Report - w27.my-cima.net/watch.php?vid=f0f2663fd

Report Overview

Visited public
2024-06-16 17:43:31
Tags
URL
w27.my-cima.net/watch.php?vid=f0f2663fd
Finishing URL
w27.my-cima.net/watch.php?vid=6f2d1c038
IP / ASN
104.21.20.102
#13335 CLOUDFLARENET
Title
مشاهدة فيلم شقو 2024 ماي سيما

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
i.ibb.co	13485	2010-07-20	2018-11-25 11:13:48	2024-06-16 01:26:18	436 B	5.5 kB	162.19.58.160
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2024-06-16 02:43:21	519 B	32 kB	216.58.207.227
netdna.bootstrapcdn.com	3413	2012-05-25	2012-09-07 17:11:00	2024-06-16 11:51:19	1.5 kB	104 kB	104.18.10.207
goomaphy.com	unknown	2022-07-21	2022-07-22 21:39:03	2024-06-15 15:35:21	398 B	35 kB	139.45.197.239
my.rtmark.net	9054	2014-10-29	2015-02-04 10:54:57	2024-06-16 17:38:57	463 B	744 B	139.45.195.8
augailou.com	unknown	2022-12-12	2022-12-12 14:30:37	2024-06-04 17:18:43	398 B	98 kB	139.45.197.243
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-06-15 18:30:36	981 B	2.7 kB	23.36.76.226
w27.my-cima.net	unknown	2021-11-09	2024-03-11 22:53:21	2024-06-04 17:18:21	28 kB	1.0 MB	172.67.192.84
nachodusking.com	unknown	2024-02-05	2024-02-08 23:34:35	2024-04-21 14:10:27	402 B	1.2 kB	23.109.170.33
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2024-06-16 04:06:54	427 B	50 kB	142.250.74.168

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-06-16	medium	goomaphy.com	Sinkholed
2024-06-16	medium	augailou.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (51)

	URL	From	Size	First Seen	Last Seen
	w27.my-cima.net/templates/3arbserv/js/jasny-bootstrap.min.js	ScriptElement	20 kB	2023-03-07	2025-05-12
Pretty URL w27.my-cima.net/templates/3arbserv/js/jasny-bootstrap.min.js IP 172.67.192.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59 Last Seen2025-05-12 03:41 Times Seen201 Hash f6b6e524d29d54ada53e4172b9d91cf7 427153c7a2d83d2ca800e397779f29b857801ad2 e7ad856551c720cb7c6a24a8bf4a9d6b6b24c24f07109cde96366338e53a4ff8 Loading...

	unknown	ScriptElement	850 B	2023-03-13	2025-04-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:01 Last Seen2025-04-11 17:45 Times Seen46 Hash c070828794e3692be0a52440af066ad7 a22ab13f7ad1693710e700a1e4af7b0b9a5d13c0 ef97c53f57f9b726c0bdc02f4fb9bb0e6e8d0e9f37f3c24d3f913abcc06ae14b Loading...

	www.googletagmanager.com/gtag/js?id=GA_MEASUREMENT_ID	ScriptElement	130 kB	2024-08-19	2024-08-19
Pretty URL www.googletagmanager.com/gtag/js?id=GA_MEASUREMENT_ID IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 19:47 Last Seen2024-08-19 19:47 Times Seen1 Hash b790597fb2ce4719293fa8f7e57c804e 0daa4df4b36f891ed2db25b88f6b2e86b5fe6c97 8ff2752a90e4b8d93f54ef42c42987e129a798960d598921cb086325c9098269 Loading...

	w27.my-cima.net/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	7.8 kB	2024-08-19	2024-08-19
Pretty URL w27.my-cima.net/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 172.67.192.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 19:47 Last Seen2024-08-19 19:47 Times Seen2 Hash 96aeaf132cf6e8d64962b89ebe723b4b 04b9c7434a370c6441c6f01cb9a489ae0d0a17cb 9172ad0a99ee22eba45c74c572e520305ab3f28ad4a5856f8f6962f7015373aa Loading...

	code.jquery.com/jquery-migrate-1.2.1.min.js	ScriptElement	7.2 kB	2023-03-07	2025-05-14
Pretty URL code.jquery.com/jquery-migrate-1.2.1.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-14 20:03 Times Seen4980 Hash eb05d8d73b5b13d8d84308a4751ece96 743052320809514fb788fe1d3df37fc87ce90452 1e67d8dbcca1f6fd94e077c85c2fb40fa1c2756c99238daa8da882144260a68d Loading...

	w27.my-cima.net/templates/3arbserv/js/theme.js	ScriptElement	44 kB	2023-03-07	2024-10-23
Pretty URL w27.my-cima.net/templates/3arbserv/js/theme.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:21 Last Seen2024-10-23 22:55 Times Seen45 Hash cd3b23c6a29558dd531475490cc18fe7 2c69cf0afa457bcc5c70a23272bb3e523c0f80e2 ead537b9d041b4f9600e06796c2a4a22e13ed85ec7229c2fc517b8ddbd6ddd88 Loading...

	w27.my-cima.net/watch.php?vid=6f2d1c038	ScriptElement	921 B	2024-08-19	2024-08-19
Pretty URL w27.my-cima.net/watch.php?vid=6f2d1c038 IP 172.67.192.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 19:47 Last Seen2024-08-19 19:47 Times Seen1 Hash a1005b639a8741da9cd22f8b612498b4 c7b7aed4b11037145e40a567ab1750777b2caac1 35885fd10879aae79d5902658849910833de53effcb84585a4b4452e8fed2c70 Loading...

	nachodusking.com/1clkn/55455	ScriptElement	6 B	2023-03-07	2025-05-15
Pretty URL nachodusking.com/1clkn/55455 IP 23.109.170.33 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-15 03:03 Times Seen12664 Hash 9082dc37e5e8046929da411544ad071a 41e0e3963ed94e59e8a2f115994c382712411537 b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550 Loading...

	unknown	EventHandler	76 B	2023-09-16	2025-04-11
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-09-16 20:44 Last Seen2025-04-11 21:47 Times Seen52 Hash cb81e9dff459971b1ebf4ed31ed0ec2f 4652b085b2313799c8de7ccd921ac955cb9604fe fb8ee02baa99e01a2c06333a657a8c1eee8b5b7f93ff2e07f55d6eb847b50486 Loading...

	unknown	ScriptElement	424 B	2024-08-19	2024-08-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 19:47 Last Seen2024-08-19 19:47 Times Seen1 Hash 95745e2548bc896329a66963df5a646e 637aac70b7dae748f60b39be11d5740cfd68fe0e b1c0d4a4aa7a95f05b2cade1bc57a4f5481a118f3817ce853f7e7d4c696d2985 Loading...

	unknown	ScriptElement	5.3 kB	2023-03-07	2025-04-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-04-11 21:47 Times Seen158 Hash 5d0f0b5b79e9f10c796e8a416e57dd2d acca3a159098bbc8a6313d6f496cfeef362c3171 452c276bbd878d6970a8f3a2b5ebea89fcc866c5aa58e5e56afcdc9c53c2b78f Loading...

	unknown	ScriptElement	236 B	2024-08-19	2024-08-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 19:47 Last Seen2024-08-19 19:47 Times Seen1 Hash 8543e42d5d9f473c46c95229addb7c6a 40c9204092ef265f4236e1dc6d73d47e2903f859 ed7ea1faf072946cddd49898ae6e6ed00c540276249423d10707e88e558d5dae Loading...

	unknown	EventHandler	76 B	2023-09-16	2025-04-11
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-09-16 20:44 Last Seen2025-04-11 21:47 Times Seen52 Hash d08ec3727b4fad85077224f00f1f67f2 bead26a017f0f1b72546b9e79dd6d4d4a3892406 8f4e1969f21beb69afc68014bd65c79ceb036ec71ab474e6b3e635a431447a06 Loading...

	netdna.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js	ScriptElement	32 kB	2023-03-07	2025-05-14
Pretty URL netdna.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js IP 104.18.10.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-14 17:05 Times Seen2950 Hash abda843684d022f3bc22bc83927fe05f 26908395e7a9a4eab607d80aa50a81d65f3017cb 24cc29533598f962823c4229bc280487646a27a42a95257c31de1b9b18f3710f Loading...

	unknown	ScriptElement	1.8 kB	2023-03-07	2025-04-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-04-11 21:47 Times Seen133 Hash 7bc2250f798e8dd30269772ee8cf4599 3fb3ed5ea1a5c052fa3c26e45d4abd3e722b9700 cda4eff9500a8b16f33a54c6cd1ce7d2ec3bf66cecddb63d9c736078916c5035 Loading...

	unknown	EventHandler	184 B	2024-04-28	2024-08-22
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-04-28 04:11 Last Seen2024-08-22 17:19 Times Seen12 Hash 5237cd1c52af5a0a134e7f0d2d63a462 19e3c2c400fa8b783e73a673b5b22134f496a0dd d27a0115fa0a664f51be1597f9d40e52e183dd8575dabc49d35acd4606c89461 Loading...

	w27.my-cima.net/templates/3arbserv/js/jquery.cropit.js	ScriptElement	28 kB	2023-03-07	2025-05-12
Pretty URL w27.my-cima.net/templates/3arbserv/js/jquery.cropit.js IP 172.67.192.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-05-12 03:41 Times Seen231 Hash cd82e0edbcecf087be901e8e7ed0d035 2cedce9f87501152efa36eb1949d95c0ca4ff200 b8a0d09df5a79e5e9494b3061eeff55883870c66714879886348c5095faa7840 Loading...

	unknown	ScriptElement	216 B	2023-03-07	2025-04-15
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59 Last Seen2025-04-15 09:26 Times Seen174 Hash 901d05a394689754b24c53a14ff0bb94 16e6750d0db26beda439d20147af2cdf6ee85f6c c8d34bfa528cee7507080fac65baab9a6eacb046b4c097cc3201ff3bba0d09c1 Loading...

	w27.my-cima.net/templates/3arbserv/js/jquery.readmore.js	ScriptElement	3.4 kB	2023-03-07	2024-10-23
Pretty URL w27.my-cima.net/templates/3arbserv/js/jquery.readmore.js IP 172.67.192.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:21 Last Seen2024-10-23 22:55 Times Seen90 Hash 9831a2bda29ff5d836acf4aca465c0cd 44deda013554c85237ddc16793a2065f5551249b e75fb4b26aa2ded1e757268828d3d759c05a85d92db75cd6b491f3f4cb6af769 Loading...

	unknown	ScriptElement	439 B	2023-03-07	2025-04-15
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59 Last Seen2025-04-15 09:26 Times Seen173 Hash 86a6965e541a781a37d669b260561c55 d507b1712d0947c35ca109d78453ad0706543594 d08064727885699b455486366ac7a1b6e9e298d7cb1d94d4e491088d0bb8ab94 Loading...

	goomaphy.com/401/6219621	ScriptElement	89 kB	2024-08-19	2024-08-19
Pretty URL goomaphy.com/401/6219621 IP 139.45.197.239 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 19:47 Last Seen2024-08-19 19:47 Times Seen1 Hash fa50b19fe66712769357dab899fd05a1 0e0aed6c7b367713de2d14e55c9fefa95f485d82 b7815105bfa2fd4ce4600f5c425671069280675cf08576dab32cecf247ba7873 Loading...

	unknown	EventHandler	174 B	2023-09-16	2025-04-11
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-09-16 20:44 Last Seen2025-04-11 21:47 Times Seen57 Hash cef9ef08881204e3ef62e82e0e24b74f 343dfaece2635476c07686eb438332a7508b467c f77345c42a5fdb2974f4d8b34c5411ede828d59d9f7ed6c54a61b225956e4d5e Loading...

	w27.my-cima.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	ScriptElement	12 kB	2023-03-07	2025-05-15
Pretty URL w27.my-cima.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 172.67.192.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-15 03:33 Times Seen31413 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	unknown	ScriptElement	3.5 kB	2023-03-07	2025-04-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:15 Last Seen2025-04-11 21:47 Times Seen118 Hash c3d5e7ae44ebf7eec435c9325b6f676f 8b6342ac0b9b097678cb23ae693917b91090b944 6dab04cf1ed42a5675ee85fc766f21ccf9386c3e61f9081987b6de3ec7e7f23b Loading...

	unknown	ScriptElement	1.4 kB	2023-03-07	2025-04-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12 Last Seen2025-04-11 21:47 Times Seen83 Hash 48b383db8c4b689d51c7fe7520af1108 464dbc35d23e717068b6c71c46c7e267bf8bf3c4 e23346daaea4662b4e261ddc679f7ef3e914155a66fc2ded5802809568638553 Loading...

	unknown	ScriptElement	160 B	2023-03-07	2025-03-22
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12 Last Seen2025-03-22 06:46 Times Seen57 Hash a33472397f886fcb3563c05e3d3b2a3e 69a1391e6eb1b5a70ebf9cd6cb75140f7d52b31f 2e05173f926dcf805c7ad1a037cd22d1c0151fe1b06d766dced7c7b0466148f8 Loading...

	unknown	EventHandler	56 B	2023-04-16	2025-04-28
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-16 10:54 Last Seen2025-04-28 03:03 Times Seen128 Hash cae6f8624c66f13833c0cb65d1a7d4f3 38913a239bfe49bb031bc0bba5130fdde4a9dddd 41557c099d9a65a2febcf471b7cc43a2fc76a213f40eb129e19d06c2f3d64ce0 Loading...

	w27.my-cima.net/templates/3arbserv/js/jquery.plugins.a.js	ScriptElement	9.5 kB	2023-03-07	2024-10-23
Pretty URL w27.my-cima.net/templates/3arbserv/js/jquery.plugins.a.js IP 172.67.192.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2024-10-23 22:55 Times Seen90 Hash 7edd7d96ee453442900875aa72c595c4 a09a3c791e560866562f26d8ac7f9621f369cfa2 d36a4d2e1e3ec14aa6fd41115d053a533999f0337d0f48859de361199f7359cb Loading...

	w27.my-cima.net/js/jquery.typewatch.js	ScriptElement	1.4 kB	2023-03-07	2024-10-23
Pretty URL w27.my-cima.net/js/jquery.typewatch.js IP 172.67.192.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2024-10-23 22:55 Times Seen93 Hash 127426292630387dbe0c8b903229a7d3 fe62c30bb3a0e02f549ee6323d55bfac5cf32239 04fd6ef5911c31cc109fa5cc24010a975df2fae28d156ccbfc849b7e844c11c8 Loading...

	w27.my-cima.net/templates/3arbserv/js/jquery.plugins.b.js	ScriptElement	9.1 kB	2023-03-07	2024-10-23
Pretty URL w27.my-cima.net/templates/3arbserv/js/jquery.plugins.b.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2024-10-23 22:55 Times Seen91 Hash 8ac43cab1939c54d6bc974726fec41ca 8c44a11ac313388d254b30c162a6f1353074296d 9ea6b351a675e3bc0e648d6d41bafd700a5944f6e54778fe6beac548210c241a Loading...

	unknown	ScriptElement	190 B	2023-03-07	2025-04-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-04-11 21:47 Times Seen139 Hash 29727d13fa2a206a7cc92a101c29ab33 647b9b2f5532aaee7217e70850589ad673938fcb 42ee5f253d773ac3a83d1fc0d0f922a4c502f66dddfb591593129586c4f2725a Loading...

	augailou.com/5/6205538	ScriptElement	97 kB	2024-08-19	2024-08-19
Pretty URL augailou.com/5/6205538 IP 139.45.197.243 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 19:47 Last Seen2024-08-19 19:47 Times Seen1 Hash 67425ffc3d2d9a19e018e9b948a3f2fb a717d0d4335042becd870f022082651daf453dd6 e99dd79e010176265c68ee6be11a24e450a5ebf6fabd3220f02bbdd06271e6c6 Loading...

	unknown	ScriptElement	1.8 kB	2023-05-21	2025-05-12
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-21 08:30 Last Seen2025-05-12 03:41 Times Seen56 Hash 369ac55bfbb5a3159e5733a541d6f793 b7f1f06adb097c636ee9b53bfbdcc9c245481c22 ee908c4af7b7f26209185b90d982a94b053704364f0460dcdedb06dd9ccf8b89 Loading...

	unknown	ScriptElement	537 B	2024-04-28	2025-01-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-28 04:11 Last Seen2025-01-26 06:07 Times Seen32 Hash ee88cf72b8e9e7e1310133b63579efda 88b29d95e2eb86818aecd45e87ef6523b9b535da d01e104f27f04562d1bfc16d7366b1dc36c7537ac88e40f6ec13853a419b575f Loading...

	unknown	ScriptElement	176 B	2023-08-25	2024-10-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 21:17 Last Seen2024-10-23 22:55 Times Seen79 Hash a604d1494e55df24ad7c62a30cc0f058 baec845d909270888dbcde8945d9ed24c8b53fba 5ed57bccec3ae6d6233648e109470a51ab1afb262a3daf1d177aaf86b8a86b19 Loading...

	w27.my-cima.net/js/melody.dev.js	ScriptElement	16 kB	2023-03-07	2024-10-23
Pretty URL w27.my-cima.net/js/melody.dev.js IP 172.67.192.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2024-10-23 22:55 Times Seen97 Hash f2bf056198be59f92547935fd4c968f0 cba85174a3d6d68fcff3a2e6238f1d6150b58fce 244926b75ad193faf7a694c602d5819576e2d953dc43849395dedfa841f5ea53 Loading...

	unknown	EventHandler	67 B	2024-01-25	2025-04-11
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-01-25 08:09 Last Seen2025-04-11 21:47 Times Seen42 Hash a9a2c52ae730e4d05809f864f9b5672d 9d2fb321eb01693507ec78de5375ef4cc35a25d2 ee7d3219e8a338f7b08dcc0986a5288a17d4a1d7b6702c11a2cf4fa238c6bf14 Loading...

	unknown	EventHandler	189 B	2024-04-28	2024-08-22
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-04-28 04:11 Last Seen2024-08-22 17:19 Times Seen12 Hash 9e8ea913997865b448f69c5502fa3d70 f66eb76b1724807f804b4ad580ae512dad9daf55 e9f2dc00a231037c85e740ec0087b6b885e55f4cf322ea3118ecd95d468551b6 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js	ScriptElement	96 kB	2023-03-07	2025-05-14
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-14 17:09 Times Seen8511 Hash f03e5a3bf534f4a738bc350631fd05bd 37b1db88b57438f1072a8ebc7559c909c9d3a682 aec3d419d50f05781a96f223e18289aeb52598b5db39be82a7b71dc67d6a7947 Loading...

	unknown	EventHandler	0 B	0001-01-01	2025-05-15
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-15 03:40 Times Seen4685045 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	w27.my-cima.net/js/bootstrap-notify.min.js	ScriptElement	8.2 kB	2023-03-07	2025-04-25
Pretty URL w27.my-cima.net/js/bootstrap-notify.min.js IP 172.67.192.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59 Last Seen2025-04-25 00:46 Times Seen179 Hash 5ba070af9d1b1a2782851940de30879f d33390fc88bf68bd23eb182d7dbc77f5227081b2 a13a07b242c80b57e0cbbacc6cfedb538d4d331ff1f9dff370519ec57407e450 Loading...

	unknown	EventHandler	188 B	2024-04-28	2024-08-22
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-04-28 04:11 Last Seen2024-08-22 17:19 Times Seen12 Hash ca5170428aa9b6158e8445421d141526 1f77697d5c100e86ff8db4323b4642adab80190b fb3bdfb28ef91808ca5e96a6f962b016a564046d9290de583a099f69162021f6 Loading...

	unknown	ScriptElement	889 B	2024-08-19	2024-08-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 19:47 Last Seen2024-08-19 19:47 Times Seen1 Hash 9ab55e9847232e15977891e6224fee56 c62ec84b12a02661363f5d3b5745cd084a264f69 22e34ba0f50046c1d7cad24ac1056f87cc5805dc50e9acb78f30d5949ddffd91 Loading...

	unknown	ScriptElement	478 B	2023-03-07	2025-04-15
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12 Last Seen2025-04-15 09:26 Times Seen96 Hash b6ec630beba5aa234f361049d0162851 40852e09b7e6202ef51b85ecf775694b703442d7 79fdb7c25e266e76ee0ff619f2487f81f0b97bed193c569362bdd39d5dc6c859 Loading...

	unknown	ScriptElement	291 B	2023-03-07	2025-04-15
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59 Last Seen2025-04-15 09:26 Times Seen155 Hash 0b5c6ecfd31b214438c017f7840cab7d 5b0d464bbab33735e654f6d0b47dd2bcd47f8e5c e0d679f66eea8fae589016f89ff238618cabb4b802add68fcbf4d70498356ea1 Loading...

	unknown	EventHandler	79 B	2023-04-16	2025-04-28
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-16 10:54 Last Seen2025-04-28 03:03 Times Seen128 Hash c0cc0fb0141f52b9fc5bf5bf281531ac 29942c5675c543f8d2edc686e80cf4bf0e10bb70 74c38e29231738f71a0b9ebec39d21fcb041847dad58079457731f0481a6e7ea Loading...

	unknown	ScriptElement	172 B	2024-08-19	2024-08-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 19:47 Last Seen2024-08-19 19:47 Times Seen1 Hash 9750ec33e99aee4222c3e8e91667c78b cb7079bbcd85999c690e126ede3d772eb3ae732e 7bea743d2de73e8de21d283a2dd91f6d05745f3c2bb5533829fcb34aa1224593 Loading...

	w27.my-cima.net/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	7.8 kB	2024-08-19	2024-08-19
Pretty URL w27.my-cima.net/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 172.67.192.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 19:47 Last Seen2024-08-19 19:47 Times Seen1 Hash 4f7742edcbf3ff95d0d3769d3e59f5dc 173ab010c566385201ee2cc125cb92524bfb2d66 615edf3e903bbc006529cdd7ae99fc7159310f354727ab113f1a7ed8f46bcb8e Loading...

	unknown	EventHandler	175 B	2023-05-22	2025-04-11
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-05-22 10:21 Last Seen2025-04-11 21:47 Times Seen55 Hash 73335bc9af4db078d91fabf3d09afd60 f8f429e1321d743a9960c23068293da3e4d59d49 8304f9320cab62e4e35bf1ba5a8aa0ea09aff50f633a7751f0572659018a36aa Loading...

	w27.my-cima.net/templates/3arbserv/js/melody.dev.js	ScriptElement	5.5 kB	2023-03-07	2024-10-23
Pretty URL w27.my-cima.net/templates/3arbserv/js/melody.dev.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2024-10-23 22:55 Times Seen90 Hash 0465c9d8d0bd0da2a8a2a7a8945fb9fb 1cc25de2074cacb7cfb51e925be19510d8fefdfc c112a7633fcc9bf504030e0b6ac650aba21ed1198a5db17d74ddfd38ab3e248d Loading...

		Size	First Seen	Last Seen
	#1 Eval - 73497a37c3561adbd8ce84e4f017b368	9 B	2023-03-07 01:03	2025-05-12 23:03
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-05-12 23:03 Times Seen3197 Hash 73497a37c3561adbd8ce84e4f017b368 9193ae73cb3dd2833be8c942714d5544bfb628c9 9312a1adbbf0a4c05fc296d158ec3bd39acfe50e9e98ff02688139aad6fc3351 Loading...

HTTP Transactions (62)

URL IP Response Size

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
5c35a3180482afadf4e89f4cc249fa7b
8a088c184606fe3e4e0da8cd90b6eb5e6d30fb97
146fe131cf8436e3de4832a23b351400b4819dbd9b9716302248d3ab447f000c

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "146FE131CF8436E3DE4832A23B351400B4819DBD9B9716302248D3AB447F000C"
Last-Modified: Sat, 15 Jun 2024 13:53:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18674
Expires: Sun, 16 Jun 2024 22:54:16 GMT
Date: Sun, 16 Jun 2024 17:43:02 GMT
Connection: keep-alive

w27.my-cima.net/uploads/custom-logo.png

172.67.192.84

1.7 kB

URL
w27.my-cima.net/uploads/custom-logo.png
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 261 x 80, 8-bit/color RGB, non-interlaced
Size
1.7 kB (1695 bytes)
Hash
3e53d26a827b96ee64d9acd4e9f6ca8c
dce6ba3cd6bb744cbf18af7845d6b2b6656d93d2
7528a0ef939cd8a7234300f5f244b8603a65f252beaa4fb4d69c564ba70c01e0

HTTP Headers

GET /uploads/custom-logo.png HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/png
content-length: 1695
last-modified: Mon, 11 Mar 2024 21:58:09 GMT
x-frame-options: DENY
cf-cache-status: HIT
age: 6879
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X%2B7HYJ%2Bxb%2FY53NwPx6aBdyRcmHwvKniEX%2FtJDuo211Sx7oNwri8t%2BuZ7nySLrV7pcxsI8fG3Gb%2B0mPb95%2BTsQPLfVQsKrBrfUerUXtCp%2Fca%2FRG0Jw52eVNm0Po4XceLUMfM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999b997056bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/avatars/avatar795-1.jpg

172.67.192.84

4.8 kB

URL
w27.my-cima.net/uploads/avatars/avatar795-1.jpg
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 120x120, components 3
Size
4.8 kB (4805 bytes)
Hash
8d40b6ddc977a84433c3df9117e5e5ed
b6502d175ff51f1fa47545cbb7dda578e0197349
34d406af254166de7eaf86cd6754a1a74ea12070ed90d1b9390ed0fce2f10f0f

HTTP Headers

GET /uploads/avatars/avatar795-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 4805
last-modified: Sun, 13 Nov 2022 20:45:32 GMT
x-frame-options: DENY
cf-cache-status: HIT
age: 4014
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wculN5GcrFqg0PnBhI7RUVJIbqDY7j3IANm373cVVI%2FTfBJbyXYSDppejSK87ghbOo2PNWtq291COteHUCVwTUfcUHDlKkEuN2ajMzmg2EmwFa8DZ2yez%2B0af7uVwm4Mkrs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999b997b56bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/articles/7ed9f31a.jpg

172.67.192.84

60 kB

URL
w27.my-cima.net/uploads/articles/7ed9f31a.jpg
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 300x359, components 3
Size
60 kB (60139 bytes)
Hash
80848f12c4ced8e80eda15a51de3e8af
a8c0949f63793c3eaccfb372272443a508ab597f
481142a6fa9b343a0a3d9103d3c116e904cbe4059984824e1cc3e4b8539490ad

HTTP Headers

GET /uploads/articles/7ed9f31a.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 60139
last-modified: Sun, 07 Apr 2024 13:34:21 GMT
x-frame-options: DENY
cf-cache-status: HIT
age: 2688
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zp1zcZI3gBPtjsJL12TSRMV4eB8mVew%2BuWs6w6%2Fw80KWy084TzsIPIner96ZMqzMPkwWmfSD4ZjxF1GkbTglQctAOwNiwEUfuidtMxqrCX%2FfZs4rAYLdSVu1ln7XP4e6Jzw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999b997e56bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/templates/3arbserv/img/pm-avatar.png

172.67.192.84

2.1 kB

URL
w27.my-cima.net/templates/3arbserv/img/pm-avatar.png
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 140 x 140, 8-bit colormap, non-interlaced
Size
2.1 kB (2135 bytes)
Hash
be7a1517b84d3548fdb863e78c72a3fe
91a88cc99f02e7ed22274fc3a6f42c6a3148ef0d
bd2021d52dbb110212c08885e0dab9580282334d6f1d1e50b8da0270ce8c475e

HTTP Headers

GET /templates/3arbserv/img/pm-avatar.png HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/png
content-length: 2135
last-modified: Tue, 19 Apr 2016 15:56:34 GMT
x-frame-options: DENY
cf-cache-status: HIT
age: 6879
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rf392XuGnhHGeesX9Gs3%2FMvmmq28Un0Ekt549YnCkbA6p8FODnwTEa1PWAcRhm9Ir3JDGqQ4ZnfMsLuVf8H6sPZyrMsHmgGSM5pXz6Nw6VzvRG6Hk6XpE6rsisGmY%2F4uc8w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999b998156bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/d24400942-1.jpg

172.67.192.84

18 kB

URL
w27.my-cima.net/uploads/thumbs/d24400942-1.jpg
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x270, components 3
Size
18 kB (18400 bytes)
Hash
b4ab98d37e586f65a0013ad96fa65b9e
7a90f94ece558e62b13c74b96668481d347ffddb
c9fdf426f98de74d3618b8462b16a514158d494072abfa753eeed59c95d4a2dc

HTTP Headers

GET /uploads/thumbs/d24400942-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 18400
last-modified: Fri, 30 Sep 2022 12:28:44 GMT
x-frame-options: DENY
cf-cache-status: HIT
age: 800
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kuuVigm1H%2BEdzq0YIFBVvHOzAlifAP4l9I6CaIhJ6TkJpB3eVEftr2ttNcIMaECJ4ETxtEa9n5VB2kyGG37n1JvHe2sM4uadlNayf1edVVQtssvxXXcaYsP4pwr53PfF7pk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999ba99a56bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/04bf9d96c-1.jpg

172.67.192.84

200 OK

20 kB

URL GET HTTP/3
w27.my-cima.net/uploads/thumbs/04bf9d96c-1.jpg
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x270, components 3
Size
20 kB (20313 bytes)
Hash
215f375e114da262cf3e9697adc20a75
ce11d941ede88cd94565b23a25d01e86701e65cf
8662f6fe6c8cc27354fc955b6301868156c4ef743225d45ce5aadddcf27745e1

HTTP Headers

GET /uploads/thumbs/04bf9d96c-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 20313
last-modified: Sat, 01 Oct 2022 04:20:51 GMT
x-frame-options: DENY
cf-cache-status: HIT
age: 6075
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4a9Zsx7MlDizAAUtuJTCSo%2BDzJzAQ8G1x1wBnJi9521ujXu5zMxMObVCy2ow8z8ef6DRi%2FvDYJwqLjFte%2By05Zw0d7B72WMcxVdIN6hklBO8k%2FvMaF0Kc%2FG%2FDRK0yHhMRLU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999bb9aa56bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/39dd8b6c5-1.jpg

172.67.192.84

200 OK

16 kB

URL GET HTTP/3
w27.my-cima.net/uploads/thumbs/39dd8b6c5-1.jpg
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x292, components 3
Size
16 kB (16077 bytes)
Hash
dd2159736c9f4fd5d25637a03687183d
15849370e3385a23d24951fb5fd5c21d51f8140e
8c3c5a91c9f1297a84eaeac789384f249b8568d207dbe174b580f40edc139643

HTTP Headers

GET /uploads/thumbs/39dd8b6c5-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 16077
last-modified: Fri, 30 Sep 2022 12:34:07 GMT
x-frame-options: DENY
cf-cache-status: HIT
age: 6075
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aarIeS4aiIbVPCwCtECRzDU9Np7uX%2FHT78bw9cOSSzEeP2QowLawmDcwEqomNrDOubEPrCV76bnbDXIFiKGhyvo8bx3i4wVACzXCFYGvsfyUm50ZdIJE2vqxiqdCSbpNyyc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999bb9b956bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/170188d6c-1.jpg

172.67.192.84

200 OK

24 kB

URL GET HTTP/3
w27.my-cima.net/uploads/thumbs/170188d6c-1.jpg
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x319, components 3
Size
24 kB (23477 bytes)
Hash
8d5332e031b794bf1accdce6bd1a0ef9
4c09a7da94a7c6e427d6e34b9760b274fb9a3d11
a0ac94afd2a6b85197abc19bcb30b43c006eaa407f5e8331ace0a0e5f7791f80

HTTP Headers

GET /uploads/thumbs/170188d6c-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 23477
last-modified: Sat, 01 Oct 2022 03:27:47 GMT
x-frame-options: DENY
cf-cache-status: HIT
age: 800
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O%2B2cbu8EfMov0xLy3kcPqLWyANmnDcWMI2NipZvltXcJh8G0XwY6iqhzonFMKGOBSVCQfJlTO4Hs72oKTSz889%2B6nAE2%2B%2BGyZIfi8aSEQKmCIwMOFmzQCFKTbTDBqm79y4A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999bb9be56bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/415b6b6fc-1.jpg

172.67.192.84

24 kB

URL
w27.my-cima.net/uploads/thumbs/415b6b6fc-1.jpg
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x240, components 3
Size
24 kB (23871 bytes)
Hash
1f49e02611ae8a326362dafb27575b1e
c1c8ea5f4be463751ec241a97dcc4de272a84d69
c430793f56a50d194f1486637d08f2475b3de47238a44448cd656e4c929b5b09

HTTP Headers

GET /uploads/thumbs/415b6b6fc-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 23871
last-modified: Sat, 01 Oct 2022 05:06:04 GMT
x-frame-options: DENY
cf-cache-status: HIT
age: 6076
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CkUZXz5AtvLTSoXA09y7PShaZ8xjQC9xhUo3UJimxn0ayT%2BQ2P77EvlU2s9WYH8DlPi8mN3zy%2BoblszoMe5ciNjj%2B82%2FyZcLM5zRgC5URnMXT9hu4s8UC7%2FYL5s7xx8%2Br%2Bw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999bc9e456bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/592a47f48-1.jpg

172.67.192.84

16 kB

URL
w27.my-cima.net/uploads/thumbs/592a47f48-1.jpg
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x270, components 3
Size
16 kB (15666 bytes)
Hash
c8d54ee28cfd4fc4104394c468c06516
3d4714701416798bf6e301cb415cda1be83ed20a
9975a25c0c79c0a1c601732907a5e01cd0f4b78789a5e949fe47e742851ff2a5

HTTP Headers

GET /uploads/thumbs/592a47f48-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 15666
last-modified: Fri, 30 Sep 2022 13:06:17 GMT
x-frame-options: DENY
cf-cache-status: HIT
age: 800
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ubuSQoRajrU2siUshnAACWvdL2Rt3SYxFXdROM1qtvZHMGO%2FMKm4pBoFH2HbyAg%2FOxcaJ5jbn08BxyK4SQBBHJPQwRm46IJQSK0lKNJXh57ZZBzAqAvD%2FfKztHZHzqEg0nw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999bc9e956bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/6f2d1c038-1.jpg

172.67.192.84

200 OK

56 kB

URL GET HTTP/3
w27.my-cima.net/uploads/thumbs/6f2d1c038-1.jpg
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), default quality", baseline, precision 8, 720x405, components 3
Size
56 kB (55669 bytes)
Hash
7cc8b6b1cd1f7e99691001bd01063afb
0ca53d8b4b0a5fb3d63704cb5014aaaf88198152
3b554fc4cbf2169aaa9c633d19beaee114eef9c44f91b61422e2d101e5c8264a

HTTP Headers

GET /uploads/thumbs/6f2d1c038-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 55669
last-modified: Sun, 07 Apr 2024 13:34:17 GMT
x-frame-options: DENY
cf-cache-status: HIT
age: 5428
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jyRygkM8DdyrOKFF6ZT3T6g3ws0K0o7c6bomGJ6dTC4wwqeIU9vj6uCOdeLNrczoCihy5F3F5Avx0T5p0UhiXJSVgadQ7YtIgjMKzhtor16xF4uXMza6UIEYAcw3A68WP%2Fc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999bc9ee56bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/9c59ba5a5-1.jpg

172.67.192.84

20 kB

URL
w27.my-cima.net/uploads/thumbs/9c59ba5a5-1.jpg
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x279, components 3
Size
20 kB (20358 bytes)
Hash
6afea5da76d3683f81d287668fd00232
8be2e3822e3de206ce1204e15ff7d6960876cec2
e3f04beb953d9d1f2f31e4be12d61d9651f061f6395ee0169617da405e6751df

HTTP Headers

GET /uploads/thumbs/9c59ba5a5-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 20358
last-modified: Thu, 29 Sep 2022 18:21:17 GMT
x-frame-options: DENY
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6Qz0VnlJ6GoHmMV2p2ehPxF0Chdfj2u1I2YqiqwfMUDVkehntfE6kEO4XgxmEBH%2BAKoBAF4%2F6PrcrBZOoZ6rFutVGlVsGT9axSYFveMN2VvBdN7AYaAhyGABHGbvl%2F253AE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999ba98856bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/02f7d8277-1.jpg

172.67.192.84

33 kB

URL
w27.my-cima.net/uploads/thumbs/02f7d8277-1.jpg
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x270, components 3
Size
33 kB (33029 bytes)
Hash
88d6bf071d965a25d897dab65481c735
403cb75630b56c15d61d6eb2aff2a1be523d7729
bc7a586244cfc3093f97ac893f6125a694b3d56aad4c269af79bcadfeb9f7563

HTTP Headers

GET /uploads/thumbs/02f7d8277-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 33029
last-modified: Fri, 30 Sep 2022 14:44:24 GMT
x-frame-options: DENY
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SEuhUY4fFrR9GUqaWSyEw3fOzFjNHTOYvCHrwUdrdxz58aJEBO1JWLYjY0KyAB4juD%2F3bol6v4CSsG4IU8loN4kruorbahO5sUxBzlM4WiHSvk7liI%2BevAb49gN7xahVivo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999ba99456bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/14bfa403a-1.jpg

172.67.192.84

15 kB

URL
w27.my-cima.net/uploads/thumbs/14bfa403a-1.jpg
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x270, components 3
Size
15 kB (14953 bytes)
Hash
e5406eb2accfbaf9b04caba6bec0f14b
a894581fedf7b15d87c89b399c415e46f2eb0048
cb7d898b358f396a1157d759487e6817e4ee09001839f6f2e71b5a13b84b6e8d

HTTP Headers

GET /uploads/thumbs/14bfa403a-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 14953
last-modified: Fri, 30 Sep 2022 14:32:39 GMT
x-frame-options: DENY
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HJucGAC0OgsuYIwo4g1dLOi5HDDrtzs0%2F00PO8%2BXDFdR18xTsLkMLV%2BNvQFuxZoxVbcxU74rTYCH5ym5AnWZ2lGf5jF%2BfaLUx4Ob%2FlSX%2FfZr6Y4KYXAlFrDrV7OFoPT%2FSeU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999ba99f56bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/f375473f1-1.jpg

172.67.192.84

22 kB

URL
w27.my-cima.net/uploads/thumbs/f375473f1-1.jpg
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x249, components 3
Size
22 kB (22135 bytes)
Hash
41bb8bb5090534e57019d2bced9c331d
d8381a5911c4965d0333c1a92b854717c45d92ad
ff9207dd1009e6db142c3aa84d367aa326fc31c6e96d8bed627251a98476dc4c

HTTP Headers

GET /uploads/thumbs/f375473f1-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 22135
last-modified: Fri, 30 Sep 2022 19:18:47 GMT
x-frame-options: DENY
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FU7qI1PH6%2Bz2Dv1%2FVZqG%2FB7S2nfqn8yOwtzjDBTliUfoAUFX1eEawsShBAgO83A4kb3WrhAa%2BAeVtnjePulD4%2F%2BMCFLSQupJcrc%2By1p7UdMFDbRzrgSJP6p3XPRR4Gyyc5I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999bb9af56bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/72021214f-1.jpg

172.67.192.84

200 OK

20 kB

URL GET HTTP/3
w27.my-cima.net/uploads/thumbs/72021214f-1.jpg
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x270, components 3
Size
20 kB (19785 bytes)
Hash
c7e0b7a70fb269f911cb24f252c6700c
2c2ffa28ea52bc9d45f5c17090dbf57f78ef7d6b
89be29c9e7e494f91462ca250bd6746ff061b895a1036dde9d99e97046baf02d

HTTP Headers

GET /uploads/thumbs/72021214f-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 19785
last-modified: Sat, 01 Oct 2022 04:02:03 GMT
x-frame-options: DENY
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vm0dfWMN0kU9e94hUT89BFRDYlxBdbBzqVVkTuEqaVuvUyS6Wcg%2B%2BpJ12X6TyQgRFPUdCtBMv1DvFP0onLr7Zl1D3NK2PusKFN%2BRaA54apjFX1%2B21RJ1D4bX59qclCt%2BFfc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999bb9b256bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/b4d518acc-1.jpg

172.67.192.84

20 kB

URL
w27.my-cima.net/uploads/thumbs/b4d518acc-1.jpg
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x270, components 3
Size
20 kB (19602 bytes)
Hash
45bce270ed4db7ca7454914c320f92aa
523e70679b56f8bba0e5b479edc41c4254d6f110
5adac33e749f30eddce3193509bb73c0a7ba3e83deee1ec64f8d327c3057aeb6

HTTP Headers

GET /uploads/thumbs/b4d518acc-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 19602
last-modified: Thu, 29 Sep 2022 21:32:57 GMT
x-frame-options: DENY
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZmzyBT1ltdCDPbxcfx2syMVWyAKwEFxzj9PaM4bykYOEKZ4pDqJ27VkK5zX1zmp1jhJuhQwaqBNCoaaQ04MJ%2BTI%2F7ijGqU7iUAYixDmQJ9vmnDFrzjS8oLZtJjP9hguRBTg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999bb9b856bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/8129c73ed-1.jpg

172.67.192.84

200 OK

17 kB

URL GET HTTP/3
w27.my-cima.net/uploads/thumbs/8129c73ed-1.jpg
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x270, components 3
Size
17 kB (17354 bytes)
Hash
43000ca3935d89c3348c379e45267db0
9c72f025e0ec8261de4d8ba44bd6c78423b40f76
931c4588292f405f3cf16b903c32d6c7bdaff26d7306fb148d5d6dd3b2a506f5

HTTP Headers

GET /uploads/thumbs/8129c73ed-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 17354
last-modified: Sat, 01 Oct 2022 05:15:01 GMT
x-frame-options: DENY
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uJ5EuHYsXcEmK1o5EPgbKKAYU2tAoxwhhWx8kN4FzSJWgfHOpGyMNkHmqAU2%2BWEKxVKS%2BnD2iovXgArO6jgviZgh%2FzjRvBJv5A4po9WZrIcI8TJGWmZb252Dp7lHyph8Rmg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999bb9c156bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/b08ed3cf2-1.jpg

172.67.192.84

200 OK

32 kB

URL GET HTTP/3
w27.my-cima.net/uploads/thumbs/b08ed3cf2-1.jpg
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x316, components 3
Size
32 kB (31977 bytes)
Hash
ce172fd87ab345297ea7e6804a147097
5edf66b4ec99ae477521a9f63f53303f8f8e70e4
b153a2c9d06a1985e303175d2e6b693f284bf1ef7766f8bbfb2028930f4a64cb

HTTP Headers

GET /uploads/thumbs/b08ed3cf2-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 31977
last-modified: Sat, 01 Oct 2022 03:45:43 GMT
x-frame-options: DENY
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DAf%2BZMzbtJyht1%2FY%2FKN5GB9ZAmp0Yur0onsSwG%2F4CLLunCgzovOCoKRmJejJt9Z00qvVgGXYkq9oI1OiXYGKm7SgzDAx29OlRaOwmcaBjBCnwqGxqITgXIyArCwh1Lm9snc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999ba98e56bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/e8d3abc80-1.jpg

172.67.192.84

200 OK

20 kB

URL GET HTTP/3
w27.my-cima.net/uploads/thumbs/e8d3abc80-1.jpg
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x270, components 3
Size
20 kB (19658 bytes)
Hash
4431ab2ae8b42fa033164d1e91bbb932
bf36df48ffe0f475bad635a89d70217da64afc07
bf0a089b0b93e3959492a71741ce0d8700885069245f005d20e7465e2f86fb13

HTTP Headers

GET /uploads/thumbs/e8d3abc80-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 19658
last-modified: Thu, 29 Sep 2022 22:25:52 GMT
x-frame-options: DENY
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZcprrY24Tf2a1LntShYwh0A0Pahtf1EIeU9RRX%2BVndIpdGWB0aJPXNyHkcWlOtyns6BBtv3D4Jk43B1JqrxbZpinZ4chpJRaH0Q1eVxtC5Vv15Iq6ja5r8xfBpnecBtaR2E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999bb9b656bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/4141d429e-1.jpg

172.67.192.84

29 kB

URL
w27.my-cima.net/uploads/thumbs/4141d429e-1.jpg
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x274, components 3
Size
29 kB (28987 bytes)
Hash
7cc91757ef7b851db1b9f8d18df646fd
e14224fe6c9c46a46abc94457c057300973f8685
b85ffbad9105cea4b8ee19d65e16c4f1f2d7f17f371c869632b3d84c3a0be361

HTTP Headers

GET /uploads/thumbs/4141d429e-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 28987
last-modified: Fri, 30 Sep 2022 19:05:47 GMT
x-frame-options: DENY
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tyL1OsvkdgbU%2F79ZH1OeaZ%2BRiCW5wCOO3hhmmASuBwtODdYOhcp81DEZ%2FqNvpgaDu1Rq3EeP0ioi96t1YvgVUXuu5yvhxdkZu%2Fk49FjgHxlEAbGVCIKDjRiIge2OiZtUncg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999bc9db56bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/a3b04f261-1.jpg

172.67.192.84

23 kB

URL
w27.my-cima.net/uploads/thumbs/a3b04f261-1.jpg
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 479x251, components 3
Size
23 kB (23186 bytes)
Hash
0aad53fc65f1ff02fc40ee058b65cf5c
c172d8f8e5535d30355b8833f0536def2454aa85
cb238a0b394a3e5d7a365c8332e2956a01e6286de23c639feafc013121fcd0bd

HTTP Headers

GET /uploads/thumbs/a3b04f261-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 23186
last-modified: Fri, 30 Sep 2022 12:39:06 GMT
x-frame-options: DENY
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=98XZqZ%2Bix3QuZXY6D5U5BTOwZxX1xopWJYlRjiiBoFA6cMy5YmYQPiqhkRYIo59haA%2BGI3E9hXbilodShwPWeGBoUBB7Nj%2BupULi0EIG4j3TWql0zN1IRCsuWzmPqWxPrcA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999bc9e056bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/66e5ab0cf-1.jpg

172.67.192.84

11 kB

URL
w27.my-cima.net/uploads/thumbs/66e5ab0cf-1.jpg
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x255, components 3
Size
11 kB (10915 bytes)
Hash
76b6ef0f7e50b36069630f56478f4fb3
b46ee54619b8f0e6b204fa5dbb6531acf49c310d
8a2c67d379101d97a0e3daf205e8602e235faa9d3a5bad3111ed14418af0d959

HTTP Headers

GET /uploads/thumbs/66e5ab0cf-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 10915
last-modified: Sat, 01 Oct 2022 01:12:09 GMT
x-frame-options: DENY
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y4CMjDyfotZP3m9W5FdSpwn6n%2Bex6ZjEPFDHcMtIlJaspleXOT%2BiqDOgiHPvImaQiEQAu3IMChvMYGMgRk64xDcy9fWXMJGMksJre5h9v%2F5zKYwFPs4dG9RHp84JeyCCh58%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999bc9e256bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/uploads/thumbs/64881635d-1.jpg

172.67.192.84

200 OK

47 kB

URL GET HTTP/3
w27.my-cima.net/uploads/thumbs/64881635d-1.jpg
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 720x405, components 3
Size
47 kB (47151 bytes)
Hash
2b3cecd4fdb1f4d833f218afd1d00f69
93d2e31655e11654d330cfb0a0f18c3623d97f8b
a7d828176e909baf0fbcd72129c0ada2ef57de12cef962f4964c21602eb87c8d

HTTP Headers

GET /uploads/thumbs/64881635d-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 47151
last-modified: Mon, 06 May 2024 00:36:28 GMT
x-frame-options: DENY
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iV5XWXY3%2FfBX1%2FhrhPTOPcwB%2BzmqNWH8DhIOkOYxp3j2B2Hg8qI%2FiuiSEifjX1vQXI1V37BdTk%2BBeDung%2BLNvIIjF0GxNKHtRdLZuqB0RGqTQo4iOa6F%2FIBy3%2BdtMFF48qA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999bc9e756bd-OSL
alt-svc: h3=":443"; ma=86400

i.ibb.co/QHn7LZh/images.png

162.19.58.160

5.2 kB

URL
i.ibb.co/QHn7LZh/images.png
IP
162.19.58.160:0
ASN
#16276 OVH SAS

File type
PNG image data, 348 x 145, 8-bit colormap, non-interlaced
Size
5.2 kB (5175 bytes)
Hash
a766d8c1a622eaf6f8c61923eb7b2ffa
0451f3b28a9d3ba5e86db5bf84647b2695d281df
c4708018079d00eb69f9401ede6757ad56d2debe193c0e2e5490229d5c4db8ea

HTTP Headers

GET /QHn7LZh/images.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/png
content-length: 5175
last-modified: Mon, 16 Oct 2023 14:16:03 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

w27.my-cima.net/uploads/thumbs/8092cc449-1.jpg

172.67.192.84

8.0 kB

URL
w27.my-cima.net/uploads/thumbs/8092cc449-1.jpg
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x270, components 3
Size
8.0 kB (8024 bytes)
Hash
8890c6da1ec2c86727403cd1c2bc1cf5
aa22640fe9cbf01d30beaab3518acd8f89a73532
59355ed6b6b45d59fa340560282322df433bf137aafc06a17da8763cb4922a93

HTTP Headers

GET /uploads/thumbs/8092cc449-1.jpg HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/jpeg
content-length: 8024
last-modified: Sat, 01 Oct 2022 00:48:19 GMT
x-frame-options: DENY
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CZFKpC6iQ%2FJpLlanYrYnKmR2L71BlQ5Xqj4e2zlnr%2BnhEufotlcU3vl%2Bmud1ANK7%2FKjsEQ2eLqUZkSA%2BUEQCE4MFsi%2BsOTjkaNywl88BVn3Bn%2Fpr7C9vRznhl%2FCmjTK1zZo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999b998456bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/ajax.php?p=stats&do=show&aid=2&at=1

172.67.192.84

200 OK

2.5 kB

URL GET HTTP/3
w27.my-cima.net/ajax.php?p=stats&do=show&aid=2&at=1
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
2.5 kB (2455 bytes)
Hash
a869dbe14682b7dcd78cbc0d50af2cdb
452e3d33d13d99df18a35732abec821f7dbecae2
4d77948bab55cf2d1ee78f8d183a217816b130920fac6483795e0289ab017bec

HTTP Headers

GET /ajax.php?p=stats&do=show&aid=2&at=1 HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/gif
pragma: no-cache
expires: Wed, 5 Feb 1986 06:06:06 GMT
cache-control: must-revalidate
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UEWx57A%2FjeuN78gWiurwU%2FcfSApV%2BopePgHLbCV2oRwhnlM6RRo%2F0wdkwuB2JW%2BeR4IO5Z7bBEleFm4B%2B8NYKiKtZ8ZtvqbAAo6XMCtuKRtmz9jtr2jItMY907776dPLPis%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c999bc9f056bd-OSL
alt-svc: h3=":443"; ma=86400

nachodusking.com/1clkn/55455

23.109.170.33

200 OK

26 B

URL GET HTTP/1.1
nachodusking.com/1clkn/55455
IP
23.109.170.33:443
ASN
#7979 SERVERS-COM

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerLet's Encrypt
Subjectnachodusking.com
FingerprintB8:6B:3B:CA:97:24:AD:72:AC:B6:E1:60:2E:84:A1:B5:AF:9D:83:FE
ValiditySun, 14 Apr 2024 23:31:38 GMT - Sat, 13 Jul 2024 23:31:37 GMT

File type
ASCII text, with no line terminators
Size
26 B (26 bytes)
Hash
9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550

HTTP Headers

GET /1clkn/55455 HTTP/1.1
Host: nachodusking.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Jun 2024 17:43:04 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Mon, 17-Jun-2024 17:43:04 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Mon, 17-Jun-2024 17:43:04 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

fonts.gstatic.com/ea/droidarabickufi/v6/DroidKufi-Regular.woff2

216.58.207.227

200 OK

31 kB

URL GET HTTP/2
fonts.gstatic.com/ea/droidarabickufi/v6/DroidKufi-Regular.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAF:F4:F6:EB:DF:C2:EE:A0:DE:57:2C:A6:2A:38:0A:B9:6B:0A:4C:D4
ValidityMon, 27 May 2024 07:29:09 GMT - Mon, 19 Aug 2024 07:29:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 31248, version 1.0
Size
31 kB (31248 bytes)
Hash
436938da6ed799ca17110e719e4d2e51
b7ef31b6085a9f0963dffe7939abca527724d389
a7b09bb9c8e8e2fb189204e08ed94bd8096c118780b5e926847cf2748ca7c5c2

HTTP Headers

GET /ea/droidarabickufi/v6/DroidKufi-Regular.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://w27.my-cima.net
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 14 Jun 2024 01:44:47 GMT
expires: Sat, 14 Jun 2025 01:44:47 GMT
cache-control: public, max-age=31536000
age: 230297
last-modified: Wed, 13 Aug 2014 16:50:04 GMT
content-type: font/woff2
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

netdna.bootstrapcdn.com/font-awesome/4.4.0/fonts/fontawesome-webfont.woff2?v=4.4.0

104.18.10.207

64 kB

URL
netdna.bootstrapcdn.com/font-awesome/4.4.0/fonts/fontawesome-webfont.woff2?v=4.4.0
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 64464, version 4.262
Size
64 kB (64464 bytes)
Hash
4b5a84aaf1c9485e060c503a0ff8cadb
574ea2698c03ae9477db2ea3baf460ee32f1a7ea
3c4a1bb7ce3234407184f0d80cc4dec075e4ad616b44dcc5778e1cfb1bc24019

HTTP Headers

GET /font-awesome/4.4.0/fonts/fontawesome-webfont.woff2?v=4.4.0 HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://w27.my-cima.net
DNT: 1
Connection: keep-alive
Referer: https://netdna.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: font/woff2
content-length: 64464
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "4b5a84aaf1c9485e060c503a0ff8cadb"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 02/19/2024 11:12:32
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 756
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: ed5584f85ae8aea3b804c11794354572
cdn-cache: HIT
cf-cache-status: HIT
age: 281451
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 894c999e79810b06-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/templates/3arbserv/js/jquery.readmore.js

172.67.192.84

200 OK

1.7 kB

URL GET HTTP/3
w27.my-cima.net/templates/3arbserv/js/jquery.readmore.js
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (3399), with no line terminators
Size
1.7 kB (1690 bytes)
Hash
9831a2bda29ff5d836acf4aca465c0cd
44deda013554c85237ddc16793a2065f5551249b
e75fb4b26aa2ded1e757268828d3d759c05a85d92db75cd6b491f3f4cb6af769

HTTP Headers

GET /templates/3arbserv/js/jquery.readmore.js HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=3430
last-modified: Thu, 29 Oct 2015 08:29:54 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 7057
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3wQFwVB7N2d58o9DmkDyMGCwkQpAg3EzXPNs1g3t05KWpxd3D8nxywmK15sD0aqY7WerefbsfqJqNZeteeiHvq1x7VwnRSyMnGNpSTYOhn5Ip0R8Dig1%2FSkO0sAQj8PA2hs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c999ebee156bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/templates/3arbserv/js/jquery.plugins.a.js

172.67.192.84

3.4 kB

URL
w27.my-cima.net/templates/3arbserv/js/jquery.plugins.a.js
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
JavaScript source, ASCII text, with very long lines (9490), with no line terminators
Size
3.4 kB (3362 bytes)
Hash
7edd7d96ee453442900875aa72c595c4
a09a3c791e560866562f26d8ac7f9621f369cfa2
d36a4d2e1e3ec14aa6fd41115d053a533999f0337d0f48859de361199f7359cb

HTTP Headers

GET /templates/3arbserv/js/jquery.plugins.a.js HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=9805
last-modified: Tue, 05 Mar 2019 09:42:54 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 3357
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pl2zrhCYDU%2F9UqkXmh8LqHihiWUj925Iqwnglb42Td52Eml2LCLfOhrKd97zFeegBEMf3BIJ0Z2bTCnF%2FhysyxBTbHZzTN8lYRZyh%2BF%2FHF6asfd5JLa6yjRlVYT7fm1kGR0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c999f0f3656bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/templates/3arbserv/css/bootstrap.min.css

172.67.192.84

23 kB

URL
w27.my-cima.net/templates/3arbserv/css/bootstrap.min.css
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65360), with CRLF line terminators
Size
23 kB (23271 bytes)
Hash
057c5534becfdb2d50350cbacfb8fa8c
aee8eea23cc9ade1f7e3de672f57a9f79e9e1516
00cce1553100d450fad1142957e5a2c793a1c5ba7877f5a119c704eb6acc1313

HTTP Headers

GET /templates/3arbserv/css/bootstrap.min.css HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: text/css
last-modified: Tue, 16 Apr 2019 09:05:50 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 6879
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=csDgxczireUPUJLhvRVAEFx%2BW77k6XZqBpyoRjKIguWln3WQp9hiEgxMFkeXhfaR2A6JWOqV6bVV1bWT0PF1pgmm%2F%2FHjHljAC4vmW86oshkYUimDfEKsntNIZTO8UH9okqI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c999b894056bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=GA_MEASUREMENT_ID

142.250.74.168

50 kB

URL
www.googletagmanager.com/gtag/js?id=GA_MEASUREMENT_ID
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
JavaScript source, ASCII text, with very long lines (1664)
Size
50 kB (49476 bytes)
Hash
b790597fb2ce4719293fa8f7e57c804e
0daa4df4b36f891ed2db25b88f6b2e86b5fe6c97
8ff2752a90e4b8d93f54ef42c42987e129a798960d598921cb086325c9098269

HTTP Headers

GET /gtag/js?id=GA_MEASUREMENT_ID HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 16 Jun 2024 17:43:04 GMT
expires: Sun, 16 Jun 2024 17:43:04 GMT
cache-control: private, max-age=900
last-modified: Sun, 16 Jun 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 49476
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

w27.my-cima.net/watch.php?vid=f0f2663fd

172.67.192.84

38 kB

URL
w27.my-cima.net/watch.php?vid=f0f2663fd
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
38 kB (37762 bytes)
Hash
c8db77d7168ba416532392ab784163ec
edf52bdb48d09a1f52979d4ec05d004b244f0fb6
bf4f4c6b061f9201b0ac734c68248bea6d98a81239df1ed20dc5e4afe04dcb56

HTTP Headers

GET /watch.php?vid=f0f2663fd HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Sun, 16 Jun 2024 17:43:03 GMT
content-type: text/html; charset=utf-8
location: https://w27.my-cima.net/watch.php?vid=6f2d1c038
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; path=/
vary: User-Agent
x-frame-options: DENY
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DpCaQ3uun2VkbHG0D35ItbNdobNNEWObdSK59oPzVY%2FSl1HeUj0FnJoxj8kCfpd8v2Z7TLTCxvkOC%2BlMcAyKjPja9NifXcKCgySlMphk0AnRP1BBbpb%2BsBXw47NBmvu%2B0mw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c999818130b41-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

netdna.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js

104.18.10.207

200 OK

10 kB

URL GET HTTP/3
netdna.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint93:87:98:7E:3F:62:5F:E6:68:1C:1C:8A:E4:9D:FB:A8:C3:72:4F:90
ValiditySat, 25 May 2024 01:51:52 GMT - Fri, 23 Aug 2024 01:51:51 GMT

File type
gzip compressed data, from Unix
Size
10 kB (10296 bytes)
Hash
aed6f044969abd41d48e47d0763c5a56
a1938056876d082a32e4ddbc7a5e06b94fa31cf5
5730c5ea596a92484dd4585012fa90712593a7f6e5de7e4fee886042571b1d89

HTTP Headers

GET /bootstrap/3.2.0/js/bootstrap.min.js HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: gzip
etag: W/"abda843684d022f3bc22bc83927fe05f"
last-modified: Mon, 25 Jan 2021 22:03:57 GMT
cdn-cachedat: 05/01/2023 21:10:53
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 874
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: c24a1953c54449ff63e28ca06877aa18
cdn-cache: HIT
cf-cache-status: HIT
age: 289336
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 894c999f098bb4f7-OSL
alt-svc: h3=":443"; ma=86400

my.rtmark.net/gid.js?userId=00807df060fb48efebb0c195eef2cbd4

139.45.195.8

65 B

URL
my.rtmark.net/gid.js?userId=00807df060fb48efebb0c195eef2cbd4
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON text data
Size
65 B (65 bytes)
Hash
fa4dcc0e1f9acbb1a02758f45c2e3bd5
bd1101b469799973efb30f5ae0dd9c8cabf9ceb9
56c2078a6b4fd72cdacb7248d7f08fcf4f60d2035e38eb456972b32690079b8f

HTTP Headers

GET /gid.js?userId=00807df060fb48efebb0c195eef2cbd4 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w27.my-cima.net
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 16 Jun 2024 17:43:05 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://w27.my-cima.net
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=00807df060fb48efebb0c195eef2cbd4; expires=Mon, 16 Jun 2025 17:43:05 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

w27.my-cima.net/cdn-cgi/challenge-platform/h/g/scripts/jsd/6aac8896f227/main.js

172.67.192.84

200 OK

26 kB

URL GET HTTP/3
w27.my-cima.net/cdn-cgi/challenge-platform/h/g/scripts/jsd/6aac8896f227/main.js
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7829), with no line terminators
Size
26 kB (25901 bytes)
Hash
4f7742edcbf3ff95d0d3769d3e59f5dc
173ab010c566385201ee2cc125cb92524bfb2d66
615edf3e903bbc006529cdd7ae99fc7159310f354727ab113f1a7ed8f46bcb8e

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/6aac8896f227/main.js HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
cache-control: max-age=14400, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6j8CWcF9OHrDpgTXIW3ba6bSw%2F7lkaKkAMqy7RdqjuuxutdPaKJR2O7V3MKZQ2xQkQHlh00TH9c7LUkpH06z1wdGm8QXtHdDFPmWAgHBKl5X5ptsDTubqQJRDkKA9i5uyiI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999fb84456bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/templates/3arbserv/js/jasny-bootstrap.min.js

172.67.192.84

6.5 kB

URL
w27.my-cima.net/templates/3arbserv/js/jasny-bootstrap.min.js
IP
172.67.192.84:0
ASN
#13335 CLOUDFLARENET

File type
JavaScript source, ASCII text, with very long lines (343)
Size
6.5 kB (6483 bytes)
Hash
f6b6e524d29d54ada53e4172b9d91cf7
427153c7a2d83d2ca800e397779f29b857801ad2
e7ad856551c720cb7c6a24a8bf4a9d6b6b24c24f07109cde96366338e53a4ff8

HTTP Headers

GET /templates/3arbserv/js/jasny-bootstrap.min.js HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: text/javascript
last-modified: Wed, 20 Apr 2016 07:26:54 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 7057
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k6DFfldJus43GjmHNrDlUcKr%2Bz4OcCBcZoRIiMY6fSh1U1ksVlziCyNQmazKfx8pMWntU6c8uAriELktJO9du7PIK0RV0uy7XAsxd0TJ3grl38lIRqg5cPGl6fc25yZhVrU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c999ebee656bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/cdn-cgi/challenge-platform/h/g/jsd/r/894c999899020b41

172.67.192.84

200 OK

0 B

URL POST HTTP/3
w27.my-cima.net/cdn-cgi/challenge-platform/h/g/jsd/r/894c999899020b41
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/jsd/r/894c999899020b41 HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12195
Origin: https://w27.my-cima.net
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:05 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.my-cima.net; HttpOnly; Secure; SameSite=None
cf_clearance=5k3X49vO1ynfexCBZJzun0jeOSVgM9IyCpm.8PY4c44-1718559785-1.0.1.1-PUq.KGMknt3Drud5jFBENsTegPTczBhkNf9DAwdRKJV6jbPa9QyxMw2TcVEG2noKMusfSWOK3_GcMcFR0hZtZg; Path=/; Expires=Mon, 16-Jun-25 17:43:05 GMT; Domain=.my-cima.net; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f00W%2FnwS2WQIjW%2BzenrnCSkxkcfFLFNKIob2peAbzU%2FBKhFOFzGVi9LYlWczUUIjxpzKi7xCl%2BuOgur7lNkXDPLXI0Cp3oNKzl974JwQIFF6lei%2F7C9Wf3QPWDm9mw9IEHY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c99a0ea4356bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/templates/3arbserv/js/jquery.readmore.js

172.67.192.84

200 OK

1.7 kB

URL GET HTTP/3
w27.my-cima.net/templates/3arbserv/js/jquery.readmore.js
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (3399), with no line terminators
Size
1.7 kB (1721 bytes)
Hash
9831a2bda29ff5d836acf4aca465c0cd
44deda013554c85237ddc16793a2065f5551249b
e75fb4b26aa2ded1e757268828d3d759c05a85d92db75cd6b491f3f4cb6af769

HTTP Headers

GET /templates/3arbserv/js/jquery.readmore.js HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D; prefetchAd_6205538=true; cf_clearance=5k3X49vO1ynfexCBZJzun0jeOSVgM9IyCpm.8PY4c44-1718559785-1.0.1.1-PUq.KGMknt3Drud5jFBENsTegPTczBhkNf9DAwdRKJV6jbPa9QyxMw2TcVEG2noKMusfSWOK3_GcMcFR0hZtZg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:05 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=3430
last-modified: Thu, 29 Oct 2015 08:29:54 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 7058
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ePC0o60pwi9edtqCzxgIytqJOAg4G7z4AB8iloYYdsh2chbiqem8OEaNZoxT4LBiSBgoHfI2XTEw5NdW8YuEbQt5pU%2FVmtXo0GI1OTRz3mFl1pV79qy%2FtMDHiq9Naqt9s6g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c99a18b2e56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/js/jquery.typewatch.js

172.67.192.84

200 OK

2.8 kB

URL GET HTTP/3
w27.my-cima.net/js/jquery.typewatch.js
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1440), with no line terminators
Size
2.8 kB (2812 bytes)
Hash
127426292630387dbe0c8b903229a7d3
fe62c30bb3a0e02f549ee6323d55bfac5cf32239
04fd6ef5911c31cc109fa5cc24010a975df2fae28d156ccbfc849b7e844c11c8

HTTP Headers

GET /js/jquery.typewatch.js HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=1745
last-modified: Mon, 06 May 2019 13:34:38 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 6978
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hA7%2BX4Pj8XKZVQK7DDahOH82Kl4pAbEo%2B%2B4vce1oBZfsFZ7geJuBV9te6IMTTmIKsCKZ37nob5YtspQOFDLtAMjhcI3mFWYTFlmv82pgTF3WVi7DBL2asWyQnSk9vg3l%2FpU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c999f0f3456bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

goomaphy.com/401/6219621

139.45.197.239

34 kB

URL
goomaphy.com/401/6219621
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
34 kB (34363 bytes)
Hash
fa50b19fe66712769357dab899fd05a1
0e0aed6c7b367713de2d14e55c9fefa95f485d82
b7815105bfa2fd4ce4600f5c425671069280675cf08576dab32cecf247ba7873

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /401/6219621 HTTP/1.1
Host: goomaphy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 16 Jun 2024 17:43:05 GMT
content-type: application/javascript
x-trace-id: a21623de43c182292717de8169c6e7ff
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=03007d5ee15b428cfe6c012334fe0c3a; expires=Mon, 16 Jun 2025 17:43:05 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
ede0b27def700f18bb6d4eb4c1d97352
c802c366cb2eee6b9339349aa21677fdb1bd5fa5
18ffb58da62f40b37a43b0baaceefe8bc3ef83ccdf9ee19ff874ccb0d802c9f2

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "18FFB58DA62F40B37A43B0BAACEEFE8BC3EF83CCDF9EE19FF874CCB0D802C9F2"
Last-Modified: Sat, 15 Jun 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12363
Expires: Sun, 16 Jun 2024 21:09:09 GMT
Date: Sun, 16 Jun 2024 17:43:06 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
ede0b27def700f18bb6d4eb4c1d97352
c802c366cb2eee6b9339349aa21677fdb1bd5fa5
18ffb58da62f40b37a43b0baaceefe8bc3ef83ccdf9ee19ff874ccb0d802c9f2

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "18FFB58DA62F40B37A43B0BAACEEFE8BC3EF83CCDF9EE19FF874CCB0D802C9F2"
Last-Modified: Sat, 15 Jun 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12363
Expires: Sun, 16 Jun 2024 21:09:09 GMT
Date: Sun, 16 Jun 2024 17:43:06 GMT
Connection: keep-alive

w27.my-cima.net/templates/3arbserv/css/echo.css

172.67.192.84

200 OK

45 kB

URL GET HTTP/3
w27.my-cima.net/templates/3arbserv/css/echo.css
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
45 kB (44676 bytes)
Hash
f23c5729ceb0749b7d5b9a4d6d4cbfd3
6fbfed03237339a7fa6921e4013eb5e89a3c5e48
6d2b0c074b62f03fd32e79a124ca7d42b42bfba6f20d85d30e548c5e29ece1d4

HTTP Headers

GET /templates/3arbserv/css/echo.css HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=329217
last-modified: Mon, 15 Aug 2022 20:37:46 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 6879
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GqMcK9jEzTJcfccBUQaKYfhcrMSOE3r6KEcAKguASpnjyhh5owEg70jkKayU3s%2FlEruRWcSPM0KLW54EnKOhpGRh1tjtd143Gxp9W5NIQLzwTXwGUvuaUPdCr9poYZboMGE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c999b996456bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/cdn-cgi/challenge-platform/h/g/scripts/jsd/6aac8896f227/main.js

172.67.192.84

200 OK

14 kB

URL GET HTTP/3
w27.my-cima.net/cdn-cgi/challenge-platform/h/g/scripts/jsd/6aac8896f227/main.js
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7841), with no line terminators
Size
14 kB (13921 bytes)
Hash
96aeaf132cf6e8d64962b89ebe723b4b
04b9c7434a370c6441c6f01cb9a489ae0d0a17cb
9172ad0a99ee22eba45c74c572e520305ab3f28ad4a5856f8f6962f7015373aa

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/6aac8896f227/main.js HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D; prefetchAd_6205538=true; cf_clearance=5k3X49vO1ynfexCBZJzun0jeOSVgM9IyCpm.8PY4c44-1718559785-1.0.1.1-PUq.KGMknt3Drud5jFBENsTegPTczBhkNf9DAwdRKJV6jbPa9QyxMw2TcVEG2noKMusfSWOK3_GcMcFR0hZtZg; pm_elastic_player=normal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jPJcE3LBofljPGlAuMxg%2Bp11pGK%2F4u%2Bd3mTNY473rqMY17zihrnHo3XCe%2FuhQjFndVlXx%2FOxiJImSobCfzrz9%2Bz8%2BhOW4N7rWpGid3L5xZUYboBFerd3%2FB5RzFp6PcN%2BmyQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c99a34e4056bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/templates/3arbserv/css/echo.rtl.css

172.67.192.84

200 OK

17 kB

URL GET HTTP/3
w27.my-cima.net/templates/3arbserv/css/echo.rtl.css
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (17280), with no line terminators
Size
17 kB (17280 bytes)
Hash
705451a4e7b20a5ce1a857e4c966066a
d13416cd58f896ce1cf8ddae81693fdb03e499e4
ce28ab1f5bb0970aad3173b27526bd8dfa2f4ca8e36582dcef551f74186a8d45

HTTP Headers

GET /templates/3arbserv/css/echo.rtl.css HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=22855
last-modified: Mon, 06 May 2019 06:49:56 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 7100
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7lklZjLV3iAm2QNzHEbLLGeUJsMPEKdSlEFjrlestxffwUhWyhvMM5eR1Sw4qIsjt4TskQSp4Syl3bbYXKeg3%2BA2Ne4iJZCwAWFyYA3%2B%2BYbBoPl811w%2FHuRewhrZmCBmOwA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c999b996b56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

netdna.bootstrapcdn.com/font-awesome/4.4.0/css/font-awesome.min.css

104.18.10.207

200 OK

27 kB

URL GET HTTP/2
netdna.bootstrapcdn.com/font-awesome/4.4.0/css/font-awesome.min.css
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint93:87:98:7E:3F:62:5F:E6:68:1C:1C:8A:E4:9D:FB:A8:C3:72:4F:90
ValiditySat, 25 May 2024 01:51:52 GMT - Fri, 23 Aug 2024 01:51:51 GMT

File type
ASCII text, with very long lines (26548)
Size
27 kB (26711 bytes)
Hash
0831cba6a670e405168b84aa20798347
05ea25bc9b3ac48993e1fee322d3bc94b49a6e22
936ffccdc35bc55221e669d0e76034af76ba8c080c1b1149144dbbd3b5311829

HTTP Headers

GET /font-awesome/4.4.0/css/font-awesome.min.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: gzip
etag: W/"0831cba6a670e405168b84aa20798347"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 11/18/2022 06:19:10
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 863
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 617cddf282529eb1891a1067ee3c7115
cdn-cache: HIT
cf-cache-status: HIT
age: 289639
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 894c999c9dd57131-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

w27.my-cima.net/include/securimage_show.php?sid=e4009f2fedd55417b6aeaa7e7ffc6e6a

172.67.192.84

200 OK

2.8 kB

URL GET HTTP/3
w27.my-cima.net/include/securimage_show.php?sid=e4009f2fedd55417b6aeaa7e7ffc6e6a
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
PNG image data, 158 x 35, 8-bit/color RGB, non-interlaced
Size
2.8 kB (2754 bytes)
Hash
3d98f99244dabfdbd0672c74d8c436bb
16c721351584d20164460380970f2dd17a75fa91
205361b81d4a6292b08087542468f01323266509e1d5b3fcb3922d5a596d7920

HTTP Headers

GET /include/securimage_show.php?sid=e4009f2fedd55417b6aeaa7e7ffc6e6a HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/png
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aEqYJSt82KI7vxPVJ%2F%2BdPAIPOeEbgDU8u0pJaQmmhZcrjVEdW87w0l2wMdsXviJ39S5Y7zafNDEWc8c8bemLFzIS%2F%2FxjJuAhLnIn9QysEwMZnErJKO3Rlc%2FnJAt39A0z6yA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c999bc9ea56bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

172.67.192.84

200 OK

12 kB

URL GET HTTP/3
w27.my-cima.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (12331)
Size
12 kB (12332 bytes)
Hash
88a769d2fe35899fd45a332a0a032cc0
514c6c1d8475d17e412849a4c90159517d0fa10a
ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: application/javascript
last-modified: Tue, 11 Jun 2024 17:32:13 GMT
etag: W/"66688a1d-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bPyIj0Bm2Ul8MoR%2BB7DeM4eIGROJ9exgSjLXFhVAKNPxlRGWhQn9MZacgRIP7Izd1jSsZAl1HGxS0l7XfC60MBRIYzNlOgTKxqQrIJiu2cwXQYtmMyC424Oaqy3TL2veINw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999bda0c56bd-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Tue, 18 Jun 2024 17:43:04 GMT
cache-control: max-age=172800, public
content-encoding: gzip

w27.my-cima.net/templates/3arbserv/css/jasny-bootstrap.min.css

172.67.192.84

200 OK

14 kB

URL GET HTTP/3
w27.my-cima.net/templates/3arbserv/css/jasny-bootstrap.min.css
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (13803), with CRLF line terminators
Size
14 kB (14003 bytes)
Hash
56a224ccaaf1ad3df6ee7dbbc019aeac
2ce1ef76b342a8fafda1e03a62b99be5340812bf
777a9e5bb5d35fd671e5b252c67a0cf462baa8258db145ef6ea7dadf4de4b481

HTTP Headers

GET /templates/3arbserv/css/jasny-bootstrap.min.css HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: text/css
last-modified: Wed, 20 Apr 2016 09:46:42 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 7100
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=07dgwhIj4sWpIcdTm3yo4qkeTsEmI3IC7013XFK01WOlWk%2FHVBgAQ6k2VsOJIRMLKCV8Wu6FaI1oqjmsAUDmdoU2D%2BbSzO48Q1iANcaZ%2F8%2Ftk%2BK%2B27a5D3QkAxHdWgBQVa8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c999b996256bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/js/melody.dev.js

172.67.192.84

200 OK

16 kB

URL GET HTTP/3
w27.my-cima.net/js/melody.dev.js
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (2302)
Size
16 kB (15865 bytes)
Hash
f2bf056198be59f92547935fd4c968f0
cba85174a3d6d68fcff3a2e6238f1d6150b58fce
244926b75ad193faf7a694c602d5819576e2d953dc43849395dedfa841f5ea53

HTTP Headers

GET /js/melody.dev.js HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=23108
last-modified: Mon, 06 May 2019 13:34:38 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 7057
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vC%2BQi0OXsfC9M%2BhlLhGgyMESC5lG3pb5L33LyZE0fNf2BsQMLxYRM4ep%2Fbyi55%2Bvq8xMwhOTeMSwV9JZOmliOFw4k1MdzBvs%2B6cZAJZzgXQbuc8pksKkkogiOWd2fKH1hNk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c999eff3056bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/favicons/favicon-16x16.png

172.67.192.84

200 OK

1.0 kB

URL GET HTTP/3
w27.my-cima.net/favicons/favicon-16x16.png
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
1.0 kB (1017 bytes)
Hash
2f9e3795889ec567bbb1124b6b1f73c8
1587f8e10111dda099a9453850224807334ec44b
c994effa2226581104a4963c1c0ced8b6009e06a8ac49b4cdb09ce1c84443a65

HTTP Headers

GET /favicons/favicon-16x16.png HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:05 GMT
content-type: image/png
content-length: 1017
last-modified: Tue, 08 Mar 2022 13:44:34 GMT
x-frame-options: DENY
cf-cache-status: HIT
age: 5712
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LG5XbYqs%2BqunpqBMrzeMYdImdYY4MNTP7YtSzGBm83Vr%2FX%2BcrLTp8ixGEpa6vuHwz8%2BhJB8MWQr30o0kdBiTRIBroLkviC3cM3bFNgfsFGLOVrJ1v3Jc6RjszpVEZ8Pxb%2Bo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c99a0ca0256bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/js/bootstrap-notify.min.js

172.67.192.84

200 OK

8.2 kB

URL GET HTTP/3
w27.my-cima.net/js/bootstrap-notify.min.js
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (8540), with no line terminators
Size
8.2 kB (8216 bytes)
Hash
d0084824fa4041e8ec98bf9d11d6d9e6
511e08759bed4b71d75fc3d6929918e7ab1dc6eb
06365f15c222c6cd5751f5b1c027be557898324121b4708bec2a51c03a77ed2c

HTTP Headers

GET /js/bootstrap-notify.min.js HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: text/javascript
last-modified: Mon, 06 May 2019 13:34:38 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 7057
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TOmXJcpOP0hD79sXHrBVdESkMN8CnIQW5XzrRWFL%2B6mZqhsd4eNer%2BAiHgVcGoYGSfgoweGzpMDCNP7FhjKjk3IRQhd%2Fe%2BUm0jFkGGwJg6TGsQtZNZgimNdoWREN%2FZ4T6Z4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c999eff3156bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/watch.php?vid=6f2d1c038

172.67.192.84

200 OK

117 kB

URL User Request GET HTTP/2
w27.my-cima.net/watch.php?vid=6f2d1c038
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type

Size
117 kB (116693 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.php?vid=6f2d1c038 HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 16 Jun 2024 17:43:03 GMT
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: watched_video_list=MTM3NTk%3D; expires=Mon, 17-Jun-2024 17:43:03 GMT; Max-Age=86400; path=/
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5vg1KUe4OxcEyPGHNnegtKPExso6XR88NZvZF1SrIXWCCN1QEE4IQn0OHvtag9SxsbmIOPuTx7CreOO03r8zBShFwVVo4Zy%2BjKpge4nlheYlCNVcvvSu7a5v2eCXB6vnGng%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c999899020b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

w27.my-cima.net/templates/3arbserv/css/custom2.css?v=1.2

172.67.192.84

200 OK

49 kB

URL GET HTTP/3
w27.my-cima.net/templates/3arbserv/css/custom2.css?v=1.2
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (6169), with CRLF line terminators
Size
49 kB (49288 bytes)
Hash
5e44a3ab9450fbeea554cea67b913f16
5d057982aba97e9e196a77eac10a959b00c7172d
b4ac7f1db28959488b4f55e776a800cee20868deb2c83fc40332e6e8c3c68272

HTTP Headers

GET /templates/3arbserv/css/custom2.css?v=1.2 HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: text/css
last-modified: Wed, 22 May 2024 15:00:09 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Byy4zlARTjXUOLNClA6QyMRzOFWApOnnR8WMqyW0ot5kOTcYeJ2SwrsPp8xJbm%2F%2B9yxFiu%2FtpcFOGEdpRqgfAbD%2FpIGCEIEQNy8ovvc6xgxJS3WUG9CcA%2FEinDUbnUjx9Hg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c999b996c56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/cdn-cgi/challenge-platform/scripts/jsd/main.js

172.67.192.84

302 Found

7.8 kB

URL GET HTTP/3
w27.my-cima.net/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type

Size
7.8 kB (7829 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Sun, 16 Jun 2024 17:43:04 GMT
content-length: 0
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/6aac8896f227/main.js
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Uex7IBq00xibPSob7Hq2jiGqFT9lVJr4b5rfV2ZrsdriQ8qsWrXCIG8sWfIwhkHDDdEEeQ%2BWP8lEN9TehHTzirPxc%2BovPnsI1EwN5KvK75e243gQAbPOHuG5jzPE2MzOiy8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 894c999f8ff756bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/ajax.php?p=stats&do=show&aid=1&at=1

172.67.192.84

200 OK

42 B

URL GET HTTP/3
w27.my-cima.net/ajax.php?p=stats&do=show&aid=1&at=1
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
9b5e8704c89f018cff215cb5ed3e0128
2a9fa3661b326c503e492b89cdd9130d12ead03d
b2c78c910f5ea29e3a9d223dabc203c055c8708b1fe7d83788b490638126db4d

HTTP Headers

GET /ajax.php?p=stats&do=show&aid=1&at=1 HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: image/gif
pragma: no-cache
expires: Wed, 5 Feb 1986 06:06:06 GMT
cache-control: must-revalidate
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TnDHt2vWEGNqFIMeF5com6HXloGJf2AsVgHw7Mfx5YU7ieSSF0YmEQ3Jv2JU4FR%2FijaFthJHA6SleHNL8IxvJgJwpiiPklBJOhD5SaKgTzFMFSuqI1XCsNSG2ZcNiIE%2FV7E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c999b997156bd-OSL
alt-svc: h3=":443"; ma=86400

w27.my-cima.net/templates/3arbserv/js/jquery.cropit.js

172.67.192.84

200 OK

28 kB

URL GET HTTP/3
w27.my-cima.net/templates/3arbserv/js/jquery.cropit.js
IP
172.67.192.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerCloudflare, Inc.
Subjectmy-cima.net
Fingerprint3B:70:88:E7:B5:E8:63:E7:86:2C:EC:15:DB:43:B6:6E:A5:8F:74:32
ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (27266)
Size
28 kB (27578 bytes)
Hash
cd82e0edbcecf087be901e8e7ed0d035
2cedce9f87501152efa36eb1949d95c0ca4ff200
b8a0d09df5a79e5e9494b3061eeff55883870c66714879886348c5095faa7840

HTTP Headers

GET /templates/3arbserv/js/jquery.cropit.js HTTP/1.1
Host: w27.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/watch.php?vid=6f2d1c038
Cookie: PHPSESSID=bba04e6893e956ff4437a3b2f5385a1d; watched_video_list=MTM3NTk%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: text/javascript
cf-bgj: minify
last-modified: Tue, 07 Mar 2017 13:47:48 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 6978
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9JJON5No%2FMoY2W6vxagfeCSNWF5bP3vzgTzRZJZdSfgX%2FEUbeO2%2Bk5u4jQMvOa%2FSNmbcYz3vTBkUJMyQFhyl%2B6DbUqC71TiyM0Wk7YC7OiRx5UtfjIKGwVh0XHdXbpMMwmc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 894c999ebed256bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

augailou.com/5/6205538

139.45.197.243

200 OK

97 kB

URL GET HTTP/2
augailou.com/5/6205538
IP
139.45.197.243:443
ASN
#9002 RETN Limited

Requested by
https://w27.my-cima.net/watch.php?vid=6f2d1c038
Certificate
IssuerLet's Encrypt
Subjectaugailou.com
Fingerprint7D:8A:6E:BB:62:C0:6F:5E:6C:DC:84:47:25:5C:C0:3B:A9:99:CB:7F
ValidityFri, 05 Apr 2024 05:26:27 GMT - Thu, 04 Jul 2024 05:26:26 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
97 kB (97089 bytes)
Hash
67425ffc3d2d9a19e018e9b948a3f2fb
a717d0d4335042becd870f022082651daf453dd6
e99dd79e010176265c68ee6be11a24e450a5ebf6fabd3220f02bbdd06271e6c6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/6205538 HTTP/1.1
Host: augailou.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w27.my-cima.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 16 Jun 2024 17:43:04 GMT
content-type: application/javascript
x-trace-id: 38ab7ad960bbf381a09320f9f0e99e61
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=00807df060fb48efebb0c195eef2cbd4; expires=Mon, 16 Jun 2025 17:43:04 GMT; path=/; secure; SameSite=None
oaidts=1718559784; expires=Mon, 16 Jun 2025 17:43:04 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (51)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML