94ero.com/banner/94_pc_banner.jpg
200 OK 114 kB URL GET HTTP/3 94ero.com/banner/94_pc_banner.jpg
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subject94ero.com
Fingerprint44:05:0E:27:19:F9:FA:1A:0A:9A:6C:92:A5:A2:2E:F7:05:75:6E:43
ValiditySat, 06 May 2023 10:23:43 GMT - Fri, 04 Aug 2023 10:23:42 GMT
File type JPEG image data, progressive, precision 8, 1200x350, components 3\012- data
Size 114 kB (114400 bytes)
Hash cc5827eb5ad4cf26e3297646ebe68812
265dae6c01143327275f8e89b74a0cd65d871df4
379397f9efcfa8287e590f00d497ca504e915a2a46a74de87d4447562201fa80
Analyzer Verdict Alert quad9 Sinkholed
GET /banner/94_pc_banner.jpg HTTP/1.1
Host: 94ero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/videos/5105
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:51 GMT
content-type: image/jpeg
content-length: 114400
last-modified: Sun, 07 Aug 2022 08:46:09 GMT
etag: "62ef7bd1-1bee0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=691200
cf-cache-status: HIT
age: 2378
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=azLCT7O3PNnFrsioCVXNDygRAAabPtQp6itz7o3aZ3CPa2Fkw4Xlx14LiRcD8usMJ%2B%2FnwzJmTUB31xzUwpClMXlLI0chwwL%2BTdTWAoOgavcdTq6uc1ecCpcidUE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9337eefb521-OSL
alt-svc: h3=":443"; ma=86400
ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (32058)
Hash c9f5aeeca3ad37bf2aa006139b935f0a
1055018c28ab41087ef9ccefe411606893dabea2
87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de
GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 May 2023 06:56:45 GMT
expires: Wed, 29 May 2024 06:56:45 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 460266
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js
200 OK 555 B URL GET HTTP/2 www.google.com/recaptcha/api.js
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintA8:95:C3:CB:D6:3F:BC:0A:7D:FF:36:72:5E:2F:56:26:9F:EB:77:0E
ValidityFri, 19 May 2023 12:58:13 GMT - Fri, 11 Aug 2023 12:58:12 GMT
File type ASCII text, with very long lines (850), with no line terminators
Hash fbd5eeb900897249ff19788c9934795f
a70760a26cbef3e5cfb627a7d76c9c135382a80f
8d407cd28e2db7a40917117ec99a996194878d452f589860cb45083e6d7208f1
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Sun, 04 Jun 2023 14:47:51 GMT
date: Sun, 04 Jun 2023 14:47:51 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-53263334-5
200 OK 48 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-53263334-5
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type ASCII text, with very long lines (2271)
Hash bdee7ec953a1b3bb7c9719c15ed15371
802bf295a4dd63af71a13435169751fcf68d8a5d
df89e23f0e067300b67bac8bf8582d10e8849a6532a4fed640c2af1816eee2b0
GET /gtag/js?id=UA-53263334-5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Jun 2023 14:47:51 GMT
expires: Sun, 04 Jun 2023 14:47:51 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 48347
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-ZLN9EGDKDC
200 OK 80 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-ZLN9EGDKDC
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type ASCII text, with very long lines (3288)
Hash 6e8f008b90912a45b1667c75792818a6
9c7290ef3b6f86d4d1db819bb383bcd756c2939f
e0643a2104f4967924738da9d25e48e1547f197a30be75030dd68fb174811912
GET /gtag/js?id=G-ZLN9EGDKDC HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Jun 2023 14:47:51 GMT
expires: Sun, 04 Jun 2023 14:47:51 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80484
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-ZLN9EGDKDC&l=dataLayer&cx=c
200 OK 80 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-ZLN9EGDKDC&l=dataLayer&cx=c
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type ASCII text, with very long lines (3288)
Hash a21f2043b852d6a4ffaaad8f8824eb45
b99d45c829c9f060abdd944e59435cdb41a4be81
162c4b6288619980feb0edc6f9df6063df4b83956a822f24d1c0a4d50d3700de
GET /gtag/js?id=G-ZLN9EGDKDC&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Jun 2023 14:47:52 GMT
expires: Sun, 04 Jun 2023 14:47:52 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80503
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
d.line-scdn.net/r/web/social-plugin/js/thirdparty/loader.min.js
200 OK 1.6 kB URL GET HTTP/2 d.line-scdn.net/r/web/social-plugin/js/thirdparty/loader.min.js
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerDigiCert Inc
Subjectline-apps.com
Fingerprint90:52:FA:A5:B0:FA:DC:D7:B9:C9:FF:24:36:83:F5:F9:36:C6:14:09
ValidityWed, 11 Jan 2023 00:00:00 GMT - Thu, 11 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (4730), with no line terminators
Hash 8e50c4d0b7f2c69fe4b07b078876770b
2651708e3d58f1aa0a0ef09e368273804667db2e
9f4fff267e575509a2fab753d83a325fdf8bd3d24eb7c21674a588191ec0599e
GET /r/web/social-plugin/js/thirdparty/loader.min.js HTTP/1.1
Host: d.line-scdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: VOS
content-type: application/javascript
accept-ranges: bytes
last-modified: Tue, 14 Mar 2023 04:54:18 GMT
x-rgw-object-type: Normal
etag: "8e50c4d0b7f2c69fe4b07b078876770b"
x-amz-meta-s3cmd-attrs: md5:8e50c4d0b7f2c69fe4b07b078876770b
x-amz-storage-class: STANDARD
x-amz-request-id: tx00000e171b544daa42cae-00641269b6-122f6ad9-jp2
strict-transport-security: max-age=15768000
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=202324
expires: Tue, 06 Jun 2023 22:59:56 GMT
date: Sun, 04 Jun 2023 14:47:52 GMT
content-length: 1558
X-Firefox-Spdy: h2
94ero.com/fonts/glyphicons-halflings-regular.woff2
200 OK 18 kB URL GET HTTP/3 94ero.com/fonts/glyphicons-halflings-regular.woff2
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subject94ero.com
Fingerprint44:05:0E:27:19:F9:FA:1A:0A:9A:6C:92:A5:A2:2E:F7:05:75:6E:43
ValiditySat, 06 May 2023 10:23:43 GMT - Fri, 04 Aug 2023 10:23:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Hash 448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c
Analyzer Verdict Alert quad9 Sinkholed
GET /fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: 94ero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/css/bootstrap.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/octet-stream
content-length: 18028
last-modified: Fri, 15 Dec 2017 10:05:19 GMT
etag: "5a339e5f-466c"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=691200
cf-cache-status: HIT
age: 2378
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aEd2fQnGgGWEi8bjZ%2FRjLEgIKtFxMTS9qVbcMax7ejE%2BztrNaD4Ca1zWZg1WlpvuTvRNbjRz7uyxsdrmac1JvRA%2FtkukDp6l7HyP9KfkWkPaou0ECTTsEh6HsS4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9370b67b521-OSL
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
200 OK 24 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://94ero.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 04:04:41 GMT
expires: Fri, 31 May 2024 04:04:41 GMT
cache-control: public, max-age=31536000
age: 297791
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
200 OK 13 kB URL GET HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Hash b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://94ero.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 11:49:39 GMT
expires: Fri, 31 May 2024 11:49:39 GMT
cache-control: public, max-age=31536000
age: 269893
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/js-sha256/0.9.0/sha256.min.js
200 OK 3.0 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/js-sha256/0.9.0/sha256.min.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (8830)
Hash e5a5b331cf54c474203628eb9398470e
6d2e5b6a22edb7d95e0ac7523d74f5f7013cb344
7157511697db744d384a5a2a8646af23f3c90560abf93bb240fdd690b29a898a
GET /ajax/libs/js-sha256/0.9.0/sha256.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 2977
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec6-2339"
last-modified: Mon, 04 May 2020 16:11:50 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 6287129
expires: Fri, 24 May 2024 14:47:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lavPJkcN7KCjjVmHMFiLBJ14TuW1VEUe%2FShiFF0CfJ31GdP0NTTnOOyvyaZ4kbAR0Nl0tr%2BGQrszvnAQO8iwUIAWo2KoigFbx%2FzLskRoJXPYamSKykm%2FoN%2B3DJJtjc7rLtyiBLdN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7d20f939c889b50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/peerjs/0.3.14/peer.min.js
200 OK 10 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/peerjs/0.3.14/peer.min.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (32125)
Hash 2fed9b9b444dc84fd04655375d18f7f3
1d5c87c8416531d99f4a6bd9cf55f2f5e663d86d
3a365efcbe0c2038faa00fb4582e01b2aef7e4aea363e3a02093f3c9cbf20294
GET /ajax/libs/peerjs/0.3.14/peer.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 10459
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f88-a497"
last-modified: Mon, 04 May 2020 16:15:04 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 11202174
expires: Fri, 24 May 2024 14:47:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gh3Arh7dCTwYrLKa3DIVXd7aeQK1DO4hpKHQhhAClOLYRepj%2FgaJg40JBXdVn9Yx5F3NK03%2BalXYo3L7kNxbA1JWA4eOZqyWRWszuBGcVKATmZ5omZho27bwzmjvAsLj5GHixHVw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7d20f939c88bb50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
a.bestcontentfood.top/warp/4788325?r=7235
200 OK 14 kB URL GET HTTP/2 a.bestcontentfood.top/warp/4788325?r=7235
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subjectbestcontentfood.top
Fingerprint05:92:DD:1D:C7:55:AF:31:51:3C:D1:A5:AA:95:6F:2A:79:47:3E:38
ValidityWed, 26 Apr 2023 23:31:51 GMT - Tue, 25 Jul 2023 23:31:50 GMT
File type ASCII text, with very long lines (4179), with no line terminators
Hash b1ce09549e24215f80c52ba3b3cc2e22
7315ee4b0dc6cf14cfc78fc2141a735587c3c21b
ebd3e36d4d1bf1e5ffd33bbda2fe9ea5db0b8550141ab0485da1cdd3696c946a
GET /warp/4788325?r=7235 HTTP/1.1
Host: a.bestcontentfood.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript; charset=UTF-8
referer: a.medfoodsafety.com
cache-control: public, max-age=900
etag: W/"b5bfe5efa4321a0b085300dd0d4edb9f"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qXM6CdDn2i6s%2FRl%2FSaZiQp4HKB3Dx7I0tSizU07%2FGOhYXX79KI3K62WZltpbbBlBEE%2BH3DO4oOzXej5CSvs2fUSRQouXY9cG2HpJgZDQVBJ4LlfmoiGUzcafqyRmUXoqgvuBIzB8i%2Fk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20f9377dfd418e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/blueimp-md5/2.10.0/js/md5.min.js
200 OK 1.3 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/blueimp-md5/2.10.0/js/md5.min.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (3730)
Hash b24893215933dafef9a250b4a46a602d
9e95b3d2fad05cd68bbe721bd9fe79e524c47e71
27d221be42096f476245524ecaef8d76d838d5189b16417c79a03ad23763b41f
GET /ajax/libs/blueimp-md5/2.10.0/js/md5.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 1339
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03d8b-eb6"
last-modified: Mon, 04 May 2020 16:06:35 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 28933552
expires: Fri, 24 May 2024 14:47:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qKYTSAU%2FzhDCAWg0LQZ96iEVK7cvhqrkzp4jrQVVnqAWTuTgnnvKJsWmDwNfCFdck%2B7UxJP93ia8xljy3S4hDaJs%2Bu%2FnJcWQfqpVjBI%2BC4obZOko%2FRfZtD0XbNIP2XPH%2B9AHaV1p"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7d20f93a5984b50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery/1.12.4/jquery.min.js
200 OK 30 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/1.12.4/jquery.min.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (32077)
Hash 4f252523d4af0b478c810c2547a63e19
5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb
668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404
GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 30360
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-17b8b"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1609033
expires: Fri, 24 May 2024 14:47:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=51fcO375jD6rDp6NxDD9ViAxLrJUdbp6F2cHXDLkim7MHsdfNBIM3N6btyfp0lfgoSQj5N5VpasMd0%2B4r5blqSc5vFKHTFPGkLwbI3qAMZiKJIVg6myEGhc8%2FQmjVY2yo5kuvsY9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7d20f93a598eb50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jStorage/0.4.12/jstorage.min.js
200 OK 2.5 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jStorage/0.4.12/jstorage.min.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (542)
Hash 0541a99b03ee94c76058b1cd6c513dd6
5d452a217471e82f5dd5e6458a4213adb449570e
2695782169edff0e1140a90841dd0d391b2bab2ee69f2750143d2242328473f6
GET /ajax/libs/jStorage/0.4.12/jstorage.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 2503
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ebe-1e97"
last-modified: Mon, 04 May 2020 16:11:42 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 14832951
expires: Fri, 24 May 2024 14:47:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4YZbgVChAW%2Fjlswq5YeltUKrp%2FhVmnuHyj5wmlmCwbhaGnN55kK2%2FmFPfh2CPNCpni9oyOZS1oi3VpYllkJ1NEqQjp0J%2FuCyJHS8hAkhTiWl10%2FG7aPHyD3wPAnIqWCmYtrOVM82"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7d20f93a6991b50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/video.js/5.20.3/video.min.js
200 OK 44 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/video.js/5.20.3/video.min.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (31992)
Hash f00be214a18463aa5a0170a86d91c053
0f0d3f3e1f5b7eea663b3136cfcf008a10ff16b9
9a5ec16844f854598c750b8fcc04c512598bbe7f5e8d3dbff3bc0a72ffdd3b7b
GET /ajax/libs/video.js/5.20.3/video.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 44324
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb0401e-3d5fb"
last-modified: Mon, 04 May 2020 16:17:34 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 28232304
expires: Fri, 24 May 2024 14:47:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d%2FnRqhfx5Q8At2epOQQmYcbYkqPFSEnjSH2z74HuEMELv4dk9f6qwLC7Jpg1mnA59TY%2FGqN0nKLqfTzcqK2CNEOxmHk4Lg9FDp0h2%2BpWNLoytqKc2bGxp2LRbicqpLUPuvVE59rv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7d20f93a699cb50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/json2/20160511/json2.min.js
200 OK 1.2 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/json2/20160511/json2.min.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (3133)
Hash 17f3b64e625c59c9ca14eb30b54129ab
103a9dee054ca03cbc07b313036a8f73aff4dbb0
16cc395fd6549e525bdf4da2ae41bca4a091c1eac67f1480ac0c36dae1bf4244
GET /ajax/libs/json2/20160511/json2.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 1235
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec8-c63"
last-modified: Mon, 04 May 2020 16:11:52 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1099821
expires: Fri, 24 May 2024 14:47:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gEOdKYr6mFzl1OlXG5V19t2yOlHVucSQBOpar8cgYCXV7hAK30IoBmyy%2BDnzupveLwHJuwI447gChmQbwHt5jjeHpxsNYAj48kyP0biDXU0YojZtr7upAWmK7MOqHODA6lbzeb2w"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7d20f93a69a7b50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
poweredby.jads.co/js/jads.js
301 Moved Permanently 178 B URL GET HTTP/1.1 poweredby.jads.co/js/jads.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 04 Jun 2023 14:47:52 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://avgle.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 11:49:35 GMT
expires: Fri, 31 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 269898
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
poweredby.jads.co/js/jads2.js
200 OK 1.7 kB URL GET HTTP/1.1 poweredby.jads.co/js/jads2.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (3758), with no line terminators
Hash bc8141c4650030c41f6a98026b12ce80
af5618f7e467a207d4c64627be580283ab5640cd
5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51
GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://avgle.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Jun 2023 14:47:53 GMT
Content-Type: application/x-javascript
Last-Modified: Fri, 21 Apr 2023 20:12:17 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"6442ee21-eae"
Content-Encoding: gzip
fonts.googleapis.com/css?family=Open+Sans:400,700
200 OK 851 B URL GET HTTP/3 fonts.googleapis.com/css?family=Open+Sans:400,700
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type gzip compressed data, max compression\012- data
Hash 428203c232d1eb2a19f74721e70fc713
95363b856934e070619eefc57299e06247c88c45
527e63f39bdb5b7022758821b0e38a10e479c68f4fbbe32a6991647f7ae4a69b
GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Jun 2023 14:47:52 GMT
date: Sun, 04 Jun 2023 14:47:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
restroomcalf.com/67/1d/ba/671dbadbf37814e321f252eac8aa2500.js
403 Forbidden 0 B URL GET HTTP/1.1 restroomcalf.com/67/1d/ba/671dbadbf37814e321f252eac8aa2500.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerLet's Encrypt
Subjectrestroomcalf.com
FingerprintA4:E5:0D:D9:A5:B2:C6:2E:4B:90:CA:9A:C1:83:9C:7B:35:9C:2C:E7
ValidityThu, 11 May 2023 06:37:30 GMT - Wed, 09 Aug 2023 06:37:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /67/1d/ba/671dbadbf37814e321f252eac8aa2500.js HTTP/1.1
Host: restroomcalf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: nginx/1.19.5
Date: Sun, 04 Jun 2023 14:47:53 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
avgle.com/templates/frontend/videojs-sublime.css
200 OK 50 kB URL GET HTTP/3 avgle.com/templates/frontend/videojs-sublime.css
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (5246), with no line terminators
Hash 22a5120e65c7521c24dfd7fae55e119b
e6c555398c44dce647600fe6462fa2cbb88237fb
21bef7ffdc525dca19ece56397168946b141d181339885f4d38fe1117886a108
GET /templates/frontend/videojs-sublime.css HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: text/css
cache-control: max-age=5184000
cf-bgj: minify
cf-polished: origSize=7966
etag: W/"5efef354-1f1e"
expires: Sat, 27 May 2023 22:22:32 GMT
last-modified: Fri, 03 Jul 2020 08:59:00 GMT
servedby: n1
cf-cache-status: HIT
age: 4118274
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nJshxs6QkxkG3e2FMCQhZ5ssbiV2%2Bwu61NPbNjy2zqadz90h8zZYTc9csF4zdIyXpWYc1PT3GVGMfFJB3m1xmMKR6giuIXmjt9Mbpj0301sFC5hBI6uzVL%2BETL0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9393aebb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
avgle.com/templates/frontend/bright-blue/fonts/glyphicons-halflings-regular.woff
200 OK 23 kB URL GET HTTP/3 avgle.com/templates/frontend/bright-blue/fonts/glyphicons-halflings-regular.woff
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type Web Open Font Format, TrueType, length 23320, version 1.0\012- data
Hash 68ed1dac06bf0409c18ae7bc62889170
22037a3455914e5662fa51a596677bdb329e2c5c
fc969dc1c6ff531abcf368089dcbaf5775133b0626ff56b52301a059fc0f9e1e
GET /templates/frontend/bright-blue/fonts/glyphicons-halflings-regular.woff HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/templates/frontend/bright-blue/css/bootstrap.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:53 GMT
content-type: application/font-woff
content-length: 23320
last-modified: Fri, 03 Jul 2020 08:59:00 GMT
etag: "5efef354-5b18"
servedby: n3
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2asAG%2BViveWMTsTW8Wuyl9PQSDnPNKiTfv%2BzC%2BtA1S0Q6mYCRx0turOqovkgGQ9MRKzEntDvRXybK4NGRseJX54JkH4X0TSio59oBXwOKHjnundLXvoAgmlVn9E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f93d5966b50f-OSL
alt-svc: h3=":443"; ma=86400
94ero.com/css/v2.min.css?4
200 OK 20 kB URL GET HTTP/3 94ero.com/css/v2.min.css?4
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subject94ero.com
Fingerprint44:05:0E:27:19:F9:FA:1A:0A:9A:6C:92:A5:A2:2E:F7:05:75:6E:43
ValiditySat, 06 May 2023 10:23:43 GMT - Fri, 04 Aug 2023 10:23:42 GMT
File type ASCII text, with very long lines (2609), with no line terminators
Hash 42b1884b490aa02c4dcd437e8bd073ff
b8c672458bb5385a4ac08c903ed7eb006e56c444
ffe3b7f007a7584e16169e89a6fc0031bdf52b6eb6029c8fbccec238e719b483
Analyzer Verdict Alert quad9 Sinkholed
GET /css/v2.min.css?4 HTTP/1.1
Host: 94ero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/videos/5105
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:51 GMT
content-type: text/css
last-modified: Fri, 15 Dec 2017 10:05:19 GMT
etag: W/"5a339e5f-a31"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=691200
cf-cache-status: HIT
age: 2378
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w0uWjk2c2s1qDvBtdF7uc9AKEOfPTi4VuykicppcjdS5tRBJ2Yiy79yeVPwzwYFEgE1Zpvgxtf72A%2FwDG%2BwWSK27%2FKEE%2FXT%2BMyV51IMsj%2BK2Vd7oyg%2BYoBm7AO4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9336ee0b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js
200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (749)
Size 166 kB (166186 bytes)
Hash ee07ba65373413be83ec0d45887c2a44
13646acedb5d781fed2599c46634b4e58b8217db
d946e8f3fb4fe90a5ae3027b91a76703106e2c5c1d762fc3fc230895db7b6048
GET /recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://94ero.com
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166186
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 13:34:38 GMT
expires: Fri, 31 May 2024 13:34:38 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 30 May 2023 00:01:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 263595
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a.medfoodsafety.com/i?tid=d674d17d-333c-4638-982c-264916560953&cf=afhehi00gb
200 OK 60 B URL GET HTTP/3 a.medfoodsafety.com/i?tid=d674d17d-333c-4638-982c-264916560953&cf=afhehi00gb
IP
Requested by https://a.medfoodsafety.com/loader?a=4788326&v=2&t=2&s=4778569&p=10777&if=false&url=https%3A%2F%2F94ero.com%2Fvideos%2F5105&title=94ERO%20%E9%AC%BC%E9%80%9D%E3%81%8D%20-%20%E5%B0%8F%E7%94%B0%E5%88%87%E3%81%82%E3%82%8A%E3%81%95%20Tokyo-Hot%20n1226-
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint90:FD:DB:96:7B:D5:FA:AA:DA:06:53:8B:D3:A1:8D:E4:05:52:DE:5A
ValidityMon, 13 Feb 2023 00:00:00 GMT - Mon, 12 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash cea81d6017b53c6c7bd076407db21a0a
063acf4f87ec5b0c7f9631779c264ee045945c52
1665c0045c0d9a05857431f46362283793d0b844d9e157692079bcbc69ff6154
GET /i?tid=d674d17d-333c-4638-982c-264916560953&cf=afhehi00gb HTTP/1.1
Host: a.medfoodsafety.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.medfoodsafety.com/loader?a=4788326&v=2&t=2&s=4778569&p=10777&if=false&url=https%3A%2F%2F94ero.com%2Fvideos%2F5105&title=94ERO%20%E9%AC%BC%E9%80%9D%E3%81%8D%20-%20%E5%B0%8F%E7%94%B0%E5%88%87%E3%81%82%E3%82%8A%E3%81%95%20Tokyo-Hot%20n1226-
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:53 GMT
content-type: image/gif
content-length: 60
cache-control: no-cache, no-store, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
last-modified: Sun, 17 May 1998 03:00:00 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QPmKSwWZs38VQN3aUzKdQLMj9LUZ2heeNtarsbGgiyLU408v4gHDfiDC6v0hSl2q8wM%2BK4IFHjBidHCP99W3qUZdemxnIRKZo3t%2Bu2zROaxVMiTiczW7qQ%2BIEOc4u2td9Ks4vlBV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20f93d081cbc9d-LHR
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css?family=Montserrat
200 OK 113 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Montserrat
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type gzip compressed data, max compression\012- data
Size 113 kB (112550 bytes)
Hash 84cdf3a0c55ba9517ac830e4bcebe478
c115bc170d2f0de647fe6891c779aa782bf63917
5bf4f0e5d083b29b5f3e07d970525e02539f4a01c88c98f079c971ce7648fbb4
GET /css?family=Montserrat HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Jun 2023 14:47:51 GMT
date: Sun, 04 Jun 2023 14:47:51 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn3.medfoodsafety.com/0f/27/55700/00000280308.gif
200 OK 114 kB URL GET HTTP/3 cdn3.medfoodsafety.com/0f/27/55700/00000280308.gif
IP
Requested by https://a.medfoodsafety.com/loader?a=4788325&v=2&t=3&s=4778569&p=10777&if=false&url=https%3A%2F%2F94ero.com%2Fvideos%2F5105&title=94ERO%20%E9%AC%BC%E9%80%9D%E3%81%8D%20-%20%E5%B0%8F%E7%94%B0%E5%88%87%E3%81%82%E3%82%8A%E3%81%95%20Tokyo-Hot%20n1226-
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint90:FD:DB:96:7B:D5:FA:AA:DA:06:53:8B:D3:A1:8D:E4:05:52:DE:5A
ValidityMon, 13 Feb 2023 00:00:00 GMT - Mon, 12 Feb 2024 23:59:59 GMT
File type GIF image data, version 89a, 160 x 600\012- data
Size 114 kB (114490 bytes)
Hash 7e5912936106e1d1eca4b607b06c331b
868fa6def9f47e48e9a3ac6c5134661008169bc8
d5cce1ee9d2ea34137b552629cc2e1863bf63aca31a02e5267c1410d66bb7dc1
GET /0f/27/55700/00000280308.gif HTTP/1.1
Host: cdn3.medfoodsafety.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.medfoodsafety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:53 GMT
content-type: image/gif
content-length: 114490
last-modified: Thu, 26 Sep 2019 13:08:35 GMT
etag: "7e5912936106e1d1eca4b607b06c331b"
x-amz-server-side-encryption: AES256
x-cache: Hit from cloudfront
via: 1.1 80836ce32819cf946e10c3b85dbce514.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P7
x-amz-cf-id: GcK2p1KTY-1LgChRD5IL3gd3o6ReI3QEO10jyzyVEWoAAQbd7N7R4Q==
age: 2579
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B1Ng5GS2axqiuNS9H4yDpn%2B7D7sNsYDatuzaa8JmfZ0Si3YLaM0fhotkafz4pOgDyiPPbsAXIpILGWDE6Y4IzCsf5akaTmB5Ju%2B%2B4njfZZgwelKaLxOv6uH4oSU78YiA%2B0L8MAd95jmT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f93d183bbc9d-LHR
alt-svc: h3=":443"; ma=86400
static-clst.avgle.com/videos/tmb/5105/default.jpg
404 Not Found 70 B URL GET HTTP/2 static-clst.avgle.com/videos/tmb/5105/default.jpg
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerLet's Encrypt
Subjectstatic-clst.avgle.com
Fingerprint86:49:E0:D3:AF:67:C1:6B:74:B5:F3:33:91:EE:A1:7B:4F:35:90:0F
ValidityFri, 26 May 2023 02:01:45 GMT - Thu, 24 Aug 2023 02:01:44 GMT
File type HTML document, ASCII text, with no line terminators
Hash cb75a4a5436bc5f23fd500aed9ab3ad4
270ba1020384007ebcd50e4985b6a3bbe63f194b
cd08cc3cd7dbd890951754b1e187e2fbe4d68d6a77b2618eb00740a8281c9b56
GET /videos/tmb/5105/default.jpg HTTP/1.1
Host: static-clst.avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sun, 04 Jun 2023 14:47:53 GMT
content-type: text/html; charset=UTF-8
content-length: 70
server: nginx/1.22.1
x-trans-id: tx951390b9c05d484bb71e4-00647ca418
x-openstack-request-id: tx951390b9c05d484bb71e4-00647ca418
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
x-proxy-cache: MISS
access-control-allow-origin: *
X-Firefox-Spdy: h2
avgle.com/images/logo/mini.png
200 OK 10 kB URL GET HTTP/3 avgle.com/images/logo/mini.png
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type PNG image data, 108 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash c0fba083286b5fe758ddd290ee74fb76
4230562598cf5e08edac7ceb4d66f0bd5f43daf5
37ee9ec887ac1af063543c5f3e296673c7fe927612e9a0ba1e4776e295902f7d
GET /images/logo/mini.png HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:53 GMT
content-type: image/png
content-length: 10054
last-modified: Thu, 02 Jul 2020 10:22:07 GMT
etag: "5efdb54f-2746"
expires: Tue, 09 May 2023 09:40:48 GMT
cache-control: max-age=5184000
servedby: n2
cf-cache-status: HIT
age: 626719
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GulgEWmNilebDyL6yCG%2BWcUFWtTzxr5r%2BrHCgQkOpY4yeQU2bUhW4L6qiefeYknF8qonGuR3EFAenxWn0BgPfl5iBVPPfy8sXxYcK4eX8pLUGRDjSLOVssmd4So%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f93f4c44b50f-OSL
alt-svc: h3=":443"; ma=86400
static-clst.avgle.com/videos/tmb21/699604/20.jpg
200 OK 17 kB URL GET HTTP/2 static-clst.avgle.com/videos/tmb21/699604/20.jpg
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerLet's Encrypt
Subjectstatic-clst.avgle.com
Fingerprint86:49:E0:D3:AF:67:C1:6B:74:B5:F3:33:91:EE:A1:7B:4F:35:90:0F
ValidityFri, 26 May 2023 02:01:45 GMT - Thu, 24 Aug 2023 02:01:44 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 320x180, components 3\012- data
Hash b76db26bbf46a047cf0d2233df06636c
69e615492a07f05725f22c147108d3b164427a9a
8a4b5da7d09c1bb4989cb7503c8d68088df9784e6edc8d9cece5448e4e3760fc
GET /videos/tmb21/699604/20.jpg HTTP/1.1
Host: static-clst.avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 14:47:53 GMT
content-type: image/jpeg
content-length: 17378
server: nginx/1.22.0
x-object-meta-mtime: 1662634087.923882031
etag: b76db26bbf46a047cf0d2233df06636c
last-modified: Thu, 08 Sep 2022 10:48:17 GMT
x-timestamp: 1662634096.11971
x-trans-id: tx686de3340ee54b53a34ec-0063a21a67
x-openstack-request-id: tx686de3340ee54b53a34ec-0063a21a67
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 16 Jul 2023 05:47:53 GMT
cache-control: max-age=3596400
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
poweredby.jads.co/js/jads2.js
200 OK 1.7 kB URL GET HTTP/1.1 poweredby.jads.co/js/jads2.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (3758), with no line terminators
Hash bc8141c4650030c41f6a98026b12ce80
af5618f7e467a207d4c64627be580283ab5640cd
5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51
GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://avgle.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Jun 2023 14:47:53 GMT
Content-Type: application/x-javascript
Last-Modified: Fri, 21 Apr 2023 20:12:17 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"6442ee21-eae"
Content-Encoding: gzip
poweredby.jads.co/adshow.php?adzone=731571
200 OK 1.5 kB URL GET HTTP/1.1 poweredby.jads.co/adshow.php?adzone=731571
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (407), with CRLF, LF line terminators
Hash b5336f36ac569a89410945e71e543476
59ece7d07e3aef87a402011f6856442233143d2a
09b68aaa4f25e2a16b3c6e86f604b741c4035778a6f238174f99aa5aa8c71f20
GET /adshow.php?adzone=731571 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Jun 2023 14:47:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=2551fde40c5fd490ab1b96727d772c2c; expires=Mon, 03-Jun-2024 14:47:53 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps30553=1; expires=Mon, 05-Jun-2023 14:47:54 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjcxMzIzMDtpOjE2ODYxNDkyNzM7fQ%3D%3D; expires=Wed, 07-Jun-2023 14:47:53 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Wed, 07-Jun-2023 14:47:53 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
i.jads.co/network/user22416/30553-1544525886-0782517001544525886.gif
200 OK 624 kB URL GET HTTP/2 i.jads.co/network/user22416/30553-1544525886-0782517001544525886.gif
IP
Requested by https://poweredby.jads.co/adshow.php?adzone=731571
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type GIF image data, version 89a, 300 x 250\012- data
Size 624 kB (623682 bytes)
Hash 8fdd44153a82d5e845e5c4433e2af3e7
a26e2fa1ba25c1bd630d5ba4a3e3a84c8fd2e289
67a6e646450f83d315410b58f7ee68dff0e12be3c64892e8b47dfca40f74162e
GET /network/user22416/30553-1544525886-0782517001544525886.gif HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=2551fde40c5fd490ab1b96727d772c2c; imps30553=1; juicy_data_1=YToxOntpOjcxMzIzMDtpOjE2ODYxNDkyNzM7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 14:47:54 GMT
etag: "1544525886"
cache-control: max-age=15424140
content-length: 623682
content-type: image/gif
last-modified: Tue, 11 Dec 2018 10:58:06 GMT
accept-ranges: bytes
x-hw: 1685890074.dop210.sk1.t,1685890074.cds219.sk1.hn,1685890074.cds213.sk1.c
X-Firefox-Spdy: h2
poweredby.jads.co/adshow.php?adzone=675182
200 OK 1.5 kB URL GET HTTP/1.1 poweredby.jads.co/adshow.php?adzone=675182
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (412), with CRLF, LF line terminators
Hash 3f0515c21bd9ad0311475bb7483db7c3
6835004af044de40a4db78015c82618bbdc8ec89
67283168e5685452e2a720954b7883df4a42199ac3c45ce1761a61244438be36
GET /adshow.php?adzone=675182 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Jun 2023 14:47:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=2551fde40c5fd490ab1b96727d772c2c; expires=Mon, 03-Jun-2024 14:47:53 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps29764=1; expires=Mon, 05-Jun-2023 14:47:54 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjY5NjM0ODtpOjE2ODYxNDkyNzM7fQ%3D%3D; expires=Wed, 07-Jun-2023 14:47:53 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Wed, 07-Jun-2023 14:47:53 GMT; Max-Age=259199; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
i.jads.co/network/user22416/29763-1538682381-0894967001538682381.jpg
200 OK 55 kB URL GET HTTP/2 i.jads.co/network/user22416/29763-1538682381-0894967001538682381.jpg
IP
Requested by https://poweredby.jads.co/adshow.php?adzone=675182
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=250, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=300], baseline, precision 8, 300x250, components 3\012- data
Hash c3348fbaa05f8e7e87c6852295108c29
6c34181d01614498abee447e37c765e7e0b614fa
801475bc7efdfb518e6e583539f7f2e75707e3ba043d9d0d27e1e682cb96c860
GET /network/user22416/29763-1538682381-0894967001538682381.jpg HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=2551fde40c5fd490ab1b96727d772c2c; imps30553=1; juicy_data_1=YToxOntpOjY5NjM0ODtpOjE2ODYxNDkyNzM7fQ%3D%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; imps29764=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 14:47:54 GMT
etag: "1538682381"
cache-control: max-age=14829141
content-length: 55399
content-type: image/jpeg
last-modified: Thu, 04 Oct 2018 19:46:21 GMT
accept-ranges: bytes
x-hw: 1685890074.dop210.sk1.t,1685890074.cds219.sk1.hn,1685890074.cds240.sk1.c
X-Firefox-Spdy: h2
avgle.com/templates/frontend/videojs-thumbnails.css
200 OK 676 B URL GET HTTP/3 avgle.com/templates/frontend/videojs-thumbnails.css
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (501), with no line terminators
Hash 9590cdd1412aaf6e548b67541db19632
9746806c20c62de65592f002b896d8c127730b84
3f3f1c989b05ef80d94769943eef3ab2176fab0647ff59d1fdad09f7ef3ea668
GET /templates/frontend/videojs-thumbnails.css HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: text/css
cache-control: max-age=5184000
cf-bgj: minify
cf-polished: origSize=874
etag: W/"5efef354-36a"
expires: Sat, 27 May 2023 22:22:32 GMT
last-modified: Fri, 03 Jul 2020 08:59:00 GMT
servedby: n2
cf-cache-status: HIT
age: 626486
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UEEkebYFKCMmxFfMUj%2F1tvHVZEQAcUO%2BPTHXCSTQ2s9OYdN7IFoItVG0lAYIW2hJ1xwFAe4v7nJCcALHgq2aBO1a87GTb8VJQpdF%2FUrdPlZUhKvWWW1EIXtkg7w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9393aeeb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
social-plugins.line.me/widget/share?url=https%3A%2F%2F94ero.com%2Fline%2F5105&buttonType=share-e&lang=zh_Hant&type=share&id=0&origin=https%3A%2F%2F94ero.com%2Fvideos%2F5105&title=94ERO%20%E9%AC%BC%E9%80%9D%E3%81%8D%20-%20%E5%B0%8F%E7%94%B0%E5%88%87%E3%81%82%E3%82%8A%E3%81%95%20Tokyo-Hot%20n1226-&env=REAL
801 B URL social-plugins.line.me/widget/share?url=https%3A%2F%2F94ero.com%2Fline%2F5105&buttonType=share-e&lang=zh_Hant&type=share&id=0&origin=https%3A%2F%2F94ero.com%2Fvideos%2F5105&title=94ERO%20%E9%AC%BC%E9%80%9D%E3%81%8D%20-%20%E5%B0%8F%E7%94%B0%E5%88%87%E3%81%82%E3%82%8A%E3%81%95%20Tokyo-Hot%20n1226-&env=REAL
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 18be7c9c54bf8d7261496dce27418216
d9148bc9f088e63dda26eaf5103f3c0fa017448d
957eab0ebcc5a53d9cdbac21e038910cd719242ce2dbd1571da75b5715f1f8b6
GET /widget/share?url=https%3A%2F%2F94ero.com%2Fline%2F5105&buttonType=share-e&lang=zh_Hant&type=share&id=0&origin=https%3A%2F%2F94ero.com%2Fvideos%2F5105&title=94ERO%20%E9%AC%BC%E9%80%9D%E3%81%8D%20-%20%E5%B0%8F%E7%94%B0%E5%88%87%E3%81%82%E3%82%8A%E3%81%95%20Tokyo-Hot%20n1226-&env=REAL HTTP/1.1
Host: social-plugins.line.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: Sun, 04 Jun 2023 14:48:07 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 04 Jun 2023 14:48:07 GMT
Content-Length: 801
Connection: keep-alive
Vary: Accept-Encoding
94ero.com/css/bootstrap.min.css
200 OK 121 kB URL GET HTTP/3 94ero.com/css/bootstrap.min.css
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subject94ero.com
Fingerprint44:05:0E:27:19:F9:FA:1A:0A:9A:6C:92:A5:A2:2E:F7:05:75:6E:43
ValiditySat, 06 May 2023 10:23:43 GMT - Fri, 04 Aug 2023 10:23:42 GMT
File type ASCII text, with very long lines (65371)
Size 121 kB (121200 bytes)
Hash ec3bb52a00e176a7181d454dffaea219
6527d8bf3e1e9368bab8c7b60f56bc01fa3afd68
f75e846cc83bd11432f4b1e21a45f31bc85283d11d372f7b19accd1bf6a2635c
Analyzer Verdict Alert quad9 Sinkholed
GET /css/bootstrap.min.css HTTP/1.1
Host: 94ero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/videos/5105
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:51 GMT
content-type: text/css
last-modified: Fri, 15 Dec 2017 10:05:19 GMT
etag: W/"5a339e5f-1d970"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=691200
cf-cache-status: HIT
age: 2379
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lRec5U24Bm5ZEz30YvzypRjDNKHjVONnSwqcUJQ8bIl%2BwXpSEi%2FPGD0kVbg0JOjEOCIWKvzexIxMfZRZq0rrIC0OCuUMn2lKI7jhR7wG%2BeE4Z6R2ZZ6Qv6WpnxM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9335edcb521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
img.94ero.com/images/6/2086.jpg
0 B URL GET img.94ero.com/images/6/2086.jpg
IP
Requested by https://94ero.com/videos/5105
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /images/6/2086.jpg HTTP/1.1
Host: img.94ero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
avgle.com/templates/frontend/videojs-title-bar.css
200 OK 1.0 kB URL GET HTTP/3 avgle.com/templates/frontend/videojs-title-bar.css
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (1041), with no line terminators
Hash 1d3a5d9e04721e8a92a3d13a30ebffca
fe8536de77e1d758d05120b49c684565c5ed25a1
92f2819cdefa4f8988d3fd1ccefa22c88ccbbfa180fcf6746c8e7a45910b0c0f
GET /templates/frontend/videojs-title-bar.css HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: text/css
cache-control: max-age=5184000
cf-bgj: minify
cf-polished: origSize=1138
etag: W/"5efef354-472"
expires: Sun, 23 Jul 2023 23:04:42 GMT
last-modified: Fri, 03 Jul 2020 08:59:00 GMT
servedby: n3
cf-cache-status: HIT
age: 624963
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G%2Bh4r3y7KW0S%2FAzXczXAkhZ1O3%2BQuqF%2BdhPB6m8WYAPfPRDXVuwx%2BbIt0gqXcSU%2Bc%2Bgnwhxt73aNcjPK2zLos2BYa74quzOJjUSJDDsuoFZaOolKbAHuGKB08rU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9393afbb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
a.medfoodsafety.com/loader?a=4788325&v=2&t=3&s=4778569&p=10777&if=false&url=https%3A%2F%2F94ero.com%2Fvideos%2F5105&title=94ERO%20%E9%AC%BC%E9%80%9D%E3%81%8D%20-%20%E5%B0%8F%E7%94%B0%E5%88%87%E3%81%82%E3%82%8A%E3%81%95%20Tokyo-Hot%20n1226-
200 OK 724 B URL GET HTTP/2 a.medfoodsafety.com/loader?a=4788325&v=2&t=3&s=4778569&p=10777&if=false&url=https%3A%2F%2F94ero.com%2Fvideos%2F5105&title=94ERO%20%E9%AC%BC%E9%80%9D%E3%81%8D%20-%20%E5%B0%8F%E7%94%B0%E5%88%87%E3%81%82%E3%82%8A%E3%81%95%20Tokyo-Hot%20n1226-
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint90:FD:DB:96:7B:D5:FA:AA:DA:06:53:8B:D3:A1:8D:E4:05:52:DE:5A
ValidityMon, 13 Feb 2023 00:00:00 GMT - Mon, 12 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (749), with no line terminators
Hash 24082533b91c860fcebc94bdf13e30b0
8f2fb33664937511f082c13d6281f473ca87f5e8
f331f4488c0c0163b4f78336bf9a537c001b23803062906c42d2808b0e2dcb30
GET /loader?a=4788325&v=2&t=3&s=4778569&p=10777&if=false&url=https%3A%2F%2F94ero.com%2Fvideos%2F5105&title=94ERO%20%E9%AC%BC%E9%80%9D%E3%81%8D%20-%20%E5%B0%8F%E7%94%B0%E5%88%87%E3%81%82%E3%82%8A%E3%81%95%20Tokyo-Hot%20n1226- HTTP/1.1
Host: a.medfoodsafety.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
last-modified: Sun, 17 May 1998 03:00:00 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h0o%2BYiQCHRB0QZy92ifBCUi4yeF4fnKeqf2Vvx%2Bjr8TCokO6bgigBfZdoPR2mOMtLqP059bxcoJ9j4XCpB43Ki3yUZIOv3RZ5GlDinYiW9xROlpMqswX6IpUWuhM944B0f771dwY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20f93ab9a6491f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
avgle.com/templates/frontend/videojs-related-carousel.css
200 OK 3.3 kB URL GET HTTP/3 avgle.com/templates/frontend/videojs-related-carousel.css
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (3328), with no line terminators
Hash 07ff3564540094e82033024e78608bb3
3590e75d151ec781b24dac69d07d4f1be11fd354
862b374fa5f5430cdf72d1b69a921766de64f8ba19255615ce97a3a41bf1ecf5
GET /templates/frontend/videojs-related-carousel.css HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: text/css
cache-control: max-age=5184000
cf-bgj: minify
cf-polished: origSize=4015
etag: W/"5efef354-faf"
expires: Wed, 26 Jul 2023 02:22:53 GMT
last-modified: Fri, 03 Jul 2020 08:59:00 GMT
servedby: n2
cf-cache-status: HIT
age: 626486
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xcm62uii77RscyAF%2FWG90iWaqMvLRV9j2tQyLtLnOOPTVMYfyB%2F0a1TzjNUtp3MZSLXICf%2FQegfy8%2BmOthpiRIDl0sNtNKFU5KyQHTI9KLRb%2Brx15prnaUB6enY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9393af4b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
avgle.com/templates/frontend/videojs-logobrand.js
200 OK 689 B URL GET HTTP/3 avgle.com/templates/frontend/videojs-logobrand.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (699), with no line terminators
Hash 35aed60921cd62ccdbf1932172c59cd5
cc6364c7417fcb0f52238bfae9120f4ac6efd60d
f861cc86a1637981a583280df041baf64049dd5c9afecb17d3dedfa863773943
GET /templates/frontend/videojs-logobrand.js HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript
cache-control: max-age=5184000
cf-bgj: minify
cf-polished: origSize=1141
etag: W/"5efef354-475"
expires: Sat, 27 May 2023 16:51:46 GMT
last-modified: Fri, 03 Jul 2020 08:59:00 GMT
servedby: n3
cf-cache-status: HIT
age: 626485
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H1FJUndwjZva1qDvccg6pxD4%2BaBCbB%2FygZKh0UT64sDO6MHC9Yu7jgM%2BhTnqQ2%2FZ1S9i3HVecjR9mWKhy4Soq2vaOi%2B%2FlGq2yEZ2SgNUfhRNH%2F12sU6qt8Lb37o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9397b32b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn3.medfoodsafety.com/b8/d2/76067/00000448451.gif
200 OK 110 kB URL GET HTTP/3 cdn3.medfoodsafety.com/b8/d2/76067/00000448451.gif
IP
Requested by https://a.medfoodsafety.com/loader?a=4788326&v=2&t=2&s=4778569&p=10777&if=false&url=https%3A%2F%2F94ero.com%2Fvideos%2F5105&title=94ERO%20%E9%AC%BC%E9%80%9D%E3%81%8D%20-%20%E5%B0%8F%E7%94%B0%E5%88%87%E3%81%82%E3%82%8A%E3%81%95%20Tokyo-Hot%20n1226-
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint90:FD:DB:96:7B:D5:FA:AA:DA:06:53:8B:D3:A1:8D:E4:05:52:DE:5A
ValidityMon, 13 Feb 2023 00:00:00 GMT - Mon, 12 Feb 2024 23:59:59 GMT
File type GIF image data, version 89a, 728 x 90\012- data
Size 110 kB (109607 bytes)
Hash 4cbb6e113054043ad9c28dedc2e2ccb9
26efe597e252a4651ebded862ff077b3029f0943
05b4a396cf59e400c59c53e5ac37cf63f256a00ffaae9d56e9791cd9740534a4
GET /b8/d2/76067/00000448451.gif HTTP/1.1
Host: cdn3.medfoodsafety.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.medfoodsafety.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:53 GMT
content-type: image/gif
content-length: 109607
last-modified: Wed, 18 Nov 2020 21:02:43 GMT
etag: "4cbb6e113054043ad9c28dedc2e2ccb9"
x-amz-server-side-encryption: AES256
x-cache: Hit from cloudfront
via: 1.1 6b044dd2ae76c466251b3be8f6ece716.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P7
x-amz-cf-id: Ri19mDNt27fC4G400KfnVSydtYvcke2qK7xAv3lZyKtnAvprp8ZZQg==
age: 6043
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7wxxdOOyfLoQjh0aCDbkXozKimH3G2FwDDnE1%2FccyeXPT319hUgfE%2Bxh3Ge%2B5y6z8Wg%2F2SxhilrP1F3qI%2FcVqtZKb3V7VxobTOhLSecl%2F8%2F1HUs5QGnVBmafi2yePjLe0sJ8rHpluJmu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f93d1838bc9d-LHR
alt-svc: h3=":443"; ma=86400
img.94ero.com/images/4/145924.jpg
0 B URL GET img.94ero.com/images/4/145924.jpg
IP
Requested by https://94ero.com/videos/5105
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /images/4/145924.jpg HTTP/1.1
Host: img.94ero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
avgle.com/templates/frontend/videojs-logobrand.css
200 OK 330 B URL GET HTTP/3 avgle.com/templates/frontend/videojs-logobrand.css
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (330), with no line terminators
Hash aafb637d1f0fe13cd345d07ff04513bc
0745dc7af1d5c64ce779aead3d713b742ab927aa
a1930765ea0ae0a0434c993bcd452233f9035552d065a5cfdeebacf982c7c965
GET /templates/frontend/videojs-logobrand.css HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: text/css
cache-control: max-age=5184000
cf-bgj: minify
cf-polished: origSize=375
etag: W/"5efef354-177"
expires: Tue, 09 May 2023 09:40:37 GMT
last-modified: Fri, 03 Jul 2020 08:59:00 GMT
servedby: n1
cf-cache-status: HIT
age: 774260
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SojrynCHmGP%2B6FjMWJ7X2MiSdLUddrg9IibCLMlC2baWjMOM9zVnjYe5pbYwiuUj7qVXkUjXJ%2BlYFptAr4PhGSPw%2B87OGbsf0w8DAeBBbeB2sOEtQXtdAMg4%2Bi8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9393aefb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
avgle.com/templates/frontend/videojs-thumbnails.js
200 OK 4.2 kB URL GET HTTP/3 avgle.com/templates/frontend/videojs-thumbnails.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (4224), with no line terminators
Hash 205a3ea974544be27aaa538a653118d1
7e8751b3e82cb204553e415083d60fc105864b91
26102a5e97078d1956ff8758c72e1cd42ff44b3de1c30593527e9db3778c6b65
GET /templates/frontend/videojs-thumbnails.js HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript
cache-control: max-age=5184000
cf-bgj: minify
cf-polished: origSize=6919
etag: W/"619384ca-1b07"
expires: Sat, 08 Jul 2023 08:51:58 GMT
last-modified: Tue, 16 Nov 2021 10:15:38 GMT
servedby: n3
cf-cache-status: HIT
age: 627006
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3RNTOk3bnmLPWq1gp1EZO03V6XJn%2BneYGOGpJngw8zb0M%2BmzTzv4CW5mCH5Nqy%2BynGkjyam0h%2FyKh5PI%2FLl8O3oe5gw8KqyKvQb%2BTTWNbGT65a7v62rS13%2Fy2hM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9397b37b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
avgle.com/templates/frontend/p2p.js?7
200 OK 11 kB URL GET HTTP/3 avgle.com/templates/frontend/p2p.js?7
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (718)
Hash 137d62c7dbb218480c5b29e9ed96dd98
d79cc5a3ef49fa71f5f027e073df5a9cb007ac87
b25162bd3f750934884bc28ff332579dc7a1f8e214d3d320417e2f497a21d2da
GET /templates/frontend/p2p.js?7 HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript
cache-control: max-age=5184000
cf-bgj: minify
cf-polished: origSize=19877
etag: W/"5efef354-4da5"
expires: Mon, 22 May 2023 13:04:28 GMT
last-modified: Fri, 03 Jul 2020 08:59:00 GMT
servedby: n3
cf-cache-status: HIT
age: 627006
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=51iQykPD8BatJ3MEiwx2KAd0FaSdjDJroSowSNdiE1L46goVu5IUmkbnOmYwxAqQPRPTDdekW0E%2F2JuHhpt7sa0vQOoNYfa8dG63A1LRaRixQVtMuKrGllgbQPg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9397b39b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
94ero.com/images/twitter-50.png
403 Forbidden 5.7 kB URL GET HTTP/3 94ero.com/images/twitter-50.png
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subject94ero.com
Fingerprint44:05:0E:27:19:F9:FA:1A:0A:9A:6C:92:A5:A2:2E:F7:05:75:6E:43
ValiditySat, 06 May 2023 10:23:43 GMT - Fri, 04 Aug 2023 10:23:42 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5960), with no line terminators
Hash fadedf96d79d4cb4bc551735146e934c
2ec6917106fd7869131fe1964a9f96d36eaceda4
2a96259804cf695340cdda44032dac7efd7bfdcf2611341d12b71ce102ef32f3
Analyzer Verdict Alert quad9 Sinkholed
GET /images/twitter-50.png HTTP/1.1
Host: 94ero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/videos/5105
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sun, 04 Jun 2023 14:47:51 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3P8v8ty4oXnDIUKXQkU5VQ0QaxFhB78D%2Bw8pM6SFLFC2jOINYe2xlTzo1zforBvIEqSzOXKLBeH8Z0RmhBLQiKYzUGB9%2Bt8MYrMTG0%2F650wUOKU4TsEoqPH5VG8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9338f11b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
avgle.com/embed/d0de89b38ff408f49f39
200 OK 18 kB URL GET HTTP/2 avgle.com/embed/d0de89b38ff408f49f39
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/d0de89b38ff408f49f39 HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.14
set-cookie: AVS=9f7e589e39439e825960eac7af3d4b3b; path=/
cross-origin-opener-policy: unsafe-none
cross-origin-embedder-policy: unsafe-none
cache-control: public, s-maxage=1800
servedby: n2
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=esdxnUF18kFIyxcMWNaGyLQ%2B2lwCXlSz5a9yWdRSWkaI4la1WN4KiEFLl2fTtF%2FgZ%2B7pVF7gdAbvIgqAZH%2BUNKFW3iM7GciRUwn7RyNSUGKl5LnVFkb835%2FN8J0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f936eed1b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
94ero.com/images/facebook-50.png
403 Forbidden 5.7 kB URL GET HTTP/3 94ero.com/images/facebook-50.png
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subject94ero.com
Fingerprint44:05:0E:27:19:F9:FA:1A:0A:9A:6C:92:A5:A2:2E:F7:05:75:6E:43
ValiditySat, 06 May 2023 10:23:43 GMT - Fri, 04 Aug 2023 10:23:42 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5961), with no line terminators
Hash 8ee7f30cc9ff79d8a6591600c9078fe0
49cc43fe1adcb777f3029c5cac1ab920ff81958d
2b7d9232f354f0246269fee8367ec196a0b23ae8091442d660e9f26a421d3c07
Analyzer Verdict Alert quad9 Sinkholed
GET /images/facebook-50.png HTTP/1.1
Host: 94ero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/videos/5105
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D4tGPfU8eqSVElMnwKcm0PV2XndhHxPNqFDA6ikRL9DV3ki8e%2BZrGHwaCEnORovKkDv2EIpDCKT1IzHGAOpkntfOu%2FFs%2BKKjO7Bjx9sLLXIr8KdOP1PBgQWZpZc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f937dc57b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
avgle.com/templates/frontend/avgle-main-ah.js?1adb22b9e3e25afef29803a9c42d0e42&2
200 OK 227 kB URL GET HTTP/3 avgle.com/templates/frontend/avgle-main-ah.js?1adb22b9e3e25afef29803a9c42d0e42&2
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 227 kB (227030 bytes)
Hash b7952283f537b9a002e8cd2e38fc5486
9487f495632c178d66ce44c0b00cca497fa7fd97
f364041985d552e87aa9e203a0b508d66c78cc455f7c697bf38100931204b1fd
GET /templates/frontend/avgle-main-ah.js?1adb22b9e3e25afef29803a9c42d0e42&2 HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript
cache-control: max-age=5184000
cf-bgj: minify
etag: W/"647c9fef-376d6"
expires: Thu, 03 Aug 2023 14:45:00 GMT
last-modified: Sun, 04 Jun 2023 14:30:07 GMT
servedby: n2
cf-cache-status: HIT
age: 168
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C8JYukwDeFr7T%2FPgGAeJDQXwv2zP9FQU0RX4Chg2%2B0CpTjYCvIOJQHZ0kvnwAuPOPTNZLD6WvEd2%2BNiD9sdGFJYsOTWGfdx25zk5XRBhPJRdZ9LOYzBz%2B75TMzY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9397b38b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
avgle.com/templates/frontend/bright-blue/promise.min.js
200 OK 2.7 kB URL GET HTTP/3 avgle.com/templates/frontend/bright-blue/promise.min.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (2690), with no line terminators
Hash a8891abc86c93c60b41c631aec8fdcf0
8bacef21eda409a7b19c20acdba3248fbff53944
3db30556ed20e9c3cbc24b9d6aaf4cda939387cd3251d7fce784e1b247de9314
GET /templates/frontend/bright-blue/promise.min.js HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript
last-modified: Fri, 03 Jul 2020 08:59:00 GMT
etag: W/"5efef354-a5c"
expires: Sat, 27 May 2023 15:18:43 GMT
cache-control: max-age=5184000
servedby: n1
cf-cache-status: HIT
age: 1417071
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Lx%2BEflvKTtrscRxAnJ%2B9tFzXZz9J3aCMblnFD393pt77J%2BEWoM2URFU9Pla0cfBTRwlW3e8uuCV4PaKXAr6NEfNeneTNAffqladKiubYlArbAz%2F92lEeXYJ98xA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9397b3ab50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css?family=Lato
200 OK 717 B URL GET HTTP/2 fonts.googleapis.com/css?family=Lato
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (733), with no line terminators
Hash 16ba8948c8e7043c4500e44355b8571c
8fd190ff02fca3c0f3b1ce3fe652d1fd5a0759cb
ed7af898d89a9c54d7df66b914e6e7dd8b7a88757c358675aa17b9fba0731f72
GET /css?family=Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Jun 2023 14:47:51 GMT
date: Sun, 04 Jun 2023 14:47:51 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
94ero.com/images/facebook-50.png
403 Forbidden 5.7 kB URL GET HTTP/3 94ero.com/images/facebook-50.png
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subject94ero.com
Fingerprint44:05:0E:27:19:F9:FA:1A:0A:9A:6C:92:A5:A2:2E:F7:05:75:6E:43
ValiditySat, 06 May 2023 10:23:43 GMT - Fri, 04 Aug 2023 10:23:42 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5961), with no line terminators
Hash 2af495637f1af61bdfe0b63b99d956e3
749f8425868721dbaefd1c90d9745a93c8c0cfff
e61a0612476bf72f441e9d2cc335f5bcd96f4d8cbe33f6605e2bb19bc8bf4238
Analyzer Verdict Alert quad9 Sinkholed
GET /images/facebook-50.png HTTP/1.1
Host: 94ero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/videos/5105
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sun, 04 Jun 2023 14:47:51 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bvflKZkw58EVuUy5RSzXA2LzIYX5SRNav3UkKLMVKz%2F%2BTEvBYUAtMk6MGLYLuTQmxsbsDqMoUcLj0Zl%2BYu%2BwVX1molgh1YwRYQoRqITcEXyx1E0CCFxatGCD19c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9338f13b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
avgle.com/avideos.js?1
200 OK 15 kB IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type C source, ASCII text, with very long lines (1010)
Hash fddbec7785269dfe2c4d3b9c6348722d
7a940f8b1a954a6d2b59f2e53e1e43561b7fd303
f0e9b17886358a9569531816d54b8d7c2d8be3dc7ac13df871c62ec82feb1d5d
GET /avideos.js?1 HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript
cache-control: max-age=5184000
cf-bgj: minify
cf-polished: origSize=24680
etag: W/"5efdb54f-6068"
expires: Sun, 28 May 2023 08:31:24 GMT
last-modified: Thu, 02 Jul 2020 10:22:07 GMT
servedby: n1
cf-cache-status: HIT
age: 4118281
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x%2FmQMtUp45Ht%2B7oFSJwXzMhOq17CWe9ieaMqTHRYad4v0sgjNcg06nMK0Yf6kA2D9Xt36%2BBFlThAGIB60cJF2TKElffeBaSGIHkRZCz9GFJXlpWPoA4jqWh1C1U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9393af8b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
94ero.com/favicon.ico
404 Not Found 1.1 kB IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subject94ero.com
Fingerprint44:05:0E:27:19:F9:FA:1A:0A:9A:6C:92:A5:A2:2E:F7:05:75:6E:43
ValiditySat, 06 May 2023 10:23:43 GMT - Fri, 04 Aug 2023 10:23:42 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1230), with no line terminators
Hash 3ecd454460b4423e6ae9d65e5f09446d
f77d1e9b901a3ecf319a9d6f3f9109bdf3437d61
55f426c0b6a95897e3ad2fd15ac1f8ae4117f357595c491800189387f37effc9
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: 94ero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/videos/5105
Cookie: _ga_ZLN9EGDKDC=GS1.1.1685890071.1.1.1685890071.0.0.0; _ga=GA1.1.1717645926.1685890072
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Sun, 04 Jun 2023 14:47:53 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.2.0
cache-control: max-age=691200
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oNVLpK34wG5yxoPbQ%2FIkY8mujI6v%2F2vi32wXk0IRqQgt7j3UUuCV16HY2iIjIyTocvKWj%2F6f%2BHYLBWripX5WU3wHua1gmZGAYilSr49SNZCgtrjg68BtxMG0m0c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f93e4d02b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
sp0.baidu.com/9_Q4simg2RQJ8t7jm9iCKT-xh_/s.gif?l=https://94ero.com/videos/5105
200 OK 0 B URL GET HTTP/1.1 sp0.baidu.com/9_Q4simg2RQJ8t7jm9iCKT-xh_/s.gif?l=https://94ero.com/videos/5105
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by https://94ero.com/videos/5105
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint48:6A:ED:D1:68:52:E5:97:4F:A0:92:46:B3:3C:56:46:3D:D9:9C:D5
ValidityTue, 05 Jul 2022 05:16:02 GMT - Sun, 06 Aug 2023 05:16:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /9_Q4simg2RQJ8t7jm9iCKT-xh_/s.gif?l=https://94ero.com/videos/5105 HTTP/1.1
Host: sp0.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Sun, 04 Jun 2023 14:47:56 GMT
cdnjs.cloudflare.com/ajax/libs/video.js/5.20.3/video-js.min.css
200 OK 39 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/video.js/5.20.3/video-js.min.css
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (39368), with no line terminators
Hash f0efa69b01f044b768ab790c31e66946
cac19c918dd97a438bddcce913ad3b02dccc5490
9b967a69371e3af4e63c91981001d84776d23811a57f5c9c6b3a96b6c2da9310
GET /ajax/libs/video.js/5.20.3/video-js.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: text/css; charset=utf-8
content-length: 12020
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb0401e-99c8"
last-modified: Mon, 04 May 2020 16:17:34 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 502820
expires: Fri, 24 May 2024 14:47:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DIMO3X5Syh3WUfZolnARxIuLBIjbyNhMb%2FoN0LyRTebKbFdTL%2B9kYXBNXRnAmliJjSeMyfSuOQkC8gaLp5fgOD33fU0%2Ff4sYD3AWKKe%2BIaAKzAlwUVKhGmtoAeVFpqqWwkvSOAxZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7d20f939b886b50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
avgle.com/templates/frontend/videojs-resolution-switcher.js
200 OK 7.6 kB URL GET HTTP/3 avgle.com/templates/frontend/videojs-resolution-switcher.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (7644), with no line terminators
Hash 68ec1decf260756300504ae46aed1f38
fb6f42c7889c707bb452005160245a370191236f
c4c43a39d177b82a3124f238ae8ddc2c9b2a42b2a09c5ef067f30618ef322742
GET /templates/frontend/videojs-resolution-switcher.js HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript
cache-control: max-age=5184000
cf-bgj: minify
cf-polished: origSize=14463
etag: W/"5efef354-387f"
expires: Mon, 22 May 2023 12:59:19 GMT
last-modified: Fri, 03 Jul 2020 08:59:00 GMT
servedby: n3
cf-cache-status: HIT
age: 627006
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T9WT1HPvnCKzC%2BtHpk1kEDmYq1g20n3gApfDT8vQmSse6d6x3befvTHVRf8Y8DmlTtwf58PGt5eT6H39jkLNlUDfi2kPJVrCBd2TvF1mFe0FsvLBCroyIt1CwFY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9396b1db50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
avgle.com/templates/frontend/bright-blue/runtime.js
200 OK 11 kB URL GET HTTP/3 avgle.com/templates/frontend/bright-blue/runtime.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (735)
Hash 44214cd9470e73902e7782d6bc146f39
088b022899f7af7523b92d5f94cc81204ce765ca
27a907c14f7e9d711df093e5811c410a3361aee7cedf7fa21246d6060fcb5b5e
GET /templates/frontend/bright-blue/runtime.js HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript
cache-control: max-age=5184000
cf-bgj: minify
cf-polished: origSize=24254
etag: W/"5efef354-5ebe"
expires: Wed, 07 Jun 2023 09:14:09 GMT
last-modified: Fri, 03 Jul 2020 08:59:00 GMT
servedby: n1
cf-cache-status: HIT
age: 2378653
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PBLg5LXMsi5zBl%2Fm2egTVT%2BXzPooDhmc9qun00Lwoq7UIzV7PrPpBb%2BuU5zXmV5%2BDmsSxKmVbv7odPEe9uBkIRo4B7LEI0KngVRFyqRXzPc0hWPZypcV3qr7INo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9397b3db50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
avgle.com/templates/frontend/videojs-contrib-hls.js?2
200 OK 352 kB URL GET HTTP/3 avgle.com/templates/frontend/videojs-contrib-hls.js?2
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (2196)
Size 352 kB (352173 bytes)
Hash 01fcba0416b07862c2d1b2cb450de7e9
3d38967b24c3183b8cba936be19d2324246fa35c
a782f27c16496209e21cbc8467b1d99f0b99c21d9e6b42ede18ed13474139ff5
GET /templates/frontend/videojs-contrib-hls.js?2 HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript
cache-control: max-age=5184000
cf-bgj: minify
cf-polished: origSize=660717
etag: W/"6315d217-a14ed"
expires: Sun, 02 Jul 2023 10:42:26 GMT
last-modified: Mon, 05 Sep 2022 10:40:23 GMT
servedby: n3
cf-cache-status: HIT
age: 2776763
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xweAwmNv4GCQY1qkJwiTE6pT%2BIpjfqpEvmsJjmc6ykBkG8ZvxYWNTLfpO3MPydxTpH2aOCvENIioBtlMCjgi%2BHO6XxemEuGVazt4zFgrRf%2BJmT%2BOIGLMeBFGo30%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9396b1eb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
avgle.com/templates/frontend/videojs-markers.min.js
200 OK 4.2 kB URL GET HTTP/3 avgle.com/templates/frontend/videojs-markers.min.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (4334), with no line terminators
Hash 9243dfbab32b88ac974f4614cd25d639
c49df6f41864cb095d411d869d56f76c22500ba7
f44cedfe42758249b9e840f2e654853c9be9d6915fb727ec33faa5455a49a442
GET /templates/frontend/videojs-markers.min.js HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript
last-modified: Fri, 03 Jul 2020 08:59:00 GMT
etag: W/"5efef354-1076"
expires: Sun, 28 May 2023 08:31:50 GMT
cache-control: max-age=5184000
servedby: n3
cf-cache-status: HIT
age: 626485
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dFqbTcyD1jJPaKkzaO8pce7dAUKEGJiSgGMzma92TB6ASSMVVn7ViKyxLZTgXZhr%2FHtUQlYnz14zLXyGgKaxQYKveNzKlndSnCZwK7KB6YrnJznGrJUPZBAXZdg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9397b34b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
avgle.com/templates/frontend/videojs-hotkeys.min.js
200 OK 3.7 kB URL GET HTTP/3 avgle.com/templates/frontend/videojs-hotkeys.min.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (3753), with no line terminators
Hash 2fbe761824edf3f58de5efa5dfc4925d
5945bbfa52922086b026dd38b83a75e9d11bb0c8
377571fdc42fd126cca973937765be865b8956da5c9824cf35c90370e6b2fb8a
GET /templates/frontend/videojs-hotkeys.min.js HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript
last-modified: Fri, 03 Jul 2020 08:59:00 GMT
etag: W/"5efef354-e6a"
expires: Thu, 27 Jul 2023 08:34:48 GMT
cache-control: max-age=5184000
servedby: n3
cf-cache-status: HIT
age: 626884
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bJZhZ2fdUObD4pBRdIoqV1eQPM5fWLQiKcmenvoEmQTI3fNNiMf%2BJq4VriaMZ0eE%2FR3WkUN0zionwtQG1TyUO5cy6fBt1fqgs7l7f5%2B%2F7fOGDCxm6XCAp0kWiD4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9397b3eb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
img.94ero.com/images/4/130014.jpg
0 B URL GET img.94ero.com/images/4/130014.jpg
IP
Requested by https://94ero.com/videos/5105
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /images/4/130014.jpg HTTP/1.1
Host: img.94ero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
94ero.com/js/masonry.pkgd.min.js
200 OK 24 kB URL GET HTTP/3 94ero.com/js/masonry.pkgd.min.js
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subject94ero.com
Fingerprint44:05:0E:27:19:F9:FA:1A:0A:9A:6C:92:A5:A2:2E:F7:05:75:6E:43
ValiditySat, 06 May 2023 10:23:43 GMT - Fri, 04 Aug 2023 10:23:42 GMT
File type ASCII text, with very long lines (23946)
Hash d94313c3ca257213d724ac82584b97e5
f3af023348d872519df905d720a9b951663e5cd2
605003a102486058fe8ac757b2c30652b9ac54d6d50df3799bc8cf81537ef66e
Analyzer Verdict Alert quad9 Sinkholed
GET /js/masonry.pkgd.min.js HTTP/1.1
Host: 94ero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/videos/5105
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:51 GMT
content-type: application/javascript
last-modified: Fri, 15 Dec 2017 10:05:19 GMT
etag: W/"5a339e5f-5e12"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=691200
cf-cache-status: HIT
age: 2378
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wmz61m35iVaew7UVnHvgZ96S%2Bl66DU%2FRaEJjAErB4YrIhgbfQGG0vetpK3GsnHDbdRxkW7qDuo4Jg%2F3NYgO2%2B9XOJrAIfyGVfuRvM65%2BjY5N97bwEHiGCDCjBCk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9338f0fb521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
avgle.com/templates/frontend/inferno.js?1adb22b9e3e25afef29803a9c42d0e42&2
200 OK 145 kB URL GET HTTP/3 avgle.com/templates/frontend/inferno.js?1adb22b9e3e25afef29803a9c42d0e42&2
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 145 kB (145219 bytes)
Hash e3ebf888ec628e860aaee51b15f15e34
f425fb0f5ba5dee819897ac0acf4c1e41ea6af00
d80e16ad2961646892f7fdc16f22bb2084366b519ed3fd9006422d8932949662
GET /templates/frontend/inferno.js?1adb22b9e3e25afef29803a9c42d0e42&2 HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript
cache-control: max-age=5184000
cf-bgj: minify
etag: W/"647ca001-23743"
expires: Thu, 03 Aug 2023 14:45:00 GMT
last-modified: Sun, 04 Jun 2023 14:30:25 GMT
servedby: n1
cf-cache-status: HIT
age: 168
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cLzcOW1nfD9QSrS6z8guswWCsxwpi4TvzLqVYjlbf7hClaLIEw%2Bfrp3L%2FTK1YoJXIUWxgnYPu2fK54pInTWB0f9jFfB4b%2FFu0LqxPEhZQ3PeeyNOD6g8AhHLf%2F4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9397b3bb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
zz.bdstatic.com/linksubmit/push.js
200 OK 308 B URL GET HTTP/2 zz.bdstatic.com/linksubmit/push.js
IP
ASN #136958 China Unicom Guangdong IP network
Requested by https://94ero.com/videos/5105
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint48:6A:ED:D1:68:52:E5:97:4F:A0:92:46:B3:3C:56:46:3D:D9:9C:D5
ValidityTue, 05 Jul 2022 05:16:02 GMT - Sun, 06 Aug 2023 05:16:01 GMT
File type ASCII text, with very long lines (322), with no line terminators
Hash a498658e3623a4285649fd750e8e7f17
03f671b76709d9ecadce4a82348c852b6a1d5149
399125132825b666ee5d39bf0849d027d2ca21783be029cb001673f86579dd8a
GET /linksubmit/push.js HTTP/1.1
Host: zz.bdstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: JSP3/2.0.14
date: Sun, 04 Jun 2023 14:47:53 GMT
content-type: application/x-javascript
last-modified: Fri, 30 Dec 2022 21:48:54 GMT
etag: "63af5cc6-134"
cache-control: max-age=86400
content-encoding: br
age: 16793
accept-ranges: bytes
tracecode: 13853390560667914250060218
ohc-global-saved-time: Sun, 04 Jun 2023 10:08:00 GMT
ohc-cache-hit: gz3un62 [2], zhuzuncache58 [2]
ohc-response-time: 1 0 0 0 0 0
X-Firefox-Spdy: h2
avgle.com/templates/frontend/bright-blue/js/bootstrap.min.js
200 OK 32 kB URL GET HTTP/3 avgle.com/templates/frontend/bright-blue/js/bootstrap.min.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (31650)
Hash abda843684d022f3bc22bc83927fe05f
26908395e7a9a4eab607d80aa50a81d65f3017cb
24cc29533598f962823c4229bc280487646a27a42a95257c31de1b9b18f3710f
GET /templates/frontend/bright-blue/js/bootstrap.min.js HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript
last-modified: Fri, 03 Jul 2020 08:59:00 GMT
etag: W/"5efef354-7c4b"
expires: Sun, 28 May 2023 08:31:20 GMT
cache-control: max-age=5184000
servedby: n1
cf-cache-status: HIT
age: 2378653
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J3lR9KEKwBhFH7yKdAz64COO2Uwy5i%2B5FF1t0BIeu5YKtXdQ8ZaB9uuTGAfwEhZxsevi0EDie3DhqJk9%2BfnddHeWZj59DPexacTw%2BoprejQoeJ6gdcPPxio8r5U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9394b01b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
a.medfoodsafety.com/loader?a=4788326&v=2&t=2&s=4778569&p=10777&if=false&url=https%3A%2F%2F94ero.com%2Fvideos%2F5105&title=94ERO%20%E9%AC%BC%E9%80%9D%E3%81%8D%20-%20%E5%B0%8F%E7%94%B0%E5%88%87%E3%81%82%E3%82%8A%E3%81%95%20Tokyo-Hot%20n1226-
200 OK 724 B URL GET HTTP/2 a.medfoodsafety.com/loader?a=4788326&v=2&t=2&s=4778569&p=10777&if=false&url=https%3A%2F%2F94ero.com%2Fvideos%2F5105&title=94ERO%20%E9%AC%BC%E9%80%9D%E3%81%8D%20-%20%E5%B0%8F%E7%94%B0%E5%88%87%E3%81%82%E3%82%8A%E3%81%95%20Tokyo-Hot%20n1226-
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint90:FD:DB:96:7B:D5:FA:AA:DA:06:53:8B:D3:A1:8D:E4:05:52:DE:5A
ValidityMon, 13 Feb 2023 00:00:00 GMT - Mon, 12 Feb 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (749), with no line terminators
Hash 830df90e46daaa1fd8c3ed908c3f1b7c
46c67ceee27100c1e90a193c2ab7ac07039ca079
a9790b243ce3ad9ad5ed5869855745f96cfa9427b9e846bde4d7185fd153e2ca
GET /loader?a=4788326&v=2&t=2&s=4778569&p=10777&if=false&url=https%3A%2F%2F94ero.com%2Fvideos%2F5105&title=94ERO%20%E9%AC%BC%E9%80%9D%E3%81%8D%20-%20%E5%B0%8F%E7%94%B0%E5%88%87%E3%81%82%E3%82%8A%E3%81%95%20Tokyo-Hot%20n1226- HTTP/1.1
Host: a.medfoodsafety.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
last-modified: Sun, 17 May 1998 03:00:00 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9nMkYttrWOh5mgyoLXsf2QWSwI6SbG4z4tk%2BVCUSFlk4Y%2B8ZPQN5eoQix1i4VR1ufZP%2FcVJGnfPGDa9J2Rq2Y%2F2MYQJNYP0vk8QwErI4vtNgiYQnXpZg04ZjQ8yXlzuyVYEa1AxE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20f93ab99e491f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
avgle.com/templates/frontend/videojs-markers.min.css
200 OK 1.0 kB URL GET HTTP/3 avgle.com/templates/frontend/videojs-markers.min.css
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (1022), with no line terminators
Hash 7e198e281dd3a8525915065676bf252c
d1b5587e51862738d8544b0eb5fd0ea5b633f239
cc429cba1d7ddf160f5d5a4f2f33e2bfc08bca5bca860fc30dc9722f8dd93232
GET /templates/frontend/videojs-markers.min.css HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: text/css
last-modified: Fri, 03 Jul 2020 08:59:00 GMT
etag: W/"5efef354-3fe"
expires: Sat, 27 May 2023 18:10:22 GMT
cache-control: max-age=5184000
servedby: n2
cf-cache-status: HIT
age: 626486
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KKvjgtzEiL0zowswh8Z1qW67SKWCWEtBFLpGja8DJ4s3Fp%2FWPCWzmByWVlQ%2FaMdXJU8aK4joi0e6LGJrWF0u9LqsLW46yML%2BN8Q2QP%2B26nx%2BTZ31iN1PWFGols0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9393aecb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
200 OK 23 kB URL User Request GET HTTP/2 IP
Certificate IssuerGoogle Trust Services LLC
Subject94ero.com
Fingerprint44:05:0E:27:19:F9:FA:1A:0A:9A:6C:92:A5:A2:2E:F7:05:75:6E:43
ValiditySat, 06 May 2023 10:23:43 GMT - Fri, 04 Aug 2023 10:23:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /videos/5105 HTTP/1.1
Host: 94ero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 14:47:51 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.2.0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=veV%2BTdLKpR6rAWUiLmiiJVjxJ5pIvxhqU5xpvHWO1FDVwF0Nuz4B2FaARWeUXim%2FN%2FRZcKM%2FtvxwfPzbS6KaaB%2FiN3EWlvGyfjdpEw9QTlq1pRrsfh6JuxVc8gs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20f92b7a6b0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
a.bestcontentfood.top/warp/4788326?r=76935
200 OK 4.2 kB URL GET HTTP/2 a.bestcontentfood.top/warp/4788326?r=76935
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subjectbestcontentfood.top
Fingerprint05:92:DD:1D:C7:55:AF:31:51:3C:D1:A5:AA:95:6F:2A:79:47:3E:38
ValidityWed, 26 Apr 2023 23:31:51 GMT - Tue, 25 Jul 2023 23:31:50 GMT
File type ASCII text, with very long lines (4349), with no line terminators
Hash 29b49a7a1d4ac984ffc5842322e0e68a
95a43fe7ffb8c9921d4c0b342cb8407019bfbb0f
3bfde5e0512de9b6257bb958abca2f15e8d817f9795e981e160af2e13884dd2b
GET /warp/4788326?r=76935 HTTP/1.1
Host: a.bestcontentfood.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript; charset=UTF-8
referer: a.medfoodsafety.com
cache-control: public, max-age=900
etag: W/"b5bfe5efa4321a0b085300dd0d4edb9f"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X7Q4TQDr50coZ%2Fvind59llH1%2FfzjmlPEDeDRwpUg9M2Qkla5GNhIVmpTW5RLRuYguL9BuODHnPyX6Nhu9QVIzE4xlpr5FT1PKX23R1%2BEgX%2BJrPlVmKSbZHFhpvkOYyWKT2wnYFNJsPo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20f9377de9418e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
94ero.com/images/twitter-50.png
403 Forbidden 5.7 kB URL GET HTTP/3 94ero.com/images/twitter-50.png
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subject94ero.com
Fingerprint44:05:0E:27:19:F9:FA:1A:0A:9A:6C:92:A5:A2:2E:F7:05:75:6E:43
ValiditySat, 06 May 2023 10:23:43 GMT - Fri, 04 Aug 2023 10:23:42 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5960), with no line terminators
Hash ff088f66a39fd3fb6fc9ab7a230db308
c888628a1e854e4e9d38f141043f1526b031717f
7cb629e38ed8a38df4b3b4d3957181b4f46cd610c14d285ced27a04eb3f8790c
Analyzer Verdict Alert quad9 Sinkholed
GET /images/twitter-50.png HTTP/1.1
Host: 94ero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/videos/5105
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r4pCAvhcDp8aSGXO63OdAtBxzE2indPC4n5KZDrqDAMgJ7puO%2Fjp2C8xIgb8v8iCYt%2BFJl4WU7yNwa7rtloV4alVs%2B5SiQG1D3haZZtxtIP58S%2FVvTDjl8zr8Rw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f937dc62b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
a.medfoodsafety.com/i?tid=e764d802-bf2f-4b01-b33d-c3ffc17beeef&cf=afhehi00gb
200 OK 60 B URL GET HTTP/3 a.medfoodsafety.com/i?tid=e764d802-bf2f-4b01-b33d-c3ffc17beeef&cf=afhehi00gb
IP
Requested by https://a.medfoodsafety.com/loader?a=4788325&v=2&t=3&s=4778569&p=10777&if=false&url=https%3A%2F%2F94ero.com%2Fvideos%2F5105&title=94ERO%20%E9%AC%BC%E9%80%9D%E3%81%8D%20-%20%E5%B0%8F%E7%94%B0%E5%88%87%E3%81%82%E3%82%8A%E3%81%95%20Tokyo-Hot%20n1226-
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint90:FD:DB:96:7B:D5:FA:AA:DA:06:53:8B:D3:A1:8D:E4:05:52:DE:5A
ValidityMon, 13 Feb 2023 00:00:00 GMT - Mon, 12 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash cea81d6017b53c6c7bd076407db21a0a
063acf4f87ec5b0c7f9631779c264ee045945c52
1665c0045c0d9a05857431f46362283793d0b844d9e157692079bcbc69ff6154
GET /i?tid=e764d802-bf2f-4b01-b33d-c3ffc17beeef&cf=afhehi00gb HTTP/1.1
Host: a.medfoodsafety.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.medfoodsafety.com/loader?a=4788325&v=2&t=3&s=4778569&p=10777&if=false&url=https%3A%2F%2F94ero.com%2Fvideos%2F5105&title=94ERO%20%E9%AC%BC%E9%80%9D%E3%81%8D%20-%20%E5%B0%8F%E7%94%B0%E5%88%87%E3%81%82%E3%82%8A%E3%81%95%20Tokyo-Hot%20n1226-
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:53 GMT
content-type: image/gif
content-length: 60
cache-control: no-cache, no-store, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
last-modified: Sun, 17 May 1998 03:00:00 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H2MSvEq5R8YoRJlNXBxX89OihX5zruqjvBj2THnsFMR5xHpoP02JxYM6xCrnlFjM84j9yACt%2B48S6Oqfv5xD9%2BaYL0vREJ%2FEiYDJbj%2BlLUPC%2BXwwPF7qKUkmHSPi9gI%2Bwx5vt1aq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20f93d0832bc9d-LHR
alt-svc: h3=":443"; ma=86400
94ero.com/css/custom.css?46
200 OK 1.5 kB URL GET HTTP/3 94ero.com/css/custom.css?46
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subject94ero.com
Fingerprint44:05:0E:27:19:F9:FA:1A:0A:9A:6C:92:A5:A2:2E:F7:05:75:6E:43
ValiditySat, 06 May 2023 10:23:43 GMT - Fri, 04 Aug 2023 10:23:42 GMT
File type Unicode text, UTF-8 text, with very long lines (1633), with no line terminators
Hash 62944590a0d8cf064a65e7d8a3e3ced7
055a6a7199d0946cabf38beeb5b0aafb2525d600
73721190e959a1b7a5c4866be4b41a226d6372f0ec356054321a567bf59ca672
Analyzer Verdict Alert quad9 Sinkholed
GET /css/custom.css?46 HTTP/1.1
Host: 94ero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/videos/5105
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:51 GMT
content-type: text/css
last-modified: Fri, 15 Dec 2017 10:05:19 GMT
etag: W/"5a339e5f-5bf"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=691200
cf-cache-status: HIT
age: 2378
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w11igHRd9SsovtDIcU7ti2vTTa55vB5bZPSLL4dLZRhTJz7jwv9bWNRohGrkg14PnCrP413ELFzdr0W%2BAbZ%2BnbFQ1GLuuLM7z5qz8dvPxFjBU9STjqNkCSP%2BpZc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9336ee1b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
img.94ero.com/images/2/125602.jpg
0 B URL GET img.94ero.com/images/2/125602.jpg
IP
Requested by https://94ero.com/videos/5105
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /images/2/125602.jpg HTTP/1.1
Host: img.94ero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
94ero.com/js/bootstrap.min.js
200 OK 37 kB URL GET HTTP/3 94ero.com/js/bootstrap.min.js
IP
Requested by https://94ero.com/videos/5105
Certificate IssuerGoogle Trust Services LLC
Subject94ero.com
Fingerprint44:05:0E:27:19:F9:FA:1A:0A:9A:6C:92:A5:A2:2E:F7:05:75:6E:43
ValiditySat, 06 May 2023 10:23:43 GMT - Fri, 04 Aug 2023 10:23:42 GMT
File type ASCII text, with very long lines (32033)
Hash 5869c96cc8f19086aee625d670d741f9
430a443d74830fe9be26efca431f448c1b3740f9
53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef
Analyzer Verdict Alert quad9 Sinkholed
GET /js/bootstrap.min.js HTTP/1.1
Host: 94ero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://94ero.com/videos/5105
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:51 GMT
content-type: application/javascript
last-modified: Fri, 15 Dec 2017 10:05:19 GMT
etag: W/"5a339e5f-90b5"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=691200
cf-cache-status: HIT
age: 2378
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9kUODi6bMHaw3%2FgUTvUAiL0QjAnmU2TgIPiumR8htS9KDjW2llCWLFVIs2CAwMyX6qdbpgX4UblgVf45RXieKLQEjbtSWqMYePZJmjzcnMIN%2BprxEOR7FGZ9l%2Fs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9336edfb521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
avgle.com/templates/frontend/bright-blue/css/bootstrap.css
200 OK 113 kB URL GET HTTP/3 avgle.com/templates/frontend/bright-blue/css/bootstrap.css
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (65384)
Size 113 kB (113186 bytes)
Hash 24329925a5d2b3c591badde603da2751
d1fc5306235b3eeeb7bc4c11f4cc2e1e1aef97cf
203468a04607fa02e8ef231150cfb805874bd89b03da3f3c92569ace4af22cba
GET /templates/frontend/bright-blue/css/bootstrap.css HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: text/css
cache-control: max-age=5184000
cf-bgj: minify
cf-polished: origSize=137106
etag: W/"5efef354-21792"
expires: Sat, 27 May 2023 17:06:47 GMT
last-modified: Fri, 03 Jul 2020 08:59:00 GMT
servedby: n3
cf-cache-status: HIT
age: 624963
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lvCtSA%2B%2FGQAtxlCXmudo25dt2mwIG6E1biwCphnQBzDMChGbrVJENPKWzvOOv48mYQ3Ve1zYxchmoiMXdv6aMEtw1vuHLlJseKwU6plrjCuoBYEta6fKZVQzNyU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9393afab50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
avgle.com/include/ajax/related_videos.php
200 OK 1.2 kB URL POST HTTP/3 avgle.com/include/ajax/related_videos.php
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type HTML document text\012- troff or preprocessor input, ASCII text, with very long lines (1362), with no line terminators
Hash 62c35db6189cfacf474f1fbb739dee50
61ab084ff8bd7f0141900f65c5db78daf7fe43c4
2bc9af6306d148c54204fd573ba25af4f0b89b2aab0d412530eef988e5647f56
POST /include/ajax/related_videos.php HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 30
Origin: https://avgle.com
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:53 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.14
servedby: n2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rhHcgqFdFjKZPCkvlfnlYYgW7Z1V1tPDstQIli2dKNM1Uy%2FTGrBE%2BDb6avCZAepJ0c0Vdl9697%2F4%2B7dwuPGRJMma5cfakmnBiuhJG%2F4QD%2F4RfqXJF%2F%2BKQY4UBKY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d20f93f4c49b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
avgle.com/templates/frontend/videojs-title-bar.min.js
200 OK 1.5 kB URL GET HTTP/3 avgle.com/templates/frontend/videojs-title-bar.min.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (1594), with no line terminators
Hash 01b8f54f848f292e426ef760e8e37b33
7838b7dbc40e032678caff974ec1f57250587d6d
06d2c9fcb4a6bcdae7cf2b8b972267770f3946ed1296549a5aec014620a4ecb5
GET /templates/frontend/videojs-title-bar.min.js HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript
last-modified: Fri, 03 Jul 2020 08:59:00 GMT
etag: W/"5efef354-608"
expires: Sat, 29 Jul 2023 01:24:05 GMT
cache-control: max-age=5184000
servedby: n1
cf-cache-status: HIT
age: 412104
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hffDqU1Mr3A%2F%2BVlsnbA2qQcBYcCSuAsB0UCfqwNXYUSXQUeH5LSDouQ2%2Bo2LOZrVWEFcU5O8asHq0BGYrMLy2RhgpC1BJy3NxQNSvIU51WwxUErFocP3zmYg88o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9397b35b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
avgle.com/templates/frontend/videojs-related-carousel.js
200 OK 5.2 kB URL GET HTTP/3 avgle.com/templates/frontend/videojs-related-carousel.js
IP
Requested by https://avgle.com/embed/d0de89b38ff408f49f39
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCE:07:3A:72:AF:6A:F1:D6:86:8C:8E:1E:E3:DA:9C:31:EC:40:FA:15
ValidityTue, 12 Jul 2022 00:00:00 GMT - Wed, 12 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (5241), with no line terminators
Hash 711758505936147bb8b5ecff696551df
d39e03de6112d99b13a12ee9696e15255722f9db
7a84b024fa4d526b82aa0985a5535af7986f89e7000b5ebb36ba8df1f60e1e09
GET /templates/frontend/videojs-related-carousel.js HTTP/1.1
Host: avgle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://avgle.com/embed/d0de89b38ff408f49f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 04 Jun 2023 14:47:52 GMT
content-type: application/javascript
cache-control: max-age=5184000
cf-bgj: minify
cf-polished: origSize=7254
etag: W/"5efef354-1c56"
expires: Mon, 29 May 2023 08:30:54 GMT
last-modified: Fri, 03 Jul 2020 08:59:00 GMT
servedby: n1
cf-cache-status: HIT
age: 2495361
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cc6A4VPHZEPYcnXsvmGBwJrMhIprigDZORWSeuPBFJPm9zWZCqc3U6yixTnuwjKWluA2iRu%2BWb%2BjPFDW36rcQBOZkDxIlaI8wwT%2BHiwpWlNBIDzr2xBShlEWLIY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20f9397b30b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
104.21.16.154
142.250.74.72
2.18.172.37
58.254.150.48
185.94.237.64
188.114.96.1
0.0.0.0