504 B IP
ASN #20940 Akamai International B.V.
Hash 404e3e4520c09fcce1358b1a21f6b171
040aa03460f3d7ec6f75cae0bf5a462a4bb9798d
f6fc34acb6b2d60bb37dd5caf92b0988cdd52927d80d1f5e7bc23b7db9e8209a
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F6FC34ACB6B2D60BB37DD5CAF92B0988CDD52927D80D1F5E7BC23B7DB9E8209A"
Last-Modified: Sat, 31 Aug 2024 00:20:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16179
Expires: Sat, 31 Aug 2024 22:32:31 GMT
Date: Sat, 31 Aug 2024 18:02:52 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash 231aa156f55dd8497dca6a2066312be3
741432c8275492eb38bba5d0841685dc4f864fee
f348affacf8e814c579ff56d592287275dcf79e2f55f1d041921833d730d2349
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F348AFFACF8E814C579FF56D592287275DCF79E2F55F1D041921833D730D2349"
Last-Modified: Sat, 31 Aug 2024 02:34:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5918
Expires: Sat, 31 Aug 2024 19:41:30 GMT
Date: Sat, 31 Aug 2024 18:02:52 GMT
Connection: keep-alive
504 B IP
ASN #20940 Akamai International B.V.
Hash 9d2c063731a46a7e1548540195080de0
dd1924ebf7697509a10f3f07604f28f96b4fc498
0d414ed4850119c53fae9ddd19ee1dd95783fd08f7389c3e8ec95215023e298e
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "0D414ED4850119C53FAE9DDD19EE1DD95783FD08F7389C3E8EC95215023E298E"
Last-Modified: Sat, 31 Aug 2024 02:33:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17800
Expires: Sat, 31 Aug 2024 22:59:33 GMT
Date: Sat, 31 Aug 2024 18:02:53 GMT
Connection: keep-alive
GET save-video.net/static/favicon-32x32.png
200 OK 1.2 kB URL GET HTTP/3 save-video.net/static/favicon-32x32.png
IP
Requested by https://save-video.net/eporner-save-video/
Certificate IssuerLet's Encrypt
Subjectsave-video.net
FingerprintA0:0F:E8:6F:D9:D9:0F:31:7F:6F:49:55:2B:94:7A:B6:8C:1E:B2:F2
ValidityWed, 28 Aug 2024 05:15:18 GMT - Tue, 26 Nov 2024 05:15:17 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Hash 78a92b9471866c10cb0ae48f56d8f5e2
c3ecd91104a98f8872497760b2a404552f6e40c0
f328c29a64a5efa43201b9494a2094d6891de23a485b653cd5afdf080cc194f2
GET /static/favicon-32x32.png HTTP/1.1
Host: save-video.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://save-video.net/eporner-save-video/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 31 Aug 2024 18:02:53 GMT
content-type: image/png
content-length: 1202
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: "517b35ebb01b459932836ecae32d403a"
x-robots-tag: nosnippet
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6GZV1Qivt4hGFKTY8TCUYgJ2kCw%2Bje0ajaPSRBwK2X6yhGc2vKTFv8UUVa1nVjoTNaouTqr5btxTJJxXE6uK9WDPFx73VH7mzVFMbqLRDCt2YOqb0nnSIsv3RLUd6xOMVzNMqLvqnK1mYBlG8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 5511
accept-ranges: bytes
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 8bbeef247d98b7d0-AMS
alt-svc: h3=":443"; ma=86400
471 B IP
Hash 59ca38ad802fb1aadf6fe61ff205fe26
1fb7105f89539e9348a56007d25a262f2d9f9e5f
a768fda25c453d9784beffae7403a8c257f4032c60e02e9ed5861fa867c6766f
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 31 Aug 2024 18:02:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
105 kB URL www.googletagmanager.com/gtag/js?id=G-5YSPBPLMNG
IP
File type JavaScript source, ASCII text, with very long lines (5945)
Size 105 kB (104781 bytes)
Hash 6c03d58caf81b4ec0c73ac60206ef7ff
31f3795be840703348265af5e020f27a9492af5b
216ee790375a0730fbfbaf84ff4f0c78018d1912c74000d3f34b18213a756728
GET /gtag/js?id=G-5YSPBPLMNG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 31 Aug 2024 18:02:53 GMT
expires: Sat, 31 Aug 2024 18:02:53 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 104781
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
471 B IP
Hash e1e7985af6edd96afb839671a7502393
2aad8aee9a66fee00955b574a159d0367815e4d7
e86ec88c1fddbccacedbc85768047d0cde32064580298b6c9e6ee05f937ddb57
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 31 Aug 2024 18:02:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
9.7 kB URL anadistil.com/d637a5808da3b2d0074ad2ee023f73bc/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
File type JavaScript source, ASCII text, with very long lines (21684), with no line terminators
Hash 5b983d48e0137224cce90240a3584fa3
f477c2861cf83ef61ff31a0e5315f871152491a3
671bdbf8e71a447fb7699ecdbb6b1bd725750794445b9f9e77e9a4483ba208d8
GET /d637a5808da3b2d0074ad2ee023f73bc/invoke.js HTTP/1.1
Host: anadistil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 31 Aug 2024 18:02:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_BS-151-13=1; expires=Sat, 31 Aug 2024 18:02:54 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: d7bef7beeaee7cb6b214fda27ea766a7
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
16 kB URL anadistil.com/9c/c9/f7/9cc9f7d4ccf853ab286747a5eadb301b.js
IP
ASN #39572 DataWeb Global Group B.V.
File type JavaScript source, ASCII text, with very long lines (44842), with no line terminators
Hash d1f70cf77ee3edf8519ac1fce8d3c536
55779ce427cf34d4d514edb7f513730cdf7acc3f
ac6f78cf53374cc6ddd92d31123b948f77298958eddb8a950306c1a152221fbe
GET /9c/c9/f7/9cc9f7d4ccf853ab286747a5eadb301b.js HTTP/1.1
Host: anadistil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 31 Aug 2024 18:02:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_FEATURES-1829_sb=0; expires=Sat, 31 Aug 2024 18:02:54 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 23a59620954e0ea8284a7ac85cbcf9d4
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
256 B IP
File type gzip compressed data, from Unix
Hash 8c5b680f438dd5a17ca8351185285b7f
f359f00429e26fc14aa3d56ed9a0abdd8b915f39
c9e077d50b01c6a0ecf88a32aec6ee96f68bbfd1bba9065d62b152c04585ac5a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /cdn-cgi/trace HTTP/1.1
Host: 1.1.1.1
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://save-video.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 31 Aug 2024 18:02:54 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 8bbeef27ceb7b4ed-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
POST cloudflareinsights.com/cdn-cgi/rum
204 No Content 0 B URL POST HTTP/2 cloudflareinsights.com/cdn-cgi/rum
IP
Requested by https://save-video.net/eporner-save-video/
Certificate IssuerGoogle Trust Services
Subjectcloudflareinsights.com
FingerprintEB:6E:FA:69:A4:FA:21:AE:59:5E:1B:46:84:BD:81:51:55:62:5B:04
ValiditySat, 06 Jul 2024 05:58:05 GMT - Fri, 04 Oct 2024 05:58:04 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum HTTP/1.1
Host: cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1034
Origin: https://save-video.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sat, 31 Aug 2024 18:02:54 GMT
access-control-allow-origin: https://save-video.net
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 8bbeef2a19841c12-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
GET save-video.net/static/favicon-16x16.png
200 OK 504 B URL GET HTTP/3 save-video.net/static/favicon-16x16.png
IP
Requested by https://save-video.net/eporner-save-video/
Certificate IssuerLet's Encrypt
Subjectsave-video.net
FingerprintA0:0F:E8:6F:D9:D9:0F:31:7F:6F:49:55:2B:94:7A:B6:8C:1E:B2:F2
ValidityWed, 28 Aug 2024 05:15:18 GMT - Tue, 26 Nov 2024 05:15:17 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Hash 1bcc79dbf924c0708f6661660f71ca1c
386bc3f5f0af368124903a8686198e4869feb728
e78ad95a639d716c58599c683e2db691ecb7e4a142954ade960ca46e02ea74f2
GET /static/favicon-16x16.png HTTP/1.1
Host: save-video.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://save-video.net/eporner-save-video/
DNT: 1
Connection: keep-alive
Cookie: _ga_5YSPBPLMNG=GS1.1.1725127373.1.0.1725127373.0.0.0; _ga=GA1.1.1120989835.1725127374; dom3ic8zudi28v8lr6fgphwffqoz0j6c=6713a4c5-a1c0-438c-bb17-519ed8207c66%3A2%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 31 Aug 2024 18:02:54 GMT
content-type: image/png
content-length: 504
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: "69ea02099e42e6a7b140bfa88038e562"
x-robots-tag: nosnippet
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A6FkNOMWLO2yC1rRfp2%2BtU%2FmnAOLg7weSpExbYSJL8VO9DjRBRNpBPKPV542sa8Z8CPJWbnbtwXYzTv5xT936pdxybDnYuNnPSMFHoSBrBd7UMscWExtrKgpIlnDKeHmbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 6516
accept-ranges: bytes
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 8bbeef2ae9a5b7d0-AMS
alt-svc: h3=":443"; ma=86400
GET save-video.net/static/apple-touch-icon.png
200 OK 12 kB URL GET HTTP/3 save-video.net/static/apple-touch-icon.png
IP
Requested by https://save-video.net/eporner-save-video/
Certificate IssuerLet's Encrypt
Subjectsave-video.net
FingerprintA0:0F:E8:6F:D9:D9:0F:31:7F:6F:49:55:2B:94:7A:B6:8C:1E:B2:F2
ValidityWed, 28 Aug 2024 05:15:18 GMT - Tue, 26 Nov 2024 05:15:17 GMT
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Hash 8e859c6a54999b1c71e3b7fde67d883d
8d91eca4e3b5bebb543551ef6548ebe7e86aad72
a7b35f1e9d952b2c18852c0efec82b50fe7e9f7bfaa40d62c0d90f9ce6fed2ce
GET /static/apple-touch-icon.png HTTP/1.1
Host: save-video.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://save-video.net/eporner-save-video/
DNT: 1
Connection: keep-alive
Cookie: _ga_5YSPBPLMNG=GS1.1.1725127373.1.0.1725127373.0.0.0; _ga=GA1.1.1120989835.1725127374; dom3ic8zudi28v8lr6fgphwffqoz0j6c=6713a4c5-a1c0-438c-bb17-519ed8207c66%3A2%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 31 Aug 2024 18:02:54 GMT
content-type: image/png
content-length: 12522
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: "a3a36692c79a33f330efc28b2565fe7a"
x-robots-tag: nosnippet
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oAcB3qiJ1h22kp5w%2FeujD9X8VIgGnUcrAWWEOYWzroZr1wWXqzxf6QT2LMi6BPHhWUJ%2Br1VdknjMB%2Bp7g3JMYKWynXQl5k85w4yVD2zp2oiftGzff5VfpW57JN1YuHhbFEARgS5twA08nRAAdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 1115
accept-ranges: bytes
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 8bbeef2ae9a4b7d0-AMS
alt-svc: h3=":443"; ma=86400
504 B IP
ASN #20940 Akamai International B.V.
Hash 8282cd3f52510112a4ea430da8db1ef6
651d245df8fbd342138e20c96a575246ba56b562
c2209a11022b20ed2c2e4ab9f36e2d8a17a5f6b9aa0674f6d5aaf74cc615f33a
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "C2209A11022B20ED2C2E4AB9F36E2D8A17A5F6B9AA0674F6D5AAF74CC615F33A"
Last-Modified: Fri, 30 Aug 2024 17:01:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13241
Expires: Sat, 31 Aug 2024 21:43:35 GMT
Date: Sat, 31 Aug 2024 18:02:54 GMT
Connection: keep-alive
0 B URL handbagwishesliver.com/watch.1493225614847.js?key=d637a5808da3b2d0074ad2ee023f73bc&kw=%5B%22download%22%2C%22from%22%2C%22eporner%22%2C%22service%22%5D&refer=https%3A%2F%2Fsave-video.net%2Feporner-save-video%2F&tz=0&dev=e&res=14.2071&psid=BS-151-13_1&uuid=6713a4c5-a1c0-438c-bb17-519ed8207c66%3A2%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.1493225614847.js?key=d637a5808da3b2d0074ad2ee023f73bc&kw=%5B%22download%22%2C%22from%22%2C%22eporner%22%2C%22service%22%5D&refer=https%3A%2F%2Fsave-video.net%2Feporner-save-video%2F&tz=0&dev=e&res=14.2071&psid=BS-151-13_1&uuid=6713a4c5-a1c0-438c-bb17-519ed8207c66%3A2%3A1 HTTP/1.1
Host: handbagwishesliver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://save-video.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sat, 31 Aug 2024 18:02:54 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://save-video.net
Access-Control-Allow-Origin: https://save-video.net
Access-Control-Allow-Credentials: true
Location: https://handbagwishesliver.com/watch.1493225614847.js?dev=e&key=d637a5808da3b2d0074ad2ee023f73bc&kw=%5B%22download%22%2C%22from%22%2C%22eporner%22%2C%22service%22%5D&psid=BS-151-13_1&pst=1725127434&refer=https%3A%2F%2Fsave-video.net%2Feporner-save-video%2F&res=14.2071&rmtc=t&shu=87a7b3a105dbbff2299dfb876556a47257574df5d59937e16e5df900aba16293233264f487fec5fc9736587153e4e32dc624931bf0b4720c914a7823a7e872b42170fd652683a91d670d34ed116530eb9117abfd8738c00791250db93f&tz=0&uuid=6713a4c5-a1c0-438c-bb17-519ed8207c66%3A2%3A1
Set-Cookie: u_pl=19560911; expires=Sun, 01 Sep 2024 18:02:54 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.TpsE_Fg4l2g1629Vf2YIRcpoUyTZUi6Ttzhg_9IParg; expires=Sat, 31 Aug 2024 18:03:54 GMT; path=/; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 1419efad5ddd3ac97708e2915b4c7436
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET handbagwishesliver.com/watch.1493225614847.js?dev=e&key=d637a5808da3b2d0074ad2ee023f73bc&kw=%5B%22download%22%2C%22from%22%2C%22eporner%22%2C%22service%22%5D&psid=BS-151-13_1&pst=1725127434&refer=https%3A%2F%2Fsave-video.net%2Feporner-save-video%2F&res=14.2071&rmtc=t&shu=87a7b3a105dbbff2299dfb876556a47257574df5d59937e16e5df900aba16293233264f487fec5fc9736587153e4e32dc624931bf0b4720c914a7823a7e872b42170fd652683a91d670d34ed116530eb9117abfd8738c00791250db93f&tz=0&uuid=6713a4c5-a1c0-438c-bb17-519ed8207c66%3A2%3A1
200 OK 2.0 kB URL GET HTTP/1.1 handbagwishesliver.com/watch.1493225614847.js?dev=e&key=d637a5808da3b2d0074ad2ee023f73bc&kw=%5B%22download%22%2C%22from%22%2C%22eporner%22%2C%22service%22%5D&psid=BS-151-13_1&pst=1725127434&refer=https%3A%2F%2Fsave-video.net%2Feporner-save-video%2F&res=14.2071&rmtc=t&shu=87a7b3a105dbbff2299dfb876556a47257574df5d59937e16e5df900aba16293233264f487fec5fc9736587153e4e32dc624931bf0b4720c914a7823a7e872b42170fd652683a91d670d34ed116530eb9117abfd8738c00791250db93f&tz=0&uuid=6713a4c5-a1c0-438c-bb17-519ed8207c66%3A2%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://save-video.net/eporner-save-video/
Certificate IssuerLet's Encrypt
Subjecthandbagwishesliver.com
FingerprintF1:B3:BE:AA:F0:69:EE:7D:16:72:EC:59:69:08:6F:12:68:64:55:C1
ValidityFri, 30 Aug 2024 15:59:03 GMT - Thu, 28 Nov 2024 15:59:02 GMT
File type JavaScript source, ASCII text, with very long lines (2499)
Hash b0a3fe6fe7f5ba5078cfb0a41d655427
63495c8d06ee49c892e8355ab7a3891e81b87280
b9debd9e4a58c73fbf55cc0ea0273434e38573467f4d73be142070be8197bb6c
GET /watch.1493225614847.js?dev=e&key=d637a5808da3b2d0074ad2ee023f73bc&kw=%5B%22download%22%2C%22from%22%2C%22eporner%22%2C%22service%22%5D&psid=BS-151-13_1&pst=1725127434&refer=https%3A%2F%2Fsave-video.net%2Feporner-save-video%2F&res=14.2071&rmtc=t&shu=87a7b3a105dbbff2299dfb876556a47257574df5d59937e16e5df900aba16293233264f487fec5fc9736587153e4e32dc624931bf0b4720c914a7823a7e872b42170fd652683a91d670d34ed116530eb9117abfd8738c00791250db93f&tz=0&uuid=6713a4c5-a1c0-438c-bb17-519ed8207c66%3A2%3A1 HTTP/1.1
Host: handbagwishesliver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://save-video.net
DNT: 1
Connection: keep-alive
Cookie: u_pl=19560911; ain=eyJhbGciOiJIUzI1NiJ9.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.TpsE_Fg4l2g1629Vf2YIRcpoUyTZUi6Ttzhg_9IParg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 31 Aug 2024 18:02:54 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://save-video.net
Access-Control-Allow-Origin: https://save-video.net
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=6713a4c5-a1c0-438c-bb17-519ed8207c66:2:1; expires=Sat, 07 Sep 2024 18:02:54 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Sun, 01 Sep 2024 18:02:54 GMT; path=/; secure; SameSite=None
uncs=1; expires=Sun, 01 Sep 2024 18:02:54 GMT; path=/; secure; SameSite=None
pdhtkv23=true; expires=Sun, 01 Sep 2024 18:02:54 GMT; path=/; secure; SameSite=None
uncs23=1; expires=Sun, 01 Sep 2024 18:02:54 GMT; path=/; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 7959cea5da7efd7bf215eb5f71334784
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
79 kB URL cdn.cloudimagesb.com/cti/80/c6/99/80c6995878998246b6018519748dc7cd/1708270668.jpg
IP
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.5 (Windows), datetime=2024:02:18 14:58:01], progressive, precision 8, 728x90, components 3
Hash 55ed59e5d7a388b1e733a86d7b654fa4
b3316451e0932734d60d343bb2c3939d5dd3d983
805f37a36d50e7437b87cc31eb8287395f62034b1ba796285c73fd669f74cc4e
GET /cti/80/c6/99/80c6995878998246b6018519748dc7cd/1708270668.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 31 Aug 2024 18:02:55 GMT
content-type: image/jpeg
content-length: 79356
server: nginx/1.21.6
last-modified: Sun, 18 Feb 2024 15:37:56 GMT
etag: "65d22454-135fc"
expires: Mon, 02 Sep 2024 18:02:55 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ds5859
accept-ranges: bytes
X-Firefox-Spdy: h2
GET proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://save-video.net/eporner-save-video/
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 8f298cba3b8832131a1e770bf38b5c67
c27ebf4eb090848dea5ef42eeb113b00c58ca28d
4acc4a15c7c42934a1300f0032ad97ed74b0b75c026ee79b706927a62f31bd0e
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://save-video.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 31 Aug 2024 18:02:54 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://save-video.net
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=6713a4c5-a1c0-438c-bb17-519ed8207c66:2:1; expires=Tue, 29 Aug 2034 18:02:54 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET save-video.net/static/donation-button/black/en.svg
200 OK 2.6 kB URL GET HTTP/3 save-video.net/static/donation-button/black/en.svg
IP
Requested by https://save-video.net/eporner-save-video/
Certificate IssuerLet's Encrypt
Subjectsave-video.net
FingerprintA0:0F:E8:6F:D9:D9:0F:31:7F:6F:49:55:2B:94:7A:B6:8C:1E:B2:F2
ValidityWed, 28 Aug 2024 05:15:18 GMT - Tue, 26 Nov 2024 05:15:17 GMT
File type SVG Scalable Vector Graphics image
Hash c0367de1c1d8b9304f4831d4a1ade84f
2deac7c0a1696f6ce068dbad226dc71c6864b646
bd018bd3aaed070a65b7da1826abb1ad035819caa0e41432a9323eabb1ebca48
GET /static/donation-button/black/en.svg HTTP/1.1
Host: save-video.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://save-video.net/eporner-save-video/
DNT: 1
Connection: keep-alive
Cookie: _ga_5YSPBPLMNG=GS1.1.1725127373.1.0.1725127373.0.0.0; _ga=GA1.1.1120989835.1725127374
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 31 Aug 2024 18:02:54 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"90dcbbc3af8ada7ba01d55d0e274d4fc"
x-robots-tag: nosnippet
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wWDLDAPrgKKo8xpNUBkAZx5wVxjYHRLXb5NG%2Bzogk1F3mNJre05GaIP3RYEwOnyjiRZh%2FJNMuva%2Bjs8IvyDQSy88lUlBkxDrjF5S41x5jCVJvqeiuSv5r6XCY0aTAvhmIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: REVALIDATED
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 8bbeef2918adb7d0-AMS
alt-svc: h3=":443"; ma=86400
172.67.145.7
1.1.1.1
23.36.77.32
35.156.220.253
0.0.0.0