, 430 x 430
Size
22 kB (22470 bytes)
Hash
d1cb4a33278891010a9b5ca11bb4d52f
c2074a00a054f602eb1d300c40f2c44e77f87eae
8b55330deb61941b4a7bca977b596613649ba46da272732df3750596d7631cf1

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R5_04.gif HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:11 GMT
content-type: image/gif
content-length: 22470
last-modified: Fri, 05 Apr 2024 14:37:28 GMT
etag: "372543feb-57c6-6155a651e7a00"
expires: Sun, 04 Aug 2024 15:14:50 GMT
cache-control: max-age=10456589
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6139-3-1869-h-0-0---;6140-24-12905----0-0-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_01.jpg

64.210.135.114

200 OK

266 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_01.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x860, components 3
Size
266 kB (266210 bytes)
Hash
363543c5c8bb6b4c442a8f449d02f722
9cee6d721bdf151f39ad6d8d806493526d8a3d5a
0e4847bdab29056ae4151cdf55099f65bbe3e430bf32d2bd4774752f7c03f7dd

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:11 GMT
content-type: image/jpeg
content-length: 266210
last-modified: Thu, 16 Nov 2023 04:41:00 GMT
etag: "372543fe6-40fe2-60a3da05d0f00"
expires: Sun, 24 Mar 2024 09:10:35 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7846-1-65084-h-0-0---;6140-24-12905----0-0-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_02.jpg

64.210.135.114

200 OK

342 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_02.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x860, components 3
Size
342 kB (341572 bytes)
Hash
875ab73eef4e58692b4f2e61414d2316
1773af0fcb68570fdb5e826c6aedb0b451b1e751
866a7b0161856034c70d4b407979f1cbdbffe680a0a64572c6da8bf3d25d5599

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_02.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:11 GMT
content-type: image/jpeg
content-length: 341572
last-modified: Thu, 16 Nov 2023 04:41:01 GMT
etag: "372543ff8-53644-60a3da06c5140"
expires: Sun, 24 Mar 2024 11:38:51 GMT
cache-control: max-age=10417681
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7619-1-8525-h-0-0---;6140-28-12905----0-0-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_04.jpg

64.210.135.114

200 OK

333 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_04.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x860, components 3
Size
333 kB (332748 bytes)
Hash
d340163a0092a2d4742c0092f7bed22d
7442d29b62d2576c0adaf0f5882db56b313b027f
f03004a7e387940d548b1052ee6c4f58258f85bdfacf3d48d3aea0c0b4fc990a

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:11 GMT
content-type: image/jpeg
content-length: 332748
last-modified: Thu, 16 Nov 2023 04:41:01 GMT
etag: "37254400f-513cc-60a3da06c5140"
expires: Sun, 24 Mar 2024 11:38:51 GMT
cache-control: max-age=10417681
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7619-1-8522-h-0-0---;6140-28-12905----0-0-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_03.jpg

64.210.135.114

200 OK

355 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_03.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x860, components 3
Size
355 kB (355368 bytes)
Hash
c7dea6a6652899116162fe1a40500f2c
fa7bca340d861b0bfbbd74f393508cb983d89cc2
90fcc7cb3bcdff3d23ef126f3f97042f877b455324a880d2e390f687f65ad076

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R6_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:11 GMT
content-type: image/jpeg
content-length: 355368
last-modified: Thu, 16 Nov 2023 04:41:01 GMT
etag: "372543fea-56c28-60a3da06c5140"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7619-1-8525-h-0-0---;6140-28-12905----0-1-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_01.jpg

64.210.135.114

200 OK

197 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_01.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x430, components 3
Size
197 kB (196915 bytes)
Hash
05fa608781287313fe227fd736028a6d
a8a4c46dd206410afecb310c8fd0716f4dd9ca20
4fb718f32596324ad13a4138606925a3ba4567e9b3027d10b4095749f750a8fc

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:11 GMT
content-type: image/jpeg
content-length: 196915
last-modified: Thu, 16 Nov 2023 04:41:02 GMT
etag: "372543ff7-30133-60a3da07b9380"
expires: Sun, 24 Mar 2024 11:38:51 GMT
cache-control: max-age=10417681
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7619-1-8525-h-0-0---;6140-21-12905----0-0-2
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_02.jpg

64.210.135.114

200 OK

154 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_02.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x430, components 3
Size
154 kB (153736 bytes)
Hash
27723306cd4af331dc5a0b826af49089
cf19a64f4cab931463d01b7593964b39eb23e940
a26c905812e0b6292d3bd2c8b9e287052b4efebeda1aba1f0bc85d62c3095ca0

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_02.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:11 GMT
content-type: image/jpeg
content-length: 153736
last-modified: Thu, 16 Nov 2023 04:41:02 GMT
etag: "372543fe8-25888-60a3da07b9380"
expires: Sun, 24 Mar 2024 11:38:51 GMT
cache-control: max-age=10417681
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7846-1-65084-h-0-0---;6140-26-12905----0-0-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_03.jpg

64.210.135.114

200 OK

142 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_03.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x430, components 3
Size
142 kB (141941 bytes)
Hash
b3984cf8ae2dac71c585df735127044d
c864bd64b8ede32d1d516465b6d8e5e39884d387
d248332a7f6c25b01f787cfe0b638d0470ed7688080f612786a5f8ffbe51b998

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_03.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:12 GMT
content-type: image/jpeg
content-length: 141941
last-modified: Thu, 16 Nov 2023 04:41:02 GMT
etag: "372544015-22a75-60a3da07b9380"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6140-1-29601-h-0-0---;6140-24-12905----0-0-1
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_04.jpg

64.210.135.114

200 OK

159 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_04.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x430, components 3
Size
159 kB (159078 bytes)
Hash
ac61470d4d4ff107c638575159256413
f7570088bd9afedf93abb344c12cacb80a4b1bb8
d19852ef00814636c4926419c35011344326e976cfe8b4de27cf32a98c07a5f3

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R7_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:12 GMT
content-type: image/jpeg
content-length: 159078
last-modified: Thu, 16 Nov 2023 04:41:02 GMT
etag: "37254400d-26d66-60a3da07b9380"
expires: Sun, 24 Mar 2024 11:38:51 GMT
cache-control: max-age=10417681
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7619-1-8524-h-0-0---;6140-24-12905----0-0-1
X-Firefox-Spdy: h2

tgp1.brazzersnetwork.com/_ats/eta/events?app_id=10303&eventName=TRACK

66.254.114.234

200 OK

10 kB

URL POST HTTP/2
tgp1.brazzersnetwork.com/_ats/eta/events?app_id=10303&eventName=TRACK
IP
66.254.114.234:443
ASN
#29789 REFLECTED

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerLet's Encrypt
Subjectbrazzersnetwork.com
Fingerprint88:AB:08:D2:E9:0E:FD:34:1F:CD:0A:B3:E0:9F:DB:C8:07:2F:D4:AA
ValidityWed, 10 Apr 2024 00:01:06 GMT - Tue, 09 Jul 2024 00:01:05 GMT

File type
data
Size
10 kB (10427 bytes)
Hash
af5d8fc394fac98178ad4ee3a7e09432
6dc1f83300aeb19e6db46f1b45d54d3396f68372
52642255ae812e4d26b5967035cdde38c2002d9b1f239139c8e08a0db8c530f1

HTTP Headers

POST /_ats/eta/events?app_id=10303&eventName=TRACK HTTP/1.1
Host: tgp1.brazzersnetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Content-Type: application/x-www-form-urlencoded
Content-Length: 1509
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Cookie: ats=eyJhIjoxNDksImNuIjoiRlJFRV82NTI5NzQ0IiwibiI6MTQsInMiOjkwLCJlIjo5MDY3LCJwIjozMzl9; atsd=adde7a42-83e4-4c06-8163-6ba630086ce8; atsm=adde7a42-83e4-4c06-8163-6ba630086ce8; atss=adde7a42-83e4-4c06-8163-6ba630086ce8; atstrackPiece1=eyJhZmZVcmwiOiJwcm9qZWN0b25lLmNvbSIsImFmZkNvZGUiOiJleUpoSWpveE5Ea3NJbU51SWpvaVJsSkZSVjgyTlRJNU56UTBJaXdpYmlJNk1UUXNJbk1pT2prd0xDSmxJam81TURZM0xDSndJam96TXpsOSIsIm5ldHdvcmtDb2RlIjoiQloiLCJVSUQiOiIwMDRhYjM2Ny02YWY1LTQyNmMtOGNkMy03MGM1YjllZTJlZjEiLCJTVUlEIjoiYWRkZTdhNDItODNlNC00YzA2LTgxNjMtNmJhNjMwMDg2Y2U4IiwiZGF0YSI6eyJ2YWx1ZSI6MSwiYWIiOjAsInVzZXJBZ2VudCI6Ik1vemlsbGEvNS4wIChYMTE7IExpbnV4IHg4Nl82NDsgcnY6OTYuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC85Ni4wIiwic2t1IjoiTnVsbCIsImluc3RhbmNlSWQiOjI4MTY4MSwicGFnZUlkIjo2NDUwMzExLCJhZElkIjoiODE4NzAxX0ZSRUUiLCJwb3N0YmFja1BhcmFtcyI6Im9wYzRBU09xbHBsdXN0ZGRWYmJaUFBPNmVXaXlhbHpxcGJYVXpPb2ROVTZWMHJwWFQxVVUwdW9tcG9ucG5kUk5UUlBUUzZWMHpwWFN1bGRLNlowcnBYVE9ycm9zdG9xbG1tbTFudWpvcG5sdXVycG9xdXJxdGxvbHJkcmJScFBYTGR0cnZMclRkdHR2cFRWTnJ4WlR0eFR4Um02VjJuZTBlbmUydjNldnYuLjNlY2VvZjNUVDJ5cW1sbnBjNlYwcnBYU3VsZEs2VjBycFhUV1RVM1RVelQydWM2VjBycFhTdWxkSzZWMHJwWFN1eno0bW16dHIzM3FydW1sMnMxM21xM3AzcW1vMW9xcHRjSDJBIiwicmVmZXJyYWxEb21haW4iOiJzLnBlbXNydi5jb20iLCJyZWZlcnJhbFBhdGgiOiJo; atstrackPiece2=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
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 13:02:10 GMT
content-type: application/json
set-cookie: eta_guid=60f5515b-f93a-41d3-8eb5-73bb58e43fe8_1714914130;Path=/;Max-Age=315360000;Expires=Wed, 12 Jul 2034 00:00:01 UTC;SameSite=None;HttpOnly;
sessionid=48db6c7b-3d7c-4926-ae7b-9ccbcdfbde34; Path=/; SameSite=None;HttpOnly;
__s=66378352-42FE72EA01BB7E0DD-2506E9;
access-control-allow-origin: https://tgp1.brazzersnetwork.com
access-control-allow-methods: GET, POST
access-control-allow-credentials: true
cache-control: no-cache, no-transform
content-disposition: inline
x-content-type-options: nosniff
x-xss-protection: 0
pragma: no-cache
timing-allow-origin: *
x-eta-guid: 60f5515b-f93a-41d3-8eb5-73bb58e43fe8
x-eta-sessionid: 48db6c7b-3d7c-4926-ae7b-9ccbcdfbde34
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/footer-logo.png

64.210.135.114

200 OK

7.8 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/footer-logo.png
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
PNG image data, 720 x 108, 8-bit/color RGBA, non-interlaced
Size
7.8 kB (7760 bytes)
Hash
07cac4b53df357f3ed90131f551a8b66
1f19078215e6696e53d312f071535c44a4076f37
ba21324830685eb1f514fca4d01b09dc85996e8da77a0245697eb11a3c8b1135

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/footer-logo.png HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:12 GMT
content-type: image/png
content-length: 7760
last-modified: Thu, 02 Nov 2023 18:49:02 GMT
etag: "37254400c-1e50-6092fd7638380"
expires: Sat, 13 Jul 2024 08:29:26 GMT
cache-control: max-age=10404574
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6249-2-14422-h-0-0---;6140-19-12905----0-0-0
X-Firefox-Spdy: h2

ocsp.e2m02.amazontrust.com/

3.164.222.26

279 B

URL
ocsp.e2m02.amazontrust.com/
IP
3.164.222.26:0
ASN
#0

File type
data
Size
279 B (279 bytes)
Hash
e4ba49b3d62a53212e220892eb8adccd
616548a4a85f482971820b892a85763bbe343d19
f3c74dc58621930d55e69b1068dce2cbac09a40b54dd9d4e4031e299c1a5319e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.e2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 279
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sun, 05 May 2024 13:02:13 GMT
Last-Modified: Sun, 05 May 2024 12:13:23 GMT
Server: ECAcc (ska/F6A0)
X-Cache: Miss from cloudfront
Via: 1.1 1db03b964c596a103fbc1af4b6ebb7c4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN53-P1
X-Amz-Cf-Id: PlXp6mvNuaanW5vaxRXmjL7P9uJOaSwWkAmN2PPICB8SByjfBTzWAA==
Age: 2930

ocsp.e2m02.amazontrust.com/

3.164.222.26

279 B

URL
ocsp.e2m02.amazontrust.com/
IP
3.164.222.26:0
ASN
#0

File type
data
Size
279 B (279 bytes)
Hash
e4ba49b3d62a53212e220892eb8adccd
616548a4a85f482971820b892a85763bbe343d19
f3c74dc58621930d55e69b1068dce2cbac09a40b54dd9d4e4031e299c1a5319e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.e2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 279
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sun, 05 May 2024 13:02:13 GMT
Last-Modified: Sun, 05 May 2024 11:22:51 GMT
Server: ECAcc (ska/F7A3)
X-Cache: Miss from cloudfront
Via: 1.1 88ba1d0c348c5f253432165d46a14a82.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN53-P1
X-Amz-Cf-Id: Lc7b6k9qafCtgBeGmiHeJ48txzEmFw3R3Zo2PeMPwfKXQv2IL6b9LQ==
Age: 5963

events.launchdarkly.com/events/diagnostic/63bdba6ee6d64c12826b8bff

52.206.204.68

204 No Content

0 B

URL OPTIONS HTTP/2
events.launchdarkly.com/events/diagnostic/63bdba6ee6d64c12826b8bff
IP
52.206.204.68:443
ASN
#14618 AMAZON-AES

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerAmazon
Subjectevents.launchdarkly.com
FingerprintD6:A9:BF:61:8A:C6:FF:34:00:EB:52:E2:2A:24:55:4D:E5:29:01:CF
ValidityWed, 21 Jun 2023 00:00:00 GMT - Sat, 20 Jul 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /events/diagnostic/63bdba6ee6d64c12826b8bff HTTP/1.1
Host: events.launchdarkly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-launchdarkly-user-agent,x-launchdarkly-wrapper
Referer: https://tgp1.brazzersnetwork.com/
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Sun, 05 May 2024 13:02:13 GMT
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Payload-ID,X-LaunchDarkly-Wrapper,X-LaunchDarkly-Tags
access-control-allow-methods: POST,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Date
access-control-max-age: 300
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

events.launchdarkly.com/events/diagnostic/63bdba6ee6d64c12826b8bff

52.206.204.68

204 No Content

0 B

URL OPTIONS HTTP/2
events.launchdarkly.com/events/diagnostic/63bdba6ee6d64c12826b8bff
IP
52.206.204.68:443
ASN
#14618 AMAZON-AES

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerAmazon
Subjectevents.launchdarkly.com
FingerprintD6:A9:BF:61:8A:C6:FF:34:00:EB:52:E2:2A:24:55:4D:E5:29:01:CF
ValidityWed, 21 Jun 2023 00:00:00 GMT - Sat, 20 Jul 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /events/diagnostic/63bdba6ee6d64c12826b8bff HTTP/1.1
Host: events.launchdarkly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-LaunchDarkly-User-Agent: JSClient/2.24.2
X-LaunchDarkly-Wrapper: react-client-sdk/2.29.2
Content-Length: 857
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 202 Accepted
date: Sun, 05 May 2024 13:02:13 GMT
content-type: application/json
content-length: 0
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Payload-ID,X-LaunchDarkly-Wrapper,X-LaunchDarkly-Tags
access-control-allow-methods: POST,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Date
access-control-max-age: 300
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

static2-ma-ht.project1content.com/tour/@one/blocks/async/FooterBlock.39e014d8.js

64.210.135.114

200 OK

3.4 kB

URL GET HTTP/2
static2-ma-ht.project1content.com/tour/@one/blocks/async/FooterBlock.39e014d8.js
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (3536), with no line terminators
Size
3.4 kB (3387 bytes)
Hash
7ec41e84d51e84bfa299eaf61a640a6e
2537a9d5347aca428662c0600d82ef588f03eaa1
625d89a9dcb4ec66c6ae211ec182ae6742e8bd6598c68179eea10f7020146924

HTTP Headers

GET /tour/@one/blocks/async/FooterBlock.39e014d8.js HTTP/1.1
Host: static2-ma-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:09 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 29 Apr 2024 20:40:22 GMT
etag: W/"3ad5bbc71-d3b-6174243245980"
expires: Fri, 30 Aug 2024 23:10:33 GMT
cache-control: max-age=10574437
content-encoding: gzip
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
x-cdn-diag: ams5-6140-1-29612-h-0-0---;6140-28-12905----0-0-0
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/cta.png

64.210.135.114

200 OK

10 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/cta.png
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
PNG image data, 538 x 260, 8-bit/color RGBA, non-interlaced
Size
10 kB (10299 bytes)
Hash
c1670f4f8db521da2b25a864d1abef57
7ffa55f21a6654ab4215c7f0a01f48f94692d8b6
aa86562736d392f04542e17f4d50ccbdea523d7221f5ebeedddf2e397532a6c1

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/cta.png HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:12 GMT
content-type: image/png
content-length: 10299
last-modified: Mon, 06 Nov 2023 22:38:17 GMT
etag: "372544009-283b-60983829da840"
expires: Fri, 08 Mar 2024 01:36:34 GMT
cache-control: max-age=10551431
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7846-3-65310-h-0-0---;6140-19-12905----0-0-1
X-Firefox-Spdy: h2

bid.bidclickmedia.com/sub/31pnK5n

172.67.205.77

200 OK

234 B

URL GET HTTP/2
bid.bidclickmedia.com/sub/31pnK5n
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text, with no line terminators
Size
234 B (234 bytes)
Hash
f80bebf9471a9840ef5768e8c6b26672
164896726fce06ed3a1b8cbed00ab7c0493b6d24
5367258c378438d9831e9138819e8e68c4b7e6525dde7a086fb82a083398099c

HTTP Headers

GET /sub/31pnK5n HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YD24GL7EkCZ5ZXFbAjMEqButsfOD%2FvqV30RuERC2n72pTuZ5XOVoAYZkIH4uMvMelMcxeFBVcWoVShPwe7Os2%2FZlPLqsu9cudAjpkM7klLIKm0pKqGRZCneeTwYEOjbiH6ZKKBGEkIQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec360a78b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:400

216.58.207.234

200 OK

2.2 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Roboto:400
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (2218), with no line terminators
Size
2.2 kB (2162 bytes)
Hash
807b0cff287eb02fda9eb3a87e2746a5
34a0af77abd82f106052590a0e624b2803a6572d
35c288796da2ba3b90a7a7ef7e75a5e7eb55cad381d227beda8c5e400a04caff

HTTP Headers

GET /css?family=Roboto:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 May 2024 13:02:09 GMT
date: Sun, 05 May 2024 13:02:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

xml.xmlking.com/redirect?feed=591363&auth=0yfQfB&pubid=195183

174.137.133.17

302 Found

1.0 kB

URL GET HTTP/1.1
xml.xmlking.com/redirect?feed=591363&auth=0yfQfB&pubid=195183
IP
174.137.133.17:443
ASN
#27257 WEBAIR-INTERNET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerSectigo Limited
Subject*.xmlking.com
Fingerprint61:F0:9B:53:D2:DF:03:A0:08:09:BE:79:B1:70:10:34:65:07:7B:6D
ValidityWed, 26 Jul 2023 00:00:00 GMT - Fri, 26 Jul 2024 23:59:59 GMT

File type

Size
1.0 kB (1034 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect?feed=591363&auth=0yfQfB&pubid=195183 HTTP/1.1
Host: xml.xmlking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx
Date: Sun, 05 May 2024 13:02:06 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://xmlclick.adcannyxml.com/nrtb/click?bid=-W3mT8DYdlAuHsq6cY2He4J__O_2w0cf35sTxDAlC0AVBQY1io2nCa9ievZ2dI-0_0_9

images-assets-ht.project1content.com/5e9845115bf501.55618659.jpg

64.210.135.114

200 OK

2.1 kB

URL GET HTTP/2
images-assets-ht.project1content.com/5e9845115bf501.55618659.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 72x36, components 3
Size
2.1 kB (2065 bytes)
Hash
6e25c31d24acd9a948a91b5a1d8abbc4
8284a9b3b4287780e5f3c011e0b7f6ca7b54dd34
38c3608f1c53b13cd5567fecc6957d3568be15148abe43819e32bad5aa5d18f5

HTTP Headers

GET /5e9845115bf501.55618659.jpg HTTP/1.1
Host: images-assets-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:10 GMT
content-type: image/jpeg
content-length: 2065
last-modified: Thu, 16 Apr 2020 11:44:17 GMT
etag: "372006d6f-811-5a366f3dea640"
expires: Fri, 26 Jan 2024 08:58:32 GMT
cache-control: max-age=10462384
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6139-3-1869-h-0-0---;6140-20-12905----0-0-0
X-Firefox-Spdy: h2

videzz.net/js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42

78.142.18.54

200 OK

416 kB

URL GET HTTP/2
videzz.net/js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33
ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT

File type

Size
416 kB (416358 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js/videojs.5.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-gf4k2ra2ygab.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 May 2024 13:02:02 GMT
content-type: application/javascript
last-modified: Sat, 27 Apr 2024 07:30:42 GMT
vary: Accept-Encoding
etag: W/"662ca9a2-65a66"
expires: Tue, 04 Jun 2024 13:01:28 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2

bid.bidclickmedia.com/sub/31bV2Jy

172.67.205.77

200 OK

239 B

URL GET HTTP/2
bid.bidclickmedia.com/sub/31bV2Jy
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text, with no line terminators
Size
239 B (239 bytes)
Hash
d5b23342c3da61ad8cb32c85b5a9a6ca
3ca89fd68565941a5f5dec87720a2164c9b860ae
53073b03453dec44b400acecc549d6446aba803406a391777a94cc2504173bbb

HTTP Headers

GET /sub/31bV2Jy HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G5m7XoznhgLnLaAapP8rWDZgnT%2BpPxxkVbv9RI%2Bu5inyb1Hyt41%2BBF8w9Lg2Ja5E68usUfeoycXE8VSJMGordLXk66IDm7ddmfR0UXXfMnbCtXKw7U8SKeKMrkDLx6FFTXPLP%2F6FlXs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec362a93b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.addtoany.com/menu/svg/icons/whatsapp.js

172.67.39.148

200 OK

1.1 kB

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/whatsapp.js
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
ASCII text, with very long lines (1122), with no line terminators
Size
1.1 kB (1108 bytes)
Hash
d822c46f36a55fdbfcc5029e62e19937
c575da68fa99eeb33863f281395755cbf20004d4
062ec1f7c3acea435122961b771eb2e4d136a3e870b17d3e811413f5aa78ed3e

HTTP Headers

GET /menu/svg/icons/whatsapp.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"83af4df8173e43227812296bb8542dcf"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VSU96ixWaD28Nb8I9Aj5jZKa%2BNYvW5VNkLrER1jYJS3ugzz7lGmzEIqiV3kXv434fWEdsYyUJ20xzAKnVVSufqyGQTOoBYND5UVCAwOpt8%2F%2B06wSA2ntzjWDOs%2FtjtYxzfNBdlx7"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 6497
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87f0ec399ee2b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dog.seetron.net/api/users/59846?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&sid=e322800e-4aca-4f20-b3cf-d98366f0be01&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908

135.181.208.216

200 OK

637 B

URL GET HTTP/2
dog.seetron.net/api/users/59846?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&sid=e322800e-4aca-4f20-b3cf-d98366f0be01&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908
IP
135.181.208.216:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjecta.bdsmz.tube
FingerprintAA:4D:03:7A:4E:94:8C:76:58:6E:53:CC:8E:99:24:E6:51:84:BF:05
ValidityFri, 03 May 2024 10:27:08 GMT - Thu, 01 Aug 2024 10:27:07 GMT

File type
ASCII text, with very long lines (773), with no line terminators
Size
637 B (637 bytes)
Hash
85d28fa2bbf262b6e69eefd6e1d3a09c
55a7faf738767d177778fe9710d76e7a4f71906a
13cae1ce482ca345b166178bc34f184db93fe0bba49097f677f6ed2c33bc2f93

HTTP Headers

GET /api/users/59846?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&sid=e322800e-4aca-4f20-b3cf-d98366f0be01&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908 HTTP/1.1
Host: dog.seetron.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 13:02:05 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: nauid=vVbm9rDBSVixRVOnFBN3; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2

ossgogoaton.com/tag.min.js

172.67.184.45

200 OK

81 kB

URL GET HTTP/2
ossgogoaton.com/tag.min.js
IP
172.67.184.45:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectossgogoaton.com
FingerprintDE:B3:2A:B0:2A:4A:C3:F8:A3:3F:5B:C6:96:E6:F1:41:55:B4:87:1E
ValiditySat, 04 May 2024 10:37:16 GMT - Fri, 02 Aug 2024 10:37:15 GMT

File type
JavaScript source, ASCII text, with very long lines (65494)
Size
81 kB (81039 bytes)
Hash
14d554ae8ff1eb2bce0d64811f24b33c
3333891142b7dda1146e8fbabf6803ceaff3866c
39f02dd35b16792971ac79825eb74332c87e2cea1677ee73812e36f5668742b1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: ossgogoaton.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:05 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: ed38e5c020faf9b3bfa0304dbada0012
cache-control: max-age=86400
last-modified: Sat, 04 May 2024 17:01:46 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Sun, 05 May 2024 20:40:24 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 58901
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cAaUIS0IDtrF6ZBsbByxN148WXi13hBB43ONOcUYYEO6sWDmGWXcS2fm6h7THTQixvepHmvmka2dkbCzdtnPczkttl3l3LeEljG3k3XTEs%2Bnwo57EwO9vRDShlTlPgjPczg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87f0ec442d56712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

downstairsnegotiatebarren.com/sfp.js

188.114.96.1

200 OK

86 kB

URL GET HTTP/2
downstairsnegotiatebarren.com/sfp.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B
ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT

File type

Size
86 kB (85611 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: d4a040afad30a89829cab7ce12fc62b9
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sun, 05 May 2024 13:02:02 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zDHZVL7qF6dTHt%2F6HfiIXQhl2CzGUMcyJQhMTxCJaRF8DvGCXla2CNc%2F2mtmP8aLemZotZumPK1OfsexwrVdOwnOvF9oap9etRw1XFyh6gHpotYEeniQcMCUryyYdqeNM5fZxGV1jUe9Z0xGdoF5yw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87f0ec362dbb0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/header.jpg

64.210.135.114

200 OK

20 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/header.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x120, components 3
Size
20 kB (20467 bytes)
Hash
6c16c40b4043103bc1630403a95b3f82
625abc15c577d32c385e97897fd301a592863ff4
915efc3672c9d42673cd379263822375ff4b27bc2c6fec0411ad6ac7056e8640

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/header.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:10 GMT
content-type: image/jpeg
content-length: 20467
last-modified: Mon, 17 May 2021 15:18:34 GMT
etag: "372544003-4ff3-5c2881b5d6680"
expires: Sun, 24 Mar 2024 11:38:51 GMT
cache-control: max-age=10417681
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-6140-3-29849-h-0-0---;6140-25-12905----0-0-1
X-Firefox-Spdy: h2

bid.bidclickmedia.com/sub/Pj8pz0z

172.67.205.77

200 OK

234 B

URL GET HTTP/2
bid.bidclickmedia.com/sub/Pj8pz0z
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text, with no line terminators
Size
234 B (234 bytes)
Hash
ec45c51dfcbeb0d487d6d2ccf0cd9a23
eadd83e9b3def654d52e1b93ae5f5c13d8a69c99
3a5e0788bab23d00613d25c36fabb29d38bb3e51af54bf370854620392a249ce

HTTP Headers

GET /sub/Pj8pz0z HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aEO7Zt%2B3bxV3CjvZq1mRizbZldkbbRciIdGQKlyTTRurIn3jsv0sfaeFqe8wUmYVQVhWvNTVhXsghJDaRRjZBg2BHY8cvgPPBclPoZoctDq%2Ffu9zJFrIqE9iv1%2B5OLI8Tu4xC%2BMXU6c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec362a91b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

t.bawixi.xyz/1/?zid=9776

104.21.31.224

200 OK

1.0 kB

URL GET HTTP/2
t.bawixi.xyz/1/?zid=9776
IP
104.21.31.224:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbawixi.xyz
FingerprintAF:9E:B4:BC:30:9E:5D:F1:48:C5:77:67:A5:95:F2:70:E6:E5:A8:91
ValidityThu, 14 Mar 2024 01:23:09 GMT - Wed, 12 Jun 2024 01:23:08 GMT

File type
HTML document, ASCII text, with very long lines (1052), with no line terminators
Size
1.0 kB (1034 bytes)
Hash
84c2c5ff333f4f037e15d87a9b6a5ce6
9889902667c54b9a41ec6f399b2b33290840be89
a72ec1dac98d38fa43d37cfdef2d88126f8f30315bb2fcd3a7e27405db191c72

HTTP Headers

GET /1/?zid=9776 HTTP/1.1
Host: t.bawixi.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:06 GMT
content-type: text/html
accept-ch: Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7%2FwbBTBG3L5y3qnutdhnMVNzIQGPto0r89IwDDqs%2BU%2F22uK7Ke%2FXK65QNeOT1SIKXE6ZQ6QKr2CnAmcUyuOSkqttOEybn1jTfwtFwtpZ9pVaShB4KS4CRetJqU89XWY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec4c3f2c5688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bid.bidclickmedia.com/sub/0YDX8OE

172.67.205.77

200 OK

234 B

URL GET HTTP/2
bid.bidclickmedia.com/sub/0YDX8OE
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text, with no line terminators
Size
234 B (234 bytes)
Hash
af2b6f5e906532aa6d51ed7dcbb8fed7
5ddca712e64ecb7520e561656c87079ec18e3db1
eced93383f70dca1dcfe0998bcccf8d3fe044a0f1646f0ffa670cf0b14f599f3

HTTP Headers

GET /sub/0YDX8OE HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qSXERywuLoEYAKgUfB1JDLfVDQUGK3sx4f%2FHfbvekdfI7VSP2Q9j%2BoqQ24neWj3lxDAbtwidrosV5MPF%2FM3EyeaS%2Fr4Ul6%2FcUbod2tQSL7GN604qNYR5xo6HrzngS7Ut4ZYTODR%2FK5Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec361a84b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319

174.137.133.17

200 OK

0 B

URL GET HTTP/1.1
xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319
IP
174.137.133.17:443
ASN
#27257 WEBAIR-INTERNET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerSectigo Limited
Subject*.zeusadx.com
FingerprintAA:67:88:35:5F:BC:20:3C:44:9B:00:BD:4F:E1:C0:5F:62:D0:69:C0
ValidityMon, 23 Oct 2023 00:00:00 GMT - Wed, 23 Oct 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect?feed=531847&auth=KhbHhS&pubid=162319 HTTP/1.1
Host: xml.zeusadx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 May 2024 13:02:05 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store

dog.seetron.net/api/settings/59846

135.181.208.216

200 OK

33 B

URL GET HTTP/2
dog.seetron.net/api/settings/59846
IP
135.181.208.216:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjecta.bdsmz.tube
FingerprintAA:4D:03:7A:4E:94:8C:76:58:6E:53:CC:8E:99:24:E6:51:84:BF:05
ValidityFri, 03 May 2024 10:27:08 GMT - Thu, 01 Aug 2024 10:27:07 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
33 B (33 bytes)
Hash
511ff610a0435434dd22a4836719fbb3
0cf692a9ecb6dd3d715e3315e0eeccc1c384f0c3
d090111da31c837d965f1dcf49b00a53cf41686d0913627f78c5ff36d693c6d0

HTTP Headers

GET /api/settings/59846 HTTP/1.1
Host: dog.seetron.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 13:02:02 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2

bid.bidclickmedia.com/sub/Pj8pz0z

172.67.205.77

200 OK

234 B

URL GET HTTP/2
bid.bidclickmedia.com/sub/Pj8pz0z
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text, with no line terminators
Size
234 B (234 bytes)
Hash
ec45c51dfcbeb0d487d6d2ccf0cd9a23
eadd83e9b3def654d52e1b93ae5f5c13d8a69c99
3a5e0788bab23d00613d25c36fabb29d38bb3e51af54bf370854620392a249ce

HTTP Headers

GET /sub/Pj8pz0z HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GsYbFCJStITYujpKMGcXpq2Qzlc7VKxsy%2Fc6ZdLt8PC%2B1b%2FR9Fz5q3nUYfHav3PehBvppslrMNS0gtES%2F2ZMATrTZDuX4L%2F9CEiDAI9Nen9fjKHG6RxBJgJtRuxEdk20eoyJa5nb4zs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec362a92b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

t.bawixi.xyz/1/?zid=9776&key2=431721333&c=pmrgszbchirg2irmejuceorxgaztomjygb6xy7d4pmrheir2ge3tmmzugy3tsmrrfqrhiir2ge3tcnbzge2dcmrvfqrhgir2eirh2&mode=2

104.21.31.224

302 Found

2.2 kB

URL GET HTTP/3
t.bawixi.xyz/1/?zid=9776&key2=431721333&c=pmrgszbchirg2irmejuceorxgaztomjygb6xy7d4pmrheir2ge3tmmzugy3tsmrrfqrhiir2ge3tcnbzge2dcmrvfqrhgir2eirh2&mode=2
IP
104.21.31.224:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbawixi.xyz
FingerprintAF:9E:B4:BC:30:9E:5D:F1:48:C5:77:67:A5:95:F2:70:E6:E5:A8:91
ValidityThu, 14 Mar 2024 01:23:09 GMT - Wed, 12 Jun 2024 01:23:08 GMT

File type

Size
2.2 kB (2188 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1/?zid=9776&key2=431721333&c=pmrgszbchirg2irmejuceorxgaztomjygb6xy7d4pmrheir2ge3tmmzugy3tsmrrfqrhiir2ge3tcnbzge2dcmrvfqrhgir2eirh2&mode=2 HTTP/1.1
Host: t.bawixi.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://t.bawixi.xyz/1/?zid=9776
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Sun, 05 May 2024 13:02:06 GMT
content-type: text/html
location: https://t.yunaga.xyz/1/?spot_id=2561&zone_id=14102_ck_if_
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CwwMSK40%2FyOspdov3ufGlYFECQN4tPTogjEVka9DUixc1JxHPK0p%2F5mLAzgjrIdwXAvZnlACIq9ZwFNEMukiD2vPY1mBEuB7O%2BwURxaUWp%2FJFe5xVoURSJC4KlXPKPI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec4d2dd5b4f7-OSL
alt-svc: h3=":443"; ma=86400

wrinkleirritateoverrated.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fjs%2Fscript.js&l=7986&fd=74

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
wrinkleirritateoverrated.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fjs%2Fscript.js&l=7986&fd=74
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectwrinkleirritateoverrated.com
Fingerprint46:45:35:2E:47:FA:80:A7:9C:B4:55:C1:EB:97:F3:A4:0A:88:10:FB
ValidityFri, 03 May 2024 09:21:04 GMT - Thu, 01 Aug 2024 09:21:03 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fjs%2Fscript.js&l=7986&fd=74 HTTP/1.1
Host: wrinkleirritateoverrated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecfd40b682a05e4aaf489d29601350aa66=[5210995,5210997]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 05 May 2024 13:02:05 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

videzz.net/embed-gf4k2ra2ygab.html

78.142.18.54

200 OK

32 kB

URL User Request GET HTTP/2
videzz.net/embed-gf4k2ra2ygab.html
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33
ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT

File type
HTML document, ASCII text, with very long lines (1926), with CRLF, LF line terminators
Size
32 kB (31629 bytes)
Hash
843c6ee097825f5d48322c1ab46424d1
4abbec0b9118761d20bdb6385b66ee7a9cef4a16
4896362d7d18af85825cfd1ae72cb48fb8d5b6c69358285c96661f17028d2bf4

HTTP Headers

GET /embed-gf4k2ra2ygab.html HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 May 2024 13:02:02 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Sat, 04 May 2024 13:02:02 GMT
x-frame-options: 1
set-cookie: lang=1; domain=.videzz.net; path=/; HttpOnly
xfsts=; domain=.videzz.net; path=/; expires=Sat, 06-May-2023 13:02:02 GMT; HttpOnly
content-encoding: gzip
X-Firefox-Spdy: h2

tgp1.brazzersnetwork.com/_ats/eta/events?app_id=10303&eventName=UNIQUE_TRACK

66.254.114.234

200 OK

128 B

URL POST HTTP/2
tgp1.brazzersnetwork.com/_ats/eta/events?app_id=10303&eventName=UNIQUE_TRACK
IP
66.254.114.234:443
ASN
#29789 REFLECTED

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerLet's Encrypt
Subjectbrazzersnetwork.com
Fingerprint88:AB:08:D2:E9:0E:FD:34:1F:CD:0A:B3:E0:9F:DB:C8:07:2F:D4:AA
ValidityWed, 10 Apr 2024 00:01:06 GMT - Tue, 09 Jul 2024 00:01:05 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
128 B (128 bytes)
Hash
34daeb849a30ab4ba95eae4476e54827
69ddf40ceba4afc0b05c9c8cd3c275850203f0a5
20af4e6599007af6d7f26dd99c33d21aa526ea22dd4aa7fb83030583054ab49e

HTTP Headers

POST /_ats/eta/events?app_id=10303&eventName=UNIQUE_TRACK HTTP/1.1
Host: tgp1.brazzersnetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Content-Type: application/x-www-form-urlencoded
Content-Length: 1516
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Cookie: ats=eyJhIjoxNDksImNuIjoiRlJFRV82NTI5NzQ0IiwibiI6MTQsInMiOjkwLCJlIjo5MDY3LCJwIjozMzl9; atsd=adde7a42-83e4-4c06-8163-6ba630086ce8; atsm=adde7a42-83e4-4c06-8163-6ba630086ce8; atss=adde7a42-83e4-4c06-8163-6ba630086ce8; atstrackPiece1=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; atstrackPiece2=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
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 13:02:10 GMT
content-type: application/json
set-cookie: eta_guid=27d0b290-f51d-4c24-a37f-696f5edb8960_1714914130;Path=/;Max-Age=315360000;Expires=Wed, 12 Jul 2034 00:00:01 UTC;SameSite=None;HttpOnly;
sessionid=eef18b78-2afc-4f67-ad4e-0e3c38c0b849; Path=/; SameSite=None;HttpOnly;
__s=66378352-42FE72EA01BB7E0DD-2506E8;
access-control-allow-origin: https://tgp1.brazzersnetwork.com
access-control-allow-methods: GET, POST
access-control-allow-credentials: true
cache-control: no-cache, no-transform
content-disposition: inline
x-content-type-options: nosniff
x-xss-protection: 0
pragma: no-cache
timing-allow-origin: *
x-eta-guid: 27d0b290-f51d-4c24-a37f-696f5edb8960
x-eta-sessionid: eef18b78-2afc-4f67-ad4e-0e3c38c0b849
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

cdn.o333o.com/vast-im.js

143.204.55.93

200 OK

310 kB

URL GET HTTP/2
cdn.o333o.com/vast-im.js
IP
143.204.55.93:443
ASN
#16509 AMAZON-02

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerSectigo Limited
Subjectcdn.o333o.com
Fingerprint61:0E:6A:7F:7E:40:48:40:58:0F:EF:89:DB:CF:AD:C2:FB:52:F1:AC
ValidityThu, 09 Nov 2023 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type

Size
310 kB (310487 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /vast-im.js HTTP/1.1
Host: cdn.o333o.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Thu, 11 Apr 2024 09:31:41 GMT
last-modified: Fri, 22 Mar 2024 11:21:21 GMT
etag: W/"65fd69b1-4bcd7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: ECO5DNYXIe8WZz0WExJLIWSEMHbnbY3HtNZtk_r0PiTy8RjU2dsYsQ==
age: 2086221
X-Firefox-Spdy: h2

zv.7vid.net/api/spots/70102?s1=174908&v2=1&fill=0&kw=file%20upload%2Cshare%20files%2Cfree%20upload&i=1&url=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&sid=e322800e-4aca-4f20-b3cf-d98366f0be01

135.181.208.216

200 OK

67 B

URL GET HTTP/2
zv.7vid.net/api/spots/70102?s1=174908&v2=1&fill=0&kw=file%20upload%2Cshare%20files%2Cfree%20upload&i=1&url=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&sid=e322800e-4aca-4f20-b3cf-d98366f0be01
IP
135.181.208.216:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subject1111.spinna.online
FingerprintF3:80:AE:D8:32:E7:57:75:94:99:58:76:4C:57:59:80:E8:9A:B7:ED
ValidityFri, 29 Mar 2024 23:27:07 GMT - Thu, 27 Jun 2024 23:27:06 GMT

File type
XML document, ASCII text, with no line terminators
Size
67 B (67 bytes)
Hash
c3928cea84e0c684b265b8fb465a9e72
aace4c0c8b0fbb35d2932f4f27e01ef627161574
3238d03797cab82118740c0d6ddace8d6bc9caf168e94d2ade893f541c1f8a25

HTTP Headers

GET /api/spots/70102?s1=174908&v2=1&fill=0&kw=file%20upload%2Cshare%20files%2Cfree%20upload&i=1&url=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&sid=e322800e-4aca-4f20-b3cf-d98366f0be01 HTTP/1.1
Host: zv.7vid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 13:02:03 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://videzz.net
access-control-expose-headers: X-Asg-Config, X-t
set-cookie: nauid=OG8zdJIqKTX02RxmnLZI; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
x-robots-tag: noindex, nofollow
x-t: 0
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2

static.addtoany.com/menu/svg/icons/viber.js

172.67.39.148

200 OK

1.0 kB

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/viber.js
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
ASCII text, with very long lines (1027), with no line terminators
Size
1.0 kB (1003 bytes)
Hash
b216786a6e2822572e4c78284416fd02
b3a072140d798b6734431ff6a890da7cb8c701ce
265af7156e77fce7638988053d5b3f4894c92ae2bdacac504131a96cf6a0d370

HTTP Headers

GET /menu/svg/icons/viber.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"ab1da422605fdb35fd02440984d36475"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GF6l98r1SQYqjDtri4QPzTS5LMOpdVchUnK6BVf%2BlLdjgGTOroVtLoEgBZGV4DnC%2F8H50pBgMuYKNEVy7bN4602BG8Zh2ixMmsk5rDi0fS%2FzgSJQkky1xyzinR9KyteZiB1mtIVLwxRzIrwIJnPctQZD"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 10425
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87f0ec399ee1b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

str32.vidoza.net/nvl4jze5seeuieno3wqq3dnihovdwyvj5m4oi3pz5rrwfuhvvtemegp5vtwq/v.mp4

0.0.0.0

0 B

URL GET
str32.vidoza.net/nvl4jze5seeuieno3wqq3dnihovdwyvj5m4oi3pz5rrwfuhvvtemegp5vtwq/v.mp4
IP
0.0.0.0:0
ASN
#0

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /nvl4jze5seeuieno3wqq3dnihovdwyvj5m4oi3pz5rrwfuhvvtemegp5vtwq/v.mp4 HTTP/1.1
Host: str32.vidoza.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

allvideometrika.com/f.php?sid=212515

104.21.83.61

200 OK

0 B

URL GET HTTP/2
allvideometrika.com/f.php?sid=212515
IP
104.21.83.61:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectallvideometrika.com
Fingerprint0F:3F:B1:7E:F7:3C:77:24:1C:85:B2:89:15:11:43:1A:AD:64:DF:13
ValidityTue, 23 Apr 2024 13:34:13 GMT - Mon, 22 Jul 2024 13:34:12 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /f.php?sid=212515 HTTP/1.1
Host: allvideometrika.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.1.33
cache-control: no-store, no-cache, must-revalidate, max-age=0
x-robots-tag: noindex
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r0ejgnMZ12eqgyJ4ycjN6yudGrk%2Bp92R4g7N0J0PbItIo15LkmyC72dTRyJByNrWUNn2eY9gAjrXYERz5YQEZ5r%2Fln36nBlZt3gHH7exM8etJoRG1Y923jgDzYMLUgTcfSeXamxe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec39cf98569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

videzz.net/css/videojs.5.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42

78.142.18.54

200 OK

170 kB

URL GET HTTP/2
videzz.net/css/videojs.5.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33
ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT

File type
ASCII text, with very long lines (50421)
Size
170 kB (169541 bytes)
Hash
bf9af199b5ef61988f82fa239ebf61da
d3b9c5ef294f2ef0942a8bf1e62085b72b2e07cc
e8e86d55656a068d5bb43e7b65e474162b6dff2c57f314cfc90d25f16708048d

HTTP Headers

GET /css/videojs.5.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-gf4k2ra2ygab.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 May 2024 13:02:02 GMT
content-type: text/css
last-modified: Sat, 27 Apr 2024 07:30:28 GMT
vary: Accept-Encoding
etag: W/"662ca994-29645"
expires: Tue, 04 Jun 2024 12:57:19 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2

static.addtoany.com/menu/svg/icons/facebook.js

172.67.39.148

200 OK

429 B

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/facebook.js
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
ASCII text, with very long lines (439), with no line terminators
Size
429 B (429 bytes)
Hash
874e1638740e061f9fa55eda3180724c
108a7e30fa0f7d50b961845ec970a2745f3c821f
d1bf990d09417220fcb615079a569e0a403c75beef0eac536e5976b7751c0370

HTTP Headers

GET /menu/svg/icons/facebook.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"68925fa8e347041c6006837e73c518bc"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6B%2FV6ADt517psBnU6gY21U1Bic9HzuXd7VQoHHzOpIzDwZJWTz9ICNXIC3sHbp8LbOg8q2%2FF%2BORds3rmW9O1Ls0y6Q7edGN6XzyiY6nnZTscstDrjHgjuWo%2BViAul%2B3fVrY3dDtWjAtHYik3CIlkPl%2B8"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 14316
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87f0ec397ec0b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

videzz.net/favicon.ico?v=2

78.142.18.54

200 OK

1.2 kB

URL GET HTTP/2
videzz.net/favicon.ico?v=2
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33
ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Size
1.2 kB (1150 bytes)
Hash
07075ddac650ad1577e310576f4ac231
1c8f551262fac5a047a268b82fa932c405ab13ff
c5f2d482ae4405a8e9f16a7ab09c5d04380283eb0cb0a9b237b32bc1bca47901

HTTP Headers

GET /favicon.ico?v=2 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-gf4k2ra2ygab.html
Cookie: lang=1; file_id=28191295; aff=174908; sb_main_fd40b682a05e4aaf489d29601350aa66=1; sb_count_fd40b682a05e4aaf489d29601350aa66=1; asgfp2=172e5b6362817b33a26bdcbe3d1af8ae; dom3ic8zudi28v8lr6fgphwffqoz0j6c=40246040-5b8b-4cc1-bc17-64359c1d0fbb%3A2%3A1; _ga_HEX1BG8H46=GS1.1.1714914123.1.0.1714914124.59.0.0; _ga=GA1.1.705405948.1714914124; pbpr0tpuw4isk85t8yg3jb2lj5vqf=wrinkleirritateoverrated.com; pp_main_f1776d24271c5ad55c5f1492e2d01e10=1; pp_idelay_f1776d24271c5ad55c5f1492e2d01e10=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 May 2024 13:02:04 GMT
content-type: image/x-icon
last-modified: Sat, 27 Apr 2024 07:30:37 GMT
vary: Accept-Encoding
etag: W/"662ca99d-47e"
expires: Tue, 04 Jun 2024 12:55:37 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2

static2-ma-ht.project1content.com/tour/runtime.25541a6b.js

64.210.135.114

200 OK

8.7 kB

URL GET HTTP/2
static2-ma-ht.project1content.com/tour/runtime.25541a6b.js
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (9159), with no line terminators
Size
8.7 kB (8650 bytes)
Hash
d25bd29dc1ab57893a96d6c270065c46
43c653599fc1f6d218f36f1c7d7c360793b77878
8333fca753f5c50af378f51917f216304ba3f62bf77fffc42f149a775e981315

HTTP Headers

GET /tour/runtime.25541a6b.js HTTP/1.1
Host: static2-ma-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:08 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 01 May 2024 18:44:38 GMT
etag: W/"3adac2f25-21ca-61768e0ee1180"
expires: Sun, 01 Sep 2024 20:29:28 GMT
cache-control: max-age=10556379
content-encoding: gzip
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
x-cdn-diag: ams5-7619-3-8852-h-0-0---;6140-21-12905----0-0-0
X-Firefox-Spdy: h2

str32.vidoza.net/nvl4jze5seeuieno3wqq3dnihovdwyvj5m4oi3pz5rrwfuhvvtemegp5vtwq/v.mp4

0.0.0.0

0 B

URL GET
str32.vidoza.net/nvl4jze5seeuieno3wqq3dnihovdwyvj5m4oi3pz5rrwfuhvvtemegp5vtwq/v.mp4
IP
0.0.0.0:0
ASN
#0

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectvidoza.net
FingerprintDD:9C:2A:D1:7E:90:60:D1:BE:1C:39:29:07:29:9C:34:6A:76:A6:C6
ValidityWed, 14 Feb 2024 01:21:54 GMT - Tue, 14 May 2024 01:21:53 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /nvl4jze5seeuieno3wqq3dnihovdwyvj5m4oi3pz5rrwfuhvvtemegp5vtwq/v.mp4 HTTP/1.1
Host: str32.vidoza.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
server: nginx/1.20.1
date: Sun, 05 May 2024 13:02:03 GMT
content-type: video/mp4
content-length: 480955670
last-modified: Thu, 09 Nov 2023 08:59:56 GMT
etag: "654c9f8c-1caacd16"
content-range: bytes 0-480955669/480955670
X-Firefox-Spdy: h2

tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A

66.254.114.234

200 OK

961 kB

URL GET HTTP/2
tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
IP
66.254.114.234:443
ASN
#29789 REFLECTED

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectbrazzersnetwork.com
Fingerprint88:AB:08:D2:E9:0E:FD:34:1F:CD:0A:B3:E0:9F:DB:C8:07:2F:D4:AA
ValidityWed, 10 Apr 2024 00:01:06 GMT - Tue, 09 Jul 2024 00:01:05 GMT

File type

Size
961 kB (960674 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A HTTP/1.1
Host: tgp1.brazzersnetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.pemsrv.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Sun, 05 May 2024 13:02:08 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-trace: 2B9F06664E4EEEBC9C0A888FF0F3F3F52ABEA045E9045DC1D2B0D33F6F00
x-powered-by: Juan
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x_ats_page_id: N/A
x_ats_page_type: CUSTOM
x_ats_instance_id: 281681
x_ats_instance_type: tour
etag: W/"ea8a2-fHHE/j0tmL7dh2CLx3nTC1Secn8"
content-encoding: br
cache-control: no-transform
set-cookie: instance_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJtaW5kZ2VlayIsImF1ZCI6Im1pbmRnZWVrIiwic3ViIjoiaW5zdGFuY2UtYXBpIiwiZXhwIjoxNzE1MDQwMDAwLCJpZCI6MjgxNjgxLCJicmFuZCI6ImJyYXp6ZXJzIiwiaG9zdG5hbWUiOiJ0Z3AxLmJyYXp6ZXJzbmV0d29yay5jb20ifQ.KSu2e5l7Cs-hWKHOMLqaf69_Zseqe-7ZvzWlcWgTh2U; Max-Age=86400; Path=/; Expires=Mon, 06 May 2024 13:02:08 GMT
__s=66378350-42FE72EA01BB7E0DD-25068A;
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

clientstream.launchdarkly.com/eval/63bdba6ee6d64c12826b8bff/eyJrZXkiOiJ1c2VyLWtleS10b3VyIiwibmFtZSI6IlRvdXIgTGF1bmNoRGFya2x5IiwiZW1haWwiOiJtaW5kZ2Vla0BleGFtcGxlLmNvbSIsImN1c3RvbSI6eyJicmFuZElkIjozLCJpbnN0YW5jZUlkIjoyODE2ODEsImlzRGV2IjpmYWxzZSwiaXNJbnRlcm5hbFVzZXIiOmZhbHNlLCJyb290RW52IjoicHJvZCIsInNpdGVJZCI6MTMwMX19

0.0.0.0

0 B

URL GET
clientstream.launchdarkly.com/eval/63bdba6ee6d64c12826b8bff/eyJrZXkiOiJ1c2VyLWtleS10b3VyIiwibmFtZSI6IlRvdXIgTGF1bmNoRGFya2x5IiwiZW1haWwiOiJtaW5kZ2Vla0BleGFtcGxlLmNvbSIsImN1c3RvbSI6eyJicmFuZElkIjozLCJpbnN0YW5jZUlkIjoyODE2ODEsImlzRGV2IjpmYWxzZSwiaXNJbnRlcm5hbFVzZXIiOmZhbHNlLCJyb290RW52IjoicHJvZCIsInNpdGVJZCI6MTMwMX19
IP
0.0.0.0:0
ASN
#0

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerAmazon
Subjectclientstream.launchdarkly.com
FingerprintF2:89:08:7D:7F:36:9E:23:89:08:EA:54:96:96:6A:28:5F:54:7A:8D
ValidityWed, 09 Aug 2023 00:00:00 GMT - Thu, 05 Sep 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /eval/63bdba6ee6d64c12826b8bff/eyJrZXkiOiJ1c2VyLWtleS10b3VyIiwibmFtZSI6IlRvdXIgTGF1bmNoRGFya2x5IiwiZW1haWwiOiJtaW5kZ2Vla0BleGFtcGxlLmNvbSIsImN1c3RvbSI6eyJicmFuZElkIjozLCJpbnN0YW5jZUlkIjoyODE2ODEsImlzRGV2IjpmYWxzZSwiaXNJbnRlcm5hbFVzZXIiOmZhbHNlLCJyb290RW52IjoicHJvZCIsInNpdGVJZCI6MTMwMX19 HTTP/1.1
Host: clientstream.launchdarkly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/event-stream
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tgp1.brazzersnetwork.com
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/event-stream; charset=utf-8
accept-ranges: bytes
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Cache-Control,X-Requested-With,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: *
access-control-max-age: 300
cache-control: no-cache, no-store, must-revalidate
ld-region: eu-west-1
strict-transport-security: max-age=31536000; includeSubDomains
x-content-length: 877
X-Firefox-Spdy: h2

t7rsx24c5.com/i/3144?nsid=1&partner_subid=2

159.69.42.212

200 OK

2.2 kB

URL GET HTTP/2
t7rsx24c5.com/i/3144?nsid=1&partner_subid=2
IP
159.69.42.212:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectt7rsx24c5.com
FingerprintBD:7C:E4:B6:A6:DB:3D:9B:78:EF:9B:42:91:71:88:3B:D2:40:56:0D
ValidityThu, 28 Mar 2024 13:29:20 GMT - Wed, 26 Jun 2024 13:29:19 GMT

File type
JavaScript source, ASCII text, with very long lines (2298), with no line terminators
Size
2.2 kB (2188 bytes)
Hash
e8132a8f9a256ff7a45d293221c3f190
2b6492fa191d01c5f880937bc90b74bf68ab4c2f
300a6ff40483b1c8fb45487c7db1900ffd0256550a8f282d31e0f5615a4bdd8f

HTTP Headers

GET /i/3144?nsid=1&partner_subid=2 HTTP/1.1
Host: t7rsx24c5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://t.bawixi.xyz/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Sun, 05 May 2024 12:47:41 GMT
content-type: text/html; charset=utf8
set-cookie: ndsp=eyJkb21haW5OYW1lIjoidDdyc3gyNGM1LmNvbSIsIm1lbWJlciI6IjExMyIsInRlbXBsYXRlIjoidGMxNTUiLCJ1c2VyQWdlbnQiOiJNb3ppbGxhXC81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrb1wvMjAxMDAxMDEgRmlyZWZveFwvOTYuMCIsInNlc3Npb24iOiI2OTAwZTJkOGE2OWU2ZjFiYjY3MDk5ZDU0Y2QzZDg0NSIsInRpbWVfaW5pdCI6MTcxNDkxMzI2MX0%3D; expires=Sun, 05-May-2024 21:59:59 GMT; Max-Age=33138; path=/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
X-Firefox-Spdy: h2

static.addtoany.com/menu/modules/core.BRQnzO8v.js

172.67.39.148

200 OK

72 kB

URL GET HTTP/3
static.addtoany.com/menu/modules/core.BRQnzO8v.js
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
72 kB (71454 bytes)
Hash
629401c31553d2f42a6ca46e58c2a97b
0ab6084caa72f90913c7e4119f491838726ec5c2
91b9b24f0aa59668e4d0a770ee7a294b9baa361a76a20ade8128cd0482a5d805

HTTP Headers

GET /menu/modules/core.BRQnzO8v.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
cf-bgj: minify
etag: W/"25da5432b1057724b8210f17e9b9db05"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OK8gUdgRP8GeYnLNHjDu6u8caDNHdfO2sQNKdIoJNqcMjR7wKzBSRPIzKBAhIZ8GUNx3vYpRT%2B9Wl0bTiXTo1YqoNOdrpxq%2F84ur0eWSRu%2B8ofOTPc9x7M1JwH%2F7P4Z%2FP3le3Hg2mdvhb0ePe1lTNo51"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 10429
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87f0ec355a34b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

tgp1.brazzersnetwork.com/_p1cdn/tour/atlaslib-js.6f2e1c48.js

66.254.114.234

200 OK

40 kB

URL GET HTTP/2
tgp1.brazzersnetwork.com/_p1cdn/tour/atlaslib-js.6f2e1c48.js
IP
66.254.114.234:443
ASN
#29789 REFLECTED

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerLet's Encrypt
Subjectbrazzersnetwork.com
Fingerprint88:AB:08:D2:E9:0E:FD:34:1F:CD:0A:B3:E0:9F:DB:C8:07:2F:D4:AA
ValidityWed, 10 Apr 2024 00:01:06 GMT - Tue, 09 Jul 2024 00:01:05 GMT

File type
JavaScript source, ASCII text, with very long lines (40283), with no line terminators
Size
40 kB (40283 bytes)
Hash
44086a9f945c2c345183cb951c5e8b60
72f7e7293a1b8862436f457b2d82589a12ce17f5
c0a3c7e552bc83c5678550d191559c46761c1e6d8d49060912b3c3d8460fba0b

HTTP Headers

GET /_p1cdn/tour/atlaslib-js.6f2e1c48.js HTTP/1.1
Host: tgp1.brazzersnetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:08 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 19 Apr 2024 16:04:23 GMT
etag: W/"3ac93c13f-9d5b-616753dbc4fc0"
expires: Mon, 19 Aug 2024 02:57:09 GMT
cache-control: max-age=10486975
content-encoding: gzip
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
x-cdn-diag: dfw1-15011-1-2483-h-0-0---;15011-126-41362----0-0-0
set-cookie: __s=66378350-42FE72EA01BB7E0DD-250699;
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c

142.250.74.72

200 OK

275 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (7711)
Size
275 kB (274630 bytes)
Hash
ec8b0e618c573c683ba69b0fcb2af487
8a0c76b8884d346224240ac1206b3d747353b883
f29279fd41925337303b06188b35b5bad825ba9e2eeefe3b721f2a526c04407a

HTTP Headers

GET /gtag/js?id=G-HEX1BG8H46&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 May 2024 13:02:03 GMT
expires: Sun, 05 May 2024 13:02:03 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94585
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

videzz.net/js/jquery.min.js

78.142.18.54

200 OK

96 kB

URL GET HTTP/2
videzz.net/js/jquery.min.js
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33
ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT

File type
JavaScript source, ASCII text, with very long lines (32086)
Size
96 kB (95786 bytes)
Hash
8101d596b2b8fa35fe3a634ea342d7c3
d6c1f41972de07b09bfa63d2e50f9ab41ec372bd
540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441

HTTP Headers

GET /js/jquery.min.js HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-gf4k2ra2ygab.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 May 2024 13:02:02 GMT
content-type: application/javascript
last-modified: Sat, 27 Apr 2024 07:30:28 GMT
vary: Accept-Encoding
etag: W/"662ca994-1762a"
expires: Tue, 04 Jun 2024 12:57:04 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2

static.addtoany.com/menu/svg/icons/twitter.js

172.67.39.148

200 OK

645 B

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/twitter.js
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
ASCII text, with very long lines (655), with no line terminators
Size
645 B (645 bytes)
Hash
671b3272826b2e03f7f5ecc6846a4f83
bcd620154cd6381ddf84b4e17e53ad716f3acbea
b743f6ed35f2a170860cfb010577cd000ee695dc23b850d3b3e479ef1178bb22

HTTP Headers

GET /menu/svg/icons/twitter.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"af2b829f9b79fabec7c0148a8b7e444b"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ggiKokhYH%2FRwG5kRNsQxxkES41zx0pRhTrFCFihLqsTSZDy5P6xBR0gPdEzsNoj600eU8miSvk2pNojpOEm0ToV01dZ%2BWv9rYzF%2F0crLCtKrUyFE67PnrnzZvkmGvUV%2BiiVGrF6naj2jHKv3CePNqH%2B%2B"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 10425
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87f0ec398ed2b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R7_01.jpg

64.210.135.114

404 Not Found

0 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R7_01.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R7_01.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-6139-2-1676-h-0-0---;6140-18-12905----0-0-2
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static.addtoany.com/menu/locale/ru.js

172.67.39.148

200 OK

2.1 kB

URL GET HTTP/3
static.addtoany.com/menu/locale/ru.js
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
ASCII text, with very long lines (2170), with no line terminators
Size
2.1 kB (2130 bytes)
Hash
7581051e137324f383ce692c383a90ac
7c66ac218fd109304436e9588d602c7aaab63b82
428aafe2046340df744b20fbab6f0cd4ddfb95776790e80440cfb60788dbde2c

HTTP Headers

GET /menu/locale/ru.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=86400, stale-while-revalidate=30, public
cf-bgj: minify
cf-polished: origSize=2289
etag: W/"9797b535a7dbc5ec8be5d83312871549"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0Pns6TtwvXJrabXBg5qD34U9tGeMGrEdyUXo1Ifn5UQb5j%2FCb0kNzo4kU4t%2BwBPaHA8Py5yVUYqQOtvtjiUJeOTkgqF2%2B8WrkfDd3KIvQdWwPMR2W2eJHhLs1mdCyT2pxQI6S5LuakxUHp8hEEzVcw4J"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 2727
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87f0ec397eb5b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

wrinkleirritateoverrated.com/pixel/sbs?c=1

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
wrinkleirritateoverrated.com/pixel/sbs?c=1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectwrinkleirritateoverrated.com
Fingerprint46:45:35:2E:47:FA:80:A7:9C:B4:55:C1:EB:97:F3:A4:0A:88:10:FB
ValidityFri, 03 May 2024 09:21:04 GMT - Thu, 01 Aug 2024 09:21:03 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: wrinkleirritateoverrated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Cookie: u_pl=19071538; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecfd40b682a05e4aaf489d29601350aa66=[5210995,5210997]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 05 May 2024 13:02:05 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

static.addtoany.com/menu/svg/icons/reddit.js

172.67.39.148

200 OK

893 B

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/reddit.js
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
ASCII text, with very long lines (903), with no line terminators
Size
893 B (893 bytes)
Hash
1f5dd30051ff637ea1d19ce73aced89c
bfdd1d1c07492ba397bdcf13e262edcfd8692a5e
c1bf0dd12b2f71de1e7e154b309caa18d2f1c2a8dc077beba23b89432ad72a81

HTTP Headers

GET /menu/svg/icons/reddit.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"1fe5b5008de689ce6464d7bcb07e742c"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZjHweqxafNQq1n%2FESzRf2k9F%2FrYlbdwvbqiAi31q1bs4dxVMeUPA7nKp8T0F58E7TOkAh%2FfYESagksyAdIk6odC8nuIMY%2Fii8dgMTHCakMh4qso5JAISV52DVvEx%2FDl%2BX8CDPGH228RHXIBwZtZJQppE"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 14316
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87f0ec398ec2b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

veepteero.com/?rb=66q7yHeSel5FrmFponQpaCvEuCh1Io5h-nQSPR4Dphowf5GMkon_OQiZNwEiTcr2SAKmYdO9003_bwBZIf8xEA8vsKRCSAt3MGZkpQWJoEZTSkgSkpdFGRBHNxcnQuM_lDI5QZ3zkFdE5njKL6KHVaUfA3apxQ6q5a_FS1pJv7iroSupCZEIAGal6ioKgE77HKbt8fDKzBtplnblN_1s83UUoBMQw0y57vVQCJoGjmvRUvlwOxMIAY3G2EWNrnqAGPawIw%3D%3D&request_ab2=0&zoneid=5708417&js_build=iclick-v1.788.7-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=12&pl=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.788.7-auto&navlng=en-US&pnt=0&pnrc=0&bs=1a05f6a7-8d28-44f1-a756-7a6d5edd8940&wasm=1&userId=008053440db24810ef1abf59c6c8ddfb&m=link

139.45.197.242

200 OK

2.3 kB

URL GET HTTP/2
veepteero.com/?rb=66q7yHeSel5FrmFponQpaCvEuCh1Io5h-nQSPR4Dphowf5GMkon_OQiZNwEiTcr2SAKmYdO9003_bwBZIf8xEA8vsKRCSAt3MGZkpQWJoEZTSkgSkpdFGRBHNxcnQuM_lDI5QZ3zkFdE5njKL6KHVaUfA3apxQ6q5a_FS1pJv7iroSupCZEIAGal6ioKgE77HKbt8fDKzBtplnblN_1s83UUoBMQw0y57vVQCJoGjmvRUvlwOxMIAY3G2EWNrnqAGPawIw%3D%3D&request_ab2=0&zoneid=5708417&js_build=iclick-v1.788.7-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=12&pl=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.788.7-auto&navlng=en-US&pnt=0&pnrc=0&bs=1a05f6a7-8d28-44f1-a756-7a6d5edd8940&wasm=1&userId=008053440db24810ef1abf59c6c8ddfb&m=link
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectveepteero.com
Fingerprint13:68:56:48:EC:67:A6:93:BE:E0:36:BC:FA:04:75:6D:6E:D2:C1:91
ValiditySat, 23 Mar 2024 05:18:36 GMT - Fri, 21 Jun 2024 05:18:35 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2337), with no line terminators
Size
2.3 kB (2314 bytes)
Hash
fcbf4f2bb63040b18c819bb7912110f1
c2fbc3721a440f497ab788867728ef275b810444
41c557c032288004f5f419ffeb66c9b7c2976de501133a8acf8f1a73e4089105

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rb=66q7yHeSel5FrmFponQpaCvEuCh1Io5h-nQSPR4Dphowf5GMkon_OQiZNwEiTcr2SAKmYdO9003_bwBZIf8xEA8vsKRCSAt3MGZkpQWJoEZTSkgSkpdFGRBHNxcnQuM_lDI5QZ3zkFdE5njKL6KHVaUfA3apxQ6q5a_FS1pJv7iroSupCZEIAGal6ioKgE77HKbt8fDKzBtplnblN_1s83UUoBMQw0y57vVQCJoGjmvRUvlwOxMIAY3G2EWNrnqAGPawIw%3D%3D&request_ab2=0&zoneid=5708417&js_build=iclick-v1.788.7-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=12&pl=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.788.7-auto&navlng=en-US&pnt=0&pnrc=0&bs=1a05f6a7-8d28-44f1-a756-7a6d5edd8940&wasm=1&userId=008053440db24810ef1abf59c6c8ddfb&m=link HTTP/1.1
Host: veepteero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 13:02:06 GMT
content-type: application/json
x-trace-id: 1e74bb08ad1d9ab14d805df19ec11748
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://videzz.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=008053440db24810ef1abf59c6c8ddfb; expires=Mon, 05 May 2025 13:02:05 GMT; path=/; secure; SameSite=None
oaidts=1714914125; expires=Mon, 05 May 2025 13:02:05 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sun, 12 May 2024 13:02:05 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

bid.bidclickmedia.com/sub/31pnK5n

172.67.205.77

200 OK

234 B

URL GET HTTP/2
bid.bidclickmedia.com/sub/31pnK5n
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text, with no line terminators
Size
234 B (234 bytes)
Hash
f80bebf9471a9840ef5768e8c6b26672
164896726fce06ed3a1b8cbed00ab7c0493b6d24
5367258c378438d9831e9138819e8e68c4b7e6525dde7a086fb82a083398099c

HTTP Headers

GET /sub/31pnK5n HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CozQTTtBcLZp4%2BWyFrCX3E9B4lsmBTmJ2pgiPq3HQL8TmCeJhwC1L4d%2BMkciPv%2BAQ%2BAvayRLPGnH6hRAnniiMAgGMrQIpTPY3m0ceQ9H0H9xy%2FpmM5AuSGo%2FUkIoMvkLScXvsGdUSpo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec361a80b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/close.svg

188.114.97.1

200 OK

1.3 kB

URL GET HTTP/3
cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/close.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
SVG Scalable Vector Graphics image
Size
1.3 kB (1279 bytes)
Hash
24937fd159a21f2e91207d5788e86c70
1b07e0334cc16c5cd659de56314bd2188e3a82f9
b38a482faa1471a520d231f954412ee0293b0401610af1392038be206dc51b8a

HTTP Headers

GET /sb/notifications/gambling/default/android-btn/8/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 13:02:04 GMT
content-type: image/svg+xml
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: W/"65aa8644-4ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 416108
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xnmtCYgs14Uu9ONHU8rQY8fVkdlBA2hAGRFgG48kNXke0FeETeOjkFD5jpvXE1wqJgDtmemR8Oy%2BFOYABj3MDEfU6d3MzCjL27jTUWKlLGYVRwmguvy9zZueiAuTI44QZmXEY76sTb%2Bk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87f0ec3f7ca1712a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

videzz.net/css/embed.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42

78.142.18.54

200 OK

618 kB

URL GET HTTP/2
videzz.net/css/embed.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33
ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT

File type
ASCII text, with very long lines (63495)
Size
618 kB (618399 bytes)
Hash
ffba0e4b3edaa1a4c6bc7ef04bcf0ba9
3507ae56cc30b273cf17d0cf4de234dafa4db0eb
57291457f6bd1dc724ab0cc7d5d9def8fceafc52263d72d0b3f6c6ae2dd8286c

HTTP Headers

GET /css/embed.min.css?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-gf4k2ra2ygab.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 May 2024 13:02:02 GMT
content-type: text/css
last-modified: Sat, 27 Apr 2024 07:30:28 GMT
vary: Accept-Encoding
etag: W/"662ca994-96f9f"
expires: Tue, 04 Jun 2024 12:57:42 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2

myliveforyoudreder.com/vidozza.js

172.67.151.245

200 OK

1.6 kB

URL GET HTTP/2
myliveforyoudreder.com/vidozza.js
IP
172.67.151.245:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectmyliveforyoudreder.com
FingerprintD6:1F:6C:5C:81:FF:C4:D3:4D:C9:A9:22:DD:0B:D4:18:59:4E:58:B7
ValidityWed, 20 Mar 2024 02:24:57 GMT - Tue, 18 Jun 2024 02:24:56 GMT

File type
JavaScript source, ASCII text, with very long lines (1742), with no line terminators
Size
1.6 kB (1615 bytes)
Hash
1b10623dcc365c3e40aa543ee9be6c3d
ee99261cffbbf896eba3c60d867480042fbaadc5
54dec89c60117fd15b96d376c1dba2de2f333009f2ba0847fa71fa0a969f863f

HTTP Headers

GET /vidozza.js HTTP/1.1
Host: myliveforyoudreder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: application/javascript
last-modified: Mon, 24 Oct 2022 14:14:49 GMT
etag: W/"63569dd9-64f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 7164
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EuT2qZSznKJ%2B4sR2zKgPpKpwCQZmc5S%2BLGcH6P76tXbt6ckJtx4Nh27tzFmxmOJeAfwqYl%2FRl9u%2B0FQZ1PzkOSpbv0%2B5KMgVNe92lU6OTQbpTdMhkAiJa7HMxoqPlAzVSzBSjSlIRArZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87f0ec369f1356c4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

downstairsnegotiatebarren.com/sfp.js

188.114.96.1

200 OK

86 kB

URL GET HTTP/3
downstairsnegotiatebarren.com/sfp.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B
ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT

File type

Size
86 kB (85611 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 13:02:04 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 4e3cc6cbb041932c6835b27427baa56c
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sun, 05 May 2024 13:02:04 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vcYAvE9J58uwmQyEoJ3JjDnaQV0Mk1FSuPyw4gqts8ZsGYXp1aruIaixY2yFvpGsLH35N2KiiQ1pfXySPS%2B1qZPNvklhOhhLPbc5TAWNCoYG67fDK4sCpguj9RfHSeqN3wrFSNWNBvGWF1LtJn4udQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87f0ec3c5a77b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_04.jpg

64.210.135.114

200 OK

348 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_04.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JPEG image data, progressive, precision 8, 430x860, components 3
Size
348 kB (347572 bytes)
Hash
9450b6bb0f379e8baf9e380d99fc651a
3d65af2551c9ec8befc0943c1b862b6bd7387305
61bec37bbda973f37f9ecf5646fb1d70ccff1ba39173987fce65dc7953ec6ade

HTTP Headers

GET /P1TGP/Brazzers/Media/Fallback/FreePromo/PC/TGP1/R4_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:11 GMT
content-type: image/jpeg
content-length: 347572
last-modified: Thu, 16 Nov 2023 04:40:58 GMT
etag: "372543fe5-54db4-60a3da03e8a80"
expires: Sun, 24 Mar 2024 09:10:34 GMT
cache-control: max-age=10408785
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
accept-ranges: bytes
x-cdn-diag: ams5-7619-3-8843-h-0-0---;6140-29-12905----0-0-1
X-Firefox-Spdy: h2

videzz.net/js/videojs.stm.5.min.js?0.18986998703047

78.142.18.54

200 OK

7.2 kB

URL GET HTTP/2
videzz.net/js/videojs.stm.5.min.js?0.18986998703047
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33
ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT

File type
JavaScript source, ASCII text, with very long lines (7493), with no line terminators
Size
7.2 kB (7205 bytes)
Hash
559fdbbfb2f700ef277f69b35a097d54
df1d4bf430b37e066e4e3187d621c954d581c160
d30c79b738e33d406468f33a059c11238995e485cad39bb31a721f370baa05c5

HTTP Headers

GET /js/videojs.stm.5.min.js?0.18986998703047 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-gf4k2ra2ygab.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 May 2024 13:02:02 GMT
content-type: application/javascript
last-modified: Sat, 27 Apr 2024 07:30:28 GMT
vary: Accept-Encoding
etag: W/"662ca994-1c25"
expires: Tue, 04 Jun 2024 13:02:02 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: MISS
X-Firefox-Spdy: h2

static.addtoany.com/menu/page.js

172.67.39.148

200 OK

3.0 kB

URL GET HTTP/2
static.addtoany.com/menu/page.js
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
JavaScript source, ASCII text, with very long lines (3132), with no line terminators
Size
3.0 kB (3003 bytes)
Hash
40486591ae8ea6d1423aeb13f1fd509b
f847af56588642de93c6fe0d2ce182303f312455
16a6753a1de5c5602b0ca4afe3d17b95e2cb18d6b79bf7cdccedba3a733c1138

HTTP Headers

GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:02 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=86400, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"e346c2841e4abbb66ee259e9540abb61"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EgezfhqgqVTMRSCdIrsKRfYkTxH%2FPj8LGo%2FZi7bo9fU4bzjrWOUuM%2FuqWdESz21N5bpaJYUt1gOALJJNuyaI4ehXqxRbTvLTpK26n%2FiZMmvypcd9Sxrz%2Bq3mFCmK6Ma%2FchKwisEm"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 17050
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87f0ec312e0e568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bid.bidclickmedia.com/sub/Pj8pz0z

172.67.205.77

200 OK

234 B

URL GET HTTP/2
bid.bidclickmedia.com/sub/Pj8pz0z
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text, with no line terminators
Size
234 B (234 bytes)
Hash
ec45c51dfcbeb0d487d6d2ccf0cd9a23
eadd83e9b3def654d52e1b93ae5f5c13d8a69c99
3a5e0788bab23d00613d25c36fabb29d38bb3e51af54bf370854620392a249ce

HTTP Headers

GET /sub/Pj8pz0z HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r8an45wtUkNa21dcL4KBttNCDiK1oo0RVw5WITHlxHWRuT4p3a7w1XCdwUkk87T4%2BUT3VCxUCUzJ08ESOiPWYLG7IXNUQgi9XeGD924NmxK85xkr9wkft3HzgS0rpsK2DSJQ%2F1jZ2ro%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec360a79b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.addtoany.com/menu/sm.25.html

172.67.39.148

200 OK

716 B

URL GET HTTP/3
static.addtoany.com/menu/sm.25.html
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
HTML document, ASCII text, with very long lines (744), with no line terminators
Size
716 B (716 bytes)
Hash
c3c97893ca5c74e7504aa4ec474ea41b
cdccb12d7e73682e0e807107243ede7d5e14c962
b79f65e9ffe3bad9bd9cdcffed0758430f7eb1a630c368dc173eecdeb2821f00

HTTP Headers

GET /menu/sm.25.html HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KDW4diA%2BEdy8OJCA%2BpLQ3gmSCi7vKsIXChBvTfZhzGq8tW7aSgoBp4ko5y0Wfi66JNOUEgnNTCRlGyJjb1nGdgevGDDRtPFAHoY%2BbgJySZ8EQL4gSUts1vSKtTOhLXaOnaC5J7u8rg4y8pfyPKUkaxP0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 8604
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87f0ec354a2ab517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

xml.zeusadx.com/redirect?feed=552612&auth=OEhoVk&pubid=162319

174.137.133.17

200 OK

0 B

URL GET HTTP/1.1
xml.zeusadx.com/redirect?feed=552612&auth=OEhoVk&pubid=162319
IP
174.137.133.17:443
ASN
#27257 WEBAIR-INTERNET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerSectigo Limited
Subject*.zeusadx.com
FingerprintAA:67:88:35:5F:BC:20:3C:44:9B:00:BD:4F:E1:C0:5F:62:D0:69:C0
ValidityMon, 23 Oct 2023 00:00:00 GMT - Wed, 23 Oct 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect?feed=552612&auth=OEhoVk&pubid=162319 HTTP/1.1
Host: xml.zeusadx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 May 2024 13:02:06 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store

xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319

174.137.133.17

302 Found

1.3 kB

URL GET HTTP/1.1
xml.zeusadx.com/redirect?feed=531847&auth=KhbHhS&pubid=162319
IP
174.137.133.17:443
ASN
#27257 WEBAIR-INTERNET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerSectigo Limited
Subject*.zeusadx.com
FingerprintAA:67:88:35:5F:BC:20:3C:44:9B:00:BD:4F:E1:C0:5F:62:D0:69:C0
ValidityMon, 23 Oct 2023 00:00:00 GMT - Wed, 23 Oct 2024 23:59:59 GMT

File type

Size
1.3 kB (1269 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /redirect?feed=531847&auth=KhbHhS&pubid=162319 HTTP/1.1
Host: xml.zeusadx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bid.bidclickmedia.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx
Date: Sun, 05 May 2024 13:02:04 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store
Location: https://xml-click-oax.adstork.com/nrtb/click?bid=PNsozjkb91qsdNJZR09wFrnoHfpwBwFEPRlc50ksKOc2Flto3nHqp2JRtgRXCs5T_0_42

static2-ma-ht.project1content.com/tour/@one/blocks/async/ImageBlock.9e0ed0d5.js

64.210.135.114

200 OK

5.2 kB

URL GET HTTP/2
static2-ma-ht.project1content.com/tour/@one/blocks/async/ImageBlock.9e0ed0d5.js
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (5353), with no line terminators
Size
5.2 kB (5221 bytes)
Hash
1a73ed0c18086780f0ac9cfa49639cdc
7ec64627ffbedff65077ddf57bd25f39f337df8b
840c01ac8c3f7828f61a80074b339c3fa501243e11b9c9805bbf0333926b7b50

HTTP Headers

GET /tour/@one/blocks/async/ImageBlock.9e0ed0d5.js HTTP/1.1
Host: static2-ma-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:09 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 29 Apr 2024 20:40:22 GMT
etag: W/"3ad79779b-1465-6174243245980"
expires: Fri, 30 Aug 2024 23:10:33 GMT
cache-control: max-age=10574437
content-encoding: gzip
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
x-cdn-diag: ams5-6141-2-49143-h-0-0---;6140-24-12905----0-0-1
X-Firefox-Spdy: h2

bid.bidclickmedia.com/sub/Zj8D76R

172.67.205.77

200 OK

234 B

URL GET HTTP/2
bid.bidclickmedia.com/sub/Zj8D76R
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text, with no line terminators
Size
234 B (234 bytes)
Hash
aa39ce14ee4ef59a81b3b1ccc7c20cfb
4037f87db53a18212b896cbe7dc03404833bd9f4
5e96980309ab1a029fa20a02fb9aca51a5967df4e6ab8aaab5f0373d4ebd4f68

HTTP Headers

GET /sub/Zj8D76R HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mwzp4uB6JObRiWRU1W4lq2Ddxf6v1Z0rXqC4iqyP6JsTIP%2FRVluwlr24vf0ToxaaSmSOO0O0TLPoftfdWteO1Tl4UQ1KgMqDBsnYq04KfkL8LTCjGC43Dez8R%2FDS2d7I4BuvK0iSyZU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec360a7cb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

t.yunaga.xyz/1/?spot_id=5011

104.21.56.136

302 Found

2.2 kB

URL GET HTTP/2
t.yunaga.xyz/1/?spot_id=5011
IP
104.21.56.136:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectyunaga.xyz
Fingerprint23:B7:72:6D:6F:C6:6F:96:9E:1F:5C:29:0F:31:FC:36:7F:1E:84:40
ValidityTue, 19 Mar 2024 23:59:20 GMT - Mon, 17 Jun 2024 23:59:19 GMT

File type

Size
2.2 kB (2188 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1/?spot_id=5011 HTTP/1.1
Host: t.yunaga.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://t.bawixi.xyz/
DNT: 1
Connection: keep-alive
Cookie: _trd_=c34483115ced79; _uqt3157949621=1; _uqp3178561817=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Sun, 05 May 2024 13:02:07 GMT
content-type: text/html
location: https://t7rsx24c5.com/i/3144?nsid=1&partner_subid=2
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pC3uq%2FE5Dvs1BRmYXiXzmMhsRRew%2FElRngJjcqm6xodBZdicMJtPjtUet4qRFiKS7zEjGwulZ4CTKpz7N9GmSGHTk%2F1Jy4X3DWKEZaeBIJvZY7zngQYuboUJHUSeSKI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec4e4a2556bb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bid.bidclickmedia.com/sub/Pj8pz0z

172.67.205.77

200 OK

234 B

URL GET HTTP/2
bid.bidclickmedia.com/sub/Pj8pz0z
IP
172.67.205.77:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbidclickmedia.com
Fingerprint2D:71:60:23:79:D8:E4:4A:B8:81:BA:F0:ED:58:CB:A8:66:21:A7:E7
ValiditySun, 31 Mar 2024 14:28:20 GMT - Sat, 29 Jun 2024 14:28:19 GMT

File type
HTML document, ASCII text, with no line terminators
Size
234 B (234 bytes)
Hash
ec45c51dfcbeb0d487d6d2ccf0cd9a23
eadd83e9b3def654d52e1b93ae5f5c13d8a69c99
3a5e0788bab23d00613d25c36fabb29d38bb3e51af54bf370854620392a249ce

HTTP Headers

GET /sub/Pj8pz0z HTTP/1.1
Host: bid.bidclickmedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qskDT59EsFAsaLCwfPTd%2FAyaHW75QPkWntt5uzQQWP5QSCmFttgtBL3n4%2BenLTn5cSEnJRYEgkFY0oGbluQjW0K0ag7LSpv1m13e7iYiAtrgOc9mQIfycpAsKRCFLzjRYdyoLJMYGFo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec360a7bb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

aistekso.net/401/5708419

139.45.197.244

200 OK

91 kB

URL GET HTTP/2
aistekso.net/401/5708419
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectaistekso.net
Fingerprint3E:A5:CE:35:F4:D9:45:6B:A1:3B:2E:9C:B3:9E:78:4D:8A:4B:51:BB
ValiditySun, 24 Mar 2024 05:08:27 GMT - Sat, 22 Jun 2024 05:08:26 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
91 kB (90806 bytes)
Hash
2a6a89a8c381f9857ce78d4c4e98b0f4
cf8c32435a3f6be48e8ccebaa833fde7f971dc64
a56eebcfcd6bfcad04eafbccf75d33cb6d085168e87ebf1a5a2f8f2c5227c1e2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /401/5708419 HTTP/1.1
Host: aistekso.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 13:02:05 GMT
content-type: application/javascript
x-trace-id: 3b2fa11872d0418d29b9d67b7e2df33b
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=03005363cf954f56ebaa0f058bf3d011; expires=Mon, 05 May 2025 13:02:05 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

dog.seetron.net/api/users/424503?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&sid=e322800e-4aca-4f20-b3cf-d98366f0be01&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908

135.181.208.216

200 OK

674 B

URL GET HTTP/2
dog.seetron.net/api/users/424503?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&sid=e322800e-4aca-4f20-b3cf-d98366f0be01&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908
IP
135.181.208.216:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjecta.bdsmz.tube
FingerprintAA:4D:03:7A:4E:94:8C:76:58:6E:53:CC:8E:99:24:E6:51:84:BF:05
ValidityFri, 03 May 2024 10:27:08 GMT - Thu, 01 Aug 2024 10:27:07 GMT

File type
ASCII text, with very long lines (814), with no line terminators
Size
674 B (674 bytes)
Hash
75f225da882bc8343745b6dbe61b92c2
a378172e64482b4c1776c5a1b91029bdd0c40bfa
abcdc6ef16038d23e3ee1da11fe490ca8eec59f5e3228a64661a169b27448da8

HTTP Headers

GET /api/users/424503?host=videzz.net&ev=212&wh=1024&ww=1280&uuid=&url=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&sid=e322800e-4aca-4f20-b3cf-d98366f0be01&i=1&kw=file%20upload%2Cshare%20files%2Cfree%20upload&s1=174908 HTTP/1.1
Host: dog.seetron.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 13:02:05 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: nauid=OqldtpymHQ6fvsJFDGq2; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
x-robots-tag: noindex, nofollow
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2

videzz.net/js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42

78.142.18.54

200 OK

140 kB

URL GET HTTP/2
videzz.net/js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42
IP
78.142.18.54:443
ASN
#208046 ColocationX Ltd.

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectvidezz.net
Fingerprint89:44:E3:9D:95:DD:6E:D2:2B:FB:70:64:42:59:D2:BF:B6:36:E7:33
ValidityThu, 02 May 2024 00:27:53 GMT - Wed, 31 Jul 2024 00:27:52 GMT

File type

Size
140 kB (140132 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js/footer.static.min.js?v=b8dc06aa6195ca0716d0a0c4e3a76e42 HTTP/1.1
Host: videzz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videzz.net/embed-gf4k2ra2ygab.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 May 2024 13:02:02 GMT
content-type: application/javascript
last-modified: Sat, 27 Apr 2024 07:30:38 GMT
vary: Accept-Encoding
etag: W/"662ca99e-22364"
expires: Tue, 04 Jun 2024 12:57:15 GMT
cache-control: max-age=2592000
content-encoding: gzip
x-cache-status: HIT
X-Firefox-Spdy: h2

static2-ma-ht.project1content.com/tour/main.f95fa135.js

64.210.135.114

200 OK

466 kB

URL GET HTTP/2
static2-ma-ht.project1content.com/tour/main.f95fa135.js
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type

Size
466 kB (465918 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tour/main.f95fa135.js HTTP/1.1
Host: static2-ma-ht.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 13:02:08 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 30 Apr 2024 17:31:32 GMT
etag: W/"3ad7be281-71bfe-61753bda9a500"
expires: Tue, 03 Sep 2024 03:41:27 GMT
cache-control: max-age=10755318
content-encoding: gzip
access-control-max-age: 600
access-control-allow-origin: *
access-control-allow-headers: Content-Type, Origin, Accept, Range, Cache-Control
access-control-allow-methods: HEAD, POST, GET, OPTIONS
access-control-expose-headers: Content-Range, Date, Etag, Cache-Control, Last-Modified
x-cdn-diag: ams5-6139-3-1869-h-0-0---;6140-21-12905----0-0-0
X-Firefox-Spdy: h2

t.yunaga.xyz/1/?spot_id=2561&zone_id=14102_ck_if_

104.21.56.136

302 Found

2.2 kB

URL GET HTTP/2
t.yunaga.xyz/1/?spot_id=2561&zone_id=14102_ck_if_
IP
104.21.56.136:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerGoogle Trust Services LLC
Subjectyunaga.xyz
Fingerprint23:B7:72:6D:6F:C6:6F:96:9E:1F:5C:29:0F:31:FC:36:7F:1E:84:40
ValidityTue, 19 Mar 2024 23:59:20 GMT - Mon, 17 Jun 2024 23:59:19 GMT

File type

Size
2.2 kB (2188 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1/?spot_id=2561&zone_id=14102_ck_if_ HTTP/1.1
Host: t.yunaga.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://t.bawixi.xyz/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Sun, 05 May 2024 13:02:07 GMT
content-type: text/html
location: https://t.yunaga.xyz/1/?spot_id=5011
set-cookie: _trd_=c34483115ced79; Expires=Mon, 05-May-25 13:02:05 GMT; Domain=.yunaga.xyz; Path=/; Secure; SameSite=None
_uqt3157949621=1; Expires=Mon, 06-May-24 00:00:00 GMT; Domain=.yunaga.xyz; Path=/; Secure; SameSite=None
_uqp3178561817=1; Expires=Mon, 06-May-24 00:00:00 GMT; Domain=.yunaga.xyz; Path=/; Secure; SameSite=None
accept-ch: Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cB7DiVCcwvqnriF7lPZc8ahRuMHcx9IhJlSnJJzb4KA4NPGv%2Bja%2BHnMlxza9IiD%2FMIuQ54a4on9ctCW0R2NmTm4O1gfwgjrypb8q4Ux8wLHiDuWPGtMRDQEMX0RudrY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87f0ec4db94c56bb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R1_04.mp4

64.210.135.114

206 Partial Content

204 kB

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R1_04.mp4
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
204 kB (204040 bytes)
Hash
cd866bff5b62159f7c0375086315f777
07b02b822884766d0471cb6425b62262c1767c21
1ee0ce4a9c6ddbe6c444da245b64fdfacbce1d58eae6d2f1b9ace08b2ff3fe9e

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R1_04.mp4 HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
date: Sun, 05 May 2024 13:02:10 GMT
content-type: video/mp4
content-length: 15250224
last-modified: Wed, 13 Mar 2024 13:59:44 GMT
etag: "3aad52663-e8b330-6138b2fd2f400"
expires: Wed, 04 Sep 2024 14:06:25 GMT
cache-control: max-age=10544655
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
content-range: bytes 0-15250223/15250224
x-cdn-diag: ams5-6140-3-29851-e-0-1-200-0.192--;6140-20-12905----0-0-285
X-Firefox-Spdy: h2

static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R3_04.jpg

64.210.135.114

404 Not Found

0 B

URL GET HTTP/2
static-landing-assets.project1content.com/P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R3_04.jpg
IP
64.210.135.114:443
ASN
#30361 SWIFTWILL2

Requested by
https://tgp1.brazzersnetwork.com/tgp1?ad_id=818701_FREE&ats=eyJhIjoxNDksImMiOjQzMDksIm4iOjE0LCJzIjo5MCwiZSI6OTA2NywicCI6MzM5fQ&atc=EXO&atc=FREE_6529744&apb=opc4ASOqlplustddVbbZPPO6eWiyalzqpbXUzOodNU6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOrrostoqlmmm1nujopnluurpoqurqtlolrdrbRpPXLdtrvLrTdttvpTVNrxZTtxTxRm6V2ne0ene2v3evv..3eceof3TT2yqmlnpc6V0rpXSuldK6V0rpXTWTU3TUzT2uc6V0rpXSuldK6V0rpXSuzz4mmztr33qruml2s13mq3p3qmo1oqptcH2A
Certificate
IssuerDigiCert Inc
Subject*.project1content.com
Fingerprint78:F5:B7:12:15:24:D8:58:F2:7B:C5:E7:2C:73:55:9C:B1:14:59:62
ValidityFri, 19 Jan 2024 00:00:00 GMT - Sun, 19 Jan 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /P1TGP/Brazzers/Media/Images/818701_FREE/PC/TGP1/R3_04.jpg HTTP/1.1
Host: static-landing-assets.project1content.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tgp1.brazzersnetwork.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Sun, 05 May 2024 13:02:10 GMT
content-type: text/html
content-length: 213
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
x-cdn-diag: ams5-7846-3-65311-h-0-0---;6140-19-12905----0-0-1
access-control-expose-headers: x-cdn-diag
X-Firefox-Spdy: h2

static.addtoany.com/menu/svg/icons/telegram.js

172.67.39.148

200 OK

360 B

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/telegram.js
IP
172.67.39.148:443
ASN
#13335 CLOUDFLARENET

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
Fingerprint5B:74:98:2D:F8:22:DB:0D:4E:74:B7:99:A7:7C:80:F6:CA:1A:8E:CA
ValidityTue, 23 Apr 2024 07:56:27 GMT - Mon, 22 Jul 2024 07:56:26 GMT

File type
ASCII text, with very long lines (370), with no line terminators
Size
360 B (360 bytes)
Hash
d455b7099e753a3680d5e481a7b56a9d
146fdec3f2e51dabdd15fc8acda6d73823b0d44d
4eb7a6d1a684e68473de0e8854499206b2f512a3815a8114068636dd38aa197a

HTTP Headers

GET /menu/svg/icons/telegram.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 13:02:03 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"fb47b4f6548b6499923a1beed7472419"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VMJGe1UEbwEs5HbBF8m%2BObmMrUHG3OMVxSIiGFVJ0SBsWQtY4ktOVYoKCkEfNMvA2hFAWUXImpgCZn%2FIPhH%2BmAGHYgiMjn5Ua2dPP6e4%2FusvRjDnGR%2Bq0snIiikFzrjU%2FXCNvb6W8C6UnsFjYJvUV0rv"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 10425
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87f0ec398eccb517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.itskiddien.club/?rb=iJM5u_1g63k4EuQRUSaiEOz4aSIfUpEns-RHVpdmI7rbVjV9wo6H7q7gcTYb_zv85mIzEAcVX5M7zI0r__EofNxr_60NA03v8Z-aDTZdkackdFYL7MSJJv2J1IviUwQVyshOT3t72GlbPmS6Q-ctiPcAJ2C5l5T02j-w73U15BiufKHychxxTxFIrWruweAXTMr5EcJRe4p_pJA6RxP8JoIXotj_1CzQubRm6bIoNslpTkAHg3HghwLo7CyGfpvk3HHXjUESzdNkb5nK&request_ab2=0&zoneid=5902452&js_build=iclick-v1.788.7-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=12&pl=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.788.7-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=ca53ba78-f9f1-48cb-b92f-f56b38dca3ba&userId=008053440db24810ef1abf59c6c8ddfb&m=link

139.45.197.236

200 OK

2.4 kB

URL GET HTTP/2
cdn.itskiddien.club/?rb=iJM5u_1g63k4EuQRUSaiEOz4aSIfUpEns-RHVpdmI7rbVjV9wo6H7q7gcTYb_zv85mIzEAcVX5M7zI0r__EofNxr_60NA03v8Z-aDTZdkackdFYL7MSJJv2J1IviUwQVyshOT3t72GlbPmS6Q-ctiPcAJ2C5l5T02j-w73U15BiufKHychxxTxFIrWruweAXTMr5EcJRe4p_pJA6RxP8JoIXotj_1CzQubRm6bIoNslpTkAHg3HghwLo7CyGfpvk3HHXjUESzdNkb5nK&request_ab2=0&zoneid=5902452&js_build=iclick-v1.788.7-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=12&pl=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.788.7-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=ca53ba78-f9f1-48cb-b92f-f56b38dca3ba&userId=008053440db24810ef1abf59c6c8ddfb&m=link
IP
139.45.197.236:443
ASN
#9002 RETN Limited

Requested by
https://videzz.net/embed-gf4k2ra2ygab.html
Certificate
IssuerLet's Encrypt
Subjectitskiddien.club
FingerprintF8:F5:E1:2A:73:41:2E:21:C2:B1:A0:A3:DE:9D:2D:B2:87:3F:8E:5D
ValidityFri, 29 Mar 2024 21:36:27 GMT - Thu, 27 Jun 2024 21:36:26 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2387), with no line terminators
Size
2.4 kB (2364 bytes)
Hash
60cb636708924ad525b5a040adc55e4d
07e6a6d667e674cfaeb4614e5aa45cea86d4735b
2c77526ba193c40dc97774344c138dadfd9b0bc6273051a5045b8823e2c97e17

HTTP Headers

GET /?rb=iJM5u_1g63k4EuQRUSaiEOz4aSIfUpEns-RHVpdmI7rbVjV9wo6H7q7gcTYb_zv85mIzEAcVX5M7zI0r__EofNxr_60NA03v8Z-aDTZdkackdFYL7MSJJv2J1IviUwQVyshOT3t72GlbPmS6Q-ctiPcAJ2C5l5T02j-w73U15BiufKHychxxTxFIrWruweAXTMr5EcJRe4p_pJA6RxP8JoIXotj_1CzQubRm6bIoNslpTkAHg3HghwLo7CyGfpvk3HHXjUESzdNkb5nK&request_ab2=0&zoneid=5902452&js_build=iclick-v1.788.7-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=12&pl=https%3A%2F%2Fvidezz.net%2Fembed-gf4k2ra2ygab.html&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.788.7-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=ca53ba78-f9f1-48cb-b92f-f56b38dca3ba&userId=008053440db24810ef1abf59c6c8ddfb&m=link HTTP/1.1
Host: cdn.itskiddien.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videzz.net/
Origin: https://videzz.net
DNT: 1
Connection: keep-alive
Cookie: OAID=0080536b02084940f5507fe909717117; oaidts=1714914126
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 13:02:06 GMT
content-type: application/json
x-trace-id: 05a0298dda402ae365cea97bf2701a24
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://videzz.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=008053440db24810ef1abf59c6c8ddfb; expires=Mon, 05 May 2025 13:02:06 GMT; path=/; secure; SameSite=None
oaidts=1714914126; expires=Mon, 05 May 2025 13:02:06 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sun, 12 May 2024 13:02:06 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (84)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML