| ocsp.usertrust.com/ |  104.18.38.233 | | 472 B |
IP104.18.38.233:0
Hash781422fd1eb2a8a5de25eca2b26fc9e8 a83ba759902d1358bc71bb544516149f656c40e5 bfbae1fd3b05c2ca21ee41c55410a1dbf85c1c26f0ec2f896608d3cad2add6f5
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 23 May 2024 22:57:00 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 23 May 2024 15:56:47 GMT
Expires: Thu, 30 May 2024 15:56:46 GMT
Etag: "a83ba759902d1358bc71bb544516149f656c40e5"
Cache-Control: max-age=604144,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1393
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8888a47b28fd0b45-OSL
|
|
| sheisnotateacher.com/services/?id=153835 |  193.200.64.24 | | 1.7 kB |
URL sheisnotateacher.com/services/?id=153835 IP193.200.64.24:0 ASN#6681 Giveme Cloud Sp Z O O
File typeJavaScript source, ASCII text, with very long lines (1695), with no line terminators Hash3b79c3335089001c152cee2dbfd4467f 0aa83b2ae028f25f4507e958438330da58640323 ab3bbb475f008fc298a1a6482d04bf668a2efee128b1b3bc54ce9e6a140d6cd8
GET /services/?id=153835 HTTP/1.1
Host: sheisnotateacher.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 May 2024 22:57:00 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1695
Connection: keep-alive
|
|
| imageup.ru/img74/3992483/front8.jpg | 188.114.97.1 | | 8.7 kB |
URL imageup.ru/img74/3992483/front8.jpg IP188.114.97.1:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 200x200, components 3 Hashbe3c29f34b62af74027cf478554b5190 147c72a2b015d4f1cd4ee9e9ab7d77a1276794f6 1323d13d8e3a0920b05f5ef8f4c68b95e8746867a972473d7fa8cd1208085611
GET /img74/3992483/front8.jpg HTTP/1.1
Host: imageup.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 23 May 2024 22:57:00 GMT
content-type: image/jpeg
content-length: 8695
last-modified: Sun, 07 Aug 2022 18:10:59 GMT
expires: Fri, 23 May 2025 22:57:00 GMT
cache-control: no-cache
etag: "62f00033-21f7"
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QM%2F2oSRg%2BnmuUYuc0OwPE9RIT36hqBMqLs5akeNh53yKtN6rX0N8JPuW4ukhOABCzVnRKJbb0KCHW4Aw9vN6mGZtI0aLrjrFhz3Gi1VUDZNjJ6s0SD4Ml9OvNyEa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47b1f340b59-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| kinozal.tv/pic/emty.gif | 188.114.97.1 | | 43 B |
IP188.114.97.1:0
File typeGIF image data, version 89a, 1 x 1 Hash325472601571f31e1bf00674c368d335 2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pic/emty.gif HTTP/1.1
Host: kinozal.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/details.php?id=952945e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:00 GMT
content-type: image/gif
content-length: 43
last-modified: Wed, 16 Mar 2016 21:24:10 GMT
etag: "56e9cefa-2b"
expires: Sat, 22 Jun 2024 22:57:00 GMT
cache-control: max-age=2592000
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=705yEr76515TQeLGKiAWXoV9u4hZeJ3yvSeS3o91GgRWgz6cDu2XXtJj764s7pwoVTuDOQsvvPXMfc93UxeJevy9xZSMxO1PkHzwd2Fl8OwxGspRoEh2Rs0g07K9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47aa82456c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| kinozal.tv/pic/dwn_torrent.gif | 188.114.97.1 | 200 OK | 3.9 kB |
URL GET HTTP/3kinozal.tv/pic/dwn_torrent.gif IP188.114.97.1:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectkinozal.tv FingerprintF9:85:C5:F8:CE:16:DD:B8:C8:52:0B:B0:14:15:F2:65:EC:A2:20:91 ValiditySun, 14 Apr 2024 03:07:58 GMT - Sat, 13 Jul 2024 03:07:57 GMT
File typeGIF image data, version 89a, 200 x 25 Hash4995a90ae740830e2a202483d53a060d 0fabc39797eb72b612598251240d4d9f155c9204 6ced62fc26d7e06a35bcdb4726752248f2b73f0396baef34316b94ccb510301c
GET /pic/dwn_torrent.gif HTTP/1.1
Host: kinozal.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/details.php?id=952945e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:00 GMT
content-type: image/gif
content-length: 3930
last-modified: Tue, 20 Dec 2011 14:16:03 GMT
etag: "4ef098a3-f5a"
expires: Sat, 22 Jun 2024 22:57:00 GMT
cache-control: max-age=2592000
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aUU%2FkzgeBMr9lepWJIAkFVc9TvY3Klsa86wiVSNoKb70%2BAwb4XolbgsSlrKY4Jg7KUv%2B1d%2Fa%2FsPfFvqhFBOwbv7KUWqHMQSV3t6BWocPzGkyPYQtTN8fJFZRJtyX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47aa82b56c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| kinozal.tv/pic/cat/15.gif | 188.114.97.1 | 200 OK | 2.7 kB |
URL GET HTTP/3kinozal.tv/pic/cat/15.gif IP188.114.97.1:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectkinozal.tv FingerprintF9:85:C5:F8:CE:16:DD:B8:C8:52:0B:B0:14:15:F2:65:EC:A2:20:91 ValiditySun, 14 Apr 2024 03:07:58 GMT - Sat, 13 Jul 2024 03:07:57 GMT
File typeGIF image data, version 89a, 90 x 32 Hash49031eb2bed44f92bf539d41dec5f044 d7464387f5a519863043bd348ed9ee70f82fb3e2 c2fab832b6f3319776e87ce875eebdc3e70185bb6cc75ae5484912c36d2e8adb
GET /pic/cat/15.gif HTTP/1.1
Host: kinozal.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/details.php?id=952945e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:00 GMT
content-type: image/gif
content-length: 2657
last-modified: Tue, 20 Dec 2011 14:18:14 GMT
etag: "4ef09926-a61"
expires: Sat, 22 Jun 2024 22:57:00 GMT
cache-control: max-age=2592000
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dnStPPgM2VVZgj796BzSTm0WvkwMVM7xZchVLZwUdqPXhTy98tbvikz2XBp3WNezU8FPxb8bQe%2BClgVuCWp7dDQd34VEwbvpVSAZBINyMMYa2jyFJBK2Y0i3dCK4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47aa82d56c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| images2.imgbox.com/df/63/zGaK2XcZ_o.jpg |  212.63.223.226 | | 29 kB |
URL images2.imgbox.com/df/63/zGaK2XcZ_o.jpg IP212.63.223.226:0 ASN#50827 SpaceDump IT AB
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, description=kinopoisk.ru], baseline, precision 8, 200x268, components 3 Hashb6412485dc52bae5eb2b2f6893bdd888 a32296b672269e8774592d48090dfe08dcdd2ba7 6390ab72f6d6697f3bd36549b25c45c1499b68a0f349117c070b990a1ab440c2
GET /df/63/zGaK2XcZ_o.jpg HTTP/1.1
Host: images2.imgbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
server: nginx/1.14.2
date: Thu, 23 May 2024 22:57:00 GMT
content-type: image/jpeg
content-length: 29302
vary: x-s-token
last-modified: Tue, 13 Jul 2021 16:05:37 GMT
etag: "7276-5c70368955640"
x-cache: HIT
x-whom: srv1535
accept-ranges: bytes
|
|
| kinozal.tv/pic/logo3.gif | 188.114.97.1 | 200 OK | 27 kB |
IP188.114.97.1:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectkinozal.tv FingerprintF9:85:C5:F8:CE:16:DD:B8:C8:52:0B:B0:14:15:F2:65:EC:A2:20:91 ValiditySun, 14 Apr 2024 03:07:58 GMT - Sat, 13 Jul 2024 03:07:57 GMT
File typeGIF image data, version 89a, 413 x 98 Hashee29c663601905ef0065b68a160960f5 3fc2ee8f05e492276278caee968a1c8e6846dde8 b72f7d420f017154b09e1d81d83ab3a0ebdd4aab254be985180c1b2efa562869
GET /pic/logo3.gif HTTP/1.1
Host: kinozal.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/details.php?id=952945e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:00 GMT
content-type: image/gif
content-length: 27428
last-modified: Tue, 20 Dec 2011 14:17:04 GMT
etag: "4ef098e0-6b24"
expires: Sat, 22 Jun 2024 22:57:00 GMT
cache-control: max-age=2592000
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oo99AUrydFkg3E10rL1%2ByzgCSuFAmAcYskiuWCffXKex7LOdnExXTrVrwfbKepq4tZ6wBTDNehUlZ%2BRrdukiaX6cMnmDvBrr9ZqJB%2F5X7jiOr9XdINI%2BjyvAH5ec"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47a982256c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| i3.imageban.ru/out/2016/12/19/3970a632007c22d6435d154bf4e156d9.jpg |  82.146.61.17 | 200 OK | 7.6 kB |
URL GET HTTP/2i3.imageban.ru/out/2016/12/19/3970a632007c22d6435d154bf4e156d9.jpg IP82.146.61.17:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerGlobalSign nv-sa Subject*.imageban.ru FingerprintCB:12:16:F2:20:B4:01:49:C4:B4:8C:9F:62:A2:0E:AE:B2:22:F0:96 ValidityMon, 18 Sep 2023 10:25:55 GMT - Sat, 19 Oct 2024 10:25:54 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 200x223, components 3 Hash690e84481efb3733968eb66a0cc34e58 46d8fc553046d47bdeb8ccb4e80cfb172876558d df7b577906b9a7c436c161d54632af185677b29bf881430e40a5838a6e77a3a9
GET /out/2016/12/19/3970a632007c22d6435d154bf4e156d9.jpg HTTP/1.1
Host: i3.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Thu, 23 May 2024 22:57:00 GMT
content-type: image/jpeg
content-length: 7596
last-modified: Mon, 07 Jun 2021 12:48:54 GMT
etag: "60be15b6-1dac"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| bjiuck.com/dxs71l129ivlmp03y0hq8678qvu/876kypbw.php | 62.76.25.27 | | 27 kB |
URL bjiuck.com/dxs71l129ivlmp03y0hq8678qvu/876kypbw.php IP62.76.25.27:0
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (50460) Hash3f6c7af6b28aaf9942c902fa5b3d0dc6 3a4c0bfbeba4e2b03f4e4742619051804511ee64 54c2698dfd8721e3f8ea54e2b01921a6c81c6e7b6c9b68681e5590e630bae8fa
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /dxs71l129ivlmp03y0hq8678qvu/876kypbw.php HTTP/1.1
Host: bjiuck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Thu, 23 May 2024 22:57:00 GMT
content-type: application/javascript; charset=utf-8
content-length: 27363
last-modified: Tue, 21 May 2024 12:33:29 GMT
etag: "664c9499-6ae3"
content-encoding: gzip
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| kinozal.tv/pic/editorv3.js?v=1.8 | 188.114.97.1 | 200 OK | 2.1 kB |
URL GET HTTP/3kinozal.tv/pic/editorv3.js?v=1.8 IP188.114.97.1:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectkinozal.tv FingerprintF9:85:C5:F8:CE:16:DD:B8:C8:52:0B:B0:14:15:F2:65:EC:A2:20:91 ValiditySun, 14 Apr 2024 03:07:58 GMT - Sat, 13 Jul 2024 03:07:57 GMT
File typeISO-8859 text, with very long lines (331) Hash2af93e9eeb2f455442317448295e9335 28101f8bf25d91a17e6cf25015f24de0f3182ef7 a31ea527b1c84a6cca55f26fc80e72be400680d03a9caefdb014e5d83aa4949c
GET /pic/editorv3.js?v=1.8 HTTP/1.1
Host: kinozal.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/details.php?id=952945e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:00 GMT
content-type: application/javascript
last-modified: Sat, 03 Dec 2022 13:33:15 GMT
etag: W/"638b501b-1af3"
expires: Sat, 22 Jun 2024 22:57:00 GMT
cache-control: max-age=2592000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FsUCm0oOSbEq1MeCsv7LizmoIzfwW9YcItjl%2BvpsBe05amaGd2NWNkKpWY10LJfgJA9ul5HYrpzGqe4%2FCYVLyR7tqZESsWL05ERBKjUFr3FC3yKEZsHq8s0s5xZp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47aa83056c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jsn.24smi.net/smi.js | 104.22.40.74 | 200 OK | 35 kB |
IP104.22.40.74:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintC5:11:EA:DF:22:74:A7:88:5E:76:7C:DD:63:87:55:80:A9:0C:ED:24 ValiditySun, 13 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hash1ab82ef853f3f7ae84e03d9eb89a57cd 8d474e04836523415dbe4435f15f5efb6e11a56d b2525a0f82dce8d0ddb07343aacf23983924d4c0df5ff96dbbee2386fe5d53a7
GET /smi.js HTTP/1.1
Host: jsn.24smi.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 23 May 2024 22:57:00 GMT
content-type: application/javascript
last-modified: Tue, 21 May 2024 11:17:37 GMT
etag: W/"664c82d1-19caa"
access-control-allow-headers: : sentry-trace, : baggage
content-encoding: gzip
cache-control: max-age=3600
vary: Accept-Encoding
expires: Thu, 23 May 2024 23:00:07 GMT
strict-transport-security: max-age=0
cf-cache-status: HIT
age: 404
access-control-allow-origin: *
server: cloudflare
cf-ray: 8888a47b3fc810b9-CPH
X-Firefox-Spdy: h2
|
|
| kinozal.tv/pic/l_portiere.gif | 188.114.97.1 | 200 OK | 5.6 kB |
URL GET HTTP/3kinozal.tv/pic/l_portiere.gif IP188.114.97.1:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectkinozal.tv FingerprintF9:85:C5:F8:CE:16:DD:B8:C8:52:0B:B0:14:15:F2:65:EC:A2:20:91 ValiditySun, 14 Apr 2024 03:07:58 GMT - Sat, 13 Jul 2024 03:07:57 GMT
File typeGIF image data, version 89a, 40 x 216 Hashfc97be1fe65209fdc7b0609be00df849 8761b8ccc842151f329912dfaf8e226bbc72341a d65e26652f92a8f6ffa2fe7cb3374d1a07ea15b227643643d3e9edad24947e20
GET /pic/l_portiere.gif HTTP/1.1
Host: kinozal.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/pic/0_kinozal.tv.css?v=3.4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:01 GMT
content-type: image/gif
content-length: 5605
last-modified: Tue, 20 Dec 2011 14:17:10 GMT
etag: "4ef098e6-15e5"
expires: Sat, 22 Jun 2024 22:57:01 GMT
cache-control: max-age=2592000
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5RFQ59S7xexoJJboQvc8esOebKpN8CFDv3viENKGtW1p8uSdotZ9joSbBWIZK7pUCChzi3AdEktCpQxVj9MNnTgws5nb%2F0LFwYIZgSOKJnr6m5Zi8o2nu8VnfOYP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47dda0556c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| kinozal.tv/pic/r_portiere.gif | 188.114.97.1 | 200 OK | 5.6 kB |
URL GET HTTP/3kinozal.tv/pic/r_portiere.gif IP188.114.97.1:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectkinozal.tv FingerprintF9:85:C5:F8:CE:16:DD:B8:C8:52:0B:B0:14:15:F2:65:EC:A2:20:91 ValiditySun, 14 Apr 2024 03:07:58 GMT - Sat, 13 Jul 2024 03:07:57 GMT
File typeGIF image data, version 89a, 40 x 216 Hash016588fa274495de99701ae93dff9f2b da076d07f9f84f9d0ce22bf9c8542e5732ecb467 d3644c003c8e1bd02e6bc7bc89036b0eeb792138af31bf9a7863add05cc122a0
GET /pic/r_portiere.gif HTTP/1.1
Host: kinozal.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/pic/0_kinozal.tv.css?v=3.4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:01 GMT
content-type: image/gif
content-length: 5611
last-modified: Tue, 20 Dec 2011 14:17:31 GMT
etag: "4ef098fb-15eb"
expires: Sat, 22 Jun 2024 22:57:01 GMT
cache-control: max-age=2592000
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MoyLqlMpMZN1AmCR9YrqDL4c5rreGtD%2FF0Aq9VQhv88OYTuKe99io%2Fyl7j4THpt%2BFjsblACsKxVgZLuxt7LJSd28wIKYLPPS0eDCCfMUwwYwSU22gRBj%2BMJ3AKis"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47dda0656c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| kinozal.tv/pic/flags_all.png?v=1 | 188.114.97.1 | | 8.3 kB |
URL kinozal.tv/pic/flags_all.png?v=1 IP188.114.97.1:0
File typePNG image data, 407 x 9, 8-bit/color RGB, non-interlaced Hash94478ba9006be51a3ad4b43c61e438c3 a321397a4b6fe8b64679ed8b1067f8ac5ff0c7c1 8600de4f10dbc94f2f8f2b2ef0aa9a9fbd4102a729549e87ba7593fad7bceb84
GET /pic/flags_all.png?v=1 HTTP/1.1
Host: kinozal.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/pic/0_kinozal.tv.css?v=3.4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:01 GMT
content-type: image/png
content-length: 8304
last-modified: Wed, 16 Mar 2016 15:09:55 GMT
etag: "56e97743-2070"
expires: Sat, 22 Jun 2024 22:57:01 GMT
cache-control: max-age=2592000
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TTA1cJ4d26pUqiXrLBQ5K5S4OeMKs%2BHPlm8OkTKuPUC3q%2B9mE%2FBUrhzB3L7Vg3Tnhd3m9KXS8EdfFJRtAJPyFeSjDUSGULT7FsmPHp0rYMcConHr%2FFB0obzYSxln"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47dea0e56c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| kinozal.tv/pic/status_icons.png | 188.114.97.1 | 200 OK | 13 kB |
URL GET HTTP/3kinozal.tv/pic/status_icons.png IP188.114.97.1:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectkinozal.tv FingerprintF9:85:C5:F8:CE:16:DD:B8:C8:52:0B:B0:14:15:F2:65:EC:A2:20:91 ValiditySun, 14 Apr 2024 03:07:58 GMT - Sat, 13 Jul 2024 03:07:57 GMT
File typePNG image data, 518 x 12, 8-bit/color RGBA, non-interlaced Hashaf8f90fa7d2b660d88d23bff36e93381 f31c606e6f159b6272e647bf5d39d846356b6a84 eea84adf8ddc601237d440dc1d935e32cae4c01de53af1ebab5c970de2d99cf8
GET /pic/status_icons.png HTTP/1.1
Host: kinozal.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/pic/0_kinozal.tv.css?v=3.4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:01 GMT
content-type: image/png
content-length: 12932
last-modified: Sun, 09 Jun 2013 07:32:51 GMT
etag: "51b42fa3-3284"
expires: Sat, 22 Jun 2024 22:57:01 GMT
cache-control: max-age=2592000
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ALbGRHDUERIZ0bPokjbIuOM1zKlER5f9XUt5Z50hYS6P2qtwIIZjCamJg8PieLTtadYiQHBPd%2BucRvEcEbtcXE9PZrcmEv7ZmVrkCHoG8QXmvPaI0CX85%2FFw4O2Q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47dea1056c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| kinozal.tv/pic/sbg.gif | 188.114.97.1 | 200 OK | 628 B |
IP188.114.97.1:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectkinozal.tv FingerprintF9:85:C5:F8:CE:16:DD:B8:C8:52:0B:B0:14:15:F2:65:EC:A2:20:91 ValiditySun, 14 Apr 2024 03:07:58 GMT - Sat, 13 Jul 2024 03:07:57 GMT
File typeGIF image data, version 89a, 5 x 50 Hash3ff8ac734bb659fb23eb18ffb7ce25d3 b448b4ebf2d35ffb70dfec133c2e23a211ef4701 84f084340e859f426b400928fb21aa39c4c67363b4adf3751f671e9aa62f22a7
GET /pic/sbg.gif HTTP/1.1
Host: kinozal.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/pic/0_kinozal.tv.css?v=3.4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:01 GMT
content-type: image/gif
content-length: 628
last-modified: Tue, 20 Dec 2011 14:17:32 GMT
etag: "4ef098fc-274"
expires: Sat, 22 Jun 2024 22:57:01 GMT
cache-control: max-age=2592000
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s2QUhqJf7RXCGovtaQiSu9yTeD1yf20eVUABCc3m%2Fp9lKIAfMdSM6Rm4sRvacP%2FJbFLmI7yp%2BSDdQTjas3Q68HPt6egskBT2kpmGajN7W%2BEdJG7%2BOlnBbKdBj0fp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47dda0956c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| kinozal.tv/pic/stars_v.gif | 188.114.97.1 | 200 OK | 6.1 kB |
URL GET HTTP/3kinozal.tv/pic/stars_v.gif IP188.114.97.1:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectkinozal.tv FingerprintF9:85:C5:F8:CE:16:DD:B8:C8:52:0B:B0:14:15:F2:65:EC:A2:20:91 ValiditySun, 14 Apr 2024 03:07:58 GMT - Sat, 13 Jul 2024 03:07:57 GMT
File typeGIF image data, version 89a, 200 x 123 Hashe643c1366b64cbb9e637ff17923e6c8a f828f4c11c2271f2f0304a4f4aef0e8d8cdfb2ae 5db9dcef660f7bf6ef0463f158c43276564b662e0cc4e7257f22d29806d79667
GET /pic/stars_v.gif HTTP/1.1
Host: kinozal.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/pic/0_kinozal.tv.css?v=3.4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:01 GMT
content-type: image/gif
content-length: 6105
last-modified: Sat, 28 Jan 2012 22:23:45 GMT
etag: "4f247571-17d9"
expires: Sat, 22 Jun 2024 22:57:01 GMT
cache-control: max-age=2592000
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7yPP7Be%2BLcGt4mklNCZkChp5fCpAMJM0qGO4vYa3YU%2B3qXBLo0Dh8znjlS%2Fi2cwRVBT5rmDgt9IjY5FmZwyNa6oNIlETfMk%2FuCE2Gq6R1RAcu8oXfnMAMc2T%2Bp3F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47dea1256c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| kinozal.tv/pic/socb.png | 188.114.97.1 | 200 OK | 2.1 kB |
IP188.114.97.1:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectkinozal.tv FingerprintF9:85:C5:F8:CE:16:DD:B8:C8:52:0B:B0:14:15:F2:65:EC:A2:20:91 ValiditySun, 14 Apr 2024 03:07:58 GMT - Sat, 13 Jul 2024 03:07:57 GMT
File typePNG image data, 120 x 20, 8-bit/color RGBA, non-interlaced Hash106a6591a69621954931e4e1c2fbe596 d939712e665416cb133dcfe006bf868fbbfbbb1b 0ac572481a72c56d14df7b45bcb89e44737829791fc2263bf61558c1306fd9e8
GET /pic/socb.png HTTP/1.1
Host: kinozal.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/pic/0_kinozal.tv.css?v=3.4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:01 GMT
content-type: image/png
content-length: 2131
last-modified: Wed, 06 Feb 2013 12:12:09 GMT
etag: "51124899-853"
expires: Sat, 22 Jun 2024 22:57:01 GMT
cache-control: max-age=2592000
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I47Cu9nbuqzbBGNL8BQfoIi8dMi3hgD2rBpElegy6Umoc2GKZpDsEdZCW7%2FpV8iPCBUez0p6flSpG8wi0o%2B%2BNPvnlcZ%2BWnidtKD1tNZZI5%2B1kEEbX%2BLVTZn8DXFO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47dea1356c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vak345.com/cs/202405240157.js?v=933dcc028b4e27355cfe96f951ce9ca0&_t=1716505021357.357 | 104.21.69.38 | 200 OK | 28 kB |
URL GET HTTP/3vak345.com/cs/202405240157.js?v=933dcc028b4e27355cfe96f951ce9ca0&_t=1716505021357.357 IP104.21.69.38:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerGoogle Trust Services LLC Subjectvak345.com Fingerprint24:4A:87:25:20:E4:20:04:34:86:6B:9B:53:2A:57:5F:39:1D:94:22 ValiditySun, 07 Apr 2024 00:32:34 GMT - Sat, 06 Jul 2024 00:32:33 GMT
File typegzip compressed data, from Unix Hash74c8d7c7fc3ece9fad9f3d78eadab4e8 6dc48a866c70d79ee589553b130e01785766c91f 0dd0826998617b712a467b357f0bb633a73bd5a6f2802a9f33cd641b353239d8
GET /cs/202405240157.js?v=933dcc028b4e27355cfe96f951ce9ca0&_t=1716505021357.357 HTTP/1.1
Host: vak345.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:01 GMT
content-type: application/javascript;charset=UTF-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-yac-source: Yac
x-movieads-setup: combo
x-movieads-country: NO
content-encoding: gzip
cf-cache-status: BYPASS
set-cookie: sky_uuid=529c89f4-5219-47d7-b62d-16317a83e7fb; expires=Fri, 23-May-2025 22:57:01 GMT; Max-Age=31536000; path=/; SameSite=None;Secure
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YJwtcNw86C0Keycr7AeznH%2BwK1P%2BVkZbAGv1XpufIR0odMr26ooH%2FLfp9HivYFUBG8otWp%2FauaDZq5L6OP4hkbqaNf8TIGqqJH9a4jJazGrX%2BpAOXSQFOMmLDABW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47f8ae5b4ed-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jsn.24smi.net/d/c/25193/15870.js?t=1689225142 | 104.22.40.74 | 200 OK | 8.5 kB |
URL GET HTTP/2jsn.24smi.net/d/c/25193/15870.js?t=1689225142 IP104.22.40.74:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintC5:11:EA:DF:22:74:A7:88:5E:76:7C:DD:63:87:55:80:A9:0C:ED:24 ValiditySun, 13 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hash3b701872a9e00eb73d40b0a1a123d7af 7acb13ebb7238f16c3f116ea777b5d39f6573535 6e5c9bc6112c42cfd55f33625d60484773b1c3945d08f84bfd32935bc2137bdd
GET /d/c/25193/15870.js?t=1689225142 HTTP/1.1
Host: jsn.24smi.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: smi_uid=BV0BOf0LS
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 23 May 2024 22:57:01 GMT
content-type: application/javascript
last-modified: Thu, 23 May 2024 22:26:39 GMT
etag: W/"664fc29f-5cc3"
access-control-allow-headers: : sentry-trace, : baggage
content-encoding: gzip
cache-control: max-age=3600
vary: Accept-Encoding
expires: Thu, 23 May 2024 23:00:48 GMT
strict-transport-security: max-age=0
cf-cache-status: HIT
access-control-allow-origin: *
server: cloudflare
cf-ray: 8888a47f892a10b9-CPH
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Ubuntu:wght@400;500;700&display=swap |  142.250.74.106 | 200 OK | 1.1 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Ubuntu:wght@400;500;700&display=swap IP142.250.74.106:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint58:16:76:D3:35:A7:C7:1B:68:67:E2:F5:33:04:0E:E9:CB:56:BD:77 ValidityMon, 06 May 2024 14:43:20 GMT - Mon, 29 Jul 2024 14:43:19 GMT
File typegzip compressed data, max compression Hashe6ac5e3b6983df8d249fcba06638beec 6ae9120c0be48ab621cbac7813362ca6ba59410e 9445f183777beff9ece980dd852a59b61b2501544352ffd6194d1b7cc3c2e819
GET /css2?family=Ubuntu:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 23 May 2024 22:57:01 GMT
date: Thu, 23 May 2024 22:57:01 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ssp12.24smi.net/rtb/v2/bn?id=1a7d3926-19a7-4590-879a-fa51a0b3cece | 104.22.40.74 | 200 OK | 0 B |
URL GET HTTP/2ssp12.24smi.net/rtb/v2/bn?id=1a7d3926-19a7-4590-879a-fa51a0b3cece IP104.22.40.74:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintC5:11:EA:DF:22:74:A7:88:5E:76:7C:DD:63:87:55:80:A9:0C:ED:24 ValiditySun, 13 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/v2/bn?id=1a7d3926-19a7-4590-879a-fa51a0b3cece HTTP/1.1
Host: ssp12.24smi.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: smi_uid=BV0BOf0LS
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 23 May 2024 22:57:01 GMT
content-length: 0
strict-transport-security: max-age=0
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8888a481ca1a10b9-CPH
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/firasans/v17/va9E4kDNxMZdWfMOD5Vvk4jLeTY.woff2 | 216.58.207.227 | 200 OK | 11 kB |
URL GET HTTP/2fonts.gstatic.com/s/firasans/v17/va9E4kDNxMZdWfMOD5Vvk4jLeTY.woff2 IP216.58.207.227:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintE4:8A:04:4E:A9:40:14:A5:25:38:29:DB:90:36:5A:67:AE:85:31:6C ValidityMon, 06 May 2024 14:43:26 GMT - Mon, 29 Jul 2024 14:43:25 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 10768, version 1.0 Hash0fcd2f2e8c8afe03d53d8a3e508227df 942d9ccb661c763fabe05654b580bbfcb3a4d8a9 6be5cf1e8ed609c752deeec348b79d89a0950ef5e0455518755ba0506507fb4e
GET /s/firasans/v17/va9E4kDNxMZdWfMOD5Vvk4jLeTY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kinozal.tv
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10768
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 May 2024 02:15:28 GMT
expires: Fri, 23 May 2025 02:15:28 GMT
cache-control: public, max-age=31536000
age: 74493
last-modified: Tue, 02 May 2023 14:50:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintE4:8A:04:4E:A9:40:14:A5:25:38:29:DB:90:36:5A:67:AE:85:31:6C ValidityMon, 06 May 2024 14:43:26 GMT - Mon, 29 Jul 2024 14:43:25 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kinozal.tv
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 18 May 2024 09:28:37 GMT
expires: Sun, 18 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
age: 480504
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/firasans/v17/va9E4kDNxMZdWfMOD5Vvl4jL.woff2 | 216.58.207.227 | 200 OK | 24 kB |
URL GET HTTP/2fonts.gstatic.com/s/firasans/v17/va9E4kDNxMZdWfMOD5Vvl4jL.woff2 IP216.58.207.227:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintE4:8A:04:4E:A9:40:14:A5:25:38:29:DB:90:36:5A:67:AE:85:31:6C ValidityMon, 06 May 2024 14:43:26 GMT - Mon, 29 Jul 2024 14:43:25 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23880, version 1.0 Hash3327e58b1067b0af5d5f98c8ea3f3604 aaf02e57797dc98aa41fef219452674f02e06dd6 89ae1743656b75948be30cc4909efd3c61771b7bd9f6d53eb14cd9731d486b57
GET /s/firasans/v17/va9E4kDNxMZdWfMOD5Vvl4jL.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kinozal.tv
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23880
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 May 2024 01:56:21 GMT
expires: Fri, 23 May 2025 01:56:21 GMT
cache-control: public, max-age=31536000
age: 75640
last-modified: Tue, 02 May 2023 14:50:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| data.24smi.net/collect_teaser?obj=25193&template_id=15870&teaser_ids=3913515%2C6092348%2C3913486%2C6040043%2C3913472&t=1716505021205&show_id=1a7d3926-19a7-4590-879a-fa51a0b3cece | 104.22.40.74 | 200 OK | 43 B |
URL GET HTTP/2data.24smi.net/collect_teaser?obj=25193&template_id=15870&teaser_ids=3913515%2C6092348%2C3913486%2C6040043%2C3913472&t=1716505021205&show_id=1a7d3926-19a7-4590-879a-fa51a0b3cece IP104.22.40.74:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintC5:11:EA:DF:22:74:A7:88:5E:76:7C:DD:63:87:55:80:A9:0C:ED:24 ValiditySun, 13 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /collect_teaser?obj=25193&template_id=15870&teaser_ids=3913515%2C6092348%2C3913486%2C6040043%2C3913472&t=1716505021205&show_id=1a7d3926-19a7-4590-879a-fa51a0b3cece HTTP/1.1
Host: data.24smi.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: smi_uid=BV0BOf0LS
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 23 May 2024 22:57:01 GMT
content-type: image/gif
content-length: 43
last-modified: Thu, 23 May 2024 22:57:01 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store
strict-transport-security: max-age=0
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8888a482eab510b9-CPH
X-Firefox-Spdy: h2
|
|
| isatonabench.com/house/piese.js?25635&v=3&u=null&a=0.4225932311158973 | 193.200.65.68 | 200 OK | 34 kB |
URL GET HTTP/1.1isatonabench.com/house/piese.js?25635&v=3&u=null&a=0.4225932311158973 IP193.200.65.68:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectisatonabench.com FingerprintF7:57:21:6E:A5:CB:84:73:99:5B:AA:D8:4C:6C:61:53:E9:EE:F3:A3 ValidityTue, 07 May 2024 20:07:05 GMT - Mon, 05 Aug 2024 20:07:04 GMT
File typeJavaScript source, ASCII text, with very long lines (346) Hashc324cd3248f39f3160f708db687519f5 731f274d78f93a65c98be89a83f5414a5dc74be0 239d1905b4cf2c2686625eabf073d175ea50d10e17e777ee9e3636327b066205
GET /house/piese.js?25635&v=3&u=null&a=0.4225932311158973 HTTP/1.1
Host: isatonabench.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 May 2024 22:57:01 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NON DSP COR CURa TIA"
Set-Cookie: uuid=17165050215771206171; expires=Sat, 23-May-2026 22:57:01 GMT; Max-Age=63072000; path=/; samesite=None; domain=.isatonabench.com; secure
|
|
| bjiuck.com/.cdn/3a8241/751d31/4fcaefa6aad347d48cec783c2b29d2cf/d0b6284c50ba75a6.jpeg | 62.76.25.27 | 200 OK | 25 kB |
URL GET HTTP/2bjiuck.com/.cdn/3a8241/751d31/4fcaefa6aad347d48cec783c2b29d2cf/d0b6284c50ba75a6.jpeg IP62.76.25.27:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectbjiuck.com FingerprintEA:DB:D9:B3:0B:F3:8A:3B:35:F2:F1:5B:5A:3A:85:1D:23:56:29:79 ValidityThu, 09 May 2024 02:26:52 GMT - Wed, 07 Aug 2024 02:26:51 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hash7f7a66279791f2f58f383850f8d3726c 113fce301d40cfe3c3aaa8266ea75647e9f77431 aaa5320c0998a74620e58c931e749781873f387f0bdb198e7bad2103052bb736
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/4fcaefa6aad347d48cec783c2b29d2cf/d0b6284c50ba75a6.jpeg HTTP/1.1
Host: bjiuck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Thu, 23 May 2024 22:57:01 GMT
content-type: image/jpeg
content-length: 25370
last-modified: Wed, 18 May 2022 10:06:03 GMT
etag: "6284c50b-631a"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| bjiuck.com/.cdn/3a8241/751d31/24c2462519da414c8b9907a0ad328d36/d0b6284c58309385.jpeg | 62.76.25.27 | 200 OK | 17 kB |
URL GET HTTP/2bjiuck.com/.cdn/3a8241/751d31/24c2462519da414c8b9907a0ad328d36/d0b6284c58309385.jpeg IP62.76.25.27:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectbjiuck.com FingerprintEA:DB:D9:B3:0B:F3:8A:3B:35:F2:F1:5B:5A:3A:85:1D:23:56:29:79 ValidityThu, 09 May 2024 02:26:52 GMT - Wed, 07 Aug 2024 02:26:51 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3 Hash2289d166eb919c82dee4c817e02d53d4 ef7ba9b7bc2565a744dba0dd79c9b5f432933770 382c2eff54dc79e9dcb437db82992da5e51eb6867bb2451741e5b8230a9b38c4
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /.cdn/3a8241/751d31/24c2462519da414c8b9907a0ad328d36/d0b6284c58309385.jpeg HTTP/1.1
Host: bjiuck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Thu, 23 May 2024 22:57:01 GMT
content-type: image/jpeg
content-length: 16615
last-modified: Wed, 18 May 2022 10:08:03 GMT
etag: "6284c583-40e7"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| img.24smi.net/200_200/1/c/1c2699470460832fff7499adaaa282ae.jpeg | 104.22.40.74 | 200 OK | 15 kB |
URL GET HTTP/2img.24smi.net/200_200/1/c/1c2699470460832fff7499adaaa282ae.jpeg IP104.22.40.74:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintC5:11:EA:DF:22:74:A7:88:5E:76:7C:DD:63:87:55:80:A9:0C:ED:24 ValiditySun, 13 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 200x200, components 3 Hashda1e0a05e2109ba235ee7922714f49de 51535e3aacfdc06e932155eb71f3739e79978236 f89fe228a978ad8f70ac42af75d99333e4954f0a20ad4e39d41dec4b6f159cbb
GET /200_200/1/c/1c2699470460832fff7499adaaa282ae.jpeg HTTP/1.1
Host: img.24smi.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: smi_uid=BV0BOf0LS
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 23 May 2024 22:57:02 GMT
content-type: image/jpeg
content-length: 15256
cache-control: max-age=25920000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=15420
access-control-allow-headers: : sentry-trace, : baggage
etag: W/"60f2ca85-14608"
expires: Wed, 19 Mar 2025 21:31:19 GMT
last-modified: Sat, 17 Jul 2021 12:18:13 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
age: 4652
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 8888a4843b6210b9-CPH
X-Firefox-Spdy: h2
|
|
| img.24smi.net/200_200/7/1/714bca146384a3d7984e5361c7677e91.jpeg | 104.22.40.74 | 200 OK | 18 kB |
URL GET HTTP/2img.24smi.net/200_200/7/1/714bca146384a3d7984e5361c7677e91.jpeg IP104.22.40.74:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintC5:11:EA:DF:22:74:A7:88:5E:76:7C:DD:63:87:55:80:A9:0C:ED:24 ValiditySun, 13 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 200x200, components 3 Hashcc8eae702dd8df8c1f7a6fe7c82cae00 e6e52bb96298338ebe4fb4cb35420ca93084295e ca9d52434f0b26be0a1f10da3061512f312982292d48357f6130b3c503f0ab5a
GET /200_200/7/1/714bca146384a3d7984e5361c7677e91.jpeg HTTP/1.1
Host: img.24smi.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: smi_uid=BV0BOf0LS
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 23 May 2024 22:57:02 GMT
content-type: image/jpeg
content-length: 18220
cache-control: max-age=25920000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=18335
access-control-allow-headers: : sentry-trace, : baggage
etag: W/"66179886-1b27e"
expires: Sat, 01 Mar 2025 13:05:23 GMT
last-modified: Thu, 11 Apr 2024 08:00:06 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
age: 348275
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 8888a4843b6410b9-CPH
X-Firefox-Spdy: h2
|
|
| img.24smi.net/200_200/e/3/e3b467d1faf53548581af2eb5ae95513.jpeg | 104.22.40.74 | 200 OK | 11 kB |
URL GET HTTP/2img.24smi.net/200_200/e/3/e3b467d1faf53548581af2eb5ae95513.jpeg IP104.22.40.74:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintC5:11:EA:DF:22:74:A7:88:5E:76:7C:DD:63:87:55:80:A9:0C:ED:24 ValiditySun, 13 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 200x200, components 3 Hash7b75c7986f0ecafcf89fd909d28cf868 ceaf6bdcdae413c9c4a3ac32edab47ca976616b6 7c61313faa215eddeea351fad6b54239bea8f38ae28eabc5e2b4a15e10169274
GET /200_200/e/3/e3b467d1faf53548581af2eb5ae95513.jpeg HTTP/1.1
Host: img.24smi.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: smi_uid=BV0BOf0LS
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 23 May 2024 22:57:02 GMT
content-type: image/jpeg
content-length: 11392
cache-control: max-age=25920000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=11639
access-control-allow-headers: : sentry-trace, : baggage
etag: W/"60f77fcb-17e8c"
expires: Wed, 19 Mar 2025 21:31:19 GMT
last-modified: Wed, 21 Jul 2021 02:00:43 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
age: 4652
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 8888a4843b6010b9-CPH
X-Firefox-Spdy: h2
|
|
| img.24smi.net/200_200/1/1/1118fd755b4a73606f28c59d6da46001.jpeg | 104.22.40.74 | 200 OK | 16 kB |
URL GET HTTP/2img.24smi.net/200_200/1/1/1118fd755b4a73606f28c59d6da46001.jpeg IP104.22.40.74:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintC5:11:EA:DF:22:74:A7:88:5E:76:7C:DD:63:87:55:80:A9:0C:ED:24 ValiditySun, 13 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 200x200, components 3 Hash6819d1c0fb65b20f1fdaa9af452ddc56 a7a4c6489224ecb0724be3c1f8266c594b34368a c03e9158cd967cf1b42f11ab0fddf367ecb5ec4d4f20715007c1ae8151eb85a6
GET /200_200/1/1/1118fd755b4a73606f28c59d6da46001.jpeg HTTP/1.1
Host: img.24smi.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: smi_uid=BV0BOf0LS
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 23 May 2024 22:57:02 GMT
content-type: image/jpeg
content-length: 16300
cache-control: max-age=25920000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16457
access-control-allow-headers: : sentry-trace, : baggage
etag: W/"60f1f3f6-19755"
expires: Wed, 19 Mar 2025 21:31:19 GMT
last-modified: Fri, 16 Jul 2021 21:02:46 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
age: 4652
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 8888a4843b6310b9-CPH
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintE4:8A:04:4E:A9:40:14:A5:25:38:29:DB:90:36:5A:67:AE:85:31:6C ValidityMon, 06 May 2024 14:43:26 GMT - Mon, 29 Jul 2024 14:43:25 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kinozal.tv
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 18 May 2024 09:28:37 GMT
expires: Sun, 18 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
age: 480505
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| img.24smi.net/200_200/e/b/eb0393fefc516034bee8823c93c08454.jpeg | 104.22.40.74 | | 14 kB |
URL img.24smi.net/200_200/e/b/eb0393fefc516034bee8823c93c08454.jpeg IP104.22.40.74:0
CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintC5:11:EA:DF:22:74:A7:88:5E:76:7C:DD:63:87:55:80:A9:0C:ED:24 ValiditySun, 13 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 200x200, components 3 Hash7231ab2db70fb4ef458c92c72f75c588 6da33401a7dc90f83bfe943d4d638d80504dd3b8 da67cba86f4031cd8f39d57e405770391994220cabcbf89a196275a825661c91
GET /200_200/e/b/eb0393fefc516034bee8823c93c08454.jpeg HTTP/1.1
Host: img.24smi.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: smi_uid=BV0BOf0LS
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 23 May 2024 22:57:02 GMT
content-type: image/jpeg
content-length: 13624
cache-control: max-age=25920000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=13835
access-control-allow-headers: : sentry-trace, : baggage
etag: W/"65fd47df-155dc"
expires: Fri, 28 Feb 2025 06:21:07 GMT
last-modified: Fri, 22 Mar 2024 08:57:03 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
age: 1699696
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 8888a4843b6710b9-CPH
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=btwcookie&rnd=1716505021 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=btwcookie&rnd=1716505021 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=btwcookie&rnd=1716505021 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-length: 0
location: https://ads.betweendigital.com/match?bidder_id=34348&callback_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbtwcookie%26bid%3D%24%7BUSER_ID%7D
set-cookie: sky_uuid=8d55dc74-2c85-86e1-c059-14e595a28b59; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=ohmybid&rnd=1716505021 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=ohmybid&rnd=1716505021 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=ohmybid&rnd=1716505021 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-length: 0
location: https://match.ohmy.bid/cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D
set-cookie: sky_uuid=0d0119c8-6815-896d-5186-477f9e7846c4; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1716505021 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1716505021 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=hbrdcookie2&rnd=1716505021 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-length: 0
location: https://dm-eu.hybrid.ai/match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D
set-cookie: sky_uuid=192f581e-f191-5689-7434-1acd049c44e0; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=otmbid&rnd=1716505021 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=otmbid&rnd=1716505021 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otmbid&rnd=1716505021 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-length: 0
location: https://sync.dmp.otm-r.com/match/skyadvert
set-cookie: sky_uuid=6849608f-da16-5071-5ed2-29e6cdbce627; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1716505021 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1716505021 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=bzcookie&rnd=1716505021 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-length: 0
location: https://exchange.buzzoola.com/cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D
set-cookie: sky_uuid=2172c533-b5d5-1319-5c98-32efe45c6783; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=solta&rnd=1716505021 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=solta&rnd=1716505021 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=solta&rnd=1716505021 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-length: 0
location: https://kimberlite.io/rtb/sync/skyadvert?u=69310539-2ebd-6c71-d1da-3b0e20deb3e9
set-cookie: sky_uuid=69310539-2ebd-6c71-d1da-3b0e20deb3e9; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=gtnt&rnd=1716505021 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=gtnt&rnd=1716505021 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gtnt&rnd=1716505021 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-length: 0
location: https://px.adhigh.net/p/cm/skyadvert?u=7705a61e-9f51-9101-ba1b-16945c5410bc
set-cookie: sky_uuid=7705a61e-9f51-9101-ba1b-16945c5410bc; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=dgm2&rnd=1716505021 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=dgm2&rnd=1716505021 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=dgm2&rnd=1716505021 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-length: 0
location: https://sync.opendsp.ru/match/MovieAds?id=1d035ab9-0d1c-453d-d02e-b3f151b36342
set-cookie: sky_uuid=1d035ab9-0d1c-453d-d02e-b3f151b36342; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1716505021 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1716505021 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otclkbid&rnd=1716505021 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-length: 0
location: https://otclick-adv.ru/core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D
set-cookie: sky_uuid=9ac0a018-6f80-18be-82d3-5bd8c9c460a6; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=sapecookie&rnd=1716505021 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=sapecookie&rnd=1716505021 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=sapecookie&rnd=1716505021 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-length: 0
location: https://www.acint.net/rmatch?dp=167&euid=c327c4d5-a70c-2837-a1bc-eebf27eddb3c&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D
set-cookie: sky_uuid=c327c4d5-a70c-2837-a1bc-eebf27eddb3c; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1716505021 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1716505021 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gonetbid&rnd=1716505021 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-length: 0
location: https://sync.gonet-ads.com/match/SkyAdvert?id=d2dad773-b18d-226a-499d-85d201d8f18c
set-cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| logger.moviead55.ru/logger.php?t=player_frame_loaded_new&c=7d4e3c66-37e8-45a1-8968-451b82e196cf&a=&m=0&v=933dcc028b4e27355cfe96f951ce9ca0&o= | 193.200.65.146 | | 584 B |
URL logger.moviead55.ru/logger.php?t=player_frame_loaded_new&c=7d4e3c66-37e8-45a1-8968-451b82e196cf&a=&m=0&v=933dcc028b4e27355cfe96f951ce9ca0&o= IP193.200.65.146:0 ASN#6681 Giveme Cloud Sp Z O O
File typegzip compressed data, from Unix Hash0dc0a5b28129768d80a41239d4b063f4 6338d3fc66888dfcbf5b12ab72acbbc3147c197d 65133522d97defc9885e0186c9f7b3a5df010fb93f416b9f057928b069949b28
GET /logger.php?t=player_frame_loaded_new&c=7d4e3c66-37e8-45a1-8968-451b82e196cf&a=&m=0&v=933dcc028b4e27355cfe96f951ce9ca0&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.acint.net/mc/?dp=167 | 193.3.184.130 | 200 OK | 154 B |
IP193.3.184.130:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subject*.acint.net Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1 ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /mc/?dp=167 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: openresty
date: Thu, 23 May 2024 22:57:02 GMT
content-type: text/html
content-length: 154
location: /mc/?dp=167&tc=1
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Thu, 23-May-24 23:07:02 GMT
aid=fwAABmZPyb4Cmj2G6pIdAkIBkpH4MEihqIW1BhNGENNPJC6u; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| static.moviead55.ru/mp_dist/mstream2.js?v6913411248 | 104.21.48.195 | 200 OK | 54 kB |
URL GET HTTP/3static.moviead55.ru/mp_dist/mstream2.js?v6913411248 IP104.21.48.195:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerGoogle Trust Services LLC Subjectmoviead55.ru Fingerprint80:5E:21:B0:5E:7B:3F:9A:EA:97:77:21:A4:64:A4:66:5E:4A:C7:5D ValiditySun, 12 May 2024 20:46:36 GMT - Sat, 10 Aug 2024 20:46:35 GMT
File typegzip compressed data, from Unix Hashc58462bc041abf6cdb3880500a3fc590 8c17bca2e41891a18b457c21451412d1ce8b31ff 154b4151fad1cf74f404079a719f23c70ee9fb5a6a810a481acd756baa1ac76e
GET /mp_dist/mstream2.js?v6913411248 HTTP/1.1
Host: static.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:02 GMT
content-type: application/javascript
last-modified: Wed, 22 May 2024 14:32:18 GMT
vary: Accept-Encoding
etag: W/"664e01f2-26fd7"
x-movieads-country: RU
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-max-age: 1728000
content-encoding: gzip
cache-control: max-age=7200
cf-cache-status: HIT
age: 1467
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hKZweMr23y0MevmTz2HFrXmslRPxGqzMiSNpAGsbGruk31TKL%2BGgf%2B456bAl4f8hl02H9E53ff2TDCtMHbyG0hryqSPWr0mMDdxWWLqsBopryCvv3QtxF0Bv73nN2JjVIEqEDXyD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a484a9abb512-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bjiuck.com/v4/confirm/ad?uuid[]=38770def-8331-68fb-5502-0f6e3f02def3&uuid[]=ec23b884-85e8-fcc1-e158-a2227aade075&ad_ids[]=455674&ad_ids[]=455675&surfer_uuid=00ab6745-69bd-48b4-a47b-ff155142e13f | 62.76.25.27 | 200 OK | 23 B |
URL POST HTTP/2bjiuck.com/v4/confirm/ad?uuid[]=38770def-8331-68fb-5502-0f6e3f02def3&uuid[]=ec23b884-85e8-fcc1-e158-a2227aade075&ad_ids[]=455674&ad_ids[]=455675&surfer_uuid=00ab6745-69bd-48b4-a47b-ff155142e13f IP62.76.25.27:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectbjiuck.com FingerprintEA:DB:D9:B3:0B:F3:8A:3B:35:F2:F1:5B:5A:3A:85:1D:23:56:29:79 ValidityThu, 09 May 2024 02:26:52 GMT - Wed, 07 Aug 2024 02:26:51 GMT
Hash93ef37687a0f06406588c5399c688161 bcf412994198be7ca07a82b598b3be72c1b48b29 c31a4e889db15a6c9c2a34e9757349c67e460639920c028018a508b056ee3e01
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
POST /v4/confirm/ad?uuid[]=38770def-8331-68fb-5502-0f6e3f02def3&uuid[]=ec23b884-85e8-fcc1-e158-a2227aade075&ad_ids[]=455674&ad_ids[]=455675&surfer_uuid=00ab6745-69bd-48b4-a47b-ff155142e13f HTTP/1.1
Host: bjiuck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 15
Origin: https://kinozal.tv
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Thu, 23 May 2024 22:57:02 GMT
content-type: application/json
content-length: 23
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
|
|
| www.acint.net/rmatch?dp=167&euid=c327c4d5-a70c-2837-a1bc-eebf27eddb3c&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D | 193.3.184.130 | | 154 B |
URL www.acint.net/rmatch?dp=167&euid=c327c4d5-a70c-2837-a1bc-eebf27eddb3c&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D IP193.3.184.130:0
CertificateIssuerLet's Encrypt Subject*.acint.net Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1 ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=167&euid=c327c4d5-a70c-2837-a1bc-eebf27eddb3c&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: test_cookie=CheckForPermission; aid=fwAABmZPyb4Cmj2G6pIdAkIBkpH4MEihqIW1BhNGENNPJC6u
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 23 May 2024 22:57:02 GMT
content-type: text/html
content-length: 154
location: https://ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D%2524%257BUSER_ID%257D&dp=14
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
set-cookie: cSyncDp14v4=1716505022; expires=Sat, 22-Jun-24 22:57:02 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| dm-eu.hybrid.ai/match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D | 37.230.131.22 | | 0 B |
URL dm-eu.hybrid.ai/match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D IP37.230.131.22:0 ASN#200197 Hybrid Adtech Sp.z.o.o.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 23 May 2024 22:57:02 GMT
content-length: 0
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
location: https://code.moviead55.ru/go/csync?cn=hbrdcookie2&bid=a8c1cb0a172fc7587542
set-cookie: vid=a8c1cb0a172fc7587542; Expires=Fri, 23 May 2025 22:57:01 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 573
x-xss-protection: 1; mode=block
access-control-allow-origin: https://kinozal.tv
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/csync?cn=hbrdcookie2&bid=a8c1cb0a172fc7587542 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/csync?cn=hbrdcookie2&bid=a8c1cb0a172fc7587542 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=hbrdcookie2&bid=a8c1cb0a172fc7587542 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-type: image/jpeg
content-length: 0
set-cookie: hbrdcookie2=a8c1cb0a172fc7587542; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/bn?key=933dcc028b4e27355cfe96f951ce9ca0&cp.adsource=Infin_inf_br&vt=100&w=300&h=250&cp.referer=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&fid=5c8c8d32ea322491&cp.tanc= | 193.200.65.151 | | 1.6 kB |
URL code.moviead55.ru/go/bn?key=933dcc028b4e27355cfe96f951ce9ca0&cp.adsource=Infin_inf_br&vt=100&w=300&h=250&cp.referer=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&fid=5c8c8d32ea322491&cp.tanc= IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
File typegzip compressed data, from Unix Hash9624c8047ef1e27d94b877e95ea043e7 0c5335f256061ba9298031ab37ed9d447aa87dcd 66335b25c5fdc936b7774d9dfacf5589d63a8edef1f3e63abd6b8cdb8bde7783
GET /go/bn?key=933dcc028b4e27355cfe96f951ce9ca0&cp.adsource=Infin_inf_br&vt=100&w=300&h=250&cp.referer=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&fid=5c8c8d32ea322491&cp.tanc= HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
x-movieads-path: /
x-movieads-referrer: https://kinozal.tv/
access-control-allow-credentials: true
access-control-allow-origin: https://kinozal.tv
x-movieads-udata: cache,parsed,294736
x-cache-source: Rist
x-movieads-mrc: no
x-movieads-ref: {"Scheme":"https","Opaque":"","User":null,"Host":"kinozal.tv","Path":"/","RawPath":"","OmitHost":false,"ForceQuery":false,"RawQuery":"","Fragment":"","RawFragment":""}
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| sp.ohmy.bid/cmf?0.9344169252282358 |  167.235.9.235 | | 0 B |
URL sp.ohmy.bid/cmf?0.9344169252282358 IP167.235.9.235:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cmf?0.9344169252282358 HTTP/1.1
Host: sp.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
bidder: bid-25 1.1542.871fc768
set-cookie: uid=f91944a0-e1f3-43c5-855f-fd8e6943ecd5.664fc9be.11e8337533ed3744; domain=.ohmy.bid; path=/; expires=Sat, 22-Jun-2024 22:57:02 GMT; SameSite=None; Secure;
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| match.ohmy.bid/cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D | 167.235.14.51 | | 0 B |
URL match.ohmy.bid/cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D IP167.235.14.51:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D HTTP/1.1
Host: match.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-length: 0
bidder: bid-20 1.1542.871fc768
location: https://code.moviead55.ru/go/csync?cn=ohmybid&bid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d
set-cookie: uid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d.664fc9be.dabd549d89db07d; domain=.ohmy.bid; path=/; expires=Sat, 22-Jun-2024 22:57:02 GMT; SameSite=None; Secure;
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| otclick-adv.ru/core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D | 139.45.228.133 | | 124 B |
URL otclick-adv.ru/core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D IP139.45.228.133:0
File typeHTML document, ASCII text, with CRLF line terminators Hashc73e35f73ed5c795c70cf66e99088b7c 63a9ffe5d0e5b4070819b95ef564a58d8a3a3a1c 80034a9712f07e6b0577c7e5bf6d5d718736593e7d21c81dd1a3cbdb4eb860de
GET /core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D HTTP/1.1
Host: otclick-adv.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.24.0
date: Thu, 23 May 2024 22:57:02 GMT
content-length: 124
location: https://code.moviead55.ru/go/csync?cn=otclkbid&bid=VU0cO9fZFTbYzyf
p3p: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
cache-control: no-cache, max-age=0, must-revalidate, no-store
pragma: no-cache
expires: Thursday, 01-Jan-1970 00:00:00 GMT
set-cookie: idntfy=VU0cO9fZFTbYzyf; expires=Sun, 21-May-2034 22:57:02 GMT; domain=otclick-adv.ru; path=/core; SameSite=None; Secure
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| sync.dmp.otm-r.com/match/skyadvert | 195.201.106.117 | | 61 B |
URL sync.dmp.otm-r.com/match/skyadvert IP195.201.106.117:0 ASN#24940 Hetzner Online GmbH
File typeHTML document, ASCII text Hash4a16715cb69367bdbf4043037c4f1a38 3571d4113ee160fff84a8d0cbf016b6a40133283 c734e47ce8c16959675a886b98f7ee8dc55d41baecfec6c9c77a29c598205f39
GET /match/skyadvert HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.15.9
date: Thu, 23 May 2024 22:57:02 GMT
content-type: text/html; charset=utf-8
content-length: 61
access-control-allow-origin: *
location: /match/skyadvert?otcm_check=1716505022
set-cookie: mpid=NjY0ZmM5YmUxMDVjYmFkMQ==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| sync.opendsp.ru/match/MovieAds?id=1d035ab9-0d1c-453d-d02e-b3f151b36342 | 82.148.20.186 | | 43 B |
URL sync.opendsp.ru/match/MovieAds?id=1d035ab9-0d1c-453d-d02e-b3f151b36342 IP82.148.20.186:0 ASN#50340 OOO Network of data-centers Selectel
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/MovieAds?id=1d035ab9-0d1c-453d-d02e-b3f151b36342 HTTP/1.1
Host: sync.opendsp.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| kimberlite.io/rtb/sync/skyadvert?u=69310539-2ebd-6c71-d1da-3b0e20deb3e9 | 217.199.220.44 | | 0 B |
URL kimberlite.io/rtb/sync/skyadvert?u=69310539-2ebd-6c71-d1da-3b0e20deb3e9 IP217.199.220.44:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/skyadvert?u=69310539-2ebd-6c71-d1da-3b0e20deb3e9 HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Thu, 23 May 2024 22:57:02 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: u=Zk_JvgYpm1U~o3XbxmZwFiNLYgDrMZBcpuYIlLc; path=/; max-age=7776000; samesite=none; httponly; secure
as=hPJ_CGZPyb4; max-age=604800; samesite=none; httponly; secure
f=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsolta%26bid%3DZk_JvgYpm1U; max-age=30; samesite=none; httponly; secure
n=1; max-age=30; samesite=none; httponly; secure
location: https://sync.dsp.solta.io/match/kimberlite?id=Zk_JvgYpm1U
referrer-policy: no-referrer
server-timing: app;srv=0;dur=0.0002
|
|
| exchange.buzzoola.com/cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D | 167.235.7.148 | | 114 B |
URL exchange.buzzoola.com/cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D IP167.235.7.148:0 ASN#24940 Hetzner Online GmbH
File typeHTML document, ASCII text Hashbed961dfab1dc2c90374128c3adb27f1 d4ab020590faaea8b7a7e5afd21e2a6393e5bda6 c6131b07a07cbb4d06ca0b7c9ced7ecb636526be4d4f474c74c50e9e05394386
GET /cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Thu, 23 May 2024 22:57:01 GMT
content-type: text/html; charset=utf-8
content-length: 114
location: https://code.moviead55.ru/go/csync?cn=bzcookie&bid=2b7cac89-dbec-4a60-55f9-8ae41986c68f
serverid: TODO
X-Firefox-Spdy: h2
|
|
| sync.gonet-ads.com/match/SkyAdvert?id=d2dad773-b18d-226a-499d-85d201d8f18c |  188.42.105.220 | | 43 B |
URL sync.gonet-ads.com/match/SkyAdvert?id=d2dad773-b18d-226a-499d-85d201d8f18c IP188.42.105.220:0
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/SkyAdvert?id=d2dad773-b18d-226a-499d-85d201d8f18c HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
|
|
| dm-eu.hybrid.ai/match?id=106&vid=0600007FBEC94F66863D9A02021D92EA | 37.230.131.22 | | 0 B |
URL dm-eu.hybrid.ai/match?id=106&vid=0600007FBEC94F66863D9A02021D92EA IP37.230.131.22:0 ASN#200197 Hybrid Adtech Sp.z.o.o.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=106&vid=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: vid=a8c1cb0a172fc7587542
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Thu, 23 May 2024 22:57:02 GMT
content-length: 0
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
location: https://dmg.digitaltarget.ru/1/168/i/i?a=168&e=a8c1cb0a172fc7587542&i=47717482
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 581
x-xss-protection: 1; mode=block
access-control-allow-origin: https://www.acint.net
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
|
|
| sync.gonet-ads.com/match/sape.js?id=0600007FBEC94F66863D9A02021D92EA | 188.42.105.220 | | 43 B |
URL sync.gonet-ads.com/match/sape.js?id=0600007FBEC94F66863D9A02021D92EA IP188.42.105.220:0
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape.js?id=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
|
|
| static.moviead55.ru/mp_dist/protect_trackmaster.js?v1715862553935 | 104.21.48.195 | | 653 B |
URL static.moviead55.ru/mp_dist/protect_trackmaster.js?v1715862553935 IP104.21.48.195:0
CertificateIssuerGoogle Trust Services LLC Subjectmoviead55.ru Fingerprint80:5E:21:B0:5E:7B:3F:9A:EA:97:77:21:A4:64:A4:66:5E:4A:C7:5D ValiditySun, 12 May 2024 20:46:36 GMT - Sat, 10 Aug 2024 20:46:35 GMT
File typegzip compressed data, from Unix Hash86cefbb538fbf093dd89120678333417 cef16c76e646ae82c03b7ee88664cb984cd6891c 65910b1e18e36c67c6944c56311b2c4c6548028e2c94968e966694b8887a906e
GET /mp_dist/protect_trackmaster.js?v1715862553935 HTTP/1.1
Host: static.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 23 May 2024 22:57:01 GMT
content-type: application/javascript
last-modified: Wed, 22 May 2024 14:32:18 GMT
vary: Accept-Encoding
etag: W/"664e01f2-2ea"
x-movieads-country: RU
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-max-age: 1728000
content-encoding: gzip
cache-control: max-age=7200
cf-cache-status: HIT
age: 1572
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HCDl%2FcVgyFxdSJYtqzj84jEDfkIOZRapd1uxiOktLCQXFlDXHY8XyfNVXuNARiXBjro6g0esZ3qUXxRV0MEkcfueQOb0Yt4W19IXvgFnmQ0yuBR6JYISX5XqOWuXU1MZsOlbVA5S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a482fb7256a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D | 167.235.14.51 | | 0 B |
URL match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D IP167.235.14.51:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D HTTP/1.1
Host: match.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: uid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d.664fc9be.dabd549d89db07d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-length: 0
bidder: bid-22 1.1542.871fc768
location: https://mc.acint.net/match?dp=217&euid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D%2524%257BUSER_ID%257D&dp=14 | 193.3.184.218 | | 142 B |
URL ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D%2524%257BUSER_ID%257D&dp=14 IP193.3.184.218:0
File typeHTML document, ASCII text, with CRLF line terminators Hash82c98e8e012b79c922655461171cc2fa 0828d79135573276005b04be42d79a8a3291292b 745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D%2524%257BUSER_ID%257D&dp=14 HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Thu, 23 May 2024 22:57:02 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/rmatch?dp=14&euid=3403420ABEC94F665001067A0220313D&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=CkIDNGZPyb56BgFQPTEgAty2F+B3gnpc0GCmGewmATr9QBjr; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None
|
|
| a.utraff.com/sync?ssp=8&id=0600007FBEC94F66863D9A02021D92EA | 172.67.74.180 | | 0 B |
URL a.utraff.com/sync?ssp=8&id=0600007FBEC94F66863D9A02021D92EA IP172.67.74.180:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=8&id=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Thu, 23 May 2024 22:57:02 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Sun, 23 Jun 2024 01:57:02 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Sun, 23 Jun 2024 01:57:02 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r74xbkHwHflslF8AUWOvI5z9A5KRFaMlUxKPfccJWRGoXHf7abd5Pq8E%2BHa%2F2h2ckksX616eflRon8GmL%2B3EBg6HjuZfsfNT1KUzeS%2FFi%2F47S5hOzhxIlF2jqmJxFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a4880a9556a2-OSL
X-Firefox-Spdy: h2
|
|
| sync.dmp.otm-r.com/match/sape?id=0600007FBEC94F66863D9A02021D92EA | 195.201.106.117 | | 94 B |
URL sync.dmp.otm-r.com/match/sape?id=0600007FBEC94F66863D9A02021D92EA IP195.201.106.117:0 ASN#24940 Hetzner Online GmbH
File typeHTML document, ASCII text Hash20700f61a772ce13524ebe9029ca22b7 40bbfb02c009eb9a9f20f5ab051cf4f03f5a48d0 876905164af98c43a8b99eced9dc91a9d08a406c4eaeaa3bd33db1c60868b18c
GET /match/sape?id=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: mpid=NjY0ZmM5YmUxMDVjYmFkMQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.15.9
date: Thu, 23 May 2024 22:57:02 GMT
content-type: text/html; charset=utf-8
content-length: 94
access-control-allow-origin: *
location: https://www.acint.net/match?dp=68&euid=NjY0ZmM5YmUxMDVjYmFkMQ%3D%3D
set-cookie: mpid=NjY0ZmM5YmUxMDVjYmFkMQ==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| sync.opendsp.ru/match/sape_ex?id=0600007FBEC94F66863D9A02021D92EA | 82.148.20.186 | | 43 B |
URL sync.opendsp.ru/match/sape_ex?id=0600007FBEC94F66863D9A02021D92EA IP82.148.20.186:0 ASN#50340 OOO Network of data-centers Selectel
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape_ex?id=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: sync.opendsp.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| kimberlite.io/rtb/sync/sape2?u=0600007FBEC94F66863D9A02021D92EA | 217.199.220.44 | | 0 B |
URL kimberlite.io/rtb/sync/sape2?u=0600007FBEC94F66863D9A02021D92EA IP217.199.220.44:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/sape2?u=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: as=hPJ_CGZPyb4; f=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsolta%26bid%3DZk_JvgYpm1U; n=1; u=Zk_JvgYpm1U~o3XbxmZwFiNLYgDrMZBcpuYIlLc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Thu, 23 May 2024 22:57:02 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: as=-WrUeGZPyb6E8n8IZk_Jvg; max-age=604800; samesite=none; httponly; secure
n=2; max-age=30; samesite=none; httponly; secure
location: https://solta-sync.rutarget.ru/sync
referrer-policy: no-referrer
server-timing: app;srv=8;dur=0.0002
|
|
| ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D | 193.3.184.214 | | 142 B |
URL ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D IP193.3.184.214:0
File typeHTML document, ASCII text, with CRLF line terminators Hash82c98e8e012b79c922655461171cc2fa 0828d79135573276005b04be42d79a8a3291292b 745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Thu, 23 May 2024 22:57:02 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=3E03420ABEC94F666D01681502152A16
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=CkIDPmZPyb4VaAFtFioVAm+xp7THfZ8QivdalBrONLAfIqz3; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None
|
|
| sync.upravel.com/sape/sync | 88.198.16.238 | | 0 B |
URL sync.upravel.com/sape/sync IP88.198.16.238:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
set-cookie: session_tptc=1716505022856;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1716505022856;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
|
|
| nr.bidderstack.com/sape/cm?user_id=0600007FBEC94F66863D9A02021D92EA | 142.132.211.137 | | 0 B |
URL nr.bidderstack.com/sape/cm?user_id=0600007FBEC94F66863D9A02021D92EA IP142.132.211.137:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/cm?user_id=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 23 May 2024 22:57:02 GMT
Content-Length: 0
Connection: keep-alive
Location: /sape/cm?user_id=0600007FBEC94F66863D9A02021D92EA&pupa=1
x-from: nra-7
Set-Cookie: pupa=087f303a-cab9-e724-c694-be3a1f03e356; domain=.bidderstack.com; path=/; expires=Fri, 23-May-2025 22:57:02 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
|
|
| code.moviead55.ru/go/csync?cn=ohmybid&bid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/csync?cn=ohmybid&bid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=ohmybid&bid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c; hbrdcookie2=a8c1cb0a172fc7587542
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-type: image/jpeg
content-length: 0
set-cookie: ohmybid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/csync?cn=otclkbid&bid=VU0cO9fZFTbYzyf | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/csync?cn=otclkbid&bid=VU0cO9fZFTbYzyf IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=otclkbid&bid=VU0cO9fZFTbYzyf HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c; hbrdcookie2=a8c1cb0a172fc7587542
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:02 GMT
content-type: image/jpeg
content-length: 0
set-cookie: otclkbid=VU0cO9fZFTbYzyf; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| s.uuidksinc.net/match/396/?remote_uid=0600007FBEC94F66863D9A02021D92EA | 31.220.27.155 | | 0 B |
URL s.uuidksinc.net/match/396/?remote_uid=0600007FBEC94F66863D9A02021D92EA IP31.220.27.155:0 ASN#39572 DataWeb Global Group B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/396/?remote_uid=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.23.2
date: Thu, 23 May 2024 22:57:02 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=xzw8WfT6sEk5FFvNEUlW
set-cookie: jcsuuid=xzw8WfT6sEk5FFvNEUlW; expires=Fri, 23 May 2025 22:57:02 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| sync.bumlam.com/?src=sap1&uid=0600007FBEC94F66863D9A02021D92EA | 31.172.81.159 | | 0 B |
URL sync.bumlam.com/?src=sap1&uid=0600007FBEC94F66863D9A02021D92EA IP31.172.81.159:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&uid=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Thu, 23 May 2024 22:57:02 GMT
Content-Length: 0
Connection: close
Set-Cookie: suuid3=IiRjNGZjYjVkNi0xOTU3LTExZWYtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Wed, 18 May 2044 22:57:02 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARi-k7-yBmIgMDYwMDAwN0ZCRUM5NEY2Njg2M0Q5QTAyMDIxRDkyRUGiARDE_LXWGVcR74bgACWQwGR8
ETag: c4fcb5d6-1957-11ef-86e0-002590c0647c
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
|
|
| pix.bumlam.com/sync/sape/check?sspuid=0600007FBEC94F66863D9A02021D92EA | 31.172.81.172 | | 0 B |
URL pix.bumlam.com/sync/sape/check?sspuid=0600007FBEC94F66863D9A02021D92EA IP31.172.81.172:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/check?sspuid=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 23 May 2024 22:57:02 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.bumlam.com/?src=sape
|
|
| match.new-programmatic.com/userbind?src=sape&id=0600007FBEC94F66863D9A02021D92EA | 217.65.2.150 | | 0 B |
URL match.new-programmatic.com/userbind?src=sape&id=0600007FBEC94F66863D9A02021D92EA IP217.65.2.150:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Thu, 23 May 2024 22:57:02 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
|
|
| sync.dmp.otm-r.com/match/skyadvert?otcm_check=1716505022 | 195.201.106.117 | | 104 B |
URL sync.dmp.otm-r.com/match/skyadvert?otcm_check=1716505022 IP195.201.106.117:0 ASN#24940 Hetzner Online GmbH
File typeHTML document, ASCII text Hash8c5bee31793b0290bf0f0a651a884fad fa5c07fd05cc6bf08b931fee018b8c7cacc5c48d 776772a221ab03316798ce6d5a328196cfb5adb7e7aafb72624b511138d8933a
GET /match/skyadvert?otcm_check=1716505022 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: mpid=NjY0ZmM5YmUxMDVjYmFkMQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.15.9
date: Thu, 23 May 2024 22:57:02 GMT
content-type: text/html; charset=utf-8
content-length: 104
access-control-allow-origin: *
location: https://code.moviead55.ru/go/csync?cn=otmbid&bid=NjY0ZmM5YmUxMDVjYmFkMQ%3D%3D
set-cookie: mpid=NjY0ZmM5YmUxMDVjYmFkMQ==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| kinozal.tv/pic/use.js?v=3.7 | 188.114.97.1 | | 3.1 kB |
URL kinozal.tv/pic/use.js?v=3.7 IP188.114.97.1:0
File typeHTML document, ISO-8859 text, with very long lines (344) Hashfc52d4878ea3a3b2c9fb615193796ef8 c79e19754ad972764591e281250a98da8c4f71b6 73df67e2540f03225b015a46a325ed7f32f48ea6833b5e2feed8db65224b07cb
GET /pic/use.js?v=3.7 HTTP/1.1
Host: kinozal.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/details.php?id=952945e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:00 GMT
content-type: application/javascript
last-modified: Fri, 10 Mar 2023 07:59:27 GMT
etag: W/"640ae35f-26e0"
expires: Sat, 22 Jun 2024 22:57:00 GMT
cache-control: max-age=2592000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pENfMQMrnCEPl4SO02lepDFcmDWjsCysTAAdmC7N%2Fx9vQZfE2eqXasOn2rBEyMAZpWD%2BK%2FxE2nn%2FT7h0bpUvoKUuj0HAW4Q8Lumg3G2cxqlrKMjio3HTh8NZU1QR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47a981f56c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| code.moviead55.ru/go/csync?cn=bzcookie&bid=2b7cac89-dbec-4a60-55f9-8ae41986c68f | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/csync?cn=bzcookie&bid=2b7cac89-dbec-4a60-55f9-8ae41986c68f IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=bzcookie&bid=2b7cac89-dbec-4a60-55f9-8ae41986c68f HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c; hbrdcookie2=a8c1cb0a172fc7587542; ohmybid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d; otclkbid=VU0cO9fZFTbYzyf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:03 GMT
content-type: image/jpeg
content-length: 0
set-cookie: bzcookie=2b7cac89-dbec-4a60-55f9-8ae41986c68f; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| sync.programmatica.com/match/01 | 158.160.128.78 | | 43 B |
URL sync.programmatica.com/match/01 IP158.160.128.78:0 ASN#200350 Yandex.Cloud LLC
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/01 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 23 May 2024 22:57:03 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| ssp.al-adtech.com/api/sync/sape | 45.139.25.119 | | 0 B |
URL ssp.al-adtech.com/api/sync/sape IP45.139.25.119:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync/sape HTTP/1.1
Host: ssp.al-adtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.20.1
Date: Thu, 23 May 2024 22:57:03 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Location: https://mc.acint.net/rmatch?dp=261&euid=4ec211a9-6227-4923-8ce5-0bf647838428&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261
Set-Cookie: afp_cookie=gAAAAABmT8m_fIWlE92G11OtCYhEqdTNqx4J6HIIWHZrR-JVociKonHsEgpTVvTPumaO3Kzs3deSnlrOoYXU5gUJbc_92J_tmsKD8glJPJ44esrKElPN1pig63cFIz_N4sB8PUHrFKedcIfXQAjrxvAUquca2rA0x8BEW5relUYfZ4Lwyq7_L0k22plT8cPC0U2Zw0B7E_aMgHYfS_uhsm8fOhr52ZqJrg==$; expires=Sun, 23 Jun 2024 22:57:03 GMT; path=/; secure; SameSite=None
|
|
| exchange.buzzoola.com/cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0600007FBEC94F66863D9A02021D92EA&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 | 167.235.7.148 | | 156 B |
URL exchange.buzzoola.com/cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0600007FBEC94F66863D9A02021D92EA&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 IP167.235.7.148:0 ASN#24940 Hetzner Online GmbH
File typeHTML document, ASCII text Hashd3bfeade4e17d2f7d2b84f4a912afa5b ef4ddc0f4497387122b0e0c5cf6a25720d9cbb30 4a096d067a8b4d006e40c7552203106843cbc275229e9ba57bd06c90f5a1b728
GET /cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0600007FBEC94F66863D9A02021D92EA&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: uuid=020a78b3-6cfb-4a72-424b-e7e96ad96183
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 23 May 2024 22:57:03 GMT
content-type: text/html; charset=utf-8
content-length: 156
location: https://mc.acint.net/rmatch?dp=126&euid=020a78b3-6cfb-4a72-424b-e7e96ad96183&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126
serverid: TODO
X-Firefox-Spdy: h2
|
|
| www.acint.net/match?dp=68&euid=NjY0ZmM5YmUxMDVjYmFkMQ%3D%3D | 193.3.184.130 | | 43 B |
URL www.acint.net/match?dp=68&euid=NjY0ZmM5YmUxMDVjYmFkMQ%3D%3D IP193.3.184.130:0
CertificateIssuerLet's Encrypt Subject*.acint.net Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1 ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=68&euid=NjY0ZmM5YmUxMDVjYmFkMQ%3D%3D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAABmZPyb4Cmj2G6pIdAkIBkpH4MEihqIW1BhNGENNPJC6u; cSyncDp14v4=1716505022; cSyncDp14v6=1716505022; cSyncDp17v2=1716505022; cSyncDp45v5=1716505022; cSyncDp53v5=1716505022; cSyncDp62v2=1716505022; cSyncDp67v3=1716505022; cSyncDp68v3=1716505022; cSyncDp71v2=1716505022; cSyncDp80v2=1716505022; cSyncDp85v2=1716505022; cSyncDp95v4=1716505022; cSyncDp98v3=1716505022; cSyncDp104v2=1716505022; cSyncDp107v2=1716505022; cSyncDp110v3=1716505022; cSyncDp125v4=1716505022; cSyncDp126v3=1716505022; cSyncDp127v2=1716505022; cSyncDp129v2=1716505022; cSyncDp136v3=1716505022; cSyncDp146v2=1716505022; cSyncDp148v2=1716505022; cSyncDp149v3=1716505022; cSyncDp151v2=1716505022; cSyncDp251v1=1716505022; cSyncDp186v2=1716505022; cSyncDp217v2=1716505022; cSyncDp235v2=1716505022; cSyncDp239v2=1716505022; cSyncDp243v2=1716505022; cSyncDp260v2=1716505022; cSyncDp244v2=1716505022; cSyncDp248v2=1716505022; cSyncDp261v1=1716505022; cSyncDp289v2=1716505022; cSyncDp293v1=1716505022; cSyncDp296v2=1716505022; cSyncDp312v1=1716505022
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 23 May 2024 22:57:03 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| acint.net/rmatch?dp=14&euid=3403420ABEC94F665001067A0220313D&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D | 193.3.184.130 | | 154 B |
URL acint.net/rmatch?dp=14&euid=3403420ABEC94F665001067A0220313D&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D IP193.3.184.130:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=14&euid=3403420ABEC94F665001067A0220313D&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: test_cookie=CheckForPermission; aid=fwAABmZPyb4Cmj2G6pIdAkIBkpH4MEihqIW1BhNGENNPJC6u; cSyncDp14v4=1716505022; cSyncDp14v6=1716505022; cSyncDp17v2=1716505022; cSyncDp45v5=1716505022; cSyncDp53v5=1716505022; cSyncDp62v2=1716505022; cSyncDp67v3=1716505022; cSyncDp68v3=1716505022; cSyncDp71v2=1716505022; cSyncDp80v2=1716505022; cSyncDp85v2=1716505022; cSyncDp95v4=1716505022; cSyncDp98v3=1716505022; cSyncDp104v2=1716505022; cSyncDp107v2=1716505022; cSyncDp110v3=1716505022; cSyncDp125v4=1716505022; cSyncDp126v3=1716505022; cSyncDp127v2=1716505022; cSyncDp129v2=1716505022; cSyncDp136v3=1716505022; cSyncDp146v2=1716505022; cSyncDp148v2=1716505022; cSyncDp149v3=1716505022; cSyncDp151v2=1716505022; cSyncDp251v1=1716505022; cSyncDp186v2=1716505022; cSyncDp217v2=1716505022; cSyncDp235v2=1716505022; cSyncDp239v2=1716505022; cSyncDp243v2=1716505022; cSyncDp260v2=1716505022; cSyncDp244v2=1716505022; cSyncDp248v2=1716505022; cSyncDp261v1=1716505022; cSyncDp289v2=1716505022; cSyncDp293v1=1716505022; cSyncDp296v2=1716505022; cSyncDp312v1=1716505022
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 23 May 2024 22:57:03 GMT
content-type: text/html
content-length: 154
location: https://code.moviead55.ru/go/csync?cn=sapecookie&bid=0600007FBEC94F66863D9A02021D92EA
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| pixel.dsp.onetarget.ru/sape/pixel?id=0600007FBEC94F66863D9A02021D92EA | 130.193.53.230 | | 0 B |
URL pixel.dsp.onetarget.ru/sape/pixel?id=0600007FBEC94F66863D9A02021D92EA IP130.193.53.230:0 ASN#200350 Yandex.Cloud LLC
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/pixel?id=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: pixel.dsp.onetarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 23 May 2024 22:57:03 GMT
content-length: 0
location: https://x01.aidata.io/0.gif?pid=5813217&id=5cd02e69-babf-40a7-a345-11167465d8d9
set-cookie: USER_ID=5cd02e69-babf-40a7-a345-11167465d8d9;max-age=2147483647;Secure;HttpOnly;SameSite=None
SAPE_USER_ID=0600007FBEC94F66863D9A02021D92EA;max-age=30758400;Secure;HttpOnly;SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
X-Firefox-Spdy: h2
|
|
| cs.agency2.ru/p?ssp=sp&uid=0600007FBEC94F66863D9A02021D92EA | 23.105.255.196 | | 0 B |
URL cs.agency2.ru/p?ssp=sp&uid=0600007FBEC94F66863D9A02021D92EA IP23.105.255.196:0 ASN#39134 Edinaya Set Limited Liability Company
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&uid=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Thu, 23 May 2024 22:57:03 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=32bfe97c-b48e-45ed-bba3-893e706feeea
Set-Cookie: uuid=32bfe97c-b48e-45ed-bba3-893e706feeea; expires=Wed, 14 May 2025 22:57:03 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.105.255.196
|
|
| mc.acint.net/match?dp=217&euid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d | 193.3.184.130 | | 43 B |
URL mc.acint.net/match?dp=217&euid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d IP193.3.184.130:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=217&euid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAABmZPyb4Cmj2G6pIdAkIBkpH4MEihqIW1BhNGENNPJC6u; cSyncDp14v4=1716505022; cSyncDp14v6=1716505022; cSyncDp17v2=1716505022; cSyncDp45v5=1716505022; cSyncDp53v5=1716505022; cSyncDp62v2=1716505022; cSyncDp67v3=1716505022; cSyncDp68v3=1716505022; cSyncDp71v2=1716505022; cSyncDp80v2=1716505022; cSyncDp85v2=1716505022; cSyncDp95v4=1716505022; cSyncDp98v3=1716505022; cSyncDp104v2=1716505022; cSyncDp107v2=1716505022; cSyncDp110v3=1716505022; cSyncDp125v4=1716505022; cSyncDp126v3=1716505022; cSyncDp127v2=1716505022; cSyncDp129v2=1716505022; cSyncDp136v3=1716505022; cSyncDp146v2=1716505022; cSyncDp148v2=1716505022; cSyncDp149v3=1716505022; cSyncDp151v2=1716505022; cSyncDp251v1=1716505022; cSyncDp186v2=1716505022; cSyncDp217v2=1716505022; cSyncDp235v2=1716505022; cSyncDp239v2=1716505022; cSyncDp243v2=1716505022; cSyncDp260v2=1716505022; cSyncDp244v2=1716505022; cSyncDp248v2=1716505022; cSyncDp261v1=1716505022; cSyncDp289v2=1716505022; cSyncDp293v1=1716505022; cSyncDp296v2=1716505022; cSyncDp312v1=1716505022
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 23 May 2024 22:57:03 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D95%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D95%26euid%3D | 83.222.96.170 | | 126 B |
URL ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D95%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D95%26euid%3D IP83.222.96.170:0
File typeHTML document, ASCII text Hasheb4048f777975d84f91c3adac12b333f 067bc7f804b0070206abf842b588adc5a7f40520 4eef6ac240daedf6aaaadb9802fffbdd98c24b332ef3eef83607cccb70e12220
GET /sspmatch?url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D95%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.22.0
date: Thu, 23 May 2024 22:57:03 GMT
content-type: text/html; charset=utf-8
content-length: 126
location: https://mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=ETILWAPG
set-cookie: uid=ETILWAPG; Expires=Sun, 21 May 2034 22:57:03 GMT
X-Firefox-Spdy: h2
|
|
| acint.net/match?dp=14&euid=3E03420ABEC94F666D01681502152A16 | 193.3.184.130 | | 43 B |
URL acint.net/match?dp=14&euid=3E03420ABEC94F666D01681502152A16 IP193.3.184.130:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=14&euid=3E03420ABEC94F666D01681502152A16 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAABmZPyb4Cmj2G6pIdAkIBkpH4MEihqIW1BhNGENNPJC6u; cSyncDp14v4=1716505022; cSyncDp14v6=1716505022; cSyncDp17v2=1716505022; cSyncDp45v5=1716505022; cSyncDp53v5=1716505022; cSyncDp62v2=1716505022; cSyncDp67v3=1716505022; cSyncDp68v3=1716505022; cSyncDp71v2=1716505022; cSyncDp80v2=1716505022; cSyncDp85v2=1716505022; cSyncDp95v4=1716505022; cSyncDp98v3=1716505022; cSyncDp104v2=1716505022; cSyncDp107v2=1716505022; cSyncDp110v3=1716505022; cSyncDp125v4=1716505022; cSyncDp126v3=1716505022; cSyncDp127v2=1716505022; cSyncDp129v2=1716505022; cSyncDp136v3=1716505022; cSyncDp146v2=1716505022; cSyncDp148v2=1716505022; cSyncDp149v3=1716505022; cSyncDp151v2=1716505022; cSyncDp251v1=1716505022; cSyncDp186v2=1716505022; cSyncDp217v2=1716505022; cSyncDp235v2=1716505022; cSyncDp239v2=1716505022; cSyncDp243v2=1716505022; cSyncDp260v2=1716505022; cSyncDp244v2=1716505022; cSyncDp248v2=1716505022; cSyncDp261v1=1716505022; cSyncDp289v2=1716505022; cSyncDp293v1=1716505022; cSyncDp296v2=1716505022; cSyncDp312v1=1716505022
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 23 May 2024 22:57:03 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 | 88.198.16.238 | | 0 B |
URL sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 IP88.198.16.238:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: session_tptc=1716505022856
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 23 May 2024 22:57:03 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=f98ce098-ff50-4704-b3c5-6c5def80af47;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=f98ce098-ff50-4704-b3c5-6c5def80af47;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/rmatch?dp=71&euid=f98ce098-ff50-4704-b3c5-6c5def80af47&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
|
|
| nr.bidderstack.com/sape/cm?user_id=0600007FBEC94F66863D9A02021D92EA&pupa=1 | 142.132.211.137 | | 0 B |
URL nr.bidderstack.com/sape/cm?user_id=0600007FBEC94F66863D9A02021D92EA&pupa=1 IP142.132.211.137:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/cm?user_id=0600007FBEC94F66863D9A02021D92EA&pupa=1 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 23 May 2024 22:57:03 GMT
Content-Length: 0
Connection: keep-alive
Location: https://ad.mail.ru/cm.gif?p=88&id=087f303a-cab9-e724-c694-be3a1f03e356
x-from: nra-7
Set-Cookie: pupa=087f303a-cab9-e724-c694-be3a1f03e356; domain=.bidderstack.com; path=/; expires=Fri, 23-May-2025 22:57:03 GMT;
csorigin2=41; domain=.bidderstack.com; path=/; expires=Thu, 23-May-2024 23:02:03 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
|
|
| adx.com.ru/sape-sync?uid=0600007FBEC94F66863D9A02021D92EA | 83.222.105.118 | | 85 B |
URL adx.com.ru/sape-sync?uid=0600007FBEC94F66863D9A02021D92EA IP83.222.105.118:0
File typeHTML document, ASCII text Hashe0f119de4b7afa4b8f5ce9bf89b140ed 37b61e4fc515014ad17e2b31de37dcc19b7ab2d9 3eb1cb9a5c7f8d2740b405497099141e4ea2b33e95148a77397db18b5bfa7492
GET /sape-sync?uid=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: adx.com.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.26.0
date: Thu, 23 May 2024 22:57:03 GMT
content-type: text/html; charset=utf-8
content-length: 85
cache-control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate
location: /sync?sspKey=25&sspUserID=0600007FBEC94F66863D9A02021D92EA
p3p: CP="adx.com.ru does not have a P3P policy"
set-cookie: user=664fc9bf7011cb00010a84dc; Path=/; Domain=adx.com.ru; Max-Age=31536000; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| ads.adlook.me/csync?pid=sape&uid=0600007FBEC94F66863D9A02021D92EA&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D110%26euid%3D%7BuserId%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D110 | 78.140.242.36 | | 154 B |
URL ads.adlook.me/csync?pid=sape&uid=0600007FBEC94F66863D9A02021D92EA&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D110%26euid%3D%7BuserId%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D110 IP78.140.242.36:0 ASN#209974 Itglobalcom Rus LLC
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /csync?pid=sape&uid=0600007FBEC94F66863D9A02021D92EA&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D110%26euid%3D%7BuserId%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D110 HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://mc.acint.net/rmatch?dp=110&euid=79f82ffd8f744d3393fa2fe6d6b6f6de&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D110
server: Microsoft-IIS/10.0
set-cookie: adlm_userId=79f82ffd8f744d3393fa2fe6d6b6f6de; expires=Fri, 23 May 2025 21:00:00 GMT; path=/; SameSite=None; secure; samesite=none
adlk_cmatch=sape%3A0600007FBEC94F66863D9A02021D92EA; expires=Fri, 31 Dec 9999 20:59:59 GMT; path=/; SameSite=None; secure; samesite=none
date: Thu, 23 May 2024 22:57:02 GMT
X-Firefox-Spdy: h2
|
|
| sync.dsp.solta.io/match/sape?id=0600007FBEC94F66863D9A02021D92EA | 217.199.220.72 | | 43 B |
URL sync.dsp.solta.io/match/sape?id=0600007FBEC94F66863D9A02021D92EA IP217.199.220.72:0
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape?id=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:03 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| www.acint.net/match?dp=127&euid=xzw8WfT6sEk5FFvNEUlW | 193.3.184.130 | | 43 B |
URL www.acint.net/match?dp=127&euid=xzw8WfT6sEk5FFvNEUlW IP193.3.184.130:0
CertificateIssuerLet's Encrypt Subject*.acint.net Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1 ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=127&euid=xzw8WfT6sEk5FFvNEUlW HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAABmZPyb4Cmj2G6pIdAkIBkpH4MEihqIW1BhNGENNPJC6u; cSyncDp14v4=1716505022; cSyncDp14v6=1716505022; cSyncDp17v2=1716505022; cSyncDp45v5=1716505022; cSyncDp53v5=1716505022; cSyncDp62v2=1716505022; cSyncDp67v3=1716505022; cSyncDp68v3=1716505022; cSyncDp71v2=1716505022; cSyncDp80v2=1716505022; cSyncDp85v2=1716505022; cSyncDp95v4=1716505022; cSyncDp98v3=1716505022; cSyncDp104v2=1716505022; cSyncDp107v2=1716505022; cSyncDp110v3=1716505022; cSyncDp125v4=1716505022; cSyncDp126v3=1716505022; cSyncDp127v2=1716505022; cSyncDp129v2=1716505022; cSyncDp136v3=1716505022; cSyncDp146v2=1716505022; cSyncDp148v2=1716505022; cSyncDp149v3=1716505022; cSyncDp151v2=1716505022; cSyncDp251v1=1716505022; cSyncDp186v2=1716505022; cSyncDp217v2=1716505022; cSyncDp235v2=1716505022; cSyncDp239v2=1716505022; cSyncDp243v2=1716505022; cSyncDp260v2=1716505022; cSyncDp244v2=1716505022; cSyncDp248v2=1716505022; cSyncDp261v1=1716505022; cSyncDp289v2=1716505022; cSyncDp293v1=1716505022; cSyncDp296v2=1716505022; cSyncDp312v1=1716505022
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 23 May 2024 22:57:03 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| sync.dsp.solta.io/match/kimberlite?id=Zk_JvgYpm1U | 217.199.220.72 | | 43 B |
URL sync.dsp.solta.io/match/kimberlite?id=Zk_JvgYpm1U IP217.199.220.72:0
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/kimberlite?id=Zk_JvgYpm1U HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:03 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/csync?cn=otmbid&bid=NjY0ZmM5YmUxMDVjYmFkMQ%3D%3D | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/csync?cn=otmbid&bid=NjY0ZmM5YmUxMDVjYmFkMQ%3D%3D IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=otmbid&bid=NjY0ZmM5YmUxMDVjYmFkMQ%3D%3D HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c; hbrdcookie2=a8c1cb0a172fc7587542; ohmybid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d; otclkbid=VU0cO9fZFTbYzyf; bzcookie=2b7cac89-dbec-4a60-55f9-8ae41986c68f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:03 GMT
content-type: image/jpeg
content-length: 0
set-cookie: otmbid=NjY0ZmM5YmUxMDVjYmFkMQ==; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| mc.acint.net/rmatch?dp=261&euid=4ec211a9-6227-4923-8ce5-0bf647838428&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261 | 193.3.184.130 | | 154 B |
URL mc.acint.net/rmatch?dp=261&euid=4ec211a9-6227-4923-8ce5-0bf647838428&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261 IP193.3.184.130:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=261&euid=4ec211a9-6227-4923-8ce5-0bf647838428&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAABmZPyb4Cmj2G6pIdAkIBkpH4MEihqIW1BhNGENNPJC6u; cSyncDp14v4=1716505022; cSyncDp14v6=1716505022; cSyncDp17v2=1716505022; cSyncDp45v5=1716505022; cSyncDp53v5=1716505022; cSyncDp62v2=1716505022; cSyncDp67v3=1716505022; cSyncDp68v3=1716505022; cSyncDp71v2=1716505022; cSyncDp80v2=1716505022; cSyncDp85v2=1716505022; cSyncDp95v4=1716505022; cSyncDp98v3=1716505022; cSyncDp104v2=1716505022; cSyncDp107v2=1716505022; cSyncDp110v3=1716505022; cSyncDp125v4=1716505022; cSyncDp126v3=1716505022; cSyncDp127v2=1716505022; cSyncDp129v2=1716505022; cSyncDp136v3=1716505022; cSyncDp146v2=1716505022; cSyncDp148v2=1716505022; cSyncDp149v3=1716505022; cSyncDp151v2=1716505022; cSyncDp251v1=1716505022; cSyncDp186v2=1716505022; cSyncDp217v2=1716505022; cSyncDp235v2=1716505022; cSyncDp239v2=1716505022; cSyncDp243v2=1716505022; cSyncDp260v2=1716505022; cSyncDp244v2=1716505022; cSyncDp248v2=1716505022; cSyncDp261v1=1716505022; cSyncDp289v2=1716505022; cSyncDp293v1=1716505022; cSyncDp296v2=1716505022; cSyncDp312v1=1716505022
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 23 May 2024 22:57:03 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=261
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| mc.acint.net/rmatch?dp=126&euid=020a78b3-6cfb-4a72-424b-e7e96ad96183&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126 | 193.3.184.130 | | 154 B |
URL mc.acint.net/rmatch?dp=126&euid=020a78b3-6cfb-4a72-424b-e7e96ad96183&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126 IP193.3.184.130:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=126&euid=020a78b3-6cfb-4a72-424b-e7e96ad96183&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAABmZPyb4Cmj2G6pIdAkIBkpH4MEihqIW1BhNGENNPJC6u; cSyncDp14v4=1716505022; cSyncDp14v6=1716505022; cSyncDp17v2=1716505022; cSyncDp45v5=1716505022; cSyncDp53v5=1716505022; cSyncDp62v2=1716505022; cSyncDp67v3=1716505022; cSyncDp68v3=1716505022; cSyncDp71v2=1716505022; cSyncDp80v2=1716505022; cSyncDp85v2=1716505022; cSyncDp95v4=1716505022; cSyncDp98v3=1716505022; cSyncDp104v2=1716505022; cSyncDp107v2=1716505022; cSyncDp110v3=1716505022; cSyncDp125v4=1716505022; cSyncDp126v3=1716505022; cSyncDp127v2=1716505022; cSyncDp129v2=1716505022; cSyncDp136v3=1716505022; cSyncDp146v2=1716505022; cSyncDp148v2=1716505022; cSyncDp149v3=1716505022; cSyncDp151v2=1716505022; cSyncDp251v1=1716505022; cSyncDp186v2=1716505022; cSyncDp217v2=1716505022; cSyncDp235v2=1716505022; cSyncDp239v2=1716505022; cSyncDp243v2=1716505022; cSyncDp260v2=1716505022; cSyncDp244v2=1716505022; cSyncDp248v2=1716505022; cSyncDp261v1=1716505022; cSyncDp289v2=1716505022; cSyncDp293v1=1716505022; cSyncDp296v2=1716505022; cSyncDp312v1=1716505022
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 23 May 2024 22:57:03 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=126
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| www.acint.net/match?dp=186&euid=32bfe97c-b48e-45ed-bba3-893e706feeea | 193.3.184.130 | | 43 B |
URL www.acint.net/match?dp=186&euid=32bfe97c-b48e-45ed-bba3-893e706feeea IP193.3.184.130:0
CertificateIssuerLet's Encrypt Subject*.acint.net Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1 ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=186&euid=32bfe97c-b48e-45ed-bba3-893e706feeea HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAABmZPyb4Cmj2G6pIdAkIBkpH4MEihqIW1BhNGENNPJC6u; cSyncDp14v4=1716505022; cSyncDp14v6=1716505022; cSyncDp17v2=1716505022; cSyncDp45v5=1716505022; cSyncDp53v5=1716505022; cSyncDp62v2=1716505022; cSyncDp67v3=1716505022; cSyncDp68v3=1716505022; cSyncDp71v2=1716505022; cSyncDp80v2=1716505022; cSyncDp85v2=1716505022; cSyncDp95v4=1716505022; cSyncDp98v3=1716505022; cSyncDp104v2=1716505022; cSyncDp107v2=1716505022; cSyncDp110v3=1716505022; cSyncDp125v4=1716505022; cSyncDp126v3=1716505022; cSyncDp127v2=1716505022; cSyncDp129v2=1716505022; cSyncDp136v3=1716505022; cSyncDp146v2=1716505022; cSyncDp148v2=1716505022; cSyncDp149v3=1716505022; cSyncDp151v2=1716505022; cSyncDp251v1=1716505022; cSyncDp186v2=1716505022; cSyncDp217v2=1716505022; cSyncDp235v2=1716505022; cSyncDp239v2=1716505022; cSyncDp243v2=1716505022; cSyncDp260v2=1716505022; cSyncDp244v2=1716505022; cSyncDp248v2=1716505022; cSyncDp261v1=1716505022; cSyncDp289v2=1716505022; cSyncDp293v1=1716505022; cSyncDp296v2=1716505022; cSyncDp312v1=1716505022
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 23 May 2024 22:57:03 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| sync.bumlam.com/?src=sape | 31.172.81.128 | | 0 B |
URL sync.bumlam.com/?src=sape IP31.172.81.128:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRjNGZjYjVkNi0xOTU3LTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Thu, 23 May 2024 22:57:03 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: close
Set-Cookie: suuid3=IiRjNGZjYjVkNi0xOTU3LTExZWYtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Wed, 18 May 2044 22:57:03 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: https://pix.bumlam.com/sync/sape/sync_ok?guid=c4fcb5d6-1957-11ef-86e0-002590c0647c
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://acint.net
Access-Control-Allow-Credentials: true
|
|
| kinozal.tv/pic/jquery-3.6.3.min.js?v=1.1 | 188.114.97.1 | 200 OK | 33 kB |
URL GET HTTP/3kinozal.tv/pic/jquery-3.6.3.min.js?v=1.1 IP188.114.97.1:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectkinozal.tv FingerprintF9:85:C5:F8:CE:16:DD:B8:C8:52:0B:B0:14:15:F2:65:EC:A2:20:91 ValiditySun, 14 Apr 2024 03:07:58 GMT - Sat, 13 Jul 2024 03:07:57 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hashcf2fbbf84281d9ecbffb4993203d543b 832a6a4e86daf38b1975d705c5de5d9e5f5844bc a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575
GET /pic/jquery-3.6.3.min.js?v=1.1 HTTP/1.1
Host: kinozal.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/details.php?id=952945e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:00 GMT
content-type: application/javascript
last-modified: Fri, 30 Dec 2022 12:30:16 GMT
etag: W/"63aed9d8-15f5b"
expires: Sat, 22 Jun 2024 22:57:00 GMT
cache-control: max-age=2592000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U5MKAXVEizuXESuG6q7iJAneSuJ9zovGMknEeb5ic8xccxcmt1bCjlnzrC1aM8vqQu9Qt1h%2BQFSLsYo4RNjAG7etYHIWXRPEZTsYeqgiFOCfPCmppFJ78OLDkKzJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47a981e56c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| sync.bumlam.com/?src=sap1&s_data=CAIQARi-k7-yBmIgMDYwMDAwN0ZCRUM5NEY2Njg2M0Q5QTAyMDIxRDkyRUGiARDE_LXWGVcR74bgACWQwGR8 | 31.172.81.128 | | 0 B |
URL sync.bumlam.com/?src=sap1&s_data=CAIQARi-k7-yBmIgMDYwMDAwN0ZCRUM5NEY2Njg2M0Q5QTAyMDIxRDkyRUGiARDE_LXWGVcR74bgACWQwGR8 IP31.172.81.128:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&s_data=CAIQARi-k7-yBmIgMDYwMDAwN0ZCRUM5NEY2Njg2M0Q5QTAyMDIxRDkyRUGiARDE_LXWGVcR74bgACWQwGR8 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRjNGZjYjVkNi0xOTU3LTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 May 2024 22:57:03 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: close
Set-Cookie: suuid3=IiRjNGZjYjVkNi0xOTU3LTExZWYtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Wed, 18 May 2044 22:57:03 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
|
|
| code.moviead55.ru/go/csync?cn=sapecookie&bid=0600007FBEC94F66863D9A02021D92EA | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/csync?cn=sapecookie&bid=0600007FBEC94F66863D9A02021D92EA IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=sapecookie&bid=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c; hbrdcookie2=a8c1cb0a172fc7587542; ohmybid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d; otclkbid=VU0cO9fZFTbYzyf; bzcookie=2b7cac89-dbec-4a60-55f9-8ae41986c68f; otmbid=NjY0ZmM5YmUxMDVjYmFkMQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:03 GMT
content-type: image/jpeg
content-length: 0
set-cookie: sapecookie=0600007FBEC94F66863D9A02021D92EA; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=ETILWAPG | 193.3.184.130 | | 154 B |
URL mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=ETILWAPG IP193.3.184.130:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=ETILWAPG HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAABmZPyb4Cmj2G6pIdAkIBkpH4MEihqIW1BhNGENNPJC6u; cSyncDp14v4=1716505022; cSyncDp14v6=1716505022; cSyncDp17v2=1716505022; cSyncDp45v5=1716505022; cSyncDp53v5=1716505022; cSyncDp62v2=1716505022; cSyncDp67v3=1716505022; cSyncDp68v3=1716505022; cSyncDp71v2=1716505022; cSyncDp80v2=1716505022; cSyncDp85v2=1716505022; cSyncDp95v4=1716505022; cSyncDp98v3=1716505022; cSyncDp104v2=1716505022; cSyncDp107v2=1716505022; cSyncDp110v3=1716505022; cSyncDp125v4=1716505022; cSyncDp126v3=1716505022; cSyncDp127v2=1716505022; cSyncDp129v2=1716505022; cSyncDp136v3=1716505022; cSyncDp146v2=1716505022; cSyncDp148v2=1716505022; cSyncDp149v3=1716505022; cSyncDp151v2=1716505022; cSyncDp251v1=1716505022; cSyncDp186v2=1716505022; cSyncDp217v2=1716505022; cSyncDp235v2=1716505022; cSyncDp239v2=1716505022; cSyncDp243v2=1716505022; cSyncDp260v2=1716505022; cSyncDp244v2=1716505022; cSyncDp248v2=1716505022; cSyncDp261v1=1716505022; cSyncDp289v2=1716505022; cSyncDp293v1=1716505022; cSyncDp296v2=1716505022; cSyncDp312v1=1716505022
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 23 May 2024 22:57:03 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=95
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| www.acint.net/match?dp=98&euid=d32dd97c-91da-4190-8b07-c086b3086b10 | 193.3.184.130 | | 43 B |
URL www.acint.net/match?dp=98&euid=d32dd97c-91da-4190-8b07-c086b3086b10 IP193.3.184.130:0
CertificateIssuerLet's Encrypt Subject*.acint.net Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1 ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=98&euid=d32dd97c-91da-4190-8b07-c086b3086b10 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAABmZPyb4Cmj2G6pIdAkIBkpH4MEihqIW1BhNGENNPJC6u; cSyncDp14v4=1716505022; cSyncDp14v6=1716505022; cSyncDp17v2=1716505022; cSyncDp45v5=1716505022; cSyncDp53v5=1716505022; cSyncDp62v2=1716505022; cSyncDp67v3=1716505022; cSyncDp68v3=1716505022; cSyncDp71v2=1716505022; cSyncDp80v2=1716505022; cSyncDp85v2=1716505022; cSyncDp95v4=1716505022; cSyncDp98v3=1716505022; cSyncDp104v2=1716505022; cSyncDp107v2=1716505022; cSyncDp110v3=1716505022; cSyncDp125v4=1716505022; cSyncDp126v3=1716505022; cSyncDp127v2=1716505022; cSyncDp129v2=1716505022; cSyncDp136v3=1716505022; cSyncDp146v2=1716505022; cSyncDp148v2=1716505022; cSyncDp149v3=1716505022; cSyncDp151v2=1716505022; cSyncDp251v1=1716505022; cSyncDp186v2=1716505022; cSyncDp217v2=1716505022; cSyncDp235v2=1716505022; cSyncDp239v2=1716505022; cSyncDp243v2=1716505022; cSyncDp260v2=1716505022; cSyncDp244v2=1716505022; cSyncDp248v2=1716505022; cSyncDp261v1=1716505022; cSyncDp289v2=1716505022; cSyncDp293v1=1716505022; cSyncDp296v2=1716505022; cSyncDp312v1=1716505022
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 23 May 2024 22:57:03 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| www.acint.net/rmatch?dp=71&euid=f98ce098-ff50-4704-b3c5-6c5def80af47&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71 | 193.3.184.130 | | 154 B |
URL www.acint.net/rmatch?dp=71&euid=f98ce098-ff50-4704-b3c5-6c5def80af47&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71 IP193.3.184.130:0
CertificateIssuerLet's Encrypt Subject*.acint.net Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1 ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=71&euid=f98ce098-ff50-4704-b3c5-6c5def80af47&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAABmZPyb4Cmj2G6pIdAkIBkpH4MEihqIW1BhNGENNPJC6u; cSyncDp14v4=1716505022; cSyncDp14v6=1716505022; cSyncDp17v2=1716505022; cSyncDp45v5=1716505022; cSyncDp53v5=1716505022; cSyncDp62v2=1716505022; cSyncDp67v3=1716505022; cSyncDp68v3=1716505022; cSyncDp71v2=1716505022; cSyncDp80v2=1716505022; cSyncDp85v2=1716505022; cSyncDp95v4=1716505022; cSyncDp98v3=1716505022; cSyncDp104v2=1716505022; cSyncDp107v2=1716505022; cSyncDp110v3=1716505022; cSyncDp125v4=1716505022; cSyncDp126v3=1716505022; cSyncDp127v2=1716505022; cSyncDp129v2=1716505022; cSyncDp136v3=1716505022; cSyncDp146v2=1716505022; cSyncDp148v2=1716505022; cSyncDp149v3=1716505022; cSyncDp151v2=1716505022; cSyncDp251v1=1716505022; cSyncDp186v2=1716505022; cSyncDp217v2=1716505022; cSyncDp235v2=1716505022; cSyncDp239v2=1716505022; cSyncDp243v2=1716505022; cSyncDp260v2=1716505022; cSyncDp244v2=1716505022; cSyncDp248v2=1716505022; cSyncDp261v1=1716505022; cSyncDp289v2=1716505022; cSyncDp293v1=1716505022; cSyncDp296v2=1716505022; cSyncDp312v1=1716505022
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 23 May 2024 22:57:03 GMT
content-type: text/html
content-length: 154
location: https://acint.net/cmatch?dp=71
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| www.acint.net/match?dp=129&euid=jpcg865icp | 193.3.184.130 | | 43 B |
URL www.acint.net/match?dp=129&euid=jpcg865icp IP193.3.184.130:0
CertificateIssuerLet's Encrypt Subject*.acint.net Fingerprint73:1C:BA:EB:E3:79:9A:52:40:EB:AA:73:62:F1:A6:C3:AA:A7:6C:E1 ValidityMon, 29 Apr 2024 01:51:20 GMT - Sun, 28 Jul 2024 01:51:19 GMT
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=129&euid=jpcg865icp HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAABmZPyb4Cmj2G6pIdAkIBkpH4MEihqIW1BhNGENNPJC6u; cSyncDp14v4=1716505022; cSyncDp14v6=1716505022; cSyncDp17v2=1716505022; cSyncDp45v5=1716505022; cSyncDp53v5=1716505022; cSyncDp62v2=1716505022; cSyncDp67v3=1716505022; cSyncDp68v3=1716505022; cSyncDp71v2=1716505022; cSyncDp80v2=1716505022; cSyncDp85v2=1716505022; cSyncDp95v4=1716505022; cSyncDp98v3=1716505022; cSyncDp104v2=1716505022; cSyncDp107v2=1716505022; cSyncDp110v3=1716505022; cSyncDp125v4=1716505022; cSyncDp126v3=1716505022; cSyncDp127v2=1716505022; cSyncDp129v2=1716505022; cSyncDp136v3=1716505022; cSyncDp146v2=1716505022; cSyncDp148v2=1716505022; cSyncDp149v3=1716505022; cSyncDp151v2=1716505022; cSyncDp251v1=1716505022; cSyncDp186v2=1716505022; cSyncDp217v2=1716505022; cSyncDp235v2=1716505022; cSyncDp239v2=1716505022; cSyncDp243v2=1716505022; cSyncDp260v2=1716505022; cSyncDp244v2=1716505022; cSyncDp248v2=1716505022; cSyncDp261v1=1716505022; cSyncDp289v2=1716505022; cSyncDp293v1=1716505022; cSyncDp296v2=1716505022; cSyncDp312v1=1716505022
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 23 May 2024 22:57:03 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| adx.com.ru/sync?sspKey=25&sspUserID=0600007FBEC94F66863D9A02021D92EA | 83.222.105.118 | | 231 B |
URL adx.com.ru/sync?sspKey=25&sspUserID=0600007FBEC94F66863D9A02021D92EA IP83.222.105.118:0
File typeHTML document, ASCII text Hash5a7de6e84932239cba07eda35be6e9dc 54250a92649be69493ef78bc81cc4ef3597d8c1a f0893508a40f96c068ae50084bbeefb2e5f07a1c8adf5e8dcc0549ca63178c75
GET /sync?sspKey=25&sspUserID=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: adx.com.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: user=664fc9bf7011cb00010a84dc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.26.0
date: Thu, 23 May 2024 22:57:03 GMT
content-type: text/html; charset=utf-8
content-length: 231
cache-control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fadx.com.ru%2Fweborama-sync%3Furl%3Dhttps%253A%252F%252Fprodmp.ru%252Fyabbi.gif%253Fuid%253D664fc9bf7011cb00010a84dc%2526r%253D%26webouid%3D{WEBO_CID}
p3p: CP="adx.com.ru does not have a P3P policy"
X-Firefox-Spdy: h2
|
|
| mc.acint.net/cmatch?dp=110 | 193.3.184.130 | | 154 B |
URL mc.acint.net/cmatch?dp=110 IP193.3.184.130:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=110 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAABmZPyb4Cmj2G6pIdAkIBkpH4MEihqIW1BhNGENNPJC6u; cSyncDp14v4=1716505022; cSyncDp14v6=1716505022; cSyncDp17v2=1716505022; cSyncDp45v5=1716505022; cSyncDp53v5=1716505022; cSyncDp62v2=1716505022; cSyncDp67v3=1716505022; cSyncDp68v3=1716505022; cSyncDp71v2=1716505022; cSyncDp80v2=1716505022; cSyncDp85v2=1716505022; cSyncDp95v4=1716505022; cSyncDp98v3=1716505022; cSyncDp104v2=1716505022; cSyncDp107v2=1716505022; cSyncDp110v3=1716505022; cSyncDp125v4=1716505022; cSyncDp126v3=1716505022; cSyncDp127v2=1716505022; cSyncDp129v2=1716505022; cSyncDp136v3=1716505022; cSyncDp146v2=1716505022; cSyncDp148v2=1716505022; cSyncDp149v3=1716505022; cSyncDp151v2=1716505022; cSyncDp251v1=1716505022; cSyncDp186v2=1716505022; cSyncDp217v2=1716505022; cSyncDp235v2=1716505022; cSyncDp239v2=1716505022; cSyncDp243v2=1716505022; cSyncDp260v2=1716505022; cSyncDp244v2=1716505022; cSyncDp248v2=1716505022; cSyncDp261v1=1716505022; cSyncDp289v2=1716505022; cSyncDp293v1=1716505022; cSyncDp296v2=1716505022; cSyncDp312v1=1716505022
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 23 May 2024 22:57:03 GMT
content-type: text/html
content-length: 154
location: https://ads.betweendigital.com/match?bidder_id=73&external_user_id=0600007FBEC94F66863D9A02021D92EA
set-cookie: cSyncDp7v3=1716505023; expires=Sat, 22-Jun-24 22:57:03 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| mc.acint.net/cmatch?dp=261 | 193.3.184.130 | | 154 B |
URL mc.acint.net/cmatch?dp=261 IP193.3.184.130:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=261 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAABmZPyb4Cmj2G6pIdAkIBkpH4MEihqIW1BhNGENNPJC6u; cSyncDp14v4=1716505022; cSyncDp14v6=1716505022; cSyncDp17v2=1716505022; cSyncDp45v5=1716505022; cSyncDp53v5=1716505022; cSyncDp62v2=1716505022; cSyncDp67v3=1716505022; cSyncDp68v3=1716505022; cSyncDp71v2=1716505022; cSyncDp80v2=1716505022; cSyncDp85v2=1716505022; cSyncDp95v4=1716505022; cSyncDp98v3=1716505022; cSyncDp104v2=1716505022; cSyncDp107v2=1716505022; cSyncDp110v3=1716505022; cSyncDp125v4=1716505022; cSyncDp126v3=1716505022; cSyncDp127v2=1716505022; cSyncDp129v2=1716505022; cSyncDp136v3=1716505022; cSyncDp146v2=1716505022; cSyncDp148v2=1716505022; cSyncDp149v3=1716505022; cSyncDp151v2=1716505022; cSyncDp251v1=1716505022; cSyncDp186v2=1716505022; cSyncDp217v2=1716505022; cSyncDp235v2=1716505022; cSyncDp239v2=1716505022; cSyncDp243v2=1716505022; cSyncDp260v2=1716505022; cSyncDp244v2=1716505022; cSyncDp248v2=1716505022; cSyncDp261v1=1716505022; cSyncDp289v2=1716505022; cSyncDp293v1=1716505022; cSyncDp296v2=1716505022; cSyncDp312v1=1716505022; cSyncDp7v3=1716505023
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 23 May 2024 22:57:03 GMT
content-type: text/html
content-length: 154
location: https://match.qtarget.tech/userbind?src=sape&id=0600007FBEC94F66863D9A02021D92EA
set-cookie: cSyncDp241v2=1716505023; expires=Sat, 22-Jun-24 22:57:03 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| kinozal.tv/pic/favicon.ico | 188.114.97.1 | 200 OK | 717 B |
URL GET HTTP/3kinozal.tv/pic/favicon.ico IP188.114.97.1:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectkinozal.tv FingerprintF9:85:C5:F8:CE:16:DD:B8:C8:52:0B:B0:14:15:F2:65:EC:A2:20:91 ValiditySun, 14 Apr 2024 03:07:58 GMT - Sat, 13 Jul 2024 03:07:57 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hashbd1c64d980e93b7057d203043c48d90f b0fd632ee89c76a905de26a20913ea0146b6374f dc84914a7f9cf1fb0bdd3d2142c3f114cd7bdc28228c8683e236c295b0496b59
GET /pic/favicon.ico HTTP/1.1
Host: kinozal.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/details.php?id=952945e
Cookie: surfer_uuid=00ab6745-69bd-48b4-a47b-ff155142e13f; la_page_depth=%7B%22last%22%3A%22https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e%22%2C%22depth%22%3A1%7D; page_load_uuid=dc67dca6-59c3-4e49-a79c-d831c223607c; chash=ffduUQWmJE; _ma=c34b4227-dc4b-469a-bcb6-6e1bfb6440f5; _ohmybid_cmf=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:02 GMT
content-type: image/x-icon
last-modified: Sat, 11 Oct 2014 12:35:51 GMT
etag: W/"54392427-47e"
expires: Sat, 22 Jun 2024 22:57:02 GMT
cache-control: max-age=2592000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KFI2Zl%2FvRqXk6kJWe2PTR52A9B%2FbT%2Fy2y9%2BImIWgSj1YUOATYPEPDMTa2Enbwh0vSQxff%2Bj5FUeDXsW7kYG6JvMp7d0WJHlrthGRu%2FoBQ1QLpQ2OO%2FpZZC7EREr1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a485beae56c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| pix.bumlam.com/sync/sape/sync_ok?guid=c4fcb5d6-1957-11ef-86e0-002590c0647c | 31.172.81.172 | | 0 B |
URL pix.bumlam.com/sync/sape/sync_ok?guid=c4fcb5d6-1957-11ef-86e0-002590c0647c IP31.172.81.172:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/sync_ok?guid=c4fcb5d6-1957-11ef-86e0-002590c0647c HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRjNGZjYjVkNi0xOTU3LTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 23 May 2024 22:57:03 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://c4fcb5d6-1957-11ef-86e0-002590c0647c.n3.sync.bumlam.com/?src=sape
|
|
| sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Dd32dd97c-91da-4190-8b07-c086b3086b10 | 104.21.26.195 | | 145 B |
URL sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Dd32dd97c-91da-4190-8b07-c086b3086b10 IP104.21.26.195:0
Hash251a4b61eca2d0163da4c80c49d61bfe e7f44563f13b85f88305adcb9ed0adc1648270f6 e69e854af4d580d47b62764adc06ad7ee7fd2c4e4016197d18423014079bc01f
GET /check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Dd32dd97c-91da-4190-8b07-c086b3086b10 HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: as-user=d32dd97c-91da-4190-8b07-c086b3086b10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Thu, 23 May 2024 22:57:03 GMT
content-type: text/html; charset=utf-8
location: https://www.acint.net/match?dp=98&euid=d32dd97c-91da-4190-8b07-c086b3086b10
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: PUT, GET, POST, OPTIONS
access-control-allow-headers: Content-Type, authorization
access-control-max-age: 1728000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=md6D0rL99ayIAx84S0aJEaAS7PcVydcf4CsHOcTJNXJqUGycmAMAhypwmiQpMJkEE6lswSb9ETlMVFg4bqS3q8YKbabxucs5lZ%2B35346uWX6Tl4crsZxZOCNqawsHp0z5avhliI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a48aab0156a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| acint.net/cmatch?dp=71 | 193.3.184.130 | | 154 B |
IP193.3.184.130:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=71 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAABmZPyb4Cmj2G6pIdAkIBkpH4MEihqIW1BhNGENNPJC6u; cSyncDp14v4=1716505022; cSyncDp14v6=1716505022; cSyncDp17v2=1716505022; cSyncDp45v5=1716505022; cSyncDp53v5=1716505022; cSyncDp62v2=1716505022; cSyncDp67v3=1716505022; cSyncDp68v3=1716505022; cSyncDp71v2=1716505022; cSyncDp80v2=1716505022; cSyncDp85v2=1716505022; cSyncDp95v4=1716505022; cSyncDp98v3=1716505022; cSyncDp104v2=1716505022; cSyncDp107v2=1716505022; cSyncDp110v3=1716505022; cSyncDp125v4=1716505022; cSyncDp126v3=1716505022; cSyncDp127v2=1716505022; cSyncDp129v2=1716505022; cSyncDp136v3=1716505022; cSyncDp146v2=1716505022; cSyncDp148v2=1716505022; cSyncDp149v3=1716505022; cSyncDp151v2=1716505022; cSyncDp251v1=1716505022; cSyncDp186v2=1716505022; cSyncDp217v2=1716505022; cSyncDp235v2=1716505022; cSyncDp239v2=1716505022; cSyncDp243v2=1716505022; cSyncDp260v2=1716505022; cSyncDp244v2=1716505022; cSyncDp248v2=1716505022; cSyncDp261v1=1716505022; cSyncDp289v2=1716505022; cSyncDp293v1=1716505022; cSyncDp296v2=1716505022; cSyncDp312v1=1716505022; cSyncDp7v3=1716505023
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 23 May 2024 22:57:03 GMT
content-type: text/html
content-length: 154
location: https://match.qtarget.tech/userbind?src=sape&id=0600007FBEC94F66863D9A02021D92EA
set-cookie: cSyncDp241v2=1716505023; expires=Sat, 22-Jun-24 22:57:03 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| mc.acint.net/cmatch?dp=95 | 193.3.184.130 | | 154 B |
URL mc.acint.net/cmatch?dp=95 IP193.3.184.130:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=95 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAABmZPyb4Cmj2G6pIdAkIBkpH4MEihqIW1BhNGENNPJC6u; cSyncDp14v4=1716505022; cSyncDp14v6=1716505022; cSyncDp17v2=1716505022; cSyncDp45v5=1716505022; cSyncDp53v5=1716505022; cSyncDp62v2=1716505022; cSyncDp67v3=1716505022; cSyncDp68v3=1716505022; cSyncDp71v2=1716505022; cSyncDp80v2=1716505022; cSyncDp85v2=1716505022; cSyncDp95v4=1716505022; cSyncDp98v3=1716505022; cSyncDp104v2=1716505022; cSyncDp107v2=1716505022; cSyncDp110v3=1716505022; cSyncDp125v4=1716505022; cSyncDp126v3=1716505022; cSyncDp127v2=1716505022; cSyncDp129v2=1716505022; cSyncDp136v3=1716505022; cSyncDp146v2=1716505022; cSyncDp148v2=1716505022; cSyncDp149v3=1716505022; cSyncDp151v2=1716505022; cSyncDp251v1=1716505022; cSyncDp186v2=1716505022; cSyncDp217v2=1716505022; cSyncDp235v2=1716505022; cSyncDp239v2=1716505022; cSyncDp243v2=1716505022; cSyncDp260v2=1716505022; cSyncDp244v2=1716505022; cSyncDp248v2=1716505022; cSyncDp261v1=1716505022; cSyncDp289v2=1716505022; cSyncDp293v1=1716505022; cSyncDp296v2=1716505022; cSyncDp312v1=1716505022; cSyncDp7v3=1716505023
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 23 May 2024 22:57:03 GMT
content-type: text/html
content-length: 154
location: https://match.qtarget.tech/userbind?src=sape&id=0600007FBEC94F66863D9A02021D92EA
set-cookie: cSyncDp241v2=1716505023; expires=Sat, 22-Jun-24 22:57:03 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| data.24smi.net/collect?obj=25193&template_id=15870&teaser_ids=3913515%2C3913486%2C3913472%2C6092348%2C6040043%2C6124905%2C5755209%2C6026397%2C5917929%2C3913594%2C6079558%2C5890490%2C6060602%2C5733368%2C6132324%2C6079565%2C6060599%2C5991980%2C6119480%2C6079562&isizes=&rd=562&dd=221&t=1716505021206&show_id=1a7d3926-19a7-4590-879a-fa51a0b3cece | 104.22.40.74 | 200 OK | 43 B |
URL GET HTTP/2data.24smi.net/collect?obj=25193&template_id=15870&teaser_ids=3913515%2C3913486%2C3913472%2C6092348%2C6040043%2C6124905%2C5755209%2C6026397%2C5917929%2C3913594%2C6079558%2C5890490%2C6060602%2C5733368%2C6132324%2C6079565%2C6060599%2C5991980%2C6119480%2C6079562&isizes=&rd=562&dd=221&t=1716505021206&show_id=1a7d3926-19a7-4590-879a-fa51a0b3cece IP104.22.40.74:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintC5:11:EA:DF:22:74:A7:88:5E:76:7C:DD:63:87:55:80:A9:0C:ED:24 ValiditySun, 13 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /collect?obj=25193&template_id=15870&teaser_ids=3913515%2C3913486%2C3913472%2C6092348%2C6040043%2C6124905%2C5755209%2C6026397%2C5917929%2C3913594%2C6079558%2C5890490%2C6060602%2C5733368%2C6132324%2C6079565%2C6060599%2C5991980%2C6119480%2C6079562&isizes=&rd=562&dd=221&t=1716505021206&show_id=1a7d3926-19a7-4590-879a-fa51a0b3cece HTTP/1.1
Host: data.24smi.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: smi_uid=BV0BOf0LS
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 23 May 2024 22:57:03 GMT
content-type: image/gif
content-length: 43
last-modified: Thu, 23 May 2024 22:57:03 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store
strict-transport-security: max-age=0
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8888a48dfebc10b9-CPH
X-Firefox-Spdy: h2
|
|
| ssp.bidvol.com/usersync?dspcsid=8&redirect=1 |  65.109.65.187 | | 503 B |
URL ssp.bidvol.com/usersync?dspcsid=8&redirect=1 IP65.109.65.187:0 ASN#24940 Hetzner Online GmbH
Hash30cbb3f2a88b9a8cba73792504b61945 4a577ea6cea52bf3ee50d9f3add38df140932c3b f237c9fbbea93863acaadcaf9bff9e1ddd463788b6f61e71b822de42b1893d91
GET /usersync?dspcsid=8&redirect=1 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.22.0
date: Thu, 23 May 2024 22:57:03 GMT
x-request-id: d231f380-074c-4a1a-be47-af0a15a5a58a
vary: Origin
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
set-cookie: bvuid=jpcg865icp; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=jpcg865icp; Max-Age=2147483647; Domain=.bidvol.com; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
location: https://www.acint.net/match?dp=129&euid=jpcg865icp
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/jmap?v=933dcc028b4e27355cfe96f951ce9ca0&sid=ap&cp.referer=https%253A%252F%252Fkinozal.tv%252Fdetails.php%253Fid%253D952945e&it=1&tq=2&cp.cb=45046833-ca79-d14e-8ac1-736ef760d1db&session=7d4e3c66-37e8-45a1-8968-451b82e196cf&position=pre&vt=100&ostream=true&isp=0&suri=https%253A%252F%252Fkinozal.tv%252Fdetails.php%253Fid%253D952945e&rnd=1716505023935&raw=yes | 193.200.65.151 | | 1.9 kB |
URL code.moviead55.ru/go/jmap?v=933dcc028b4e27355cfe96f951ce9ca0&sid=ap&cp.referer=https%253A%252F%252Fkinozal.tv%252Fdetails.php%253Fid%253D952945e&it=1&tq=2&cp.cb=45046833-ca79-d14e-8ac1-736ef760d1db&session=7d4e3c66-37e8-45a1-8968-451b82e196cf&position=pre&vt=100&ostream=true&isp=0&suri=https%253A%252F%252Fkinozal.tv%252Fdetails.php%253Fid%253D952945e&rnd=1716505023935&raw=yes IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
File typegzip compressed data, from Unix Hashcbaeee93ac573aeeef196096edf68102 838bc377a24899884a3da11c361711dfaa764c53 1b290d90eb1a5a1f9a94dfb2fb11c12ee68cfc6ecbef607e70ccfa680844eddd
GET /go/jmap?v=933dcc028b4e27355cfe96f951ce9ca0&sid=ap&cp.referer=https%253A%252F%252Fkinozal.tv%252Fdetails.php%253Fid%253D952945e&it=1&tq=2&cp.cb=45046833-ca79-d14e-8ac1-736ef760d1db&session=7d4e3c66-37e8-45a1-8968-451b82e196cf&position=pre&vt=100&ostream=true&isp=0&suri=https%253A%252F%252Fkinozal.tv%252Fdetails.php%253Fid%253D952945e&rnd=1716505023935&raw=yes HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kinozal.tv
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c; hbrdcookie2=a8c1cb0a172fc7587542; ohmybid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d; otclkbid=VU0cO9fZFTbYzyf; bzcookie=2b7cac89-dbec-4a60-55f9-8ae41986c68f; otmbid=NjY0ZmM5YmUxMDVjYmFkMQ==; sapecookie=0600007FBEC94F66863D9A02021D92EA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:03 GMT
content-type: application/json;charset=UTF-8
vary: Accept-Encoding
x-movieads-cors-qex: Referer
x-movieads-path: /
access-control-allow-credentials: true
access-control-allow-origin: https://kinozal.tv
x-go-country: NO
x-movieads-udata: cache,parsed,147374
x-movieads-plc: 0
x-movieads-ark: true
x-movieads-qmc: NO
x-movieads-rdb: 0
x-movieads-alc: 4
x-movieads-ctvs: 4
server-timing: keyValidation;dur=0.0000, optProc;dur=0.0000, qManager;dur=0.0000, getJson;dur=0.0000, uData;dur=0.0000, validations_776;dur=0.0000, attachTracking;dur=0.0000, initBuilder;dur=0.0000, getAnyQueue;dur=0.0000, buildTagsQueue;dur=0.0000, getLinks;dur=0.0000, range_links;dur=0.0000, jmapParams;dur=0.0000, corsParams;dur=0.0000, wmData;dur=0.0000, queueSort;dur=0.0000, queuesMerge;dur=0.0000
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| c4fcb5d6-1957-11ef-86e0-002590c0647c.n3.sync.bumlam.com/?src=sape | 185.43.4.87 | | 0 B |
URL c4fcb5d6-1957-11ef-86e0-002590c0647c.n3.sync.bumlam.com/?src=sape IP185.43.4.87:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: c4fcb5d6-1957-11ef-86e0-002590c0647c.n3.sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRjNGZjYjVkNi0xOTU3LTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.26.0
date: Thu, 23 May 2024 22:57:03 GMT
content-length: 0
location: https://pix.bumlam.com/sync/sape/done
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
X-Firefox-Spdy: h2
|
|
| pix.bumlam.com/sync/sape/done | 31.172.81.172 | | 43 B |
URL pix.bumlam.com/sync/sape/done IP31.172.81.172:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sync/sape/done HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRjNGZjYjVkNi0xOTU3LTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 May 2024 22:57:04 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
|
|
| match.qtarget.tech/userbind?src=sape&id=0600007FBEC94F66863D9A02021D92EA | 95.163.92.180 | | 0 B |
URL match.qtarget.tech/userbind?src=sape&id=0600007FBEC94F66863D9A02021D92EA IP95.163.92.180:0 ASN#12695 LLC Digital Network
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: match.qtarget.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Thu, 23 May 2024 22:57:04 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
|
|
| match.qtarget.tech/userbind?src=sape&id=0600007FBEC94F66863D9A02021D92EA | 95.163.92.180 | | 0 B |
URL match.qtarget.tech/userbind?src=sape&id=0600007FBEC94F66863D9A02021D92EA IP95.163.92.180:0 ASN#12695 LLC Digital Network
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: match.qtarget.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Thu, 23 May 2024 22:57:04 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
|
|
| match.qtarget.tech/userbind?src=sape&id=0600007FBEC94F66863D9A02021D92EA | 95.163.92.180 | | 0 B |
URL match.qtarget.tech/userbind?src=sape&id=0600007FBEC94F66863D9A02021D92EA IP95.163.92.180:0 ASN#12695 LLC Digital Network
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: match.qtarget.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Thu, 23 May 2024 22:57:04 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
|
|
| match.qtarget.tech/userbind?src=sape&id=0600007FBEC94F66863D9A02021D92EA | 95.163.92.180 | | 0 B |
URL match.qtarget.tech/userbind?src=sape&id=0600007FBEC94F66863D9A02021D92EA IP95.163.92.180:0 ASN#12695 LLC Digital Network
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: match.qtarget.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Thu, 23 May 2024 22:57:04 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
|
|
| endpoints.dochase.com/?seat=evxGM8Wybgk6hDa9lZoy&token=ggVl8a4pY8KlsunXQ24YAedeD25lKPrm&cb=1716505024.0223145&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&ip=192.168.110.151%3A54564&w=400&h=225&url=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&domain=kinozal.tv&cat=324&ref=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&maxduration=40&minduration=1&playerwidth=400&playerheight=225&publisher_id=d2dad773-b18d-226a-499d-85d201d8f18c | 8.2.109.53 | | 21 B |
URL endpoints.dochase.com/?seat=evxGM8Wybgk6hDa9lZoy&token=ggVl8a4pY8KlsunXQ24YAedeD25lKPrm&cb=1716505024.0223145&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&ip=192.168.110.151%3A54564&w=400&h=225&url=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&domain=kinozal.tv&cat=324&ref=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&maxduration=40&minduration=1&playerwidth=400&playerheight=225&publisher_id=d2dad773-b18d-226a-499d-85d201d8f18c IP8.2.109.53:0
File typeASCII text, with no line terminators Hash13ac7a47804f191f7cbe9b50641403d8 32f847ad3e7ef2388d22268a5164b46cae07e593 64a76d85490bf923477d715fb998da7a59c66988a645d080e2436f40cb3190f6
GET /?seat=evxGM8Wybgk6hDa9lZoy&token=ggVl8a4pY8KlsunXQ24YAedeD25lKPrm&cb=1716505024.0223145&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&ip=192.168.110.151%3A54564&w=400&h=225&url=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&domain=kinozal.tv&cat=324&ref=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&maxduration=40&minduration=1&playerwidth=400&playerheight=225&publisher_id=d2dad773-b18d-226a-499d-85d201d8f18c HTTP/1.1
Host: endpoints.dochase.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kinozal.tv
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 May 2024 22:57:04 GMT
Content-Type: text/xml
Content-Length: 21
Connection: keep-alive
Access-Control-Allow-Origin: https://kinozal.tv
Access-Control-Allow-Credentials: true
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
X-Frame-Options: DENY
|
|
| static.filmskino.site/hls/trailers/haJtaSLlx4E.mp4/index.m3u8 | 193.200.65.210 | | 344 B |
URL static.filmskino.site/hls/trailers/haJtaSLlx4E.mp4/index.m3u8 IP193.200.65.210:0 ASN#6681 Giveme Cloud Sp Z O O
Hash91364f2875c63ef5606a088fdc8423ca 7c2afd67090b0a0b5e7a59620a0b36c1f5b0d769 a25fe191d17f85c4bc36f6a08856d384d7551c76f407d0221e579c757006c1ba
GET /hls/trailers/haJtaSLlx4E.mp4/index.m3u8 HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 May 2024 22:57:05 GMT
Content-Type: application/vnd.apple.mpegurl
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"3a1794b0-11b9"
Expires: Sat, 31 Aug 2024 22:57:05 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Content-Encoding: gzip
|
|
| static.filmskino.site/hls/trailers/haJtaSLlx4E.mp4/seg-1-v1-a1.ts | 193.200.65.210 | | 184 kB |
URL static.filmskino.site/hls/trailers/haJtaSLlx4E.mp4/seg-1-v1-a1.ts IP193.200.65.210:0 ASN#6681 Giveme Cloud Sp Z O O
File typeMPEG transport stream data Size184 kB (183864 bytes) Hash6526acb55dd4d058bab98379a7ac1333 a98bcc435891764b4e5d89a9a292ca43a199e194 bd74130e082662a6db02b8315470e58d64c6bf5920d8bf7d0df0ef15a7e19b73
GET /hls/trailers/haJtaSLlx4E.mp4/seg-1-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 May 2024 22:57:05 GMT
Content-Type: video/MP2T
Content-Length: 183864
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-2ce38"
Expires: Sat, 31 Aug 2024 22:57:05 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| static.filmskino.site/hls/trailers/haJtaSLlx4E.mp4/seg-2-v1-a1.ts | 193.200.65.210 | | 151 kB |
URL static.filmskino.site/hls/trailers/haJtaSLlx4E.mp4/seg-2-v1-a1.ts IP193.200.65.210:0 ASN#6681 Giveme Cloud Sp Z O O
File typeMPEG transport stream data Size151 kB (150776 bytes) Hashd81604cf08ae3064717a2b46035b6bc5 453534b29d73fc0284bd4594a3490e271156dffa dc0859a79f3c93b293e870ace798b5f7e8718352dd4e5690c9e16b011908465d
GET /hls/trailers/haJtaSLlx4E.mp4/seg-2-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 May 2024 22:57:05 GMT
Content-Type: video/MP2T
Content-Length: 150776
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-24cf8"
Expires: Sat, 31 Aug 2024 22:57:05 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| s.ccsyncuuid.net/match/5/?remote_uid=0600007FBEC94F66863D9A02021D92EA |  46.8.8.100 | | 57 B |
URL s.ccsyncuuid.net/match/5/?remote_uid=0600007FBEC94F66863D9A02021D92EA IP46.8.8.100:0
Hash6e07d282904e3ed34dcc67090597f9f7 27707a8fa69b37d127e181a818ad65034cca8725 0e0399c76b900b02a90a2045a930b85a96988945388a5e0caca770f25e473360
GET /match/5/?remote_uid=0600007FBEC94F66863D9A02021D92EA HTTP/1.1
Host: s.ccsyncuuid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 57
date: Thu, 23 May 2024 22:57:07 GMT
X-Firefox-Spdy: h2
|
|
| logger.moviead55.ru/logger.php?v=933dcc028b4e27355cfe96f951ce9ca0&c=7d4e3c66-37e8-45a1-8968-451b82e196cf&t=player_loaded&a=&m=%7B%22sub_id%22%3A%22ap%22%2C%22loadTime%22%3A1.499%2C%22version%22%3A%221716388325043%22%2C%22vt%22%3A100%2C%22dv%22%3Atrue%2C%22l%22%3A%22https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e%22%2C%22scr%22%3A%7B%22w%22%3A1280%2C%22h%22%3A1024%2C%22c%22%3A24%2C%22iw%22%3A400%2C%22ih%22%3A225%7D%7D&o= | 193.200.65.146 | | 81 B |
URL logger.moviead55.ru/logger.php?v=933dcc028b4e27355cfe96f951ce9ca0&c=7d4e3c66-37e8-45a1-8968-451b82e196cf&t=player_loaded&a=&m=%7B%22sub_id%22%3A%22ap%22%2C%22loadTime%22%3A1.499%2C%22version%22%3A%221716388325043%22%2C%22vt%22%3A100%2C%22dv%22%3Atrue%2C%22l%22%3A%22https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e%22%2C%22scr%22%3A%7B%22w%22%3A1280%2C%22h%22%3A1024%2C%22c%22%3A24%2C%22iw%22%3A400%2C%22ih%22%3A225%7D%7D&o= IP193.200.65.146:0 ASN#6681 Giveme Cloud Sp Z O O
File typePNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced Hashb357a19c87624c7c4d131aeeb4ae677f c7a9c45fd419815a5ab1998503a9f03514c0e229 497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?v=933dcc028b4e27355cfe96f951ce9ca0&c=7d4e3c66-37e8-45a1-8968-451b82e196cf&t=player_loaded&a=&m=%7B%22sub_id%22%3A%22ap%22%2C%22loadTime%22%3A1.499%2C%22version%22%3A%221716388325043%22%2C%22vt%22%3A100%2C%22dv%22%3Atrue%2C%22l%22%3A%22https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e%22%2C%22scr%22%3A%7B%22w%22%3A1280%2C%22h%22%3A1024%2C%22c%22%3A24%2C%22iw%22%3A400%2C%22ih%22%3A225%7D%7D&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:03 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| serieslife.online/frndnp.php?ver=1&autoplay=1&v=933dcc028b4e27355cfe96f951ce9ca0&cb=7d4e3c66-37e8-45a1-8968-451b82e196cf&fclose=false&jh=cpzse3jqpizzc4mfcf1dkpjqqj4o&sth=qp4gn7djcczg455spf1sn3bigwz8r7e&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=124&r=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&frnd=true&maid=c34b4227-dc4b-469a-bcb6-6e1bfb6440f5&rel=true&rnd=1716505040476&cnt=1 | 172.67.201.151 | | 31 kB |
URL GET serieslife.online/frndnp.php?ver=1&autoplay=1&v=933dcc028b4e27355cfe96f951ce9ca0&cb=7d4e3c66-37e8-45a1-8968-451b82e196cf&fclose=false&jh=cpzse3jqpizzc4mfcf1dkpjqqj4o&sth=qp4gn7djcczg455spf1sn3bigwz8r7e&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=124&r=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&frnd=true&maid=c34b4227-dc4b-469a-bcb6-6e1bfb6440f5&rel=true&rnd=1716505040476&cnt=1 IP172.67.201.151:0
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerCloudflare, Inc. Subjectserieslife.online FingerprintA7:62:DB:C6:ED:6C:0C:8D:6B:D1:F6:87:32:32:D0:BB:F7:6A:69:46 ValidityWed, 27 Dec 2023 00:00:00 GMT - Thu, 26 Dec 2024 23:59:59 GMT
File typeASCII text, with very long lines (65518) Hash5bfcf5760bf0bb478974b4a9f1ff41f6 06794afffccd3d73c62545b4554b186844fcd73c 273b0e8aa61a4150d785e13586e880f1e22abf49ae01e82b839d35cad686e055
GET /frndnp.php?ver=1&autoplay=1&v=933dcc028b4e27355cfe96f951ce9ca0&cb=7d4e3c66-37e8-45a1-8968-451b82e196cf&fclose=false&jh=cpzse3jqpizzc4mfcf1dkpjqqj4o&sth=qp4gn7djcczg455spf1sn3bigwz8r7e&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=124&r=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&frnd=true&maid=c34b4227-dc4b-469a-bcb6-6e1bfb6440f5&rel=true&rnd=1716505040476&cnt=1 HTTP/1.1
Host: serieslife.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:20 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-cache: Yac
x-movieads-country: NO
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D2Z%2BsgtCZ777uAwDP2RoxBVXBFhcWijBZRL5dK3ZudgV6QW8%2FYeegat7o8ID24TXJMKl3qxKLN43jQzlr5z1wfs68C0qdJ8IFKLeWRSXUhvOT0miePa1BQb1tfzfi%2FSqzmAxBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a4f8190756bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=Fira%20Sans:wght@400;500;700&display=swap | 142.250.74.106 | | 725 B |
URL fonts.googleapis.com/css2?family=Fira%20Sans:wght@400;500;700&display=swap IP142.250.74.106:0
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint58:16:76:D3:35:A7:C7:1B:68:67:E2:F5:33:04:0E:E9:CB:56:BD:77 ValidityMon, 06 May 2024 14:43:20 GMT - Mon, 29 Jul 2024 14:43:19 GMT
Hashd018891f2d146b8ca110d4b21059d8c3 3444f314cf59a166b1e320fa4e549390becbf623 f414f46b522c7b406d785f1e1e87d0e1222f8c403f61ff44cbc0527fe7192b4a
GET /css2?family=Fira%20Sans:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 23 May 2024 22:57:01 GMT
date: Thu, 23 May 2024 22:57:01 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| vak345.com/s.js?v=933dcc028b4e27355cfe96f951ce9ca0 | 104.21.69.38 | 200 OK | 2.0 kB |
URL GET HTTP/2vak345.com/s.js?v=933dcc028b4e27355cfe96f951ce9ca0 IP104.21.69.38:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerGoogle Trust Services LLC Subjectvak345.com Fingerprint24:4A:87:25:20:E4:20:04:34:86:6B:9B:53:2A:57:5F:39:1D:94:22 ValiditySun, 07 Apr 2024 00:32:34 GMT - Sat, 06 Jul 2024 00:32:33 GMT
File typeJavaScript source, ASCII text, with very long lines (3890) Hash2f5a614d624a3c25681b21a76369c29b 8dce0327201b233a623dd05447baf4275a3738d0 96860142f0846bd17a9fa6d17e8342c34ce6bee70cdba6405ced9de9f17fd4c2
GET /s.js?v=933dcc028b4e27355cfe96f951ce9ca0 HTTP/1.1
Host: vak345.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 23 May 2024 22:57:01 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-movieads-country: NO
content-encoding: gzip
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fVVsOUk2Yq1knNQq2gRi6a0DlVJAz87XhYRJgogxmXsDIvhUnY8Ac%2FfNxjDw3hTFDq6ehA4jAk%2FGWR8F1uaA8rQFQugl7hUcHuWJvs5PmJAtfr6AAKjFdn0lZRzX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47eec7fb523-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1716505040 | 193.200.65.151 | 200 OK | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1716505040 IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=bzcookie&rnd=1716505040 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c; hbrdcookie2=a8c1cb0a172fc7587542; ohmybid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d; otclkbid=VU0cO9fZFTbYzyf; bzcookie=2b7cac89-dbec-4a60-55f9-8ae41986c68f; otmbid=NjY0ZmM5YmUxMDVjYmFkMQ==; sapecookie=0600007FBEC94F66863D9A02021D92EA; 754rmads=1716505024
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:20 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=gtnt&rnd=1716505040 | 193.200.65.151 | 301 Moved Permanently | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=gtnt&rnd=1716505040 IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gtnt&rnd=1716505040 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c; hbrdcookie2=a8c1cb0a172fc7587542; ohmybid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d; otclkbid=VU0cO9fZFTbYzyf; bzcookie=2b7cac89-dbec-4a60-55f9-8ae41986c68f; otmbid=NjY0ZmM5YmUxMDVjYmFkMQ==; sapecookie=0600007FBEC94F66863D9A02021D92EA; 754rmads=1716505024
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 23 May 2024 22:57:20 GMT
content-length: 0
location: https://px.adhigh.net/p/cm/skyadvert?u=d2dad773-b18d-226a-499d-85d201d8f18c
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| logger.moviead55.ru/logger.php?t=prev_session&c=7d4e3c66-37e8-45a1-8968-451b82e196cf&a=&m=7d4e3c66-37e8-45a1-8968-451b82e196cf&v=933dcc028b4e27355cfe96f951ce9ca0&o= | 193.200.65.146 | 200 OK | 81 B |
URL GET HTTP/2logger.moviead55.ru/logger.php?t=prev_session&c=7d4e3c66-37e8-45a1-8968-451b82e196cf&a=&m=7d4e3c66-37e8-45a1-8968-451b82e196cf&v=933dcc028b4e27355cfe96f951ce9ca0&o= IP193.200.65.146:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
File typePNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced Hashb357a19c87624c7c4d131aeeb4ae677f c7a9c45fd419815a5ab1998503a9f03514c0e229 497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?t=prev_session&c=7d4e3c66-37e8-45a1-8968-451b82e196cf&a=&m=7d4e3c66-37e8-45a1-8968-451b82e196cf&v=933dcc028b4e27355cfe96f951ce9ca0&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:20 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=dgm2&rnd=1716505040 | 193.200.65.151 | 301 Moved Permanently | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=dgm2&rnd=1716505040 IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=dgm2&rnd=1716505040 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c; hbrdcookie2=a8c1cb0a172fc7587542; ohmybid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d; otclkbid=VU0cO9fZFTbYzyf; bzcookie=2b7cac89-dbec-4a60-55f9-8ae41986c68f; otmbid=NjY0ZmM5YmUxMDVjYmFkMQ==; sapecookie=0600007FBEC94F66863D9A02021D92EA; 754rmads=1716505024
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 23 May 2024 22:57:20 GMT
content-length: 0
location: https://sync.opendsp.ru/match/MovieAds?id=d2dad773-b18d-226a-499d-85d201d8f18c
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1716505040 | 193.200.65.151 | 200 OK | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1716505040 IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otclkbid&rnd=1716505040 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c; hbrdcookie2=a8c1cb0a172fc7587542; ohmybid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d; otclkbid=VU0cO9fZFTbYzyf; bzcookie=2b7cac89-dbec-4a60-55f9-8ae41986c68f; otmbid=NjY0ZmM5YmUxMDVjYmFkMQ==; sapecookie=0600007FBEC94F66863D9A02021D92EA; 754rmads=1716505024
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:20 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=sapecookie&rnd=1716505040 | 193.200.65.151 | 200 OK | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=sapecookie&rnd=1716505040 IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=sapecookie&rnd=1716505040 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c; hbrdcookie2=a8c1cb0a172fc7587542; ohmybid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d; otclkbid=VU0cO9fZFTbYzyf; bzcookie=2b7cac89-dbec-4a60-55f9-8ae41986c68f; otmbid=NjY0ZmM5YmUxMDVjYmFkMQ==; sapecookie=0600007FBEC94F66863D9A02021D92EA; 754rmads=1716505024
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:20 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1716505040 | 193.200.65.151 | 301 Moved Permanently | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1716505040 IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gonetbid&rnd=1716505040 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c; hbrdcookie2=a8c1cb0a172fc7587542; ohmybid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d; otclkbid=VU0cO9fZFTbYzyf; bzcookie=2b7cac89-dbec-4a60-55f9-8ae41986c68f; otmbid=NjY0ZmM5YmUxMDVjYmFkMQ==; sapecookie=0600007FBEC94F66863D9A02021D92EA; 754rmads=1716505024
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 23 May 2024 22:57:20 GMT
content-length: 0
location: https://sync.gonet-ads.com/match/SkyAdvert?id=d2dad773-b18d-226a-499d-85d201d8f18c
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| sp.ohmy.bid/cmf?0.3934500618279472 | 167.235.9.235 | | 0 B |
URL sp.ohmy.bid/cmf?0.3934500618279472 IP167.235.9.235:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cmf?0.3934500618279472 HTTP/1.1
Host: sp.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: uid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d.664fc9be.dabd549d89db07d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 23 May 2024 22:57:21 GMT
bidder: bid-20 1.1542.871fc768
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| sync.opendsp.ru/match/MovieAds?id=d2dad773-b18d-226a-499d-85d201d8f18c | 82.148.20.186 | 200 OK | 43 B |
URL GET HTTP/2sync.opendsp.ru/match/MovieAds?id=d2dad773-b18d-226a-499d-85d201d8f18c IP82.148.20.186:443 ASN#50340 OOO Network of data-centers Selectel
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectsync.opendsp.ru Fingerprint61:B4:DA:9F:EB:AB:9D:73:4C:76:FB:7C:3B:0B:80:A4:0F:14:18:28 ValidityThu, 04 Apr 2024 10:36:13 GMT - Wed, 03 Jul 2024 10:36:12 GMT
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/MovieAds?id=d2dad773-b18d-226a-499d-85d201d8f18c HTTP/1.1
Host: sync.opendsp.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:21 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| sync.gonet-ads.com/match/SkyAdvert?id=d2dad773-b18d-226a-499d-85d201d8f18c | 188.42.105.236 | | 43 B |
URL sync.gonet-ads.com/match/SkyAdvert?id=d2dad773-b18d-226a-499d-85d201d8f18c IP188.42.105.236:0
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/SkyAdvert?id=d2dad773-b18d-226a-499d-85d201d8f18c HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:21 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
|
|
| kimberlite.io/rtb/sync/skyadvert?u=d2dad773-b18d-226a-499d-85d201d8f18c | 217.199.220.43 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1kimberlite.io/rtb/sync/skyadvert?u=d2dad773-b18d-226a-499d-85d201d8f18c IP217.199.220.43:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerGlobalSign nv-sa Subject*.kimberlite.io Fingerprint27:9B:57:5F:3C:19:A5:31:A3:1B:E6:A4:8E:CF:2F:73:78:4E:46:C1 ValidityThu, 29 Feb 2024 12:20:14 GMT - Tue, 01 Apr 2025 12:20:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/skyadvert?u=d2dad773-b18d-226a-499d-85d201d8f18c HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: as=-WrUeGZPyb6E8n8IZk_Jvg; f=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsolta%26bid%3DZk_JvgYpm1U; n=2; u=Zk_JvgYpm1U~o3XbxmZwFiNLYgDrMZBcpuYIlLc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Thu, 23 May 2024 22:57:21 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: as=OFrH4WZPydGE8n8IZk_Jvvlq1HhmT8m-; max-age=604800; samesite=none; httponly; secure
n=3; max-age=30; samesite=none; httponly; secure
location: https://sm.rtb.mts.ru/p?ssp=toptraffic&id=Zk_JvgYpm1U
referrer-policy: no-referrer
server-timing: app;srv=0;dur=0.0002
|
|
| endpoints.dochase.com/?seat=evxGM8Wybgk6hDa9lZoy&token=ggVl8a4pY8KlsunXQ24YAedeD25lKPrm&cb=1716505041.9930434&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&ip=192.168.110.151%3A23128&w=400&h=225&url=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&domain=kinozal.tv&cat=324&ref=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&maxduration=40&minduration=1&playerwidth=400&playerheight=225&publisher_id=d2dad773-b18d-226a-499d-85d201d8f18c | 8.2.109.53 | 200 OK | 21 B |
URL GET HTTP/1.1endpoints.dochase.com/?seat=evxGM8Wybgk6hDa9lZoy&token=ggVl8a4pY8KlsunXQ24YAedeD25lKPrm&cb=1716505041.9930434&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&ip=192.168.110.151%3A23128&w=400&h=225&url=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&domain=kinozal.tv&cat=324&ref=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&maxduration=40&minduration=1&playerwidth=400&playerheight=225&publisher_id=d2dad773-b18d-226a-499d-85d201d8f18c IP8.2.109.53:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerGlobalSign nv-sa Subject*.dochase.com Fingerprint67:CF:80:F8:5A:15:36:52:0F:79:77:E0:B9:6F:2C:4B:63:70:E1:41 ValidityThu, 04 Jan 2024 12:17:10 GMT - Tue, 04 Feb 2025 12:17:09 GMT
File typeASCII text, with no line terminators Hash13ac7a47804f191f7cbe9b50641403d8 32f847ad3e7ef2388d22268a5164b46cae07e593 64a76d85490bf923477d715fb998da7a59c66988a645d080e2436f40cb3190f6
GET /?seat=evxGM8Wybgk6hDa9lZoy&token=ggVl8a4pY8KlsunXQ24YAedeD25lKPrm&cb=1716505041.9930434&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&ip=192.168.110.151%3A23128&w=400&h=225&url=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&domain=kinozal.tv&cat=324&ref=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&maxduration=40&minduration=1&playerwidth=400&playerheight=225&publisher_id=d2dad773-b18d-226a-499d-85d201d8f18c HTTP/1.1
Host: endpoints.dochase.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kinozal.tv
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 May 2024 22:57:22 GMT
Content-Type: text/xml
Content-Length: 21
Connection: keep-alive
Access-Control-Allow-Origin: https://kinozal.tv
Access-Control-Allow-Credentials: true
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
X-Frame-Options: DENY
|
|
| static.filmskino.site/hls/trailers/tQs0gRLaweA.mp4/index.m3u8 | 193.200.65.210 | | 330 B |
URL static.filmskino.site/hls/trailers/tQs0gRLaweA.mp4/index.m3u8 IP193.200.65.210:0 ASN#6681 Giveme Cloud Sp Z O O
Hashec7040cb58483f0a8f5f308244d2080e b58047cbc300141cc378b4c3bfb5bb2878840035 e4f842997e19b2ac92563f0bdd3ee9ebd3cf5bfaa2653db27204a45942d33490
GET /hls/trailers/tQs0gRLaweA.mp4/index.m3u8 HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 May 2024 22:57:23 GMT
Content-Type: application/vnd.apple.mpegurl
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"3a1794b0-ff7"
Expires: Sat, 31 Aug 2024 22:57:23 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Content-Encoding: gzip
|
|
| user91471.clients-cdnnow.ru/vp_dist/hls.js?v3 | 185.40.155.13 | | 427 kB |
URL user91471.clients-cdnnow.ru/vp_dist/hls.js?v3 IP185.40.155.13:0
File typegzip compressed data, from Unix Size427 kB (426748 bytes) Hashde725253ec9444234edf9657c06fcc14 4fb39c199029b8aba788bc8217f35a21ea0c5217 82288159f748915cdd2cbe00bb4f96fa84c1a633e35c14a0904651b69b15afcb
GET /vp_dist/hls.js?v3 HTTP/1.1
Host: user91471.clients-cdnnow.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:56:27 GMT
content-type: application/javascript
last-modified: Tue, 05 Mar 2024 14:56:11 GMT
vary: Accept-Encoding
etag: W/"65e7328b-1132d6"
x-movieads-country: RU
content-encoding: gzip
x-edge-cache: HIT
x-edge-ip: 172.19.32.8
X-Firefox-Spdy: h2
|
|
| logger.moviead55.ru/logger.php?v=933dcc028b4e27355cfe96f951ce9ca0&c=7d4e3c66-37e8-45a1-8968-451b82e196cf&t=player_init&a=&m=%7B%22vis%22%3A100%2C%22dv%22%3Atrue%2C%22jmap%22%3A1%2C%22blen%22%3A1%7D&o= | 193.200.65.146 | 200 OK | 182 kB |
URL GET HTTP/2logger.moviead55.ru/logger.php?v=933dcc028b4e27355cfe96f951ce9ca0&c=7d4e3c66-37e8-45a1-8968-451b82e196cf&t=player_init&a=&m=%7B%22vis%22%3A100%2C%22dv%22%3Atrue%2C%22jmap%22%3A1%2C%22blen%22%3A1%7D&o= IP193.200.65.146:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
File typegzip compressed data, from Unix Size182 kB (181735 bytes) Hashe5fa259a53542258cc23b0f648c007b6 8837992bc569cb20400b1b34ed3b2b98438c106a 57829d6ae47a88827646cdb210f10676bd4f3b7b337e3acd3c14c607abecde2b
GET /logger.php?v=933dcc028b4e27355cfe96f951ce9ca0&c=7d4e3c66-37e8-45a1-8968-451b82e196cf&t=player_init&a=&m=%7B%22vis%22%3A100%2C%22dv%22%3Atrue%2C%22jmap%22%3A1%2C%22blen%22%3A1%7D&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:21 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1716505040 | 193.200.65.151 | 200 OK | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1716505040 IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=hbrdcookie2&rnd=1716505040 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c; hbrdcookie2=a8c1cb0a172fc7587542; ohmybid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d; otclkbid=VU0cO9fZFTbYzyf; bzcookie=2b7cac89-dbec-4a60-55f9-8ae41986c68f; otmbid=NjY0ZmM5YmUxMDVjYmFkMQ==; sapecookie=0600007FBEC94F66863D9A02021D92EA; 754rmads=1716505024
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:20 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=btwcookie&rnd=1716505040 | 193.200.65.151 | 301 Moved Permanently | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=btwcookie&rnd=1716505040 IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=btwcookie&rnd=1716505040 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c; hbrdcookie2=a8c1cb0a172fc7587542; ohmybid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d; otclkbid=VU0cO9fZFTbYzyf; bzcookie=2b7cac89-dbec-4a60-55f9-8ae41986c68f; otmbid=NjY0ZmM5YmUxMDVjYmFkMQ==; sapecookie=0600007FBEC94F66863D9A02021D92EA; 754rmads=1716505024
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 23 May 2024 22:57:20 GMT
content-length: 0
location: https://ads.betweendigital.com/match?bidder_id=34348&callback_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbtwcookie%26bid%3D%24%7BUSER_ID%7D
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| webmaster.adwile.com/app/slider-new-arrow.13ecce1b594e79fd6e87dade167f4f73.svg | 172.67.73.11 | 200 OK | 521 B |
URL GET HTTP/2webmaster.adwile.com/app/slider-new-arrow.13ecce1b594e79fd6e87dade167f4f73.svg IP172.67.73.11:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerGoogle Trust Services LLC Subjectadwile.com Fingerprint46:AF:D6:D4:5D:8B:55:2A:EA:CD:85:A6:81:50:9A:F2:4F:41:DA:05 ValidityFri, 05 Apr 2024 00:35:37 GMT - Thu, 04 Jul 2024 00:35:36 GMT
File typeSVG Scalable Vector Graphics image Hash9b89f567417f6169831df19f19c4bf14 56345fa6968714f62a56cd903a6c2361ec73fa93 1f71851a64c2ccc9731d62100cad1c6e09a2c11fd9f3f507fb4640a4aceb9e1a
GET /app/slider-new-arrow.13ecce1b594e79fd6e87dade167f4f73.svg HTTP/1.1
Host: webmaster.adwile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 23 May 2024 22:57:01 GMT
content-type: image/svg+xml
last-modified: Tue, 21 May 2024 11:55:33 GMT
etag: W/"664c8bb5-209"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: HIT
age: 2865
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8ybYG%2FLbcwImhmXqV4bUQ2pKbK1rBESj8NsW5giRB3qy2BVcv%2FlHCYOTb3OaVJ16SMoHVxNqtAwcHAYo%2B3LEO38c6ve0GkUTNuGvVpkHNzsKHVPtr9Mmze2fVJxCPel2JDoaBgSP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 8888a481bd90b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| kinozal.tv/pic/srch_r2.png | 188.114.97.1 | 200 OK | 2.7 kB |
URL GET HTTP/3kinozal.tv/pic/srch_r2.png IP188.114.97.1:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectkinozal.tv FingerprintF9:85:C5:F8:CE:16:DD:B8:C8:52:0B:B0:14:15:F2:65:EC:A2:20:91 ValiditySun, 14 Apr 2024 03:07:58 GMT - Sat, 13 Jul 2024 03:07:57 GMT
File typePNG image data, 101 x 20, 8-bit/color RGB, non-interlaced Hash3516e704264e73ad95bfd52266ee3f98 f556cd4674cb07e965abc2edd3427c20dea81b75 1ae0a470f26303a3a59e9ac0a89da4ad3329a040ef58428226f88c6a077d5235
GET /pic/srch_r2.png HTTP/1.1
Host: kinozal.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/pic/0_kinozal.tv.css?v=3.4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:01 GMT
content-type: image/png
content-length: 2677
last-modified: Thu, 19 Jul 2012 11:07:07 GMT
etag: "5007ea5b-a75"
expires: Sat, 22 Jun 2024 22:57:01 GMT
cache-control: max-age=2592000
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2%2F9725QkPLsA9kUyi2dSUnbQwtL4PWW65fYP1VP9PPZMicFi5juE4c2OIZcomwB91nPOAd1RM83i2pdIkbxtQ3jihHARpfys9K1CARiGvLgEufLulzaC1Tp4A578"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47dca0056c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ssp.24smi.net/rtb/v2/ad?psw=1280&psh=1024&pow=1280&poh=1024&pdpr=1&pdt=1716505021&ptz=0&pl=en-US&object=25193&template_id=15870&num=20&ref=&output=json&chash=ffduUQWmJE&extids=&page=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&formats=1&show_id=1a7d3926-19a7-4590-879a-fa51a0b3cece&callback=__smiCb1716505021204 | 104.22.40.74 | 200 OK | 16 kB |
URL GET HTTP/2ssp.24smi.net/rtb/v2/ad?psw=1280&psh=1024&pow=1280&poh=1024&pdpr=1&pdt=1716505021&ptz=0&pl=en-US&object=25193&template_id=15870&num=20&ref=&output=json&chash=ffduUQWmJE&extids=&page=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&formats=1&show_id=1a7d3926-19a7-4590-879a-fa51a0b3cece&callback=__smiCb1716505021204 IP104.22.40.74:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintC5:11:EA:DF:22:74:A7:88:5E:76:7C:DD:63:87:55:80:A9:0C:ED:24 ValiditySun, 13 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/v2/ad?psw=1280&psh=1024&pow=1280&poh=1024&pdpr=1&pdt=1716505021&ptz=0&pl=en-US&object=25193&template_id=15870&num=20&ref=&output=json&chash=ffduUQWmJE&extids=&page=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&formats=1&show_id=1a7d3926-19a7-4590-879a-fa51a0b3cece&callback=__smiCb1716505021204 HTTP/1.1
Host: ssp.24smi.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: smi_uid=BV0BOf0LS
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 23 May 2024 22:57:01 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Model
strict-transport-security: max-age=0
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8888a480698d10b9-CPH
X-Firefox-Spdy: h2
|
|
| bjiuck.com/v4/sunshine?surfer_uuid=00ab6745-69bd-48b4-a47b-ff155142e13f&referrer=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&page_load_uuid=dc67dca6-59c3-4e49-a79c-d831c223607c&page_depth=1&dqpviv229po=913047e8-25e4-49cb-b682-f7ef06f87a7d&block_uuid=913047e8-25e4-49cb-b682-f7ef06f87a7d&refresh_depth=1&safari_multiple_request=297 | 62.76.25.27 | 200 OK | 23 kB |
URL GET HTTP/2bjiuck.com/v4/sunshine?surfer_uuid=00ab6745-69bd-48b4-a47b-ff155142e13f&referrer=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&page_load_uuid=dc67dca6-59c3-4e49-a79c-d831c223607c&page_depth=1&dqpviv229po=913047e8-25e4-49cb-b682-f7ef06f87a7d&block_uuid=913047e8-25e4-49cb-b682-f7ef06f87a7d&refresh_depth=1&safari_multiple_request=297 IP62.76.25.27:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectbjiuck.com FingerprintEA:DB:D9:B3:0B:F3:8A:3B:35:F2:F1:5B:5A:3A:85:1D:23:56:29:79 ValidityThu, 09 May 2024 02:26:52 GMT - Wed, 07 Aug 2024 02:26:51 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /v4/sunshine?surfer_uuid=00ab6745-69bd-48b4-a47b-ff155142e13f&referrer=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&page_load_uuid=dc67dca6-59c3-4e49-a79c-d831c223607c&page_depth=1&dqpviv229po=913047e8-25e4-49cb-b682-f7ef06f87a7d&block_uuid=913047e8-25e4-49cb-b682-f7ef06f87a7d&refresh_depth=1&safari_multiple_request=297 HTTP/1.1
Host: bjiuck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: https://kinozal.tv
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Thu, 23 May 2024 22:57:01 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
access-control-allow-origin: *
access-control-allow-headers: *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| data.24smi.net/cfg?object=25193&ver=66&pio=true&pps=true&callback=__smiCb1716505021203 | 104.22.40.74 | 200 OK | 545 B |
URL GET HTTP/2data.24smi.net/cfg?object=25193&ver=66&pio=true&pps=true&callback=__smiCb1716505021203 IP104.22.40.74:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintC5:11:EA:DF:22:74:A7:88:5E:76:7C:DD:63:87:55:80:A9:0C:ED:24 ValiditySun, 13 Aug 2023 00:00:00 GMT - Mon, 12 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (605), with no line terminators Hashb6e6a781fd936bd925eae508880bb014 6e5bfcfff8ce535fc0c48dfada164b4b44579a20 72ba23488e44b74854f96bea2280cb9c2cd966eedf09638faabce57efc8efaf3
GET /cfg?object=25193&ver=66&pio=true&pps=true&callback=__smiCb1716505021203 HTTP/1.1
Host: data.24smi.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 23 May 2024 22:57:01 GMT
content-type: text/javascript; charset=utf-8
cache-control: no-store
set-cookie: smi_uid=BV0BOf0LS; max-age=31536000; domain=.24smi.net; path=/; secure; SameSite=None
strict-transport-security: max-age=0
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8888a47eb8e110b9-CPH
content-encoding: br
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/vast2?key=933dcc028b4e27355cfe96f951ce9ca0&sid=autoplay&cp.adsource=Dhs_out_g3&cp.adtype=pre&vt=100&fp=[fp]&w=400&h=225&vid=&fpro=&suri=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&rdd1=true&cp.referer=https%253A%252F%252Fkinozal.tv%252Fdetails.php%253Fid%253D952945e&cp.cb=7c6e7312-c322-95b9-1fb7-47ed7bedd7b0 | 193.200.65.151 | 200 OK | 935 B |
URL GET HTTP/2code.moviead55.ru/vast2?key=933dcc028b4e27355cfe96f951ce9ca0&sid=autoplay&cp.adsource=Dhs_out_g3&cp.adtype=pre&vt=100&fp=[fp]&w=400&h=225&vid=&fpro=&suri=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&rdd1=true&cp.referer=https%253A%252F%252Fkinozal.tv%252Fdetails.php%253Fid%253D952945e&cp.cb=7c6e7312-c322-95b9-1fb7-47ed7bedd7b0 IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
File typeXML document, ASCII text, with very long lines (961), with no line terminators Hashcb4bd25b7382ca6db57246b23cc9e865 e0ff76a7550a98b36a0d81ad3cb5b9fce7a74197 3fbbfbd23b2d564dd0eec3b7d8983856f75007c1310a6f3804ae96ea0422bad7
GET /vast2?key=933dcc028b4e27355cfe96f951ce9ca0&sid=autoplay&cp.adsource=Dhs_out_g3&cp.adtype=pre&vt=100&fp=[fp]&w=400&h=225&vid=&fpro=&suri=https%3A%2F%2Fkinozal.tv%2Fdetails.php%3Fid%3D952945e&rdd1=true&cp.referer=https%253A%252F%252Fkinozal.tv%252Fdetails.php%253Fid%253D952945e&cp.cb=7c6e7312-c322-95b9-1fb7-47ed7bedd7b0 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kinozal.tv
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c; hbrdcookie2=a8c1cb0a172fc7587542; ohmybid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d; otclkbid=VU0cO9fZFTbYzyf; bzcookie=2b7cac89-dbec-4a60-55f9-8ae41986c68f; otmbid=NjY0ZmM5YmUxMDVjYmFkMQ==; sapecookie=0600007FBEC94F66863D9A02021D92EA; 754rmads=1716505024
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:21 GMT
content-type: text/xml;charset=UTF-8
vary: Accept-Encoding
x-movieads-cors-qex: Referer
x-movieads-path: /
access-control-allow-credentials: true
access-control-allow-origin: https://kinozal.tv
x-movieads-udata: cache,parsed,147392
x-movieads-referrer: https://kinozal.tv/
x-cache-source: Rist
x-movieads-mrc: no
x-movieads-ref: {"Scheme":"https","Opaque":"","User":null,"Host":"kinozal.tv","Path":"/","RawPath":"","OmitHost":false,"ForceQuery":false,"RawQuery":"","Fragment":"","RawFragment":""}
set-cookie: 754rmads=1716505041; max-age=31536000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| static.filmskino.site/hls/trailers/tQs0gRLaweA.mp4/seg-1-v1-a1.ts | 0.0.0.0 | | 172 kB |
URL GET static.filmskino.site/hls/trailers/tQs0gRLaweA.mp4/seg-1-v1-a1.ts IP0.0.0.0:0
Requested byhttps://videotoday.site/mp_dist/td/trhls.html?v1716388325043 CertificateIssuerLet's Encrypt Subjectstatic.filmskino.site Fingerprint42:89:E3:B7:17:CB:25:42:1E:CA:AB:31:65:00:AB:EC:5E:99:19:D5 ValidityFri, 05 Apr 2024 07:32:34 GMT - Thu, 04 Jul 2024 07:32:33 GMT
File typeMPEG transport stream data Size172 kB (171832 bytes) Hash02e52db09d0f484b8507994fac7cffa5 65d82708fbe88ff01c22986526ff180e605be0c6 51864afda1faa031042be3c24fce9168eb886a7e17d896961275ba63ef9df461
GET /hls/trailers/tQs0gRLaweA.mp4/seg-1-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 May 2024 22:57:23 GMT
Content-Type: video/MP2T
Content-Length: 171832
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-29f38"
Expires: Sat, 31 Aug 2024 22:57:23 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| fonts.googleapis.com/css?family=Roboto:100,200,300,400,500,600,700,800,900 | 142.250.74.106 | 200 OK | 13 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Roboto:100,200,300,400,500,600,700,800,900 IP142.250.74.106:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint58:16:76:D3:35:A7:C7:1B:68:67:E2:F5:33:04:0E:E9:CB:56:BD:77 ValidityMon, 06 May 2024 14:43:20 GMT - Mon, 29 Jul 2024 14:43:19 GMT
Hasha2ba974c1b5419d50b52ea2dae73ed8b a6987c3dc65315875c6a5a4fc4913619d32fef67 4680f0242ae53304a6bf932234579ecf1100b3473bd822857943a3e5a2e01f8d
GET /css?family=Roboto:100,200,300,400,500,600,700,800,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 23 May 2024 22:57:01 GMT
date: Thu, 23 May 2024 22:57:01 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css2?family=Inter:wght@500&display=swap | 142.250.74.106 | 200 OK | 2.5 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Inter:wght@500&display=swap IP142.250.74.106:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint58:16:76:D3:35:A7:C7:1B:68:67:E2:F5:33:04:0E:E9:CB:56:BD:77 ValidityMon, 06 May 2024 14:43:20 GMT - Mon, 29 Jul 2024 14:43:19 GMT
File typeASCII text, with very long lines (2597), with no line terminators Hash8117560067b07f64ec75eb3ea94acbd9 8c63743343814ac5ce9dd1d0759b4108cddfdc1f bb9a1a7191de342a297bafc30174ca9e6971234ef685409513bcc5c8d7d5eddb
GET /css2?family=Inter:wght@500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 23 May 2024 22:57:01 GMT
date: Thu, 23 May 2024 22:57:01 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Roboto:wght@400;500;700&display=swap | 142.250.74.106 | 200 OK | 7.0 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Roboto:wght@400;500;700&display=swap IP142.250.74.106:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint58:16:76:D3:35:A7:C7:1B:68:67:E2:F5:33:04:0E:E9:CB:56:BD:77 ValidityMon, 06 May 2024 14:43:20 GMT - Mon, 29 Jul 2024 14:43:19 GMT
File typeASCII text, with very long lines (7193), with no line terminators Hash79cd7cd1cadc1ca5448ecf2a39abb598 207c2428f747b5b92bb58fbcee9e4a346049cb82 b61c6fd07676b7d995377646f3b437dadf319ec707e935b3d287da3ac2b848c6
GET /css2?family=Roboto:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 23 May 2024 22:57:01 GMT
date: Thu, 23 May 2024 22:57:01 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/madstyle.css | 193.200.65.151 | 200 OK | 209 B |
URL GET HTTP/2code.moviead55.ru/madstyle.css IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
File typeASCII text, with no line terminators Hashf1378a1e93e079ae58a11824d841c456 a9e91d4928ae8185b5a50350de033641b5ea36cc 8428b6557374ef12f9b6957632f2ab9531ab4b358c8d121d75203c4a1e23e483
GET /madstyle.css HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:01 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
access-control-allow-origin: *
access-control-expose-headers: *
access-control-max-age: 86400
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin, Access-Control-Request-Headers, Access-Control-Request-Method
etag: W/"28021-7Ba9Gb9K6bwuIzasQJpQO7varK0"
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| logger.moviead55.ru/logger.php?t=target_country_load&c=7d4e3c66-37e8-45a1-8968-451b82e196cf&a=&m=%7B%22browser%22%3A%22%7B%5C%22name%5C%22%3A%5C%22firefox%5C%22%2C%5C%22version%5C%22%3A%5C%2296%5C%22%7D%22%2C%22isMobile%22%3Afalse%2C%22format%22%3A%22new%22%7D&v=933dcc028b4e27355cfe96f951ce9ca0&o=undefined | 193.200.65.146 | 200 OK | 70 B |
URL GET HTTP/2logger.moviead55.ru/logger.php?t=target_country_load&c=7d4e3c66-37e8-45a1-8968-451b82e196cf&a=&m=%7B%22browser%22%3A%22%7B%5C%22name%5C%22%3A%5C%22firefox%5C%22%2C%5C%22version%5C%22%3A%5C%2296%5C%22%7D%22%2C%22isMobile%22%3Afalse%2C%22format%22%3A%22new%22%7D&v=933dcc028b4e27355cfe96f951ce9ca0&o=undefined IP193.200.65.146:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
File typePNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced Hashb357a19c87624c7c4d131aeeb4ae677f c7a9c45fd419815a5ab1998503a9f03514c0e229 497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?t=target_country_load&c=7d4e3c66-37e8-45a1-8968-451b82e196cf&a=&m=%7B%22browser%22%3A%22%7B%5C%22name%5C%22%3A%5C%22firefox%5C%22%2C%5C%22version%5C%22%3A%5C%2296%5C%22%7D%22%2C%22isMobile%22%3Afalse%2C%22format%22%3A%22new%22%7D&v=933dcc028b4e27355cfe96f951ce9ca0&o=undefined HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:01 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| logger.moviead55.ru/logger.php?t=player_frame_loaded_new&c=7d4e3c66-37e8-45a1-8968-451b82e196cf&a=&m=1&v=933dcc028b4e27355cfe96f951ce9ca0&o= | 193.200.65.146 | 200 OK | 70 B |
URL GET HTTP/2logger.moviead55.ru/logger.php?t=player_frame_loaded_new&c=7d4e3c66-37e8-45a1-8968-451b82e196cf&a=&m=1&v=933dcc028b4e27355cfe96f951ce9ca0&o= IP193.200.65.146:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
File typePNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced Hashb357a19c87624c7c4d131aeeb4ae677f c7a9c45fd419815a5ab1998503a9f03514c0e229 497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?t=player_frame_loaded_new&c=7d4e3c66-37e8-45a1-8968-451b82e196cf&a=&m=1&v=933dcc028b4e27355cfe96f951ce9ca0&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:20 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=otmbid&rnd=1716505040 | 193.200.65.151 | 200 OK | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=otmbid&rnd=1716505040 IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otmbid&rnd=1716505040 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Cookie: sky_uuid=d2dad773-b18d-226a-499d-85d201d8f18c; hbrdcookie2=a8c1cb0a172fc7587542; ohmybid=f0ba3f09-f5b4-48aa-b287-857d8cf7d64d; otclkbid=VU0cO9fZFTbYzyf; bzcookie=2b7cac89-dbec-4a60-55f9-8ae41986c68f; otmbid=NjY0ZmM5YmUxMDVjYmFkMQ==; sapecookie=0600007FBEC94F66863D9A02021D92EA; 754rmads=1716505024
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 23 May 2024 22:57:20 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| kinozal.tv/pic/srch_l.png | 188.114.97.1 | 200 OK | 158 B |
URL GET HTTP/3kinozal.tv/pic/srch_l.png IP188.114.97.1:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectkinozal.tv FingerprintF9:85:C5:F8:CE:16:DD:B8:C8:52:0B:B0:14:15:F2:65:EC:A2:20:91 ValiditySun, 14 Apr 2024 03:07:58 GMT - Sat, 13 Jul 2024 03:07:57 GMT
File typePNG image data, 180 x 20, 8-bit/color RGB, non-interlaced Hash985d1875e5526979975b59f2d1828694 b7b01b859e2619f158784d505412fb24dd2d530d e0db3b62da63c006d3fdafcc311a5a47e33b60197c54697a8e5090d3a1094d7a
GET /pic/srch_l.png HTTP/1.1
Host: kinozal.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/pic/0_kinozal.tv.css?v=3.4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 23 May 2024 22:57:01 GMT
content-type: image/png
content-length: 158
last-modified: Thu, 12 Jul 2012 19:34:28 GMT
etag: "4fff26c4-9e"
expires: Sat, 22 Jun 2024 22:57:01 GMT
cache-control: max-age=2592000
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0dwnZyhHlSpeJ%2BZI99i3FufS8GZgj7BzRL6YP9twBiDtoKd4QEXJlNaCSUmiQ8DbAegR3a5%2BQCmXe2QdDlAfWHyL1AO5vQTgHf0%2B5CuxV23eGOw9qO9kpMkmADXB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8888a47dc9fb56c5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bjiuck.com/v4/confirm/block?uuid=ea05d7d9-6a0b-2967-dd14-d415c842dfc3 | 62.76.25.27 | 200 OK | 26 B |
URL POST HTTP/2bjiuck.com/v4/confirm/block?uuid=ea05d7d9-6a0b-2967-dd14-d415c842dfc3 IP62.76.25.27:443
Requested byhttps://kinozal.tv/details.php?id=952945e CertificateIssuerLet's Encrypt Subjectbjiuck.com FingerprintEA:DB:D9:B3:0B:F3:8A:3B:35:F2:F1:5B:5A:3A:85:1D:23:56:29:79 ValidityThu, 09 May 2024 02:26:52 GMT - Wed, 07 Aug 2024 02:26:51 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash6bc26d8114216a65229e304291271de1 eada39789442bca48d089317a2432ee93cb9b72c ebc30ce57dfd078aba9c1b0cbf157ad3b825fd60cf56e7e42064049b16b5a5fc
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
POST /v4/confirm/block?uuid=ea05d7d9-6a0b-2967-dd14-d415c842dfc3 HTTP/1.1
Host: bjiuck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 15
Origin: https://kinozal.tv
DNT: 1
Connection: keep-alive
Referer: https://kinozal.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Thu, 23 May 2024 22:57:02 GMT
content-type: application/json
content-length: 26
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
|
|
0.0.0.0