Report - cimawbas.mycima.cc/watch.php?vid=beba7a1c8

Report Overview

Visited public
2024-08-18 22:43:20
Tags
Submit Tags
URL
cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Finishing URL
cimawbas.mycima.cc/watch.php?vid=beba7a1c8
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Title
مشاهدة فيلم War Dogs 2016 مترجم

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Sent	Received	IP
cimawbas.tv	50203	447 B	859 B	172.67.177.51
ajax.googleapis.com	12905	434 B	34 kB	216.58.207.202
code.jquery.com	634	420 B	3.6 kB	151.101.130.137
my.rtmark.net	9054	469 B	747 B	139.45.195.8
goomaphy.com	unknown	403 B	92 kB	139.45.197.239
fonts.gstatic.com	unknown	525 B	32 kB	216.58.207.227
www.googletagmanager.com	75	427 B	79 kB	142.250.74.168
r10.o.lencr.org	unknown	1.3 kB	3.5 kB	23.36.77.32
cimawbas.mycima.cc	unknown	23 kB	1.4 MB	188.114.96.1
zoeaethenar.com	unknown	404 B	1.2 kB	23.109.170.134
o.pki.goog	unknown	325 B	699 B	142.250.74.131
r11.o.lencr.org	unknown	1.3 kB	3.5 kB	23.36.76.226
i.ibb.co	13485	439 B	5.5 kB	162.19.58.158
netdna.bootstrapcdn.com	3413	1.4 kB	106 kB	104.18.11.207
augailou.com	unknown	1.6 kB	51 kB	139.45.197.243

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-08-18	medium	zoeaethenar.com	Sinkholed
2024-08-18	medium	augailou.com	Sinkholed
2024-08-18	medium	augailou.com	Sinkholed
2024-08-18	medium	goomaphy.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (73)

	URL	From	Size	First Seen	Last Seen
	unknown	ScriptElement	216 B	2023-03-07	2025-06-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59 Last Seen2025-06-24 23:24 Times Seen183 Hash 901d05a394689754b24c53a14ff0bb94 16e6750d0db26beda439d20147af2cdf6ee85f6c c8d34bfa528cee7507080fac65baab9a6eacb046b4c097cc3201ff3bba0d09c1 Loading...

	unknown	EventHandler	175 B	2023-05-22	2025-06-21
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-05-22 10:21 Last Seen2025-06-21 19:32 Times Seen59 Hash 73335bc9af4db078d91fabf3d09afd60 f8f429e1321d743a9960c23068293da3e4d59d49 8304f9320cab62e4e35bf1ba5a8aa0ea09aff50f633a7751f0572659018a36aa Loading...

	unknown	ScriptElement	1.8 kB	2023-04-07	2025-06-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-07 18:47 Last Seen2025-06-21 19:32 Times Seen71 Hash f48799c490867e10bf3fff06b38a3657 06d3e0bf82b5259b96e54c501ca2fb9b1f503ebf 5936461d2e0d0feabaae55dda4e14f6e68fe759a2a8ef4350b5de96be8a111ac Loading...

	unknown	ScriptElement	176 B	2023-08-25	2024-10-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 21:17 Last Seen2024-10-23 22:55 Times Seen79 Hash a604d1494e55df24ad7c62a30cc0f058 baec845d909270888dbcde8945d9ed24c8b53fba 5ed57bccec3ae6d6233648e109470a51ab1afb262a3daf1d177aaf86b8a86b19 Loading...

	unknown	ScriptElement	3.5 kB	2023-03-07	2025-06-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:15 Last Seen2025-06-21 19:32 Times Seen120 Hash c3d5e7ae44ebf7eec435c9325b6f676f 8b6342ac0b9b097678cb23ae693917b91090b944 6dab04cf1ed42a5675ee85fc766f21ccf9386c3e61f9081987b6de3ec7e7f23b Loading...

	cimawbas.mycima.cc/js/jquery.typewatch.js	ScriptElement	1.4 kB	2023-03-07	2024-10-23
Pretty URL cimawbas.mycima.cc/js/jquery.typewatch.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2024-10-23 22:55 Times Seen93 Hash 127426292630387dbe0c8b903229a7d3 fe62c30bb3a0e02f549ee6323d55bfac5cf32239 04fd6ef5911c31cc109fa5cc24010a975df2fae28d156ccbfc849b7e844c11c8 Loading...

	cimawbas.mycima.cc/js/bootstrap-notify.min.js	ScriptElement	8.2 kB	2023-03-07	2025-06-24
Pretty URL cimawbas.mycima.cc/js/bootstrap-notify.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59 Last Seen2025-06-24 23:24 Times Seen190 Hash 5ba070af9d1b1a2782851940de30879f d33390fc88bf68bd23eb182d7dbc77f5227081b2 a13a07b242c80b57e0cbbacc6cfedb538d4d331ff1f9dff370519ec57407e450 Loading...

	unknown	EventHandler	85 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash 6f3c9c421e23a7413ab6162b700674a1 930dbed025a4f1596b5800eb3dc77fc2a952ee29 c5c5bae47ed167930184a3d54272d5e496ea9f5040226295506f95a69d44a19d Loading...

	unknown	EventHandler	76 B	2023-09-16	2025-06-21
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-09-16 20:44 Last Seen2025-06-21 19:32 Times Seen56 Hash d08ec3727b4fad85077224f00f1f67f2 bead26a017f0f1b72546b9e79dd6d4d4a3892406 8f4e1969f21beb69afc68014bd65c79ceb036ec71ab474e6b3e635a431447a06 Loading...

	unknown	EventHandler	191 B	2024-08-19	2024-08-29
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 00:43 Last Seen2024-08-29 18:06 Times Seen3 Hash e82692789a50e04852e50c451a1ba3a8 12f32271680df3accdd987e93fa624c09a3b74d4 77bdee733fc3a8b4b93eaccd8803ec866a1c82b06dac8515d3e80d15f36d0754 Loading...

	unknown	EventHandler	192 B	2024-08-19	2024-08-29
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 00:43 Last Seen2024-08-29 18:06 Times Seen3 Hash 7f7dd0fb6a667202dcd2f1a9c176bb6c 68ecae15de6d6cd80e87457bcc09de716114d938 ef8e5d412b7ce60e974c16dc0f26ac7d0deaae3e281c781f5af55620e209bbce Loading...

	unknown	ScriptElement	172 B	2024-08-19	2024-08-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash 2806ca81e895b1ca187d1bb51b5f6ea3 1c1f9c37f103b656fa058f457351a9793a3bdfd4 7ecacf53746174e058d279722b37199f9d442cbab37c8bbf349c313804b66ac8 Loading...

	cimawbas.mycima.cc/templates/echo/js/theme.js	ScriptElement	44 kB	2023-03-10	2024-10-19
Pretty URL cimawbas.mycima.cc/templates/echo/js/theme.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 19:55 Last Seen2024-10-19 22:59 Times Seen33 Hash ec936f32dd9f5e2c8e3881703aa1ee95 48efb6cdbb051954b9265273247ea6675ddc15cb 35ff635a9e7b42762a78b36632593544829e2573d6ee8045aa14d01a7622b0fb Loading...

	unknown	ScriptElement	190 B	2023-03-07	2025-06-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-06-26 02:44 Times Seen147 Hash 29727d13fa2a206a7cc92a101c29ab33 647b9b2f5532aaee7217e70850589ad673938fcb 42ee5f253d773ac3a83d1fc0d0f922a4c502f66dddfb591593129586c4f2725a Loading...

	unknown	EventHandler	174 B	2023-09-16	2025-06-21
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-09-16 20:44 Last Seen2025-06-21 19:32 Times Seen61 Hash cef9ef08881204e3ef62e82e0e24b74f 343dfaece2635476c07686eb438332a7508b467c f77345c42a5fdb2974f4d8b34c5411ede828d59d9f7ed6c54a61b225956e4d5e Loading...

	unknown	EventHandler	85 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash 09253c70d8bc4b5147ddef46e6c4943d aebf7eede8bee9ca07dabe2878fe5dd4ce60e84b 349e916ae3f0cd8e534930423f329e43959b2ecee568edd236ca2938870337bc Loading...

	unknown	EventHandler	86 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:40 Last Seen2024-08-19 12:47 Times Seen2 Hash 0efbbf8d1438b2fd2fe4c23307f297c3 401a8642bcdf44eaa6588088cb019739f032b893 8de41c74d5308b211ef6a58b8d2fd069c3cf80744935b913c888e4004c2434d4 Loading...

	unknown	EventHandler	76 B	2023-09-16	2025-06-21
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-09-16 20:44 Last Seen2025-06-21 19:32 Times Seen56 Hash cb81e9dff459971b1ebf4ed31ed0ec2f 4652b085b2313799c8de7ccd921ac955cb9604fe fb8ee02baa99e01a2c06333a657a8c1eee8b5b7f93ff2e07f55d6eb847b50486 Loading...

	unknown	EventHandler	56 B	2023-04-16	2025-06-24
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-16 10:54 Last Seen2025-06-24 23:24 Times Seen137 Hash cae6f8624c66f13833c0cb65d1a7d4f3 38913a239bfe49bb031bc0bba5130fdde4a9dddd 41557c099d9a65a2febcf471b7cc43a2fc76a213f40eb129e19d06c2f3d64ce0 Loading...

	unknown	EventHandler	85 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash 54474bef1426ebc73cbd8690dfd07ead f6c6780f9f10854e5dc6c78eab12d68c45f2f4da 426abbe89f2ce7e1b4125ec15b19c4c10cb5e504411723f173ec103c01912b1a Loading...

	unknown	EventHandler	88 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:40 Last Seen2024-08-19 12:47 Times Seen2 Hash 8f07ce67349ba11d4c948a84235c8392 7c5e4a4d989728d65e200297898454ad73ab3c02 8113d9dc39d939a8973ed392a40e154af309f2670ad7be38c3dc10b6875ab0a4 Loading...

	unknown	EventHandler	85 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash dfd6d8f55565db29cd75f1b10bfa95af d8c51c51c53a4655cf8554e47c0edf5addf84951 40ce5ff131b9bf180c2fd0e92376df2e3a603dd0474146eee1782f6f7e58da57 Loading...

	unknown	EventHandler	85 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:40 Last Seen2024-08-19 12:47 Times Seen2 Hash 8226eb08b50b9bec533deeb34177ae89 573e7341a022efd8f379225264ebbd22e1ba925e fcef9dbdd027deac1e55668aea2f39bbf6967ac8f915b8c2a4f87f31b5d7b9ab Loading...

	unknown	EventHandler	67 B	2024-01-25	2025-06-21
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-01-25 08:09 Last Seen2025-06-21 19:32 Times Seen46 Hash a9a2c52ae730e4d05809f864f9b5672d 9d2fb321eb01693507ec78de5375ef4cc35a25d2 ee7d3219e8a338f7b08dcc0986a5288a17d4a1d7b6702c11a2cf4fa238c6bf14 Loading...

	unknown	EventHandler	89 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash 4d52b35485b6de05cf41a91293838c08 b5dcef9c78fedc1b7ee895a3f770ffa6ddb1c29d 400ef6eda602745852b0c7dd105574ca011f354ea148f9c129c76028031dd36d Loading...

	unknown	EventHandler	88 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash 1fcbdee204416ac10c26e2b10952c9af 3fcaa00011c4bad48bc7cf8134db4e860e78d249 1021c8b45e0af0e8e3de357a4798c4257ac35977c0330bf7463c9531c07a82fc Loading...

	cimawbas.mycima.cc/templates/echo/js/jquery.plugins.b.js	ScriptElement	9.1 kB	2023-03-07	2024-10-23
Pretty URL cimawbas.mycima.cc/templates/echo/js/jquery.plugins.b.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2024-10-23 22:55 Times Seen91 Hash 8ac43cab1939c54d6bc974726fec41ca 8c44a11ac313388d254b30c162a6f1353074296d 9ea6b351a675e3bc0e648d6d41bafd700a5944f6e54778fe6beac548210c241a Loading...

	unknown	EventHandler	88 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash b0d52b78cd049700bc36d4801737f6b0 922568d116f8119ab95d7c972083586e81067d44 32ba1106ff3b0b3d0535ac12dc2e2207bb368217f50696610d406020d4dab3db Loading...

	unknown	EventHandler	87 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash bbe7950c9c95829053ce3cdc09cafe7c fa7a049fc4435c9bca1b95b1e48e446218ca64d3 837954e1098864b4c429010d720b025ac4d3355adde5d9264c6622d5efbb490b Loading...

	unknown	ScriptElement	155 B	2023-03-10	2025-06-16
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:35 Last Seen2025-06-16 22:41 Times Seen32 Hash 74c535fa31120ea6432fa9cf4ef9453b 9a02c12073b86755c553773acc98363fb9d3a960 e33e7f2e98db343a395816f100286a1cf2c73d9b4d5fdbbad3602910b58822ad Loading...

	www.googletagmanager.com/gtag/js?id=UA-150387825-1	ScriptElement	217 kB	2024-08-19	2024-08-19
Pretty URL www.googletagmanager.com/gtag/js?id=UA-150387825-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash 0d7766089d68cc7ef47e16896e24e6f3 cec3b9ca502f80b451139227614d49b0754e7c0f c6c77398bc5df56a919e72f51df63bffb3de5ebf4aae3bc1f3b6883ee90e3065 Loading...

	unknown	EventHandler	187 B	2024-08-19	2024-08-29
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 00:43 Last Seen2024-08-29 18:06 Times Seen3 Hash 3b1253961b6525d1f3e20b8818b06b9e 1450c8cdb0a6cb30f28bf4f3c318532414b9be5f 591ab33b28ad82fbf081184f13c703ed6a08e628460ada6672578c46e65820f0 Loading...

	cimawbas.mycima.cc/js/melody.dev.js	ScriptElement	16 kB	2023-03-07	2024-10-23
Pretty URL cimawbas.mycima.cc/js/melody.dev.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2024-10-23 22:55 Times Seen97 Hash f2bf056198be59f92547935fd4c968f0 cba85174a3d6d68fcff3a2e6238f1d6150b58fce 244926b75ad193faf7a694c602d5819576e2d953dc43849395dedfa841f5ea53 Loading...

	unknown	ScriptElement	1.8 kB	2023-03-07	2025-06-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-06-26 02:44 Times Seen140 Hash 7bc2250f798e8dd30269772ee8cf4599 3fb3ed5ea1a5c052fa3c26e45d4abd3e722b9700 cda4eff9500a8b16f33a54c6cd1ce7d2ec3bf66cecddb63d9c736078916c5035 Loading...

	unknown	ScriptElement	424 B	2023-03-10	2025-06-16
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:35 Last Seen2025-06-16 22:41 Times Seen32 Hash 4fdd5489c31175a09b6612230e359876 ac0383872c5a7cec11fced6e5092f2be11bbf1a8 3db1dbd74cc159c9a8a37ed066de1ba7576cd0044671c5556e5d53fb7a0159ed Loading...

	cimawbas.mycima.cc/templates/echo/js/melody.dev.js	ScriptElement	5.5 kB	2023-03-07	2024-10-23
Pretty URL cimawbas.mycima.cc/templates/echo/js/melody.dev.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2024-10-23 22:55 Times Seen90 Hash 0465c9d8d0bd0da2a8a2a7a8945fb9fb 1cc25de2074cacb7cfb51e925be19510d8fefdfc c112a7633fcc9bf504030e0b6ac650aba21ed1198a5db17d74ddfd38ab3e248d Loading...

	unknown	ScriptElement	478 B	2023-03-07	2025-06-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12 Last Seen2025-06-26 02:44 Times Seen104 Hash b6ec630beba5aa234f361049d0162851 40852e09b7e6202ef51b85ecf775694b703442d7 79fdb7c25e266e76ee0ff619f2487f81f0b97bed193c569362bdd39d5dc6c859 Loading...

	cimawbas.mycima.cc/templates/echo/js/jquery.readmore.js	ScriptElement	3.4 kB	2023-03-07	2025-05-22
Pretty URL cimawbas.mycima.cc/templates/echo/js/jquery.readmore.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:21 Last Seen2025-05-22 03:32 Times Seen91 Hash 9831a2bda29ff5d836acf4aca465c0cd 44deda013554c85237ddc16793a2065f5551249b e75fb4b26aa2ded1e757268828d3d759c05a85d92db75cd6b491f3f4cb6af769 Loading...

	unknown	EventHandler	89 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash cccb8f395c79a09a7c6d6a73c8135f88 7a1c8fb1131d04b6213af78ebbb79f603491993b c6e6da325ddbf690ca2caaf17f48c27ad08a408fcd0170250235252557f8dcfb Loading...

	unknown	EventHandler	88 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash 39b261c34500437cbb28cca21de5e099 7e2feeb5e3a9c2d13e382405cbede14206e924ab dcbe1daf006ff02e0377d3e79c3faf2bd2a5f268b4affb38704bbf363a5dfc24 Loading...

	unknown	EventHandler	88 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash 0dc51fe28cce3ce098b900661c4ae4a6 83d84bb0ddd54ca0ed6a7e2f902ffbaab22f396a a246c5d69e952928ec77ef6b5c8d5ac4c34bd01339c804d7b55f7f75f4af5a7a Loading...

	cimawbas.mycima.cc/templates/echo/js/jquery.cropit.js	ScriptElement	28 kB	2023-03-07	2025-06-26
Pretty URL cimawbas.mycima.cc/templates/echo/js/jquery.cropit.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-06-26 02:44 Times Seen246 Hash cd82e0edbcecf087be901e8e7ed0d035 2cedce9f87501152efa36eb1949d95c0ca4ff200 b8a0d09df5a79e5e9494b3061eeff55883870c66714879886348c5095faa7840 Loading...

	goomaphy.com/401/6219621	ScriptElement	91 kB	2024-08-19	2024-08-19
Pretty URL goomaphy.com/401/6219621 IP 139.45.197.239 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash 13056c3b5aae1bdaa51aa1896abbf184 96b848e2e44d712753ac17111a75d671a33ebd4d 87f0909dbfe4664bc4dfdbabdc40cb76cecb9a702c53759b3634774ebe3b5588 Loading...

	unknown	EventHandler	89 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash dcb681b77dc229241cebeacaceeb0824 b157057f6ea4f231d6f26458bd5d7a4c5ad495ba 1b487beb001483720c8ed5a4cea4e8767b7207ea6431336d64190b97ac451e73 Loading...

	unknown	EventHandler	84 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash 1e2d53a1321ca601b0591f144e899615 3f62eeadc12b3ad476b1483444ad53f18b5d4d7c d0f46902e665c5b62cace8a5466f5835abaab0b8c141462f46869a3e6a014ff1 Loading...

	unknown	ScriptElement	365 B	2024-08-19	2024-08-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 12:40 Last Seen2024-08-19 12:47 Times Seen2 Hash 1b6ea7b519ea65329a7d5e2e8aea2f1c 6b24aa814fcfd7d300ffa279256bbc0f2264af09 02a69caf30d31af136a37708ab794681992abcf794c76a97b966d018df2f8984 Loading...

	unknown	ScriptElement	439 B	2023-03-07	2025-06-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59 Last Seen2025-06-24 23:24 Times Seen182 Hash 86a6965e541a781a37d669b260561c55 d507b1712d0947c35ca109d78453ad0706543594 d08064727885699b455486366ac7a1b6e9e298d7cb1d94d4e491088d0bb8ab94 Loading...

	unknown	EventHandler	85 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash 57c53f2e90c6ccedf10310e0d977a331 98604275267a0b78401ec32443342d083f00a751 b06861e45bea0eaa4fec02e44489ff53d8df0ea15260ffac47b4e0e66eed6851 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js	ScriptElement	96 kB	2023-03-07	2025-07-03
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js IP 216.58.207.202 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-03 05:31 Times Seen9786 Hash f03e5a3bf534f4a738bc350631fd05bd 37b1db88b57438f1072a8ebc7559c909c9d3a682 aec3d419d50f05781a96f223e18289aeb52598b5db39be82a7b71dc67d6a7947 Loading...

	cimawbas.mycima.cc/templates/echo/js/jasny-bootstrap.min.js	ScriptElement	20 kB	2023-03-07	2025-06-25
Pretty URL cimawbas.mycima.cc/templates/echo/js/jasny-bootstrap.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59 Last Seen2025-06-25 21:42 Times Seen213 Hash f6b6e524d29d54ada53e4172b9d91cf7 427153c7a2d83d2ca800e397779f29b857801ad2 e7ad856551c720cb7c6a24a8bf4a9d6b6b24c24f07109cde96366338e53a4ff8 Loading...

	unknown	EventHandler	86 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash 8497a767109960ef3e67928df8b40cc0 1611fb6e7e40601aac5d61d703a853e7e845bea8 c2818b841db61a41c9825ad5bc878653aa92221062b9b84a36893e770e19375c Loading...

	unknown	EventHandler	85 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash 2df64f3a3a177c7ed8e7f5b07ec931b2 6025c56d0c287168775bf4a8aaa61bd72e705926 0e2c62463d8bcbec828f5029fbb0aa2928d45f7bdb5256a56ff375cd2f18333d Loading...

	unknown	EventHandler	88 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash 8462e8032bff83275009f0e714f9856e 6156f5e02d1e6e68e5dbe10fb181608f38d9e490 368fa385066dc386e024894cc28b6132ffc4ea629e1b882e6d6c856b07048367 Loading...

	augailou.com/5/6205538	ScriptElement	73 kB	2024-08-19	2024-08-19
Pretty URL augailou.com/5/6205538 IP 139.45.197.243 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash f466af48f39ac61fac7a987390618438 1ed053d1f2f50e8b8064addd1cb8aa3724e809d4 90615dde530e8ce70dfb86150915291d9392f3b28d01bfa99970b1013df17ca7 Loading...

	netdna.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js	ScriptElement	32 kB	2023-03-07	2025-07-03
Pretty URL netdna.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js IP 104.18.11.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-07-03 02:30 Times Seen3219 Hash abda843684d022f3bc22bc83927fe05f 26908395e7a9a4eab607d80aa50a81d65f3017cb 24cc29533598f962823c4229bc280487646a27a42a95257c31de1b9b18f3710f Loading...

	cimawbas.mycima.cc/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	ScriptElement	12 kB	2023-03-07	2025-07-03
Pretty URL cimawbas.mycima.cc/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-03 06:12 Times Seen38695 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	unknown	EventHandler	86 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash a8bd8978a7e287cdce6ae28d499d1223 c1bd1d9f2edded329c565288be66eaecd5d08936 842a92257c1557de1e465a6831154ac04a014a6e9a462fb87d0151a265ded890 Loading...

	unknown	EventHandler	86 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash e37368c8de05046837663fbd36ede96b 729135eed8f4235e310117d7fce002167cc78088 25370a5ef33cb7beffbe94238e397951d2bad31958709466e24f813d883875cd Loading...

	unknown	EventHandler	0 B	0001-01-01	2025-07-03
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-07-03 06:14 Times Seen5256217 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	ScriptElement	1.4 kB	2023-03-07	2025-06-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12 Last Seen2025-06-26 02:44 Times Seen87 Hash 48b383db8c4b689d51c7fe7520af1108 464dbc35d23e717068b6c71c46c7e267bf8bf3c4 e23346daaea4662b4e261ddc679f7ef3e914155a66fc2ded5802809568638553 Loading...

	unknown	ScriptElement	291 B	2023-03-07	2025-06-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59 Last Seen2025-06-24 23:24 Times Seen164 Hash 0b5c6ecfd31b214438c017f7840cab7d 5b0d464bbab33735e654f6d0b47dd2bcd47f8e5c e0d679f66eea8fae589016f89ff238618cabb4b802add68fcbf4d70498356ea1 Loading...

	unknown	ScriptElement	904 B	2024-08-19	2024-08-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash 22bdec4d3f521ddfdb22c67f9f168690 fbf7c46c821c9fe2aca333088ba5860a18d7147c 81f1387c23523e9c9644b925a328494960292ec414b572adb98032d606dc241a Loading...

	unknown	EventHandler	88 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:47 Last Seen2024-08-19 12:47 Times Seen1 Hash 6e9582a4fd3dd7583e0aac5d1023e031 5c38fbd1281b43411e9540461fd14f5a921510e2 8e4fface4c88147961b7a1bcffa746306d90bf2223234f775926ca7ca257e14c Loading...

	unknown	ScriptElement	306 B	2023-03-10	2025-06-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:32 Last Seen2025-06-26 02:44 Times Seen23 Hash 84bfb0e1fadef95eaac61b995f6715b6 7e1360c8ae6e689818535f1791a447b31ac5efc2 84b3783159200fdb4d534af8aa44155a6dd9127874539c57f5e2a92066ec5f59 Loading...

	code.jquery.com/jquery-migrate-1.2.1.min.js	ScriptElement	7.2 kB	2023-03-07	2025-07-03
Pretty URL code.jquery.com/jquery-migrate-1.2.1.min.js IP 151.101.130.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-03 04:24 Times Seen6409 Hash eb05d8d73b5b13d8d84308a4751ece96 743052320809514fb788fe1d3df37fc87ce90452 1e67d8dbcca1f6fd94e077c85c2fb40fa1c2756c99238daa8da882144260a68d Loading...

	cimawbas.mycima.cc/templates/echo/js/jquery.plugins.a.js	ScriptElement	9.5 kB	2023-03-07	2025-05-22
Pretty URL cimawbas.mycima.cc/templates/echo/js/jquery.plugins.a.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-05-22 03:32 Times Seen91 Hash 7edd7d96ee453442900875aa72c595c4 a09a3c791e560866562f26d8ac7f9621f369cfa2 d36a4d2e1e3ec14aa6fd41115d053a533999f0337d0f48859de361199f7359cb Loading...

	cimawbas.mycima.cc/templates/echo/js/melody.emoji.js	ScriptElement	175 kB	2023-10-01	2024-10-19
Pretty URL cimawbas.mycima.cc/templates/echo/js/melody.emoji.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-01 23:23 Last Seen2024-10-19 22:59 Times Seen9 Hash 7c832bedef6cbea2ac76c4bc1fd0e941 5ee750c8530af11bc6babcdb9395edc99f04cbe6 e6148294e8c8ffd9e47ae3a6b143966cf15caf8a8133ccd3c63cdf36c881a2b7 Loading...

	cimawbas.mycima.cc/js/jquery.textcomplete.min.js	ScriptElement	17 kB	2023-03-07	2025-06-26
Pretty URL cimawbas.mycima.cc/js/jquery.textcomplete.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:09 Last Seen2025-06-26 02:44 Times Seen46 Hash 871de5ca5aee55e67c1d3d8c69b49b1b ae0e75de0282c8bf70e2fcac957c8dad975cfa11 90dfc6e75b52347f19b56f0a9d8016cf3b0bb11a3e22c749bd1f1976df43033a Loading...

	unknown	EventHandler	79 B	2023-04-16	2025-06-24
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-16 10:54 Last Seen2025-06-24 23:24 Times Seen137 Hash c0cc0fb0141f52b9fc5bf5bf281531ac 29942c5675c543f8d2edc686e80cf4bf0e10bb70 74c38e29231738f71a0b9ebec39d21fcb041847dad58079457731f0481a6e7ea Loading...

	unknown	EventHandler	89 B	2024-08-19	2024-08-19
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-08-19 12:40 Last Seen2024-08-19 12:47 Times Seen2 Hash b4e07ca3a2f2aca49a44c2cce2aec70b cd1b18300d3c0c8bb8a11f8604a338c7a097a90b 2c3aa78f56a36afc0bf496596ddff13ef950459a14a4004cdf879cd7d8f03cdc Loading...

	zoeaethenar.com/1clkn/56262	ScriptElement	6 B	2023-03-07	2025-07-03
Pretty URL zoeaethenar.com/1clkn/56262 IP 23.109.170.134 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-07-03 05:19 Times Seen13388 Hash 9082dc37e5e8046929da411544ad071a 41e0e3963ed94e59e8a2f115994c382712411537 b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550 Loading...

	unknown	ScriptElement	5.3 kB	2023-03-07	2025-06-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-06-26 02:44 Times Seen166 Hash 5d0f0b5b79e9f10c796e8a416e57dd2d acca3a159098bbc8a6313d6f496cfeef362c3171 452c276bbd878d6970a8f3a2b5ebea89fcc866c5aa58e5e56afcdc9c53c2b78f Loading...

		Size	First Seen	Last Seen
	#1 Eval - 73497a37c3561adbd8ce84e4f017b368	9 B	2023-03-07 01:03	2025-07-03 04:57
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-07-03 04:57 Times Seen3476 Hash 73497a37c3561adbd8ce84e4f017b368 9193ae73cb3dd2833be8c942714d5544bfb628c9 9312a1adbbf0a4c05fc296d158ec3bd39acfe50e9e98ff02688139aad6fc3351 Loading...

HTTP Transactions (70)

URL IP Response Size

r11.o.lencr.org/

23.36.76.226

504 B

URL
r11.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
219f59137337a0ee601729cab5ec83f6
85f2e3496820405559fd526b44b9a915e0009a4f
f9701bf0083b06f4a573774d1a4dd491236216bc08f1006a94ce79144df70a21

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F9701BF0083B06F4A573774D1A4DD491236216BC08F1006A94CE79144DF70A21"
Last-Modified: Sat, 17 Aug 2024 00:55:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16917
Expires: Mon, 19 Aug 2024 03:24:48 GMT
Date: Sun, 18 Aug 2024 22:42:51 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
18cce98073c1bf25df62a3ca026dedbf
26ea37fc15ead14ac2047d074f6c4153d57775d0
c5fdde15e0dc09e045c2df21c77d2c87e6c7d4abe86048426f468fcd696054e0

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "C5FDDE15E0DC09E045C2DF21C77D2C87E6C7D4ABE86048426F468FCD696054E0"
Last-Modified: Sun, 18 Aug 2024 18:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8362
Expires: Mon, 19 Aug 2024 01:02:13 GMT
Date: Sun, 18 Aug 2024 22:42:51 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
69a9603269726ce602d708bf57058c4c
8689e9ea81ea9636e7b08c3ed42650553a0c4e3b
1a2339d740b715f3df1900d80114c8376ead57205961a6f896edf37b3ee3a897

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "1A2339D740B715F3DF1900D80114C8376EAD57205961A6F896EDF37B3EE3A897"
Last-Modified: Sat, 17 Aug 2024 09:59:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8270
Expires: Mon, 19 Aug 2024 01:00:41 GMT
Date: Sun, 18 Aug 2024 22:42:51 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
18f75729f3e25e2eb7f12b70dfce3849
479177b92dda7c4e8763c80a15cbc71c3386d06c
0b7da2da1fcba23c5118479e14828f87a605a32af15d0962f216115a9ff1d02a

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "0B7DA2DA1FCBA23C5118479E14828F87A605A32AF15D0962F216115A9FF1D02A"
Last-Modified: Sun, 18 Aug 2024 15:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14484
Expires: Mon, 19 Aug 2024 02:44:16 GMT
Date: Sun, 18 Aug 2024 22:42:52 GMT
Connection: keep-alive

GET cimawbas.mycima.cc/uploads/avatars/avatar426-1.jpg

188.114.96.1

200 OK

3.4 kB

URL GET HTTP/3
cimawbas.mycima.cc/uploads/avatars/avatar426-1.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 120x120, components 3
Size
3.4 kB (3440 bytes)
Hash
71c49936a75fb0fc6cad1ae69ee3d020
f9dd161164654d1375ef276647f13702e3b9099c
72de9517f4dd6d04de94ba216909dd0d98c6b883489f276c072c11ca94e457be

HTTP Headers

GET /uploads/avatars/avatar426-1.jpg HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: image/jpeg
content-length: 3440
last-modified: Sat, 01 Oct 2022 12:21:30 GMT
cache-control: max-age=3600, public
expires: Tue, 17 Sep 2024 12:10:11 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U7bG4WDWSLzXiF4q0RNnjFVLXgqeJm4h3zoios92B6qjCO%2BcUCv45tbT9IfXGfSq57dK4foDFdRcD9%2ByUBDFtFM3DbYlb1k8AS7ZKMTPIakPDCK0MNbDEWyCjIielfRqF%2FYpKdI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b556b67192eb524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.tv/uploads/custom-logo.png

172.67.177.51

301 Moved Permanently

167 B

URL GET HTTP/2
cimawbas.tv/uploads/custom-logo.png
IP
172.67.177.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectcimawbas.tv
Fingerprint29:C3:B6:42:5E:C5:3E:04:D0:DF:46:F8:FA:27:DD:38:58:A5:AD:6C
ValidityFri, 16 Aug 2024 19:10:47 GMT - Thu, 14 Nov 2024 19:10:46 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
0104c301c5e02bd6148b8703d19b3a73
7436e0b4b1f8c222c38069890b75fa2baf9ca620
446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f

HTTP Headers

GET /uploads/custom-logo.png HTTP/1.1
Host: cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: text/html
content-length: 167
location: https://cimawbas.mycima.cc/uploads/custom-logo.png
cache-control: max-age=3600
expires: Sun, 18 Aug 2024 23:42:52 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p%2FYjGfJLe8%2FlJF8CBTXZRe1wOXgCWqDAW1duXZDsYDtgVLEs8D8B4VjXntyrtzkBMJZIDiOmNJsMrK%2BLJEXw1bDwylX6uDe3JCPX1aQs9yQ%2F1tIs0RcKJk4ZmrXBxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b556b677ecdb52d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET i.ibb.co/QHn7LZh/images.png

162.19.58.158

200 OK

5.2 kB

URL GET HTTP/2
i.ibb.co/QHn7LZh/images.png
IP
162.19.58.158:443
ASN
#16276 OVH SAS

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint5F:18:DC:78:83:E8:A9:2D:9B:15:95:2F:AC:0C:82:09:04:D5:10:6D
ValidityFri, 21 Jun 2024 07:49:37 GMT - Thu, 19 Sep 2024 07:49:36 GMT

File type
PNG image data, 348 x 145, 8-bit colormap, non-interlaced
Size
5.2 kB (5175 bytes)
Hash
a766d8c1a622eaf6f8c61923eb7b2ffa
0451f3b28a9d3ba5e86db5bf84647b2695d281df
c4708018079d00eb69f9401ede6757ad56d2debe193c0e2e5490229d5c4db8ea

HTTP Headers

GET /QHn7LZh/images.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: image/png
content-length: 5175
last-modified: Mon, 16 Oct 2023 14:16:03 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

GET cimawbas.mycima.cc/templates/echo/img/pm-avatar.png

188.114.96.1

200 OK

2.1 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/img/pm-avatar.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
PNG image data, 140 x 140, 8-bit colormap, non-interlaced
Size
2.1 kB (2135 bytes)
Hash
be7a1517b84d3548fdb863e78c72a3fe
91a88cc99f02e7ed22274fc3a6f42c6a3148ef0d
bd2021d52dbb110212c08885e0dab9580282334d6f1d1e50b8da0270ce8c475e

HTTP Headers

GET /templates/echo/img/pm-avatar.png HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: image/png
content-length: 2135
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
cache-control: max-age=3600, public
expires: Tue, 17 Sep 2024 12:10:13 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H3AQlfYgh5Jqal14bs01T727tdoQmsP1ELaiYlPJThGMsb%2FSL4k1CAAchXBM2vb0K%2BSK3YQlg7cTLZhQlJ0l3dDevTzIEXcb8Pilg1DG7IleOkMxbhnF%2Fl7LwqwEDB701xT8vDg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b671930b524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/templates/echo/img/echo-lzld.png

188.114.96.1

200 OK

95 B

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/img/echo-lzld.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
PNG image data, 1 x 1, 1-bit colormap, non-interlaced
Size
95 B (95 bytes)
Hash
f95ff0b7acd4d9a1dd76842d1b956dcd
5bc56a5f5da9e211e50e48519a1f2bcc6391dbe7
2c015a5d2a81139b7fe47b294882c03d3fd072c90d3d78127250d93e65c1de54

HTTP Headers

GET /templates/echo/img/echo-lzld.png HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: image/png
content-length: 95
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
cache-control: max-age=3600, public
expires: Tue, 17 Sep 2024 12:10:13 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NzYu6z%2BOMdOPsnLoEEq9winWPzKVACM%2Bb32fAjoSdYEvhCgUcU4Shm%2FjupTMGQGt5LhRLrLTLEY2x1LTvha8w6MV7w3VbEHHaa2ny13VuQfMMKtoorZID8JsNSAYoooB92m6qkY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b671933b524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/uploads/thumbs/ca0ee38bb-1.jpg

188.114.96.1

200 OK

16 kB

URL GET HTTP/3
cimawbas.mycima.cc/uploads/thumbs/ca0ee38bb-1.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x268, components 3
Size
16 kB (15666 bytes)
Hash
7e868661f05861d9ae4215c21390fd4c
984b8739a37c92667d3e3100d3b6888030960b1b
ca76ba04ec05b2ddc15d584fb02e130b31bc71fdf93db9c1b112263db05d6566

HTTP Headers

GET /uploads/thumbs/ca0ee38bb-1.jpg HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: image/jpeg
content-length: 15666
last-modified: Sat, 01 Oct 2022 12:23:17 GMT
cache-control: max-age=3600, public
expires: Tue, 17 Sep 2024 12:10:12 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wXG7eEiXqJrwZPrxHthXEkuxO%2B4Ktc3Hf6zoq4e7MTgjQC1QVLBv3nC%2BqPEpebWbnHG%2BGyUG6I0JvZJqxN0f8ME7pEPJY9R4Jm%2B1a6I3k2k%2FSeqZZOYAhKzU5ltD7u7YIOGafek%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b556b67293db524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/uploads/thumbs/9d773229e-1.jpg

188.114.96.1

200 OK

36 kB

URL GET HTTP/3
cimawbas.mycima.cc/uploads/thumbs/9d773229e-1.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 853x480, components 3
Size
36 kB (35657 bytes)
Hash
92a860509e912ee8385b5f3e4f602e7c
524760768c7041fc5b11e375a8bf9f70e2a55ecf
eee34fc9a92ae69f24f10a1de831da73727d9786b49ef5440eedaf57943b393c

HTTP Headers

GET /uploads/thumbs/9d773229e-1.jpg HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: image/jpeg
content-length: 35657
last-modified: Sat, 01 Oct 2022 12:22:59 GMT
cache-control: max-age=3600, public
expires: Tue, 17 Sep 2024 12:10:12 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jFiRsKIbQqb%2Feg4DmRa3Q3E73%2FpSnWaZcHYvEXH%2BGV0g1hrNWHGkaRYuVWAZjCsOhx%2FR3eMMjfDqRjRajJ%2F04KnduoEb%2BaUu2Gm0qd56TYZe0%2BFY4xsbQ6R%2BgQl40x2nCa6sUGU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b556b67293fb524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/lang/flags/sa.png

188.114.96.1

200 OK

551 B

URL GET HTTP/3
cimawbas.mycima.cc/lang/flags/sa.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced
Size
551 B (551 bytes)
Hash
605884cec6f446d418a092c0941acad5
d305493e396df549a97ebc6ab3a81f7307431799
8a82f9366b0218584e72ba24eefdbf0f9dd6030480219e39f13cf1e7fe87a03a

HTTP Headers

GET /lang/flags/sa.png HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: image/png
content-length: 551
last-modified: Sat, 29 Oct 2022 13:48:45 GMT
cache-control: max-age=3600, public
expires: Tue, 17 Sep 2024 12:10:13 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Osekiz6odDIpJOuMsxNM05bkm7bVJtke1xkCZHlRWOJiVii%2BqBe0Y8uxfqZ1qfXxZa5orkq%2BCrFAnlxhwmVfG%2F77H5JFOLQpAf%2BPFFWQF%2Ba%2B6rQqNrS46t4Z4BwjR1X3BjfstFM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b67394db524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/templates/echo/img/ajax-loading.gif

188.114.96.1

200 OK

771 B

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/img/ajax-loading.gif
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
GIF image data, version 89a, 16 x 16
Size
771 B (771 bytes)
Hash
00ef871b291bc03a497d608a5bd8ec99
942d8fe092c1c473af19906751c2bee5322a9b55
81a161d5793ac2a33f02ddcd64fb0dc2d028616dac084e4f64e77f4898b0c4e4

HTTP Headers

GET /templates/echo/img/ajax-loading.gif HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: image/gif
content-length: 771
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
cache-control: max-age=3600, public
expires: Tue, 17 Sep 2024 12:10:12 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=znO59fRyP34D%2FVKpZWPXZyrFX7KL4MSZ6bd9P3MQ%2BVZf2PeD6iPy9pN9QWmVsGoNVbPBdeH7%2FdkKCy7o1Q%2FmaRUEvAVssWwXC%2Bu144%2FO1mNdos2UemxY265Tr%2BEjdLupGYaweyE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b673950b524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/uploads/articles/c44689b9.jpg

188.114.96.1

200 OK

27 kB

URL GET HTTP/3
cimawbas.mycima.cc/uploads/articles/c44689b9.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 200x300, components 3
Size
27 kB (26669 bytes)
Hash
5dd7c48721fa3966e51059a363fc5e35
a0e498b884cc5266ee35aeb7f81a952b2ef2c4d0
a19d17b884055df46188ca4becf14b3899436a2fa0f87d0b84df8e4ad47eef8c

HTTP Headers

GET /uploads/articles/c44689b9.jpg HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: image/jpeg
content-length: 26669
last-modified: Tue, 14 Nov 2023 22:06:06 GMT
cache-control: max-age=3600, public
expires: Tue, 17 Sep 2024 22:25:25 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=571apqlunkCA1owKDvslup%2FevH7AMz%2BhTBh0iWN3sE827gUkaX%2Fulz%2BBIb0iZIhUXp18AXB%2BMh8ambuP8nn4yVtSuD5teLN3tiFZWqKV0SKEb7lS6KtflnRbmx5o2SqiAfhczuY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b556b67192fb524-OSL
alt-svc: h3=":443"; ma=86400

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
632690997ef997d8966e3d8ac56eac9c
2bef1f7e857d2d672bec810b41186e60c691905b
eb267c937fd952a9b6386f278958a97715d06689929b1aa9bd0d7518e198ae7c

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "EB267C937FD952A9B6386F278958A97715D06689929B1AA9BD0D7518E198AE7C"
Last-Modified: Fri, 16 Aug 2024 08:54:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4627
Expires: Sun, 18 Aug 2024 23:59:59 GMT
Date: Sun, 18 Aug 2024 22:42:52 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.76.226

504 B

URL
r11.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
258801641cfa9f7f244f49478f942555
086869544154d9c6d3207652c093ad81c8cb07e7
d5a22779fea80369cf114b6c5bfa5f8dc886a7c50fc3630281b15238784ddcf5

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "D5A22779FEA80369CF114B6C5BFA5F8DC886A7C50FC3630281B15238784DDCF5"
Last-Modified: Fri, 16 Aug 2024 11:45:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7032
Expires: Mon, 19 Aug 2024 00:40:04 GMT
Date: Sun, 18 Aug 2024 22:42:52 GMT
Connection: keep-alive

GET zoeaethenar.com/1clkn/56262

23.109.170.134

200 OK

26 B

URL GET HTTP/1.1
zoeaethenar.com/1clkn/56262
IP
23.109.170.134:443
ASN
#7979 SERVERS-COM

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerLet's Encrypt
Subjectzoeaethenar.com
FingerprintF2:C5:5C:C9:70:02:65:9A:EC:91:8B:BC:20:3D:78:8E:CB:69:6B:01
ValidityTue, 18 Jun 2024 23:41:42 GMT - Mon, 16 Sep 2024 23:41:41 GMT

File type
ASCII text, with no line terminators
Size
26 B (26 bytes)
Hash
9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1clkn/56262 HTTP/1.1
Host: zoeaethenar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Aug 2024 22:42:52 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Mon, 19-Aug-2024 22:42:52 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Mon, 19-Aug-2024 22:42:52 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

GET cimawbas.mycima.cc/uploads/custom-logo.png

188.114.96.1

200 OK

2.1 kB

URL GET HTTP/3
cimawbas.mycima.cc/uploads/custom-logo.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
PNG image data, 261 x 80, 8-bit/color RGB, non-interlaced
Size
2.1 kB (2125 bytes)
Hash
305588fea70c0f0a20ee99a881ee7827
97f26798f49d3863dab218d4c80bdb3c25addac5
a856ed27cba8cdd1c70aec330c53d4abf29a02b1aafa69ca95c37af56c32b625

HTTP Headers

GET /uploads/custom-logo.png HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cimawbas.mycima.cc/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: image/png
content-length: 2125
last-modified: Wed, 05 Jun 2024 10:58:48 GMT
cache-control: max-age=3600, public
expires: Tue, 17 Sep 2024 12:10:13 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lKNBm3x2TzkNJVKeRPzhOM4k4ButoqyD4C0EAHdvtoGBV7g6F%2BPjCVrZEllMNvs4IFeek6rlpJ7SLlStdeDMizNyaMqJAR2ktld3QcsHE%2FY0PGBQ2t9voh0F1FhD%2BzRwkd9iq3w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b689a72b524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/uploads/thumbs/beba7a1c8-1.jpg

188.114.96.1

200 OK

41 kB

URL GET HTTP/3
cimawbas.mycima.cc/uploads/thumbs/beba7a1c8-1.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 719x404, components 3
Size
41 kB (40872 bytes)
Hash
b598df9505eca205f15f0271dda9f985
d3ed56669206d08e72e69464a864235a98c44135
7ef214f4120f0741553a48ba0168683ad70afc2d39ad7a484e0fd3a861f97d23

HTTP Headers

GET /uploads/thumbs/beba7a1c8-1.jpg HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: image/jpeg
content-length: 40872
last-modified: Tue, 14 Nov 2023 22:06:08 GMT
cache-control: max-age=3600, public
expires: Tue, 17 Sep 2024 17:29:02 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yIvpok0qIlJnuUHsmTFiAB1GMOjvcH03HQxOtyiLcY2c7nX12FuXvBo5Y0s%2FRDyLFGRnhE3gJPjpo4Fe5B4u4mTy7j62Aod0kScRKBzBR8I8cs5BXO%2BIQ8M4X8aqOELZdAX6E%2F8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b556b690ad2b524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/templates/echo/js/theme.js

188.114.96.1

200 OK

78 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/js/theme.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (12238)
Size
78 kB (78283 bytes)
Hash
ec936f32dd9f5e2c8e3881703aa1ee95
48efb6cdbb051954b9265273247ea6675ddc15cb
35ff635a9e7b42762a78b36632593544829e2573d6ee8045aa14d01a7622b0fb

HTTP Headers

GET /templates/echo/js/theme.js HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: text/javascript
cache-control: max-age=3600, public
cf-bgj: minify
cf-polished: origSize=44717
expires: Mon, 18 Aug 2025 22:42:53 GMT
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yE2eqJxG9faz1IYzvD63pqab8K6ABtnjUNmqQdYXyo3xhvJIMpguS5Xb5YZlCRmJgo%2FyD0H%2BRxcF7Zrx%2BH%2FqbsCLBTd0NknRjSOWtubxeScfYQHaXxTR4mJeVMjNlfcxp5lea%2B4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b694b05b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/js/jquery.textcomplete.min.js

188.114.96.1

200 OK

5.9 kB

URL GET HTTP/3
cimawbas.mycima.cc/js/jquery.textcomplete.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (16839)
Size
5.9 kB (5867 bytes)
Hash
871de5ca5aee55e67c1d3d8c69b49b1b
ae0e75de0282c8bf70e2fcac957c8dad975cfa11
90dfc6e75b52347f19b56f0a9d8016cf3b0bb11a3e22c749bd1f1976df43033a

HTTP Headers

GET /js/jquery.textcomplete.min.js HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: text/javascript
last-modified: Sat, 29 Oct 2022 13:48:43 GMT
cache-control: max-age=3600, public
expires: Mon, 18 Aug 2025 22:42:53 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5QXBi5VMULbWMDlr7K1Nx4ICo22NoptnQj4HO7P6honDdOXyrxmvHZwZ%2Bre786iwed7yt85%2B1y%2FCbqSwJg9lL44q2hOx4kBG5ueRagazfvcQjKg0o9QWwePLuYoWkJXYk4B3de8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b693af5b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/templates/echo/js/melody.dev.js

188.114.96.1

200 OK

2.2 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/js/melody.dev.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JavaScript source, ASCII text, with very long lines (2239)
Size
2.2 kB (2160 bytes)
Hash
0465c9d8d0bd0da2a8a2a7a8945fb9fb
1cc25de2074cacb7cfb51e925be19510d8fefdfc
c112a7633fcc9bf504030e0b6ac650aba21ed1198a5db17d74ddfd38ab3e248d

HTTP Headers

GET /templates/echo/js/melody.dev.js HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: text/javascript
cache-control: max-age=3600, public
cf-bgj: minify
cf-polished: origSize=7677
expires: Mon, 18 Aug 2025 22:42:53 GMT
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=85opFL%2F%2BC49CyPbKTv12ydL6IrX9Zi8KquZNOoZr6u402b58sZNsOsaUAM%2F60uEQFA7Pz4j058nIV696Ff6jdWWsQ0BLonp28Q0sy5LhcOTsQEAkha%2Fi55SV%2BuBfj0Lp0rFPTic%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b693afeb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/templates/echo/css/bootstrap.min.rtl.css

188.114.96.1

200 OK

4.5 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/css/bootstrap.min.rtl.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
ASCII text, with very long lines (26153), with no line terminators
Size
4.5 kB (4521 bytes)
Hash
5c3488d9489fc4d2b0b2be5b79f64b25
038e38e21f485a2ce83c28df73e3c2d25f863028
2cd2ad752ad401367bdefc9379a5ae10d7d5b61241e60bda02bdcd25813577b9

HTTP Headers

GET /templates/echo/css/bootstrap.min.rtl.css HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: text/css
cache-control: max-age=3600, public
cf-bgj: minify
cf-polished: origSize=33283
expires: Mon, 18 Aug 2025 22:42:52 GMT
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UPCO4zRKiEE9IzuO6Vtx5A%2FnyToiiNT0es7hgrAIvHnqrl5o13Ge1AVY95g2G%2FF1yQrwxfg%2FM92LJse0cmnQ%2FWdSmNXAgUHkFIzDkJh1Wl2xM%2F3ihLbxhZ%2F624umywiyVLDbsTU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b670922b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js

216.58.207.202

200 OK

34 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
IP
216.58.207.202:443
ASN
#15169 GOOGLE

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintC4:3F:12:39:D2:EC:4C:2C:1C:0A:A6:18:8E:2A:97:2C:D8:C2:7E:AF
ValidityTue, 30 Jul 2024 12:49:45 GMT - Tue, 22 Oct 2024 12:49:44 GMT

File type
JavaScript source, ASCII text, with very long lines (32038)
Size
34 kB (33507 bytes)
Hash
f03e5a3bf534f4a738bc350631fd05bd
37b1db88b57438f1072a8ebc7559c909c9d3a682
aec3d419d50f05781a96f223e18289aeb52598b5db39be82a7b71dc67d6a7947

HTTP Headers

GET /ajax/libs/jquery/1.11.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33507
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Aug 2024 02:57:33 GMT
expires: Sun, 17 Aug 2025 02:57:33 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 157520
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/ea/droidarabickufi/v6/DroidKufi-Regular.woff2

216.58.207.227

200 OK

31 kB

URL GET HTTP/2
fonts.gstatic.com/ea/droidarabickufi/v6/DroidKufi-Regular.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintF2:15:54:4E:F3:58:7F:5A:14:9D:F2:45:37:0E:B1:A6:48:C6:2B:14
ValidityTue, 30 Jul 2024 12:49:30 GMT - Tue, 22 Oct 2024 12:49:29 GMT

File type
Web Open Font Format (Version 2), TrueType, length 31248, version 1.0
Size
31 kB (31248 bytes)
Hash
436938da6ed799ca17110e719e4d2e51
b7ef31b6085a9f0963dffe7939abca527724d389
a7b09bb9c8e8e2fb189204e08ed94bd8096c118780b5e926847cf2748ca7c5c2

HTTP Headers

GET /ea/droidarabickufi/v6/DroidKufi-Regular.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cimawbas.mycima.cc
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Aug 2024 02:59:42 GMT
expires: Sun, 17 Aug 2025 02:59:42 GMT
cache-control: public, max-age=31536000
age: 157391
last-modified: Wed, 13 Aug 2014 16:50:04 GMT
content-type: font/woff2
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET cimawbas.mycima.cc/templates/echo/js/jquery.cropit.js

188.114.96.1

200 OK

7.4 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/js/jquery.cropit.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JavaScript source, ASCII text, with very long lines (27266)
Size
7.4 kB (7407 bytes)
Hash
cd82e0edbcecf087be901e8e7ed0d035
2cedce9f87501152efa36eb1949d95c0ca4ff200
b8a0d09df5a79e5e9494b3061eeff55883870c66714879886348c5095faa7840

HTTP Headers

GET /templates/echo/js/jquery.cropit.js HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: text/javascript
cache-control: max-age=3600, public
cf-bgj: minify
expires: Mon, 18 Aug 2025 22:42:53 GMT
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wtgri9imzeMvgB6BTlZnlAV7f31oZmKYJB3z995OrLO0zy%2Bue%2F%2FFkfiZ%2BcBEdWR9Z%2FaphcG1vn6uTU00Vvi5Gzq1rUQGae2u6HXAfshPph373cQ6sNrY%2FTeE76LyKYEKUKnLsHk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b693af2b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.googletagmanager.com/gtag/js?id=UA-150387825-1

142.250.74.168

200 OK

78 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-150387825-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint27:BF:6E:8E:D6:51:1C:C5:B2:CF:E2:E9:0F:87:D0:F3:33:23:E7:37
ValidityTue, 30 Jul 2024 12:32:47 GMT - Tue, 22 Oct 2024 12:32:46 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
78 kB (78067 bytes)
Hash
0d7766089d68cc7ef47e16896e24e6f3
cec3b9ca502f80b451139227614d49b0754e7c0f
c6c77398bc5df56a919e72f51df63bffb3de5ebf4aae3bc1f3b6883ee90e3065

HTTP Headers

GET /gtag/js?id=UA-150387825-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 18 Aug 2024 22:42:53 GMT
expires: Sun, 18 Aug 2024 22:42:53 GMT
cache-control: private, max-age=900
last-modified: Sun, 18 Aug 2024 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78067
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET netdna.bootstrapcdn.com/font-awesome/4.4.0/css/font-awesome.min.css

104.18.11.207

200 OK

7.2 kB

URL GET HTTP/2
netdna.bootstrapcdn.com/font-awesome/4.4.0/css/font-awesome.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectbootstrapcdn.com
FingerprintBE:14:2A:D4:32:CD:FF:FE:ED:79:48:4F:5C:7B:C4:52:09:C8:58:96
ValidityTue, 23 Jul 2024 01:50:30 GMT - Mon, 21 Oct 2024 01:50:29 GMT

File type
gzip compressed data, from Unix
Size
7.2 kB (7205 bytes)
Hash
43de9f77c25c99e64486ba4b8a2ee397
6854987334a7554750e4e8404ff5e9ff65b7467d
a3acf87461144bf24721d86d6d0ded141e1bb408aaa9f0cb4224b1f7d53aa548

HTTP Headers

GET /font-awesome/4.4.0/css/font-awesome.min.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: gzip
etag: W/"0831cba6a670e405168b84aa20798347"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 11/18/2022 06:19:10
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 863
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 617cddf282529eb1891a1067ee3c7115
cdn-cache: HIT
cf-cache-status: HIT
age: 5750827
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8b556b678ec8b4f7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET code.jquery.com/jquery-migrate-1.2.1.min.js

151.101.130.137

200 OK

3.1 kB

URL GET HTTP/2
code.jquery.com/jquery-migrate-1.2.1.min.js
IP
151.101.130.137:443
ASN
#54113 FASTLY

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5
ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7085)
Size
3.1 kB (3063 bytes)
Hash
eb05d8d73b5b13d8d84308a4751ece96
743052320809514fb788fe1d3df37fc87ce90452
1e67d8dbcca1f6fd94e077c85c2fb40fa1c2756c99238daa8da882144260a68d

HTTP Headers

GET /jquery-migrate-1.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-1c1f"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 18 Aug 2024 22:42:53 GMT
age: 2038658
x-served-by: cache-lga21931-LGA, cache-hel1410022-HEL
x-cache: HIT, HIT
x-cache-hits: 5, 61523
x-timer: S1724020973.281399,VS0,VE0
vary: Accept-Encoding
content-length: 3063
X-Firefox-Spdy: h2

GET cimawbas.mycima.cc/templates/echo/css/bootstrap.min.css

188.114.96.1

200 OK

21 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/css/bootstrap.min.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
ASCII text, with very long lines (65366)
Size
21 kB (20619 bytes)
Hash
c9d317002dc0bde5bd228cc2eda74972
2524e48df454d491928e9e19b88292d87eddcf79
a4864a1dc26c66b5c9c0091afd5d9c5b52709bc023b66b5a3c6fe9e38af6e506

HTTP Headers

GET /templates/echo/css/bootstrap.min.css HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
cache-control: max-age=3600, public
expires: Mon, 18 Aug 2025 22:42:52 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hnC95f%2FMxBJD36fFuwIZl0pLlN6V4N9OpyUECd%2BCdPknH14MB%2FafQsvwkDWJDzkgP6pNZLz9GKUXLT%2FfdE1b4u%2BocyCvlPafmnqMOYSYTftAA1m0jp%2Bw2bQ7lDFYzYRPDTFzawE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b670919b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

o.pki.goog/wr2

142.250.74.131

471 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
67b85fd468e50f3b0c89587d6c40e6f1
0ec04bd08b355fc00db61887b21e6988edc0f398
370cfaa819cc1fa7aae490331ea623d9bc4d191ed47ef313cb1fed31af4efe74

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Aug 2024 22:42:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET my.rtmark.net/gid.js?userId=0080bcabf9d943a9f94fea5fe2170f45

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?userId=0080bcabf9d943a9f94fea5fe2170f45
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
Fingerprint4B:EF:80:EB:90:B5:8C:01:82:25:B6:92:59:BE:A9:6A:C7:83:75:8E
ValidityFri, 05 Jul 2024 22:30:11 GMT - Thu, 03 Oct 2024 22:30:10 GMT

File type
JSON text data
Size
65 B (65 bytes)
Hash
d9ecb9bbe79e2188f49c9b2ca61e4445
4cefd7b607a19821ed0afd29a090e2157a15dea0
47d1d6826e9fdd6caf17cfefdee1b3be63ff588d6690cacdf98ea7388ceb7f20

HTTP Headers

GET /gid.js?userId=0080bcabf9d943a9f94fea5fe2170f45 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cimawbas.mycima.cc
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://cimawbas.mycima.cc
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=0080bcabf9d943a9f94fea5fe2170f45; expires=Mon, 18 Aug 2025 22:42:53 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

GET cimawbas.mycima.cc/templates/echo/css/echo.rtl.css

188.114.96.1

200 OK

3.8 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/css/echo.rtl.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
ASCII text, with very long lines (17280), with no line terminators
Size
3.8 kB (3768 bytes)
Hash
705451a4e7b20a5ce1a857e4c966066a
d13416cd58f896ce1cf8ddae81693fdb03e499e4
ce28ab1f5bb0970aad3173b27526bd8dfa2f4ca8e36582dcef551f74186a8d45

HTTP Headers

GET /templates/echo/css/echo.rtl.css HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: text/css
cache-control: max-age=3600, public
cf-bgj: minify
cf-polished: origSize=22198
expires: Mon, 18 Aug 2025 22:42:52 GMT
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g9NyoknyMaGXQN1c4jaBNB%2F8S0grm%2Bn4nw6mSjNooZ1fcaY4jw4fK6lccunM95Tkr7t3fRfJtUKSsxVnjNjS6QfLPhgR60MGSm2joCEQdOmFtrXPjmcNDVVUIN28V1cqP0z915o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b671928b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

r11.o.lencr.org/

23.36.76.226

504 B

URL
r11.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
cf7fc5babb87aa0fe090687f1941dc48
25ad99f80e839331bb3d91ff3331676b5134dbdb
3dc1b896693d21daa52d92953abf0268f3f883902dcab53f5f5ae1437e3fbf67

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "3DC1B896693D21DAA52D92953ABF0268F3F883902DCAB53F5F5AE1437E3FBF67"
Last-Modified: Fri, 16 Aug 2024 07:29:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7492
Expires: Mon, 19 Aug 2024 00:47:45 GMT
Date: Sun, 18 Aug 2024 22:42:53 GMT
Connection: keep-alive

GET cimawbas.mycima.cc/uploads/thumbs/2215b8b8a-1.jpg

188.114.96.1

200 OK

37 kB

URL GET HTTP/3
cimawbas.mycima.cc/uploads/thumbs/2215b8b8a-1.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 854x480, components 3
Size
37 kB (36817 bytes)
Hash
4bc26db12d479ebabccccc9ed84c134c
5989244c411de1151e56582a23fbe8275c4be37e
89e65cac549bfac81e76f201335e2419dcad528888398cb3d12cda34a9a41073

HTTP Headers

GET /uploads/thumbs/2215b8b8a-1.jpg HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Cookie: prefetchAd_6205538=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: image/jpeg
content-length: 36817
last-modified: Thu, 11 Apr 2024 19:51:58 GMT
cache-control: max-age=3600, public
expires: Tue, 17 Sep 2024 12:10:18 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AJ0QXaZhXRAXR%2BLWMOvGkStpmUSUJelnwGR5YpYGWBk08oUQpKt%2FZTRbWhyCH8LhTHoLDc4M3Bbt%2F%2B8SW3ejYfUFO1jm4fYsUZW5NJgWgXcVsDuxN6UTAyjnZFCzdXmkLFJgdQ8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b556b6c0cbfb524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/uploads/thumbs/1aef05dea-1.jpg

188.114.96.1

200 OK

28 kB

URL GET HTTP/3
cimawbas.mycima.cc/uploads/thumbs/1aef05dea-1.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 720x405, components 3
Size
28 kB (27950 bytes)
Hash
a2cb29be041af62952ca9eb7cfd35136
5b48bf58a43d8ff8d9e2be118c7f681a83814b0c
54a6d0a7dfc3b721afc23d2b0a79e810d5304ac1168d41e1f03ece5c23955e33

HTTP Headers

GET /uploads/thumbs/1aef05dea-1.jpg HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Cookie: prefetchAd_6205538=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: image/jpeg
content-length: 27950
last-modified: Wed, 22 May 2024 14:02:35 GMT
cache-control: max-age=3600, public
expires: Tue, 17 Sep 2024 12:10:16 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hLFXurLJGWO8KhLLUcIwkWOiftaJ5gla2F1em4J5tHv6R2g2UZCU2dG20kL7h8DchxZxmnDuqGtRBC1Ni%2BBcZn8sMQ05vjHdkUU9NcunGF3W7O4wh4toQxU1mtVdcpRdhKS4GLo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b556b6c0cc1b524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/uploads/thumbs/67582e42b-1.jpg

188.114.96.1

200 OK

18 kB

URL GET HTTP/3
cimawbas.mycima.cc/uploads/thumbs/67582e42b-1.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x269, components 3
Size
18 kB (17778 bytes)
Hash
74a7bdbc8bd797cf74256576b76253b6
067bdb0e08b46cc4e0f00abb002911fa1c61bf87
12c7aa49c0273ec3f1ccb01aeafe9cb2bb43212fa7b518aba6b7cf1b1bbff5a3

HTTP Headers

GET /uploads/thumbs/67582e42b-1.jpg HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Cookie: prefetchAd_6205538=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: image/jpeg
content-length: 17778
last-modified: Sat, 01 Oct 2022 12:22:21 GMT
cache-control: max-age=3600, public
expires: Tue, 17 Sep 2024 17:34:26 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C3RuiaulEDmV3NFUmHP%2F0FjTkmWW2M07cOSKtp057i2EvXmauGY2kaWrHdtvBgcd0x9bb37XAlWTzqqnIsWLLO1sQxZD%2Fd7rbAFNSCG15Z9t8ECHts9%2BSkmA2Nrg4FKzeJgJaGo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b556b6c0cc0b524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/uploads/thumbs/982a7823e-1.jpg

188.114.96.1

200 OK

28 kB

URL GET HTTP/3
cimawbas.mycima.cc/uploads/thumbs/982a7823e-1.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 540x360, components 3
Size
28 kB (28442 bytes)
Hash
dadac29c39f0131dad1959998d49a5e1
65f4c68ed1f1e53ed73003f279c1851ebd4c05e7
484c959282272b782c59700d35b636e4c9aa5b9940af19ca31a4015ae9b694fb

HTTP Headers

GET /uploads/thumbs/982a7823e-1.jpg HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Cookie: prefetchAd_6205538=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: image/jpeg
content-length: 28442
last-modified: Sat, 01 Oct 2022 12:22:57 GMT
cache-control: max-age=3600, public
expires: Tue, 17 Sep 2024 16:37:04 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=17E3izA0NYxMJmPRTdWVqQ1LZz4KytzcjOtPqApKO4TAzZguy21gQBUPuAHPFR44hTgdrdjen8W3lFuB46NQddRzvDYH97ytXKNCiod9kLBlZC6ym%2Fwblzd9PF3QBfAk8GpxTd0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b556b6c0cc6b524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/uploads/thumbs/84556c89f-1.jpg

188.114.96.1

200 OK

42 kB

URL GET HTTP/3
cimawbas.mycima.cc/uploads/thumbs/84556c89f-1.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 720x405, components 3
Size
42 kB (41916 bytes)
Hash
8f91b055428db0031b4a36a8e78b22a6
d2d228f50a9c1615f9700c1c12d69f53c911c1ba
008e4def92abf2ac8a69eeecadc42eeab350ebb29b193479530f806a2c9ab7fb

HTTP Headers

GET /uploads/thumbs/84556c89f-1.jpg HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Cookie: prefetchAd_6205538=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: image/jpeg
content-length: 41916
last-modified: Fri, 16 Dec 2022 15:13:23 GMT
cache-control: max-age=3600, public
expires: Tue, 17 Sep 2024 22:25:28 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=89ECK1yub1QVDYd0ZE2FETRrSVwGG1mkzwb29AubvSUKIiGHc%2BnH5mmbHH1zz6y4JjXbXOY3RDSOjnUlDTjTCTlmpVUsKpomfSJhK4HV3wUVvxYtdgDO84C9PSGHIy3VluRmaQA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b556b6c0cc3b524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/templates/echo/img/bg-desc-shadow.png

188.114.96.1

200 OK

1.7 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/img/bg-desc-shadow.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
PNG image data, 620 x 102, 8-bit colormap, non-interlaced
Size
1.7 kB (1675 bytes)
Hash
99f48103f81ab7dd8cf2d271c39b221f
8dc3eac83745fc452a118b40a4dcd2da18d309e8
591db033570d36561c0d930385311327a7b8526371c2e3452b4a005a0c508580

HTTP Headers

GET /templates/echo/img/bg-desc-shadow.png HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/templates/echo/css/echo.css
Cookie: prefetchAd_6205538=true; pm_elastic_player=normal
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: image/png
content-length: 1675
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
cache-control: max-age=3600, public
expires: Tue, 17 Sep 2024 12:10:13 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fKe21C3g0uBmd2BTsIENb3hL%2FY4ae7RCsrE0gMZMZdFHN65bGbtZm6Q4bDIyjvNrM6UYBh37a6TEkZlrNadqoIRx3gKpaPnRyJ9QkBaX1N0b2fmMFTjBVz3oBN3NMREmKqf4Bhw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b6ced5cb524-OSL
alt-svc: h3=":443"; ma=86400

GET augailou.com/?rb=ie2QMNy0_5vK9Gw6FeO5AYr9seUtgGsfOjI6k5myfhtjVmol_VJMJvS-sKzThuI8sfr6xD4Qgk_PMuA-Y91i9gnYzNt2woLvfHYRqvuYp8NYK-SMGPEnsypU9-PKX_kheLAp8dD6Z_IPWfgvTHf6v7nNTnBaLQlBiZa7vwL_nseehoy905oLmAL3BgmlPkFzdqDlxb31qe4HNkvhkmaFjCC1U4HCsv6PiaQQX0QMBiSzQpxh3rqPrtCTCbx0SvTY9V_XJ3PRiONtWZCMb4cyVnZCYRc%3D&request_ab2=0&zoneid=6205538&js_build=iclick-1.893.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Fcimawbas.mycima.cc%2Fwatch.php%3Fvid%3Dbeba7a1c8&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-1.893.0&navlng=en-US&pnt=0&pnrc=0&bs=c6ff98b0-7a0e-40a3-a702-e929c22dde1a&wasm=1&userId=0080bcabf9d943a9f94fea5fe2170f45&m=link

139.45.197.243

200 OK

7.8 kB

URL GET HTTP/2
augailou.com/?rb=ie2QMNy0_5vK9Gw6FeO5AYr9seUtgGsfOjI6k5myfhtjVmol_VJMJvS-sKzThuI8sfr6xD4Qgk_PMuA-Y91i9gnYzNt2woLvfHYRqvuYp8NYK-SMGPEnsypU9-PKX_kheLAp8dD6Z_IPWfgvTHf6v7nNTnBaLQlBiZa7vwL_nseehoy905oLmAL3BgmlPkFzdqDlxb31qe4HNkvhkmaFjCC1U4HCsv6PiaQQX0QMBiSzQpxh3rqPrtCTCbx0SvTY9V_XJ3PRiONtWZCMb4cyVnZCYRc%3D&request_ab2=0&zoneid=6205538&js_build=iclick-1.893.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Fcimawbas.mycima.cc%2Fwatch.php%3Fvid%3Dbeba7a1c8&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-1.893.0&navlng=en-US&pnt=0&pnrc=0&bs=c6ff98b0-7a0e-40a3-a702-e929c22dde1a&wasm=1&userId=0080bcabf9d943a9f94fea5fe2170f45&m=link
IP
139.45.197.243:443
ASN
#9002 RETN Limited

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerLet's Encrypt
Subjectaugailou.com
FingerprintF4:CD:C8:E7:5C:75:23:E3:8E:1B:6A:37:1C:85:CB:85:A4:B0:DE:4B
ValidityMon, 24 Jun 2024 04:42:20 GMT - Sun, 22 Sep 2024 04:42:19 GMT

File type
gzip compressed data, max speed, from Unix
Size
7.8 kB (7791 bytes)
Hash
7fc9130465396ae52553ec893326039c
fb872680ace2203e6385bd672e9f0c1f63270c7a
3a1e8f1249b12241d8764dd9e99aef313ed70561e37062383b474606d247418f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rb=ie2QMNy0_5vK9Gw6FeO5AYr9seUtgGsfOjI6k5myfhtjVmol_VJMJvS-sKzThuI8sfr6xD4Qgk_PMuA-Y91i9gnYzNt2woLvfHYRqvuYp8NYK-SMGPEnsypU9-PKX_kheLAp8dD6Z_IPWfgvTHf6v7nNTnBaLQlBiZa7vwL_nseehoy905oLmAL3BgmlPkFzdqDlxb31qe4HNkvhkmaFjCC1U4HCsv6PiaQQX0QMBiSzQpxh3rqPrtCTCbx0SvTY9V_XJ3PRiONtWZCMb4cyVnZCYRc%3D&request_ab2=0&zoneid=6205538&js_build=iclick-1.893.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Fcimawbas.mycima.cc%2Fwatch.php%3Fvid%3Dbeba7a1c8&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-1.893.0&navlng=en-US&pnt=0&pnrc=0&bs=c6ff98b0-7a0e-40a3-a702-e929c22dde1a&wasm=1&userId=0080bcabf9d943a9f94fea5fe2170f45&m=link HTTP/1.1
Host: augailou.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cimawbas.mycima.cc/
Origin: https://cimawbas.mycima.cc
DNT: 1
Connection: keep-alive
Cookie: OAID=0080bcabf9d943a9f94fea5fe2170f45; oaidts=1724020972
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: application/json
x-trace-id: 12ab881021b8f63d56e516b0dee542f3
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://cimawbas.mycima.cc
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=0080bcabf9d943a9f94fea5fe2170f45; expires=Mon, 18 Aug 2025 22:42:53 GMT; path=/; secure; SameSite=None
oaidts=1724020973; expires=Mon, 18 Aug 2025 22:42:53 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sun, 25 Aug 2024 22:42:53 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

GET cimawbas.mycima.cc/templates/echo/img/favicon-16x16.png

188.114.96.1

200 OK

948 B

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/img/favicon-16x16.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
948 B (948 bytes)
Hash
6eaedb10d98855d4d441499dae2e241b
933d3d4009b8f5a00188124d543f07528eb4584d
cebb5b5b81950b80ed8504627cd3733cf3f0e55cfd6ee2d5275069357ed11a7d

HTTP Headers

GET /templates/echo/img/favicon-16x16.png HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Cookie: prefetchAd_6205538=true; pm_elastic_player=normal
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: image/png
content-length: 948
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
cache-control: max-age=3600, public
expires: Tue, 17 Sep 2024 12:10:17 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Kv%2FJYDmK2X5A1RaC8mU27NKPuDcDLI7tgxlV%2BTC9G64nHbSMsY7BHG2bpNHTbjuEmuuX%2F9Tp%2FMXHwAAezzh85FjsS6czQXkm6Ae5fCmNlEhLhsKgoZkYMboLr4hOv8bK6%2B0j45Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b556b6dade7b524-OSL
alt-svc: h3=":443"; ma=86400

r11.o.lencr.org/

23.36.76.226

504 B

URL
r11.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
7944981bcac427aa8d0aa016ec63764d
48bf925b10dc02afa8f597af8d26f5bf5efc0b7e
26bde594c33cd3386f4e65e3eaf0fc048fca46ed4a185f5c2aa70e8deeaffb0a

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "26BDE594C33CD3386F4E65E3EAF0FC048FCA46ED4A185F5C2AA70E8DEEAFFB0A"
Last-Modified: Sat, 17 Aug 2024 21:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4784
Expires: Mon, 19 Aug 2024 00:02:38 GMT
Date: Sun, 18 Aug 2024 22:42:54 GMT
Connection: keep-alive

GET cimawbas.mycima.cc/js/bootstrap-notify.min.js

188.114.96.1

200 OK

11 kB

URL GET HTTP/3
cimawbas.mycima.cc/js/bootstrap-notify.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JavaScript source, ASCII text, with very long lines (595)
Size
11 kB (10781 bytes)
Hash
5ba070af9d1b1a2782851940de30879f
d33390fc88bf68bd23eb182d7dbc77f5227081b2
a13a07b242c80b57e0cbbacc6cfedb538d4d331ff1f9dff370519ec57407e450

HTTP Headers

GET /js/bootstrap-notify.min.js HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: text/javascript
last-modified: Sat, 29 Oct 2022 13:48:43 GMT
cache-control: max-age=3600, public
expires: Mon, 18 Aug 2025 22:42:53 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c2YuvpfuKbk8lBqFjn36MDZ5OHQz4JHnSDwuE5K%2BCLOBe30ofTC9Updg4lk9lz1XyK2WMVR9LloOv3YjZNX4Q9bpzsyH0vyjKuECpOQ8V0Y2tSdglODXZL%2Fk0QmKD2ivEc6W9YQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b693b01b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/social-thumb.php?vid=beba7a1c8

188.114.96.1

200 OK

55 kB

URL GET HTTP/3
cimawbas.mycima.cc/social-thumb.php?vid=beba7a1c8
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 719x404, components 3
Size
55 kB (55071 bytes)
Hash
808f991f3435076be64e0d7c4ad4da99
29cba07fbd605af7a42c1ce9be2e91761f22095d
f387d00e71194d1cec1208ac9fe6ecf5cebe5a2a943427720b50b410afbdc6f8

HTTP Headers

GET /social-thumb.php?vid=beba7a1c8 HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: image/jpeg
cache-control: max-age=2592000
expires: Tue, 17 Sep 2024 22:42:52 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: MISS
last-modified: Sun, 18 Aug 2024 22:42:52 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vJfijaCx8if94b2THRj0Ea0Zp5WaICOMMqEMeFJ6SXQEtW548jW%2BSgqia%2BzpbxjlZxqYUD86ULaN2urUTSSa82%2FwXcWH8qArbbtvKxGKCw17tW3vN3l9ry5F7S0z3HqmelF3bm4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b672944b524-OSL
alt-svc: h3=":443"; ma=86400

GET augailou.com/5/6205538

139.45.197.243

200 OK

41 kB

URL GET HTTP/2
augailou.com/5/6205538
IP
139.45.197.243:443
ASN
#9002 RETN Limited

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerLet's Encrypt
Subjectaugailou.com
FingerprintF4:CD:C8:E7:5C:75:23:E3:8E:1B:6A:37:1C:85:CB:85:A4:B0:DE:4B
ValidityMon, 24 Jun 2024 04:42:20 GMT - Sun, 22 Sep 2024 04:42:19 GMT

File type
gzip compressed data, max speed, from Unix
Size
41 kB (40883 bytes)
Hash
76a23563246dabc99feb6846f82979de
e03bbab8a86b3d953ba816e9329b35770c129387
9eaf72dbf46b11d42e584d1dd40bde0782226405dc724b71f9b126f16814adbd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/6205538 HTTP/1.1
Host: augailou.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: application/javascript
x-trace-id: d7c806352437ded06f8c02ae507c587f
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=0080bcabf9d943a9f94fea5fe2170f45; expires=Mon, 18 Aug 2025 22:42:52 GMT; path=/; secure; SameSite=None
oaidts=1724020972; expires=Mon, 18 Aug 2025 22:42:52 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

GET netdna.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js

104.18.11.207

200 OK

32 kB

URL GET HTTP/3
netdna.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectbootstrapcdn.com
FingerprintBE:14:2A:D4:32:CD:FF:FE:ED:79:48:4F:5C:7B:C4:52:09:C8:58:96
ValidityTue, 23 Jul 2024 01:50:30 GMT - Mon, 21 Oct 2024 01:50:29 GMT

File type
JavaScript source, ASCII text, with very long lines (31650)
Size
32 kB (31819 bytes)
Hash
abda843684d022f3bc22bc83927fe05f
26908395e7a9a4eab607d80aa50a81d65f3017cb
24cc29533598f962823c4229bc280487646a27a42a95257c31de1b9b18f3710f

HTTP Headers

GET /bootstrap/3.2.0/js/bootstrap.min.js HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: gzip
etag: W/"abda843684d022f3bc22bc83927fe05f"
last-modified: Mon, 25 Jan 2021 22:03:57 GMT
cdn-cachedat: 05/01/2023 21:10:53
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 874
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: c24a1953c54449ff63e28ca06877aa18
cdn-cache: HIT
cf-cache-status: HIT
age: 5750525
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8b556b694d1e56c7-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/include/securimage_show.php?sid=d938ccf3aa8e025ae181c1b0b11573a5

188.114.96.1

200 OK

2.8 kB

URL GET HTTP/3
cimawbas.mycima.cc/include/securimage_show.php?sid=d938ccf3aa8e025ae181c1b0b11573a5
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
PNG image data, 158 x 35, 8-bit/color RGB, non-interlaced
Size
2.8 kB (2831 bytes)
Hash
044ecfddae30e9e7ac7441d286d3ab1d
be84459e2e31faa7ca5a05c7a3ab1e532a0aaf34
c5cabcd7c16dc482a16a6f355bf022cfaa5dfe54fcc291bf48e3dd6736da4766

HTTP Headers

GET /include/securimage_show.php?sid=d938ccf3aa8e025ae181c1b0b11573a5 HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: image/png
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
vary: Accept-Encoding,User-Agent
cf-cache-status: MISS
last-modified: Sun, 18 Aug 2024 22:42:52 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gmE7N3%2BIhiVxcFDmP97VtO1FMpbgr31G55cV9a7LJHdzhfLwTpWcTxVIq15CFR1wZ8OFXqCKwSMNxxzXxMB4uuyql4GDoegOuf3L97XC1%2FSlYD2oRtySN7u%2FORctoj3CHfY%2BkDw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b671931b524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/include/securimage_show.php?sid=02b81e69e62ef7498fac168720df3c57

188.114.96.1

200 OK

3.1 kB

URL GET HTTP/3
cimawbas.mycima.cc/include/securimage_show.php?sid=02b81e69e62ef7498fac168720df3c57
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
PNG image data, 158 x 35, 8-bit/color RGB, non-interlaced
Size
3.1 kB (3101 bytes)
Hash
b695c551f1aa47a5ebd2507a9be39206
74b2c45f612a3549ac6fb8d172b26f9928aef25d
bd6c87995c0d336394487aaf3b7bbcdaea39640d8681208bad783f37765f6d94

HTTP Headers

GET /include/securimage_show.php?sid=02b81e69e62ef7498fac168720df3c57 HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: image/png
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
vary: Accept-Encoding,User-Agent
cf-cache-status: MISS
last-modified: Sun, 18 Aug 2024 22:42:52 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HFF534pIdR3Dd267u2W7b%2BaLKQmLfCNnLHxzwnZAospjIxUNl8awE2YPD%2Fx%2FopYP1UBkKk%2BwzsG%2Fwy5dFY0hbeaPrccV3j7Oo6ViGMm0SGMk6sI6%2FMorUh6BfPYKp%2FloVpNWkoU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b672943b524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/templates/echo/js/melody.emoji.js

188.114.96.1

200 OK

175 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/js/melody.emoji.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type

Size
175 kB (175223 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /templates/echo/js/melody.emoji.js HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: text/javascript
cache-control: max-age=3600, public
cf-bgj: minify
cf-polished: origSize=175872
expires: Mon, 18 Aug 2025 22:42:53 GMT
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P2B1fiOmHbWA6Hm%2BSOQSdeYyFt%2FhpqGE5j6XRHw90W79YDYneOkdEu3Het9XCumKYrPfyhCKfYnOiguoPhGz0me6MyC8QX0sweuWHB0Q7AbqHm9jylmscRmkoSc2xoMDDmUfsVw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b693af4b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/templates/echo/css/custom.css?v=1.4

188.114.96.1

200 OK

6.1 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/css/custom.css?v=1.4
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
ASCII text, with very long lines (6124), with no line terminators
Size
6.1 kB (6118 bytes)
Hash
c3a3b4c99cafdebd43b4e42b53ca0b97
f5a9d09b44425717a644365313fd9981ff3d1644
7af4e2625563fcb20c9cc599367762e60e52c4f732f72034d7054130e6caf197

HTTP Headers

GET /templates/echo/css/custom.css?v=1.4 HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: text/css
cache-control: max-age=3600, public
cf-bgj: minify
cf-polished: origSize=7936
expires: Mon, 18 Aug 2025 22:42:52 GMT
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FgfQxnHqMPpA7MzZBl%2BZBA1zT4spxC7JLCZZliwK28IFIbkiXfmxJ9EtKX9FHjKlDuKRaCFWraCepulP0cmoNK9D%2FrJJSYlw%2F6kAOwoxvmmUqtQb9zK0G%2Fnz2ilBr1ITPqAEv%2Fw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b671929b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/templates/echo/js/jquery.readmore.js

188.114.96.1

200 OK

3.4 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/js/jquery.readmore.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JavaScript source, ASCII text, with very long lines (3525), with no line terminators
Size
3.4 kB (3399 bytes)
Hash
c6979ecdd1afd6a79e4c9d8b62bfd064
e5e8f421833447bee665616bfc9fda7bc705d78f
8ba9cdb40fceabda5c5ad2269d4546003256e4c0a770687343cee216fe267cb0

HTTP Headers

GET /templates/echo/js/jquery.readmore.js HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: text/javascript
cache-control: max-age=3600, public
cf-bgj: minify
cf-polished: origSize=3422
expires: Mon, 18 Aug 2025 22:42:53 GMT
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3DHYQV8RkILzO7CvJGtfh4sEajC66FzpKYCxb1s1gdwbtCzyqGnYLAF2VoU8Mk%2FBYSg18RJ3WKb2InfvT0l5bZ7ImkMM%2BPinaPCVhTgmwrFum03tOInOWesQf4QObaOsJSWOhiQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b693af6b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/templates/echo/js/jasny-bootstrap.min.js

188.114.96.1

200 OK

20 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/js/jasny-bootstrap.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JavaScript source, ASCII text, with very long lines (343)
Size
20 kB (20042 bytes)
Hash
f6b6e524d29d54ada53e4172b9d91cf7
427153c7a2d83d2ca800e397779f29b857801ad2
e7ad856551c720cb7c6a24a8bf4a9d6b6b24c24f07109cde96366338e53a4ff8

HTTP Headers

GET /templates/echo/js/jasny-bootstrap.min.js HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: text/javascript
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
cache-control: max-age=3600, public
expires: Mon, 18 Aug 2025 22:42:53 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8JB6T9qZjwfkjd3b8gGWggZgkPDJbnuXANIcVPrFO8SPZ%2BIk3qXNRO0curoAVGJY7EbJTo2fIN4CDAT6JSveA5uyI7bdpnJbN4GhccDsotjYELNwOdgL3H7w4VjxYSxPbePN3F4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b693afcb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/templates/echo/img/apple-touch-icon.png

188.114.96.1

200 OK

6.1 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/img/apple-touch-icon.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
6.1 kB (6105 bytes)
Hash
fee24708d06c588c8e3178098dea1e36
7ffa7c609b5c4883e2813b2b4bf7b49cbcbbdcaa
e3f34f32d7b9617d171b64d63cbdee2beb37c0288fb63e8ee1972b2c7de3d8a7

HTTP Headers

GET /templates/echo/img/apple-touch-icon.png HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Cookie: prefetchAd_6205538=true; pm_elastic_player=normal
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: image/png
content-length: 6105
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
cache-control: max-age=3600, public
expires: Tue, 17 Sep 2024 12:10:14 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4Ymka0zgEhex%2BsAtYwJZeJKyFrkJzsRM1ZzB8NYLFfZ5mGfzicGZm4ksafSNI1f5DjS%2B7zP31OZ2DJmWaUYiPxsmryelkp8K1HbzJKFR6xYT8HwkKuhxwIQNLaWnhV5oMK7wEVA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b556b6dade3b524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/templates/echo/js/jquery.readmore.js

188.114.96.1

200 OK

3.4 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/js/jquery.readmore.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JavaScript source, ASCII text, with very long lines (3525), with no line terminators
Size
3.4 kB (3399 bytes)
Hash
c6979ecdd1afd6a79e4c9d8b62bfd064
e5e8f421833447bee665616bfc9fda7bc705d78f
8ba9cdb40fceabda5c5ad2269d4546003256e4c0a770687343cee216fe267cb0

HTTP Headers

GET /templates/echo/js/jquery.readmore.js HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Cookie: prefetchAd_6205538=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: text/javascript
cache-control: max-age=3600, public
cf-bgj: minify
cf-polished: origSize=3422
expires: Mon, 18 Aug 2025 22:42:53 GMT
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fTzJyTfpwnr%2B2t3t50DoAFH5ABurJ%2BUX%2FCEBAS8OCExomAEDlmPzXKfuj0iZwE7uggBoPkDYU6Xqk0dIE5fSL9peEGO%2FEQv2kfZUTEL20QaAwTXsI31mTL9V7Fz4c6alIBlXNTY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b6b9c83b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/templates/echo/css/echo.css

188.114.96.1

200 OK

238 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/css/echo.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
238 kB (238111 bytes)
Hash
42b344585b5ce36e5a044922f79cb141
3fe38b51df6698352e4594539944c66188190698
7076616883934077607aba70229f63b9d7bb76be532c38ed727cf07ff857c269

HTTP Headers

GET /templates/echo/css/echo.css HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: text/css
cache-control: max-age=3600, public
cf-bgj: minify
cf-polished: origSize=316916
expires: Mon, 18 Aug 2025 22:42:52 GMT
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HNe1A9QtfowqSCxmnff%2B%2BYzZg8vW5%2F18qkYRkV2X%2FqsXPlkKYpWqYaNIJg9ZUc4mf%2FB2LfBrtEa6pzs4DObPCX%2F%2BkAbLK8JVys%2FTC4EJxU0AX%2FCPEtQRfRMS368ueY8dqFQRogE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b67091db524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/watch.php?vid=beba7a1c8

188.114.96.1

200 OK

137 kB

URL User Request GET HTTP/2
cimawbas.mycima.cc/watch.php?vid=beba7a1c8
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type

Size
137 kB (136753 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.php?vid=beba7a1c8 HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding,User-Agent
cf-cache-status: MISS
last-modified: Sun, 18 Aug 2024 22:42:52 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FVTeSv3jNFIdWndR1dB%2FyVEFk9BAQCBMw8%2B7%2BYGKBK6QDgTu84J4tVSZXgnm8cyiGxnpkqbowJKgF1K8zC3dy%2Fqf%2FrM%2B6EBgbWoE%2BGgYwf8FJEWNWOO%2Byl%2BTuDg%2FjwRenWqmk3k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b635b93b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET cimawbas.mycima.cc/templates/echo/css/fonts/Material-Icon-PHP-Melody.ttf?206bv4

188.114.96.1

200 OK

127 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/css/fonts/Material-Icon-PHP-Melody.ttf?206bv4
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Material-Icon-PHP-Melody
Size
127 kB (126808 bytes)
Hash
c66525c487d980ccda56d4668eccd47b
e9b984773ce1a225a851ac1769875b57e2e4a3f9
48ab864568194da965b383bf041943f4fbd6d13e5e7f60da9556c4667eb052f6

HTTP Headers

GET /templates/echo/css/fonts/Material-Icon-PHP-Melody.ttf?206bv4 HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/templates/echo/css/echo.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: font/ttf
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=49vPkg7GlNbm7IXpEHdlduciniVhWxXcCd7Qccu6%2BZ9Rb6yTkKeGxx9a9ik7pY8jCQOn9oPuPSuOzWnMTqAD3k4L3j4WyfSXXXw2A6iFNjTTlw7DGzU%2BwF%2Faj2w1NLyTykFTpSc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b699b49b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET netdna.bootstrapcdn.com/font-awesome/4.4.0/fonts/fontawesome-webfont.woff2?v=4.4.0

104.18.11.207

200 OK

64 kB

URL GET HTTP/3
netdna.bootstrapcdn.com/font-awesome/4.4.0/fonts/fontawesome-webfont.woff2?v=4.4.0
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectbootstrapcdn.com
FingerprintBE:14:2A:D4:32:CD:FF:FE:ED:79:48:4F:5C:7B:C4:52:09:C8:58:96
ValidityTue, 23 Jul 2024 01:50:30 GMT - Mon, 21 Oct 2024 01:50:29 GMT

File type
Web Open Font Format (Version 2), TrueType, length 64464, version 4.262
Size
64 kB (64464 bytes)
Hash
4b5a84aaf1c9485e060c503a0ff8cadb
574ea2698c03ae9477db2ea3baf460ee32f1a7ea
3c4a1bb7ce3234407184f0d80cc4dec075e4ad616b44dcc5778e1cfb1bc24019

HTTP Headers

GET /font-awesome/4.4.0/fonts/fontawesome-webfont.woff2?v=4.4.0 HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cimawbas.mycima.cc
DNT: 1
Connection: keep-alive
Referer: https://netdna.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: font/woff2
content-length: 64464
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "4b5a84aaf1c9485e060c503a0ff8cadb"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 02/19/2024 11:12:32
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 756
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: eb39332dc1e3c81d3bc09fd600f3cce6
cdn-cache: HIT
cf-cache-status: HIT
age: 5205561
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8b556b69bd6b56c7-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/templates/echo/css/animate.min.css

188.114.96.1

200 OK

58 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/css/animate.min.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
ASCII text, with very long lines (319)
Size
58 kB (57990 bytes)
Hash
3d0a26b7c254da8c0d297e753ff23f65
877d0bcad6716a05066d9b6dab07e264f631a5f0
f1f0041c0c62f37ee475d174370f574a62afd842055e79a86dc4c722532de6bb

HTTP Headers

GET /templates/echo/css/animate.min.css HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
cache-control: max-age=3600, public
expires: Mon, 18 Aug 2025 22:42:52 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dhVJmmuL8X5TOBDv1A5%2BA%2BWnj%2FXROAmusYmsHcLOU2QwuxRFQaYvgWzct9WMOXXWDxFruY3r4XPhMmJ8UAuYd%2BuZzoiHhQy5lfJyXSqc6XcD%2BlLpn4FQzMk7wUvEFGWfAncQ7ts%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b670920b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/include/securimage_show.php?sid=45e8c2774128bedc34c380815ab6a752

188.114.96.1

200 OK

3.0 kB

URL GET HTTP/3
cimawbas.mycima.cc/include/securimage_show.php?sid=45e8c2774128bedc34c380815ab6a752
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
PNG image data, 158 x 35, 8-bit/color RGB, non-interlaced
Size
3.0 kB (3007 bytes)
Hash
53738ab5b5fe46c86a2b8547941af157
f7a6fba0230ba1576590f214f43d326dbd4f500d
fafe8ba25df807b21ace202134bd9c4413381a8dcad19690daf313588a30ef4f

HTTP Headers

GET /include/securimage_show.php?sid=45e8c2774128bedc34c380815ab6a752 HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: image/png
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
vary: Accept-Encoding,User-Agent
cf-cache-status: MISS
last-modified: Sun, 18 Aug 2024 22:42:52 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FjMfz6%2BA6v4loTXQWBVvfifB%2F9TpkyLoVPZIl9CtrHAn1mbxlQY0lkWuGII4uspP0Vl%2FO56zcC0tum5reshT07%2FoOFMpzY3DmPdDHJfboHyp3JEcrBuFnmEYulqt9iYvtEE1qt8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b672946b524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/js/melody.dev.js

188.114.96.1

200 OK

16 kB

URL GET HTTP/3
cimawbas.mycima.cc/js/melody.dev.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JavaScript source, ASCII text, with very long lines (2302)
Size
16 kB (15865 bytes)
Hash
f2bf056198be59f92547935fd4c968f0
cba85174a3d6d68fcff3a2e6238f1d6150b58fce
244926b75ad193faf7a694c602d5819576e2d953dc43849395dedfa841f5ea53

HTTP Headers

GET /js/melody.dev.js HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: text/javascript
cache-control: max-age=3600, public
cf-bgj: minify
cf-polished: origSize=23108
expires: Mon, 18 Aug 2025 22:42:53 GMT
last-modified: Sat, 29 Oct 2022 13:48:43 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6E0fWKrYtMVKdr4eEgASMfWWuFNcj9WCRWpCv7I9ORFPY1Se2UfuGv9qpNWvzP2M8sm7fCBs5ZxHZbyDaQ%2B7ImGZ5v8RSeJO%2BjPdRXDXymoPpGspBjNbig7QjB34sE3pEDpX1AQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b693b00b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/templates/echo/js/jquery.plugins.a.js

188.114.96.1

200 OK

9.5 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/js/jquery.plugins.a.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JavaScript source, ASCII text, with very long lines (9736), with no line terminators
Size
9.5 kB (9490 bytes)
Hash
4983c6c466a34742eab06d54aa11c249
4f14efc4cbf9f23228dea8e955bd14247111d5df
6f05eefe0dec7b5f620b6af01a87efeb1d59dd64f912abb4bbd7468b314d0a26

HTTP Headers

GET /templates/echo/js/jquery.plugins.a.js HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: text/javascript
cache-control: max-age=3600, public
cf-bgj: minify
cf-polished: origSize=9792
expires: Mon, 18 Aug 2025 22:42:53 GMT
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MH8DQ5Zq2iTZtw7JIn6fwHwaKXeOhO4PLqm7Nujn7ZPTHm%2BmJUlhlVyPnzpgKSBmmCUuU%2FhMGyqalTqiTTsFRyPnpUCA0uOnyZx2aU0GN%2BjAeM6edbGf1420EOM2R1pOZfRhTbQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b693b04b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/ajax.php?p=stats&do=show&aid=3&at=1

188.114.96.1

200 OK

42 B

URL GET HTTP/3
cimawbas.mycima.cc/ajax.php?p=stats&do=show&aid=3&at=1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
9b5e8704c89f018cff215cb5ed3e0128
2a9fa3661b326c503e492b89cdd9130d12ead03d
b2c78c910f5ea29e3a9d223dabc203c055c8708b1fe7d83788b490638126db4d

HTTP Headers

GET /ajax.php?p=stats&do=show&aid=3&at=1 HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: image/gif
pragma: no-cache
expires: Wed, 5 Feb 1986 06:06:06 GMT
cache-control: must-revalidate
vary: Accept-Encoding,User-Agent
cf-cache-status: EXPIRED
last-modified: Sun, 18 Aug 2024 22:42:52 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=emvV55YXqFECReOeR%2FIARC6dNpyMJYHj769ouGz7iJYEOoZE5HawaV6KD0c%2Fztn0SCO5FPdeAjozYbI6wepxHB2%2BX98AD54czvEmoK6JQTeUaEnXQbPIQiAp7AI9LDZjvZye9BI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b67192db524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

188.114.96.1

200 OK

12 kB

URL GET HTTP/3
cimawbas.mycima.cc/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JavaScript source, ASCII text, with very long lines (12331)
Size
12 kB (12332 bytes)
Hash
88a769d2fe35899fd45a332a0a032cc0
514c6c1d8475d17e412849a4c90159517d0fa10a
ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: application/javascript
last-modified: Tue, 13 Aug 2024 15:09:16 GMT
etag: W/"66bb771c-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ELsglCXxdBS070%2F8Mvkz5dHV8ynw9StSyoehYiiDekJFJIXtRJ1b%2B2apzIozU7GlaC%2B3L%2FpUFHfs8%2F8BPY3d5O8meNGMsQ6cvZKbXf9yneNFOP6q4ke%2BIYT03vZpFJ3PA3uZLzM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8b556b673951b524-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Tue, 20 Aug 2024 22:42:52 GMT
cache-control: max-age=172800, public
content-encoding: gzip

GET cimawbas.mycima.cc/js/jquery.typewatch.js

188.114.96.1

200 OK

1.4 kB

URL GET HTTP/3
cimawbas.mycima.cc/js/jquery.typewatch.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JavaScript source, ASCII text, with very long lines (1476), with no line terminators
Size
1.4 kB (1440 bytes)
Hash
f3989a1b6fad291e198cac5399cb0bd7
4e98f0e4f6c96bef7e8d95be4af3b772895ca1ff
d9ee03f77286531633c2ea6bc7dcc3141322ecb2967e57990a280ad719c2d5c8

HTTP Headers

GET /js/jquery.typewatch.js HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: text/javascript
cache-control: max-age=3600, public
cf-bgj: minify
cf-polished: origSize=1745
expires: Mon, 18 Aug 2025 22:42:53 GMT
last-modified: Sat, 29 Oct 2022 13:48:43 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dIUqJiQ6P566H7DQym4y7PcWRz41cOUF1dXq5cDXMVwp1HzWFo19TaOTYw7rzsH9qkoPnuH5IspmWD6qRYSpjrXamAG8WY%2BsCGRTI%2FnbdWph3RaPb4FGE8fQEHbCKWlDgVaiF88%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b693b02b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET goomaphy.com/401/6219621

139.45.197.239

200 OK

91 kB

URL GET HTTP/2
goomaphy.com/401/6219621
IP
139.45.197.239:443
ASN
#9002 RETN Limited

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerLet's Encrypt
Subjectgoomaphy.com
FingerprintA2:55:12:F6:18:49:5E:DA:CC:24:A0:0A:D0:0F:26:F4:B2:08:EF:4A
ValidityWed, 10 Jul 2024 04:15:13 GMT - Tue, 08 Oct 2024 04:15:12 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
91 kB (91294 bytes)
Hash
13056c3b5aae1bdaa51aa1896abbf184
96b848e2e44d712753ac17111a75d671a33ebd4d
87f0909dbfe4664bc4dfdbabdc40cb76cecb9a702c53759b3634774ebe3b5588

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /401/6219621 HTTP/1.1
Host: goomaphy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: application/javascript
x-trace-id: 0ccf43eae6577cfb0d5499c6c9a5845e
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=0300bcb904f74da1e0540ccc29eb6a77; expires=Mon, 18 Aug 2025 22:42:53 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

GET cimawbas.mycima.cc/templates/echo/css/jasny-bootstrap.min.css

188.114.96.1

200 OK

14 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/css/jasny-bootstrap.min.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
ASCII text, with very long lines (13803)
Size
14 kB (13997 bytes)
Hash
35a0dfa4efebb6b615c601d89ca323b6
122f43fb614d52d280cf8748af2ff47bd1f21fa3
fe508673736191cbc01662c1392d0ee591106b93577f43f4cea0ca1731b06cb1

HTTP Headers

GET /templates/echo/css/jasny-bootstrap.min.css HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
cache-control: max-age=3600, public
expires: Mon, 18 Aug 2025 22:42:52 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cTR1D%2BKVHkg2IlEd5rvhC1Z5MIVnBqslol%2FlpyClbCdHsz4y3%2FBqxqBo5aMVXL5qiC1wPnBy0SN3ZxWZjAFYz8jRoWrZJWsQ5D%2BCTJL4nd8jF3PA41pwHdTu%2Bjqrf5Jg9Et29p8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b67091ab524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/ajax.php?p=stats&do=show&aid=2&at=1

188.114.96.1

200 OK

42 B

URL GET HTTP/3
cimawbas.mycima.cc/ajax.php?p=stats&do=show&aid=2&at=1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
9b5e8704c89f018cff215cb5ed3e0128
2a9fa3661b326c503e492b89cdd9130d12ead03d
b2c78c910f5ea29e3a9d223dabc203c055c8708b1fe7d83788b490638126db4d

HTTP Headers

GET /ajax.php?p=stats&do=show&aid=2&at=1 HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:52 GMT
content-type: image/gif
pragma: no-cache
expires: Wed, 5 Feb 1986 06:06:06 GMT
cache-control: must-revalidate
vary: Accept-Encoding,User-Agent
cf-cache-status: EXPIRED
last-modified: Sun, 18 Aug 2024 22:42:52 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=69QfreuGkupQHZ6FO9hxdpvzerO93kpuuWXlXLUaXqmC4A9oWDYcpmId0Hl4INee%2BIqkd9mgY6zCk8C9ct9%2BKTW%2FG8VlwjtMPhwZW%2B%2BuC4R%2FrQSAiB57Pgeyka2HyOps1UKowBM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b67394cb524-OSL
alt-svc: h3=":443"; ma=86400

GET cimawbas.mycima.cc/templates/echo/js/jquery.plugins.b.js

188.114.96.1

200 OK

9.1 kB

URL GET HTTP/3
cimawbas.mycima.cc/templates/echo/js/jquery.plugins.b.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Certificate
IssuerGoogle Trust Services
Subjectmycima.cc
Fingerprint43:15:D0:4D:9F:2E:1B:A7:B1:DB:3C:30:C7:0F:6C:EE:3F:B5:0C:2F
ValiditySat, 20 Jul 2024 07:11:01 GMT - Fri, 18 Oct 2024 07:11:00 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (9411), with no line terminators
Size
9.1 kB (9131 bytes)
Hash
1b02a70cc7878be5b5b5452897fc60dc
21fab17c4e5f1732e9346c0a9bd9011fd1d75807
2db3190c81c530ff9b389c56d9d2f8038781b324d63e9ffaf08000872ae6446d

HTTP Headers

GET /templates/echo/js/jquery.plugins.b.js HTTP/1.1
Host: cimawbas.mycima.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cimawbas.mycima.cc/watch.php?vid=beba7a1c8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 18 Aug 2024 22:42:53 GMT
content-type: text/javascript
cache-control: max-age=3600, public
cf-bgj: minify
cf-polished: origSize=9509
expires: Mon, 18 Aug 2025 22:42:53 GMT
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QkM3iw9YguEFVf9jHDp5qCUX4xMvsEFS4ylfKYemvGn%2FuqBTuB%2FMx7VX3KROrjfA0jh%2FDFyUjKrxIYNezdnlbRqyrIRJwtEsGKfdnpIPQd0JTj2VMQrMXaG%2FWhfeaPoMv2XspKY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8b556b693af9b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (73)

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML