Report - w20.cimawbas.tv/watch.php?vid=c7aeecaab

Report Overview

Visited public
2023-09-23 03:24:25
Tags
URL
w20.cimawbas.tv/watch.php?vid=c7aeecaab
Finishing URL
w24.cimawbas.tv/watch.php?vid=c7aeecaab
IP / ASN
195.3.220.45
#201814 Meverywhere sp. z o.o.
Title
مشاهدة فيلم 678 2010 HD كامل

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-09-22 07:31:34	881 B	151 kB	142.250.74.168
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-09-22 07:59:59	1.6 kB	65 kB	216.58.207.227
offerimage.com	304078	2019-06-10	2019-06-10 13:11:53	2023-09-22 07:33:45	899 B	23 kB	104.22.33.172
goomaphy.com	unknown	2022-07-21	2022-07-22 21:39:03	2023-09-22 11:12:04	3.3 kB	40 kB	139.45.197.239
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2023-09-22 05:24:08	419 B	3.6 kB	151.101.2.137
w24.cimawbas.tv	unknown	unknown	No data	No data	26 kB	735 kB	195.3.220.45
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2023-09-22 08:01:48	433 B	34 kB	142.250.74.74
augailou.com	unknown	2022-12-12	2022-12-12 14:30:37	2023-09-21 20:20:17	1.5 kB	30 kB	139.45.197.243
pacekami.com	unknown	2023-04-17	2023-04-17 17:07:31	2023-09-06 11:46:02	400 B	1.1 kB	23.109.248.169
ocsp.sectigo.com	487	2018-08-16	2019-11-29 12:50:24	2023-09-22 07:26:58	330 B	963 B	104.18.15.101
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-09-22 06:24:32	910 B	30 kB	142.250.74.106
w20.cimawbas.tv	unknown	unknown	No data	No data	495 B	1.1 kB	195.3.220.45
v21.my-cima.net	unknown	2021-11-09	2023-09-19 03:39:54	2023-09-23 05:24:05	437 B	1.1 kB	146.19.24.15
netdna.bootstrapcdn.com	3413	2012-05-25	2012-09-07 17:11:00	2023-09-22 09:05:03	1.5 kB	126 kB	104.18.11.207
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-09-22 05:10:04	2.0 kB	4.2 kB	142.250.74.131
my.rtmark.net	9054	2014-10-29	2015-02-04 10:54:57	2023-09-22 05:54:17	465 B	744 B	139.45.195.8
tzegilo.com	unknown	2022-01-14	2022-01-14 16:27:15	2023-09-22 08:10:09	398 B	8.2 kB	172.64.162.34
fleraprt.com	unknown	2022-01-14	2022-01-14 23:55:14	2023-09-22 07:17:52	529 B	483 B	139.45.195.254
v23.my-cima.net	unknown	2021-11-09	2023-09-23 01:35:33	2023-09-23 03:57:47	437 B	5.4 kB	146.19.24.15

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-09-23	medium	augailou.com	Sinkholed
2023-09-22	medium	fleraprt.com	Sinkholed
2023-09-23	medium	goomaphy.com	Sinkholed
2023-09-23	medium	goomaphy.com	Sinkholed
2023-09-23	medium	goomaphy.com	Sinkholed
2023-09-23	medium	goomaphy.com	Sinkholed
2023-09-23	medium	augailou.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (40)

	URL	From	Size	First Seen	Last Seen
	w24.cimawbas.tv/templates/echo/js/jquery.plugins.a.js	ScriptElement	9.8 kB	2023-03-07	2025-04-28
Pretty URL w24.cimawbas.tv/templates/echo/js/jquery.plugins.a.js IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12 Last Seen2025-04-28 03:03 Times Seen41 Hash 0f51c1849d59ceb7b240d9f0b9d695e3 b40564175a78a0c0a6cca7ae7bd9c3cb01922ae4 c5da67292da0cb7d7a40812de84e839ef1561c01cb9e0bd4e9bb15bfc64b0cb3 Loading...

	w24.cimawbas.tv/templates/echo/js/jquery.plugins.b.js	ScriptElement	9.5 kB	2023-03-07	2025-04-28
Pretty URL w24.cimawbas.tv/templates/echo/js/jquery.plugins.b.js IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12 Last Seen2025-04-28 03:03 Times Seen43 Hash 675182442ff7fc67b2f9748b6ac99a40 0b40b9937ae8018bf209ae7b10940f3b2a1411a1 9c6d06fd83d0e274e7b3f06d9f6f3320cbb5fdc9a6248f556ca39eef95708a57 Loading...

	w24.cimawbas.tv/watch.php?vid=c7aeecaab	ScriptElement	861 B	2024-08-21	2024-08-21
Pretty URL w24.cimawbas.tv/watch.php?vid=c7aeecaab IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 06:00 Last Seen2024-08-21 06:00 Times Seen1 Hash 4bb9a6ee9bcd3de6fc02f25812415531 d1163c25fad88e40e9bd9cfba656cee23bffc985 637b05b6c502be3e2571972b46be6dc3fe147bbd40528cb927fa3b7f018b42ed Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js	ScriptElement	96 kB	2023-03-07	2025-05-11
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 13:38 Times Seen8473 Hash f03e5a3bf534f4a738bc350631fd05bd 37b1db88b57438f1072a8ebc7559c909c9d3a682 aec3d419d50f05781a96f223e18289aeb52598b5db39be82a7b71dc67d6a7947 Loading...

	unknown	EventHandler	0 B	0001-01-01	2025-05-11
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 13:47 Times Seen4654772 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	w24.cimawbas.tv/templates/echo/js/jquery.readmore.js	ScriptElement	3.4 kB	2023-03-07	2025-04-28
Pretty URL w24.cimawbas.tv/templates/echo/js/jquery.readmore.js IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12 Last Seen2025-04-28 03:03 Times Seen57 Hash c6530ce1b280d087dc3a0714f7bb29f7 c212826cbdd1d0c4d5290bbbed84727b56a9d8d1 7dbbe700df964fa01b2e5685082d1f0a6fc5c8a9b9fcb18432fb3f31ac29b208 Loading...

	w24.cimawbas.tv/watch.php?vid=c7aeecaab	ScriptElement	1.8 kB	2023-04-07	2025-04-11
Pretty URL w24.cimawbas.tv/watch.php?vid=c7aeecaab IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-07 18:47 Last Seen2025-04-11 21:47 Times Seen69 Hash f48799c490867e10bf3fff06b38a3657 06d3e0bf82b5259b96e54c501ca2fb9b1f503ebf 5936461d2e0d0feabaae55dda4e14f6e68fe759a2a8ef4350b5de96be8a111ac Loading...

	w24.cimawbas.tv/watch.php?vid=c7aeecaab	ScriptElement	423 B	2024-08-21	2024-08-21
Pretty URL w24.cimawbas.tv/watch.php?vid=c7aeecaab IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 06:00 Last Seen2024-08-21 06:00 Times Seen1 Hash 973071bd0c0ab7e5a906fa0c27970968 832156d1025852c28162ed635146faba295622d7 cf0b7b3cdd599d0027faf7e22bb6cd908aa6b650f29060bc019624c5b5da9952 Loading...

	w24.cimawbas.tv/js/jquery.typewatch.js	ScriptElement	1.7 kB	2023-03-07	2025-04-28
Pretty URL w24.cimawbas.tv/js/jquery.typewatch.js IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12 Last Seen2025-04-28 03:03 Times Seen102 Hash 6915a93382a7b35f40987fd648b43f9d b78c77cc774594df414a7b1fb99c28083d85bb80 1836dba8922ca00f9ac170122f314b2cd7bbb2eba09c73d8bce215597bd9cd2b Loading...

	w24.cimawbas.tv/js/bootstrap-notify.min.js	ScriptElement	8.2 kB	2023-03-07	2025-04-25
Pretty URL w24.cimawbas.tv/js/bootstrap-notify.min.js IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59 Last Seen2025-04-25 00:46 Times Seen179 Hash 5ba070af9d1b1a2782851940de30879f d33390fc88bf68bd23eb182d7dbc77f5227081b2 a13a07b242c80b57e0cbbacc6cfedb538d4d331ff1f9dff370519ec57407e450 Loading...

	w24.cimawbas.tv/watch.php?vid=c7aeecaab	ScriptElement	424 B	2023-03-10	2025-04-11
Pretty URL w24.cimawbas.tv/watch.php?vid=c7aeecaab IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 10:35 Last Seen2025-04-11 21:47 Times Seen29 Hash 4fdd5489c31175a09b6612230e359876 ac0383872c5a7cec11fced6e5092f2be11bbf1a8 3db1dbd74cc159c9a8a37ed066de1ba7576cd0044671c5556e5d53fb7a0159ed Loading...

	w24.cimawbas.tv/watch.php?vid=c7aeecaab	ScriptElement	176 B	2023-08-25	2024-10-23
Pretty URL w24.cimawbas.tv/watch.php?vid=c7aeecaab IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-25 21:17 Last Seen2024-10-23 22:55 Times Seen79 Hash a604d1494e55df24ad7c62a30cc0f058 baec845d909270888dbcde8945d9ed24c8b53fba 5ed57bccec3ae6d6233648e109470a51ab1afb262a3daf1d177aaf86b8a86b19 Loading...

	w24.cimawbas.tv/watch.php?vid=c7aeecaab	ScriptElement	3.5 kB	2023-03-07	2025-04-11
Pretty URL w24.cimawbas.tv/watch.php?vid=c7aeecaab IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:15 Last Seen2025-04-11 21:47 Times Seen118 Hash c3d5e7ae44ebf7eec435c9325b6f676f 8b6342ac0b9b097678cb23ae693917b91090b944 6dab04cf1ed42a5675ee85fc766f21ccf9386c3e61f9081987b6de3ec7e7f23b Loading...

	pacekami.com/1clkn/56262	ScriptElement	6 B	2023-03-07	2025-05-11
Pretty URL pacekami.com/1clkn/56262 IP 23.109.248.169 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-11 12:09 Times Seen12584 Hash 9082dc37e5e8046929da411544ad071a 41e0e3963ed94e59e8a2f115994c382712411537 b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550 Loading...

	augailou.com/5/6205538	ScriptElement	70 kB	2024-08-21	2024-08-21
Pretty URL augailou.com/5/6205538 IP 139.45.197.243 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-21 06:00 Last Seen2024-08-21 06:00 Times Seen1 Hash f27aecac6ffb3c1bd74b1fe669106e94 128faceb048f2dd7b773e2bf91e04977cd1c1bd0 d04733f3bfc3123625dd5ab2e10de749ac2556e8dfb5016971c92878a638edbd Loading...

	w24.cimawbas.tv/watch.php?vid=c7aeecaab	ScriptElement	478 B	2023-03-07	2025-04-15
Pretty URL w24.cimawbas.tv/watch.php?vid=c7aeecaab IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:12 Last Seen2025-04-15 09:26 Times Seen96 Hash b6ec630beba5aa234f361049d0162851 40852e09b7e6202ef51b85ecf775694b703442d7 79fdb7c25e266e76ee0ff619f2487f81f0b97bed193c569362bdd39d5dc6c859 Loading...

	www.googletagmanager.com/gtag/js?id=G-QV6G9CCZEB&l=dataLayer&cx=c	ScriptElement	228 kB	2023-09-23	2023-09-23
Pretty URL www.googletagmanager.com/gtag/js?id=G-QV6G9CCZEB&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-23 05:24 Last Seen2023-09-23 05:24 Times Seen1 Hash abf8779cb7520f87cd079d2e2f19f326 a5bbcad01eec5381cdce303ac82fa686dd6423ec 9034b476f0c288a1f465e8f9b773dc24f5e38a41e7f14827f1cd662c00e90610 Loading...

	w24.cimawbas.tv/js/jquery.textcomplete.min.js	ScriptElement	17 kB	2023-03-07	2025-04-11
Pretty URL w24.cimawbas.tv/js/jquery.textcomplete.min.js IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:09 Last Seen2025-04-11 21:47 Times Seen44 Hash 871de5ca5aee55e67c1d3d8c69b49b1b ae0e75de0282c8bf70e2fcac957c8dad975cfa11 90dfc6e75b52347f19b56f0a9d8016cf3b0bb11a3e22c749bd1f1976df43033a Loading...

	w24.cimawbas.tv/templates/echo/js/jquery.cropit.js	ScriptElement	28 kB	2023-03-07	2025-05-03
Pretty URL w24.cimawbas.tv/templates/echo/js/jquery.cropit.js IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-05-03 14:30 Times Seen230 Hash cd82e0edbcecf087be901e8e7ed0d035 2cedce9f87501152efa36eb1949d95c0ca4ff200 b8a0d09df5a79e5e9494b3061eeff55883870c66714879886348c5095faa7840 Loading...

	www.googletagmanager.com/gtag/js?id=UA-150387825-1	ScriptElement	189 kB	2023-09-23	2023-09-23
Pretty URL www.googletagmanager.com/gtag/js?id=UA-150387825-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-23 05:24 Last Seen2023-09-23 05:24 Times Seen1 Hash 529c9e582bc540f8a6d1ccc5bce7c26e b474fd3fa3d6119e1d01bf1fdabd8f1341a3d831 5feb6329052178e02febcff2253a666f5adbf3b6b7903395b89547ade48a23a0 Loading...

	w24.cimawbas.tv/watch.php?vid=c7aeecaab	ScriptElement	190 B	2023-03-07	2025-04-11
Pretty URL w24.cimawbas.tv/watch.php?vid=c7aeecaab IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:01 Last Seen2025-04-11 21:47 Times Seen139 Hash 29727d13fa2a206a7cc92a101c29ab33 647b9b2f5532aaee7217e70850589ad673938fcb 42ee5f253d773ac3a83d1fc0d0f922a4c502f66dddfb591593129586c4f2725a Loading...

	w24.cimawbas.tv/watch.php?vid=c7aeecaab	ScriptElement	1.8 kB	2023-03-07	2025-04-11
Pretty URL w24.cimawbas.tv/watch.php?vid=c7aeecaab IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:01 Last Seen2025-04-11 21:47 Times Seen133 Hash 7bc2250f798e8dd30269772ee8cf4599 3fb3ed5ea1a5c052fa3c26e45d4abd3e722b9700 cda4eff9500a8b16f33a54c6cd1ce7d2ec3bf66cecddb63d9c736078916c5035 Loading...

	goomaphy.com/401/6219621	ScriptElement	90 kB	2024-08-21	2024-08-21
Pretty URL goomaphy.com/401/6219621 IP 139.45.197.239 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-21 06:00 Last Seen2024-08-21 06:00 Times Seen1 Hash 794b8fa743e09c983577d51ebd584779 f80bba482660844baf296a777f78e3cf804b5918 ec872fdd73c0e54672f3856dc617b59c04b9c2b6fc45cb6b2e37b6110f0fa3bf Loading...

	tzegilo.com/stattag.js	ScriptElement	19 kB	2023-09-07	2024-08-21
Pretty URL tzegilo.com/stattag.js IP 172.64.162.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-07 20:07 Last Seen2024-08-21 07:20 Times Seen2395 Hash 89e89aea544ea2785d49cc4cd9cf26f6 7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b 86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9 Loading...

	w24.cimawbas.tv/watch.php?vid=c7aeecaab	ScriptElement	1.4 kB	2023-03-07	2025-04-11
Pretty URL w24.cimawbas.tv/watch.php?vid=c7aeecaab IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:12 Last Seen2025-04-11 21:47 Times Seen83 Hash 48b383db8c4b689d51c7fe7520af1108 464dbc35d23e717068b6c71c46c7e267bf8bf3c4 e23346daaea4662b4e261ddc679f7ef3e914155a66fc2ded5802809568638553 Loading...

	w24.cimawbas.tv/sandbox%20eval%20code		147 B	2023-04-11	2025-05-11
Pretty URL w24.cimawbas.tv/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 13:41 Times Seen341930 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	w24.cimawbas.tv/templates/echo/js/theme.js	ScriptElement	45 kB	2023-03-12	2025-04-28
Pretty URL w24.cimawbas.tv/templates/echo/js/theme.js IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:33 Last Seen2025-04-28 03:03 Times Seen25 Hash 8c3f83e9e63261a459eedd4bd7f52ffb 3bc83ea0862c0f21b0de1b206bf7c608dbaab9ac e71418f105dd7c3d887c58311b9ea4a74020bed3ed8f9f40a618ec01c56b7987 Loading...

	w24.cimawbas.tv/watch.php?vid=c7aeecaab	ScriptElement	291 B	2023-03-07	2025-04-15
Pretty URL w24.cimawbas.tv/watch.php?vid=c7aeecaab IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:59 Last Seen2025-04-15 09:26 Times Seen155 Hash 0b5c6ecfd31b214438c017f7840cab7d 5b0d464bbab33735e654f6d0b47dd2bcd47f8e5c e0d679f66eea8fae589016f89ff238618cabb4b802add68fcbf4d70498356ea1 Loading...

	w24.cimawbas.tv/templates/echo/js/melody.emoji.js	ScriptElement	176 kB	2023-05-23	2025-04-11
Pretty URL w24.cimawbas.tv/templates/echo/js/melody.emoji.js IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-23 00:33 Last Seen2025-04-11 21:47 Times Seen8 Hash b4cef5b8bb179ac95f0751465ed4bd60 2192827ddcab4f5bc1251e854b148901680df150 d46ecb17798a5322490f29197345d74512d18fbf65a8e13f93b5d0d5adfcec9a Loading...

	netdna.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js	ScriptElement	32 kB	2023-03-07	2025-05-10
Pretty URL netdna.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js IP 104.18.11.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-10 20:58 Times Seen2946 Hash abda843684d022f3bc22bc83927fe05f 26908395e7a9a4eab607d80aa50a81d65f3017cb 24cc29533598f962823c4229bc280487646a27a42a95257c31de1b9b18f3710f Loading...

	w24.cimawbas.tv/js/melody.dev.js	ScriptElement	23 kB	2023-03-07	2025-05-03
Pretty URL w24.cimawbas.tv/js/melody.dev.js IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12 Last Seen2025-05-03 14:30 Times Seen126 Hash e238acf58475d3cdb95d614582134b24 b13c1da1f5254cb14f4f187bd5174ed0feb08a23 f3a4cbf3a8090b121a0d6d6dd8feda9f92831cdb5a070a7eb9ef58234c1f4eab Loading...

	w24.cimawbas.tv/watch.php?vid=c7aeecaab	ScriptElement	216 B	2023-03-07	2025-04-15
Pretty URL w24.cimawbas.tv/watch.php?vid=c7aeecaab IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:59 Last Seen2025-04-15 09:26 Times Seen174 Hash 901d05a394689754b24c53a14ff0bb94 16e6750d0db26beda439d20147af2cdf6ee85f6c c8d34bfa528cee7507080fac65baab9a6eacb046b4c097cc3201ff3bba0d09c1 Loading...

	w24.cimawbas.tv/watch.php?vid=c7aeecaab	ScriptElement	439 B	2023-03-07	2025-04-15
Pretty URL w24.cimawbas.tv/watch.php?vid=c7aeecaab IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:59 Last Seen2025-04-15 09:26 Times Seen173 Hash 86a6965e541a781a37d669b260561c55 d507b1712d0947c35ca109d78453ad0706543594 d08064727885699b455486366ac7a1b6e9e298d7cb1d94d4e491088d0bb8ab94 Loading...

	w24.cimawbas.tv/watch.php?vid=c7aeecaab	ScriptElement	306 B	2023-03-10	2025-04-11
Pretty URL w24.cimawbas.tv/watch.php?vid=c7aeecaab IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 14:32 Last Seen2025-04-11 21:47 Times Seen22 Hash 84bfb0e1fadef95eaac61b995f6715b6 7e1360c8ae6e689818535f1791a447b31ac5efc2 84b3783159200fdb4d534af8aa44155a6dd9127874539c57f5e2a92066ec5f59 Loading...

	code.jquery.com/jquery-migrate-1.2.1.min.js	ScriptElement	7.2 kB	2023-03-07	2025-05-11
Pretty URL code.jquery.com/jquery-migrate-1.2.1.min.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 11:02 Times Seen4936 Hash eb05d8d73b5b13d8d84308a4751ece96 743052320809514fb788fe1d3df37fc87ce90452 1e67d8dbcca1f6fd94e077c85c2fb40fa1c2756c99238daa8da882144260a68d Loading...

	w24.cimawbas.tv/templates/echo/js/melody.dev.js	ScriptElement	7.7 kB	2023-03-07	2025-04-28
Pretty URL w24.cimawbas.tv/templates/echo/js/melody.dev.js IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12 Last Seen2025-04-28 03:03 Times Seen41 Hash 16382a2673590ae717ee030d81e32fc5 8139236171b763ddac3c3d2b6ee4214b2469bcda 41af4a2fb3effba0f84cf21ea77ad4db2373086ee9bda4160dd7a4c14392c179 Loading...

	w24.cimawbas.tv/templates/echo/js/jasny-bootstrap.min.js	ScriptElement	20 kB	2023-03-07	2025-05-03
Pretty URL w24.cimawbas.tv/templates/echo/js/jasny-bootstrap.min.js IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59 Last Seen2025-05-03 14:30 Times Seen200 Hash f6b6e524d29d54ada53e4172b9d91cf7 427153c7a2d83d2ca800e397779f29b857801ad2 e7ad856551c720cb7c6a24a8bf4a9d6b6b24c24f07109cde96366338e53a4ff8 Loading...

	w24.cimawbas.tv/watch.php?vid=c7aeecaab	ScriptElement	5.3 kB	2023-03-07	2025-04-11
Pretty URL w24.cimawbas.tv/watch.php?vid=c7aeecaab IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:01 Last Seen2025-04-11 21:47 Times Seen158 Hash 5d0f0b5b79e9f10c796e8a416e57dd2d acca3a159098bbc8a6313d6f496cfeef362c3171 452c276bbd878d6970a8f3a2b5ebea89fcc866c5aa58e5e56afcdc9c53c2b78f Loading...

	w24.cimawbas.tv/watch.php?vid=c7aeecaab	ScriptElement	155 B	2023-03-10	2025-04-11
Pretty URL w24.cimawbas.tv/watch.php?vid=c7aeecaab IP 195.3.220.45 ASN #201814 Meverywhere sp. z o.o. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 10:35 Last Seen2025-04-11 21:47 Times Seen29 Hash 74c535fa31120ea6432fa9cf4ef9453b 9a02c12073b86755c553773acc98363fb9d3a960 e33e7f2e98db343a395816f100286a1cf2c73d9b4d5fdbbad3602910b58822ad Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-11
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 13:41 Times Seen341129 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

HTTP Transactions (80)

URL IP Response Size

w20.cimawbas.tv/watch.php?vid=c7aeecaab

195.3.220.45

301 Moved Permanently

707 B

URL User Request GET HTTP/2
w20.cimawbas.tv/watch.php?vid=c7aeecaab
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

HTTP Headers

GET /watch.php?vid=c7aeecaab HTTP/1.1
Host: w20.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 707
date: Sat, 23 Sep 2023 03:24:05 GMT
location: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/css/bootstrap.min.css

195.3.220.45

200 OK

18 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/css/bootstrap.min.css
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
ASCII text, with very long lines (65366)
Size
18 kB (18181 bytes)
Hash
c9d317002dc0bde5bd228cc2eda74972
2524e48df454d491928e9e19b88292d87eddcf79
a4864a1dc26c66b5c9c0091afd5d9c5b52709bc023b66b5a3c6fe9e38af6e506

HTTP Headers

GET /templates/echo/css/bootstrap.min.css HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:05 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18181
date: Sat, 23 Sep 2023 03:24:05 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/css/jasny-bootstrap.min.css

195.3.220.45

200 OK

2.2 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/css/jasny-bootstrap.min.css
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
ASCII text, with very long lines (13803)
Size
2.2 kB (2225 bytes)
Hash
35a0dfa4efebb6b615c601d89ca323b6
122f43fb614d52d280cf8748af2ff47bd1f21fa3
fe508673736191cbc01662c1392d0ee591106b93577f43f4cea0ca1731b06cb1

HTTP Headers

GET /templates/echo/css/jasny-bootstrap.min.css HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:05 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2225
date: Sat, 23 Sep 2023 03:24:05 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/css/echo.css

195.3.220.45

200 OK

46 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/css/echo.css
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
ASCII text
Size
46 kB (46278 bytes)
Hash
96f8d9d4e7f899e47cb104ec1dea8006
e53a463932afc18c8bf00ec3b4490e10705f7529
9f4585be71828619466de2ee3ef3ac2e8cb261df3e13176b2e10f27167e61799

HTTP Headers

GET /templates/echo/css/echo.css HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:05 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 46278
date: Sat, 23 Sep 2023 03:24:05 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/css/animate.min.css

195.3.220.45

200 OK

3.8 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/css/animate.min.css
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
ASCII text, with very long lines (319)
Size
3.8 kB (3849 bytes)
Hash
3d0a26b7c254da8c0d297e753ff23f65
877d0bcad6716a05066d9b6dab07e264f631a5f0
f1f0041c0c62f37ee475d174370f574a62afd842055e79a86dc4c722532de6bb

HTTP Headers

GET /templates/echo/css/animate.min.css HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:05 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3849
date: Sat, 23 Sep 2023 03:24:05 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/css/bootstrap.min.rtl.css

195.3.220.45

200 OK

4.1 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/css/bootstrap.min.rtl.css
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
ASCII text, with very long lines (540)
Size
4.1 kB (4125 bytes)
Hash
8e65c5cc3bcf7ef96ea90473d0ae2468
a2aa9e160648970336a6519e428372e59faa95d7
498dd6154e8e5089c7002c183235b7e1471668f8935c328de6a09962bca4d609

HTTP Headers

GET /templates/echo/css/bootstrap.min.rtl.css HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:05 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4125
date: Sat, 23 Sep 2023 03:24:05 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv//uploads/articles/c888d161.jpg

195.3.220.45

301 Moved Permanently

707 B

URL GET HTTP/2
w24.cimawbas.tv//uploads/articles/c888d161.jpg
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

HTTP Headers

GET //uploads/articles/c888d161.jpg HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 707
date: Sat, 23 Sep 2023 03:24:05 GMT
location: https://w24.cimawbas.tv/uploads/articles/c888d161.jpg
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/css/echo.rtl.css

195.3.220.45

200 OK

3.6 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/css/echo.rtl.css
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
ASCII text
Size
3.6 kB (3562 bytes)
Hash
6557f36c31ab17bfd276edb0385dcf02
4276e236942d2c02b0bd3ac06259df38951b4bc3
6d4a4fa42924778987113fdd09c0870029af4892014306a36522f226c4c1d747

HTTP Headers

GET /templates/echo/css/echo.rtl.css HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:06 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3562
date: Sat, 23 Sep 2023 03:24:06 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/css/custom.css?v=1.4

195.3.220.45

200 OK

1.7 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/css/custom.css?v=1.4
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
ASCII text
Size
1.7 kB (1737 bytes)
Hash
ff205a0b456c5327c4cf04e63032467e
3e10ba36ecfb83c9055cc6887688cdd3261dcceb
134053bf828f430372e921675852b06f950070c6b3ac8429142c2ec452bdf532

HTTP Headers

GET /templates/echo/css/custom.css?v=1.4 HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:06 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1737
date: Sat, 23 Sep 2023 03:24:06 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/social-thumb.php?vid=c7aeecaab

195.3.220.45

200 OK

58 kB

URL GET HTTP/2
w24.cimawbas.tv/social-thumb.php?vid=c7aeecaab
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 720x400, components 3\012- data
Size
58 kB (57875 bytes)
Hash
df45c3a5993b99da41ee14a42f7ab35d
fbb6d74912437ea9c3aa0a81045912b4d4680f6b
acfdfd0b26e25b68d5f9c0513007381d2b8dd26023d9700ed644a9adc112b7a2

HTTP Headers

GET /social-thumb.php?vid=c7aeecaab HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:05 GMT
content-length: 57875
date: Sat, 23 Sep 2023 03:24:05 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/uploads/custom-logo.png

195.3.220.45

200 OK

2.1 kB

URL GET HTTP/2
w24.cimawbas.tv/uploads/custom-logo.png
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
PNG image data, 261 x 80, 8-bit/color RGB, non-interlaced\012- data
Size
2.1 kB (2125 bytes)
Hash
305588fea70c0f0a20ee99a881ee7827
97f26798f49d3863dab218d4c80bdb3c25addac5
a856ed27cba8cdd1c70aec330c53d4abf29a02b1aafa69ca95c37af56c32b625

HTTP Headers

GET /uploads/custom-logo.png HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:06 GMT
content-type: image/png
last-modified: Fri, 22 Sep 2023 01:12:24 GMT
accept-ranges: bytes
content-length: 2125
date: Sat, 23 Sep 2023 03:24:06 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/uploads/avatars/avatar220-2808.jpg

195.3.220.45

200 OK

3.1 kB

URL GET HTTP/2
w24.cimawbas.tv/uploads/avatars/avatar220-2808.jpg
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 120x120, components 3\012- data
Size
3.1 kB (3058 bytes)
Hash
9560d926e88a33f8ef1c7ac81b0168dc
cd4bb2036ca3b333850e59e89b7c28a724709751
07d9a52bd27fa5d76d1bb3fa3fb4f248ce0614f14670001122f24795e22a5b10

HTTP Headers

GET /uploads/avatars/avatar220-2808.jpg HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:06 GMT
content-type: image/jpeg
last-modified: Sat, 01 Oct 2022 12:21:30 GMT
accept-ranges: bytes
content-length: 3058
date: Sat, 23 Sep 2023 03:24:06 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/img/pm-avatar.png

195.3.220.45

200 OK

2.1 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/img/pm-avatar.png
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
PNG image data, 140 x 140, 8-bit colormap, non-interlaced\012- data
Size
2.1 kB (2135 bytes)
Hash
be7a1517b84d3548fdb863e78c72a3fe
91a88cc99f02e7ed22274fc3a6f42c6a3148ef0d
bd2021d52dbb110212c08885e0dab9580282334d6f1d1e50b8da0270ce8c475e

HTTP Headers

GET /templates/echo/img/pm-avatar.png HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:06 GMT
content-type: image/png
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
accept-ranges: bytes
content-length: 2135
date: Sat, 23 Sep 2023 03:24:06 GMT
X-Firefox-Spdy: h2

code.jquery.com/jquery-migrate-1.2.1.min.js

151.101.2.137

200 OK

3.1 kB

URL GET HTTP/2
code.jquery.com/jquery-migrate-1.2.1.min.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (7085)
Size
3.1 kB (3063 bytes)
Hash
eb05d8d73b5b13d8d84308a4751ece96
743052320809514fb788fe1d3df37fc87ce90452
1e67d8dbcca1f6fd94e077c85c2fb40fa1c2756c99238daa8da882144260a68d

HTTP Headers

GET /jquery-migrate-1.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-1c1f"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 23 Sep 2023 03:24:06 GMT
age: 535649
x-served-by: cache-lga21931-LGA, cache-bma1668-BMA
x-cache: HIT, HIT
x-cache-hits: 26, 61104
x-timer: S1695439446.130592,VS0,VE0
vary: Accept-Encoding
content-length: 3063
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8fe5097b12ddbaa7731f5c6d445db349
b1d9718a7e3ead4ad6c08b3c888129ddf9ba52af
3133a3d91f11eeb170b6a3149b7cceb04228b72a222187bcc374f1fbbdbf4bd3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 03:24:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

v21.my-cima.net/images.png

146.19.24.15

301 Moved Permanently

707 B

URL GET HTTP/2
v21.my-cima.net/images.png
IP
146.19.24.15:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectf.mycima.cc
FingerprintC1:04:15:94:23:88:67:20:D6:89:F5:C3:8A:08:88:7D:2B:77:0D:AA
ValiditySat, 23 Sep 2023 00:56:55 GMT - Fri, 22 Dec 2023 00:56:54 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

HTTP Headers

GET /images.png HTTP/1.1
Host: v21.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 707
date: Sat, 23 Sep 2023 03:24:06 GMT
location: https://v23.my-cima.net/images.png
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
94111c3420bb2c6a13c84437834119c2
a60b1aaa235c754b4f840e14e5c32f3bd1920d3b
9f0636387ba07be147b51285a1e30b77ad2e4e77126f1c1082775fd981b32d78

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 03:24:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8fe5097b12ddbaa7731f5c6d445db349
b1d9718a7e3ead4ad6c08b3c888129ddf9ba52af
3133a3d91f11eeb170b6a3149b7cceb04228b72a222187bcc374f1fbbdbf4bd3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 03:24:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

w24.cimawbas.tv/include/securimage_show.php?sid=325fd431e280f27e0985eaf580ca9cdf

195.3.220.45

200 OK

3.8 kB

URL GET HTTP/2
w24.cimawbas.tv/include/securimage_show.php?sid=325fd431e280f27e0985eaf580ca9cdf
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
PNG image data, 158 x 35, 8-bit/color RGB, non-interlaced\012- data
Size
3.8 kB (3839 bytes)
Hash
419982e75f8140040a9387083ab5b64d
05b0665363cd7239c9fe890f6826b0d926cb91b7
0f05f5db37c54cf29a457b530ac53880d3a78e35d15928b3ba32b6b9d719c7ca

HTTP Headers

GET /include/securimage_show.php?sid=325fd431e280f27e0985eaf580ca9cdf HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
expires: Mon, 26 Jul 1997 05:00:00 GMT
last-modified: Sat, 23 Sep 2023 03:24:05GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0,pre-check=0
pragma: no-cache
content-type: image/png
date: Sat, 23 Sep 2023 03:24:05 GMT
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js

142.250.74.74

200 OK

34 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT

File type
ASCII text, with very long lines (32038)
Size
34 kB (33507 bytes)
Hash
f03e5a3bf534f4a738bc350631fd05bd
37b1db88b57438f1072a8ebc7559c909c9d3a682
aec3d419d50f05781a96f223e18289aeb52598b5db39be82a7b71dc67d6a7947

HTTP Headers

GET /ajax/libs/jquery/1.11.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33507
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 13:14:25 GMT
expires: Sat, 21 Sep 2024 13:14:25 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 50981
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-150387825-1

142.250.74.168

200 OK

69 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-150387825-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT

File type
ASCII text, with very long lines (4179)
Size
69 kB (68922 bytes)
Hash
529c9e582bc540f8a6d1ccc5bce7c26e
b474fd3fa3d6119e1d01bf1fdabd8f1341a3d831
5feb6329052178e02febcff2253a666f5adbf3b6b7903395b89547ade48a23a0

HTTP Headers

GET /gtag/js?id=UA-150387825-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 23 Sep 2023 03:24:06 GMT
expires: Sat, 23 Sep 2023 03:24:06 GMT
cache-control: private, max-age=900
last-modified: Sat, 23 Sep 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68922
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8fe5097b12ddbaa7731f5c6d445db349
b1d9718a7e3ead4ad6c08b3c888129ddf9ba52af
3133a3d91f11eeb170b6a3149b7cceb04228b72a222187bcc374f1fbbdbf4bd3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 03:24:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

augailou.com/5/6205538

139.45.197.243

200 OK

26 kB

URL GET HTTP/2
augailou.com/5/6205538
IP
139.45.197.243:443
ASN
#9002 RETN Limited

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectaugailou.com
FingerprintB9:7E:0E:C7:F9:64:DD:50:AA:09:D2:00:44:48:A2:F6:11:81:7B:11
ValidityWed, 09 Aug 2023 05:27:59 GMT - Tue, 07 Nov 2023 05:27:58 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
26 kB (26371 bytes)
Hash
573149bad95c953d56e9c0c259d6e5ae
10f1d2f4327bef632822493a7db52c33264a61df
9f7753e6b0ff76789d11c49463d7b31fb838f00db978500f5521b48401bb8b2f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/6205538 HTTP/1.1
Host: augailou.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 03:24:06 GMT
content-type: application/javascript
x-trace-id: b06fcf2d291bb063405e0d5a9a8e5bfc
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=48fe692cbfcb48539d2da4b5a9081392; expires=Sun, 22 Sep 2024 03:24:06 GMT; path=/; secure; SameSite=None
oaidts=1695439446; expires=Sun, 22 Sep 2024 03:24:06 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

w24.cimawbas.tv/include/securimage_show.php?sid=120fcdce4889d64ad5f7fbfa5ae6dcac

195.3.220.45

200 OK

3.5 kB

URL GET HTTP/2
w24.cimawbas.tv/include/securimage_show.php?sid=120fcdce4889d64ad5f7fbfa5ae6dcac
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
PNG image data, 158 x 35, 8-bit/color RGB, non-interlaced\012- data
Size
3.5 kB (3457 bytes)
Hash
ec6eebc09c7929fd6b6b3c59e1165ff2
cdc70ee21033bf19d02aadaffbdc22358f0ff5ea
6bfc6320d6b01a9b6091a709def3cf0c763715dfaf4205b8c496cb9b648e5e06

HTTP Headers

GET /include/securimage_show.php?sid=120fcdce4889d64ad5f7fbfa5ae6dcac HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
expires: Mon, 26 Jul 1997 05:00:00 GMT
last-modified: Sat, 23 Sep 2023 03:24:05GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0,pre-check=0
pragma: no-cache
content-type: image/png
date: Sat, 23 Sep 2023 03:24:05 GMT
X-Firefox-Spdy: h2

pacekami.com/1clkn/56262

23.109.248.169

200 OK

26 B

URL GET HTTP/1.1
pacekami.com/1clkn/56262
IP
23.109.248.169:443
ASN
#7979 SERVERS-COM

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectpacekami.com
Fingerprint7D:99:6C:01:A1:DF:BC:1F:5A:F2:79:AC:F4:3A:F1:DF:85:E3:1E:96
ValiditySat, 02 Sep 2023 23:11:16 GMT - Fri, 01 Dec 2023 23:11:15 GMT

File type
ASCII text, with no line terminators
Size
26 B (26 bytes)
Hash
9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550

HTTP Headers

GET /1clkn/56262 HTTP/1.1
Host: pacekami.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 23 Sep 2023 03:24:06 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version
Set-Cookie: GL_UI4=eJw9jU1Sg0AQhSH8RQ1oV3EAj8AQMcnSTVbegZphGhwD06lmQuLtHa3S3fteffVeEASr8hHCJY0husgGnl8aXe97Ve31tsZq34vda9UoIbp6u1PycIA7M7dOqhFdDOt5kuxat8SwGdAim67tSGMOT976a06WrjaGRLG0Oodk8saYQ6aYrjNyGUFs5YSQHQ1jTzdvyE9iiIQQPhvrc1jBiuYyKu4heTf2cis2aVAUaQAP51G6nnhqjfaYDCw1QvgG6046HIi%2FINM4nxydAWjU7b%2F%2Fe5qMP2uQalxM55HcB%2FI3ouZOdQ%3D%3D; expires=Sun, 24-Sep-2023 03:24:06 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjCC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7B3R; expires=Sun, 24-Sep-2023 03:24:06 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

v23.my-cima.net/images.png

146.19.24.15

200 OK

5.2 kB

URL GET HTTP/2
v23.my-cima.net/images.png
IP
146.19.24.15:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectf.mycima.cc
FingerprintC1:04:15:94:23:88:67:20:D6:89:F5:C3:8A:08:88:7D:2B:77:0D:AA
ValiditySat, 23 Sep 2023 00:56:55 GMT - Fri, 22 Dec 2023 00:56:54 GMT

File type
PNG image data, 348 x 145, 8-bit colormap, non-interlaced\012- data
Size
5.2 kB (5175 bytes)
Hash
a766d8c1a622eaf6f8c61923eb7b2ffa
0451f3b28a9d3ba5e86db5bf84647b2695d281df
c4708018079d00eb69f9401ede6757ad56d2debe193c0e2e5490229d5c4db8ea

HTTP Headers

GET /images.png HTTP/1.1
Host: v23.my-cima.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w24.cimawbas.tv/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:06 GMT
content-type: image/png
last-modified: Sat, 29 Apr 2023 00:41:07 GMT
accept-ranges: bytes
content-length: 5175
date: Sat, 23 Sep 2023 03:24:06 GMT
X-Firefox-Spdy: h2

netdna.bootstrapcdn.com/font-awesome/4.4.0/fonts/fontawesome-webfont.woff2?v=4.4.0

104.18.11.207

200 OK

64 kB

URL GET HTTP/3
netdna.bootstrapcdn.com/font-awesome/4.4.0/fonts/fontawesome-webfont.woff2?v=4.4.0
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 64464, version 4.262\012- data
Size
64 kB (64464 bytes)
Hash
4b5a84aaf1c9485e060c503a0ff8cadb
574ea2698c03ae9477db2ea3baf460ee32f1a7ea
3c4a1bb7ce3234407184f0d80cc4dec075e4ad616b44dcc5778e1cfb1bc24019

HTTP Headers

GET /font-awesome/4.4.0/fonts/fontawesome-webfont.woff2?v=4.4.0 HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://w24.cimawbas.tv
DNT: 1
Connection: keep-alive
Referer: https://netdna.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 23 Sep 2023 03:24:06 GMT
content-type: font/woff2
content-length: 64464
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "4b5a84aaf1c9485e060c503a0ff8cadb"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 06/09/2022 10:24:04
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 756
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 01610e42957de7143f120c5c705dd11c
cdn-cache: HIT
cf-cache-status: HIT
age: 106234
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 80afac3d0949b517-OSL
alt-svc: h3=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2a9cb3694beef11368f7284821163a4d
32d723fad91ccd0c154e5d7e489266cfe596aa61
08cd4f8a916cab4a520c51bd519209ebe87f4898f10d1f1c968bce537c4d3916

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 03:24:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/ea/droidarabickufi/v6/DroidKufi-Regular.woff2

216.58.207.227

200 OK

31 kB

URL GET HTTP/2
fonts.gstatic.com/ea/droidarabickufi/v6/DroidKufi-Regular.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 31248, version 1.0\012- data
Size
31 kB (31248 bytes)
Hash
436938da6ed799ca17110e719e4d2e51
b7ef31b6085a9f0963dffe7939abca527724d389
a7b09bb9c8e8e2fb189204e08ed94bd8096c118780b5e926847cf2748ca7c5c2

HTTP Headers

GET /ea/droidarabickufi/v6/DroidKufi-Regular.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://w24.cimawbas.tv
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 01:51:07 GMT
expires: Wed, 18 Sep 2024 01:51:07 GMT
cache-control: public, max-age=31536000
age: 351179
last-modified: Wed, 13 Aug 2014 16:50:04 GMT
content-type: font/woff2
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2a9cb3694beef11368f7284821163a4d
32d723fad91ccd0c154e5d7e489266cfe596aa61
08cd4f8a916cab4a520c51bd519209ebe87f4898f10d1f1c968bce537c4d3916

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 03:24:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

my.rtmark.net/gid.js?userId=48fe692cbfcb48539d2da4b5a9081392

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?userId=48fe692cbfcb48539d2da4b5a9081392
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintB4:02:64:AF:5C:AB:27:5B:1B:80:CF:C8:FF:EB:BF:43:29:C3:C5:C1
ValidityTue, 25 Jul 2023 06:29:27 GMT - Mon, 23 Oct 2023 06:29:26 GMT

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
009ed39d34371672722cd5ce6c15e2bc
837e3b715ed5b8117747249d0f94702f560d9d0b
c8df3e199d59f7ff1df097a6bf4116f1211f47c5e229b76565e3873b3d2e9710

HTTP Headers

GET /gid.js?userId=48fe692cbfcb48539d2da4b5a9081392 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w24.cimawbas.tv
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 03:24:06 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://w24.cimawbas.tv
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=48fe692cbfcb48539d2da4b5a9081392; expires=Sun, 22 Sep 2024 03:24:06 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/img/echo-lzld.png

195.3.220.45

200 OK

95 B

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/img/echo-lzld.png
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Size
95 B (95 bytes)
Hash
f95ff0b7acd4d9a1dd76842d1b956dcd
5bc56a5f5da9e211e50e48519a1f2bcc6391dbe7
2c015a5d2a81139b7fe47b294882c03d3fd072c90d3d78127250d93e65c1de54

HTTP Headers

GET /templates/echo/img/echo-lzld.png HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:07 GMT
content-type: image/png
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
accept-ranges: bytes
content-length: 95
date: Sat, 23 Sep 2023 03:24:07 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/uploads/thumbs/59d0c0b8a-1.jpg

195.3.220.45

200 OK

31 kB

URL GET HTTP/2
w24.cimawbas.tv/uploads/thumbs/59d0c0b8a-1.jpg
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 856x480, components 3\012- data
Size
31 kB (30681 bytes)
Hash
108f0919e999fabf56477e181a1e51ee
1ea3628d6d2d9084591ae512a1be5d7156d3132f
b6acabd047749c56d860bcb21ceb79baf19dea945dddf5d14b1f3b9f8faa81ee

HTTP Headers

GET /uploads/thumbs/59d0c0b8a-1.jpg HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:07 GMT
content-type: image/jpeg
last-modified: Sat, 01 Oct 2022 12:22:02 GMT
accept-ranges: bytes
content-length: 30681
date: Sat, 23 Sep 2023 03:24:07 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/uploads/thumbs/50784bed2-1.jpg

195.3.220.45

200 OK

36 kB

URL GET HTTP/2
w24.cimawbas.tv/uploads/thumbs/50784bed2-1.jpg
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 856x480, components 3\012- data
Size
36 kB (36484 bytes)
Hash
35e116a37a2819505895ad071ba3d880
aa4c58deb39da082bc73fe31e5e715c265a2fd02
6388c9d0ba0a7da47e3c1726ee1cfa7d235fc557e8e3941b6b728029fd4eb0f2

HTTP Headers

GET /uploads/thumbs/50784bed2-1.jpg HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:07 GMT
content-type: image/jpeg
last-modified: Sat, 01 Oct 2022 12:21:59 GMT
accept-ranges: bytes
content-length: 36484
date: Sat, 23 Sep 2023 03:24:07 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/lang/flags/sa.png

195.3.220.45

200 OK

551 B

URL GET HTTP/2
w24.cimawbas.tv/lang/flags/sa.png
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
PNG image data, 16 x 11, 8-bit/color RGB, non-interlaced\012- data
Size
551 B (551 bytes)
Hash
605884cec6f446d418a092c0941acad5
d305493e396df549a97ebc6ab3a81f7307431799
8a82f9366b0218584e72ba24eefdbf0f9dd6030480219e39f13cf1e7fe87a03a

HTTP Headers

GET /lang/flags/sa.png HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:07 GMT
content-type: image/png
last-modified: Sat, 29 Oct 2022 13:48:45 GMT
accept-ranges: bytes
content-length: 551
date: Sat, 23 Sep 2023 03:24:07 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/js/theme.js

195.3.220.45

200 OK

14 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/js/theme.js
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
Unicode text, UTF-8 text, with very long lines (5357)
Size
14 kB (13516 bytes)
Hash
8c3f83e9e63261a459eedd4bd7f52ffb
3bc83ea0862c0f21b0de1b206bf7c608dbaab9ac
e71418f105dd7c3d887c58311b9ea4a74020bed3ed8f9f40a618ec01c56b7987

HTTP Headers

GET /templates/echo/js/theme.js HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:07 GMT
content-type: application/javascript
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13516
date: Sat, 23 Sep 2023 03:24:07 GMT
X-Firefox-Spdy: h2

tzegilo.com/stattag.js

172.64.162.34

200 OK

7.4 kB

URL GET HTTP/2
tzegilo.com/stattag.js
IP
172.64.162.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerGoogle Trust Services LLC
Subjecttzegilo.com
Fingerprint42:15:A6:1F:C2:2C:D5:FF:32:2C:B9:6C:84:A6:86:63:B0:45:C5:20
ValidityMon, 07 Aug 2023 17:09:01 GMT - Sun, 05 Nov 2023 17:09:00 GMT

File type
ASCII text, with very long lines (18369)
Size
7.4 kB (7359 bytes)
Hash
89e89aea544ea2785d49cc4cd9cf26f6
7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b
86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9

HTTP Headers

GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 23 Sep 2023 03:24:07 GMT
content-type: application/javascript
last-modified: Thu, 07 Sep 2023 08:19:52 GMT
etag: W/"64f987a8-4a4b"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 4009
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=grOizainJ82NLgqjVr4yu8W%2F8h6gmdY5na9f5SDD1xJAhsnVFpx8RTG%2FmEtvPg%2B3HE84Z0bREvigSLDjqUZ%2FtngwXO9BAB1KR8aJ%2FkHH%2FczeEZ%2Bu2cUEwa6fd8%2FOFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80afac418a6123dd-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

offerimage.com/www/images/c203639f459b6e675afc744dd5393fc6.jpeg

104.22.33.172

200 OK

11 kB

URL GET HTTP/2
offerimage.com/www/images/c203639f459b6e675afc744dd5393fc6.jpeg
IP
104.22.33.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Size
11 kB (10857 bytes)
Hash
c203639f459b6e675afc744dd5393fc6
c83a0142c1a7f6a07c2dd360243197a27f560932
64b4e386658d3f5764261f576a4673eb506fcad5e38e69ef085723f8dab72263

HTTP Headers

GET /www/images/c203639f459b6e675afc744dd5393fc6.jpeg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 23 Sep 2023 03:24:07 GMT
content-type: image/jpeg
content-length: 10857
cache-control: max-age=86400
cf-bgj: h2pri
etag: "6388849a-2a69"
expires: Sat, 23 Sep 2023 08:44:02 GMT
last-modified: Thu, 01 Dec 2022 10:40:26 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 67205
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 80afac43bef509b0-ARN
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.15.101

471 B

URL
ocsp.sectigo.com/
IP
104.18.15.101:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
cbf5b0228e6fb4a0147cec87a9f3d621
c2cfb64303a7ae0e92a90a2e110fe2c995bd234c
29c4f86517e8e64bde152fcf9f689b7a76195ef1614a21548ab1c69ea83353c2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 23 Sep 2023 03:24:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 21 Sep 2023 02:44:33 GMT
Expires: Thu, 28 Sep 2023 02:44:32 GMT
Etag: "c2cfb64303a7ae0e92a90a2e110fe2c995bd234c"
Cache-Control: max-age=429094,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 80afac439cbbb50f-OSL

fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f

139.45.195.254

200 OK

12 B

URL POST HTTP/1.1
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP
139.45.195.254:443
ASN
#9002 RETN Limited

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerSectigo Limited
Subjectfleraprt.com
FingerprintA4:AF:A0:00:99:C9:85:E5:30:F6:F3:F2:B5:4F:AE:4F:D0:46:74:A9
ValidityMon, 09 Jan 2023 00:00:00 GMT - Sun, 14 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1365
Origin: https://w24.cimawbas.tv
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Sat, 23 Sep 2023 03:25:36 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://w24.cimawbas.tv
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true

w24.cimawbas.tv/templates/echo/js/jquery.plugins.a.js

195.3.220.45

200 OK

3.3 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/js/jquery.plugins.a.js
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
ASCII text, with very long lines (5325)
Size
3.3 kB (3294 bytes)
Hash
0f51c1849d59ceb7b240d9f0b9d695e3
b40564175a78a0c0a6cca7ae7bd9c3cb01922ae4
c5da67292da0cb7d7a40812de84e839ef1561c01cb9e0bd4e9bb15bfc64b0cb3

HTTP Headers

GET /templates/echo/js/jquery.plugins.a.js HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:08 GMT
content-type: application/javascript
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3294
date: Sat, 23 Sep 2023 03:24:08 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/js/jquery.typewatch.js

195.3.220.45

200 OK

767 B

URL GET HTTP/2
w24.cimawbas.tv/js/jquery.typewatch.js
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
ASCII text, with very long lines (1440)
Size
767 B (767 bytes)
Hash
6915a93382a7b35f40987fd648b43f9d
b78c77cc774594df414a7b1fb99c28083d85bb80
1836dba8922ca00f9ac170122f314b2cd7bbb2eba09c73d8bce215597bd9cd2b

HTTP Headers

GET /js/jquery.typewatch.js HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:08 GMT
content-type: application/javascript
last-modified: Sat, 29 Oct 2022 13:48:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 767
date: Sat, 23 Sep 2023 03:24:08 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/js/bootstrap-notify.min.js

195.3.220.45

200 OK

2.5 kB

URL GET HTTP/2
w24.cimawbas.tv/js/bootstrap-notify.min.js
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
HTML document, ASCII text, with very long lines (595)
Size
2.5 kB (2489 bytes)
Hash
5ba070af9d1b1a2782851940de30879f
d33390fc88bf68bd23eb182d7dbc77f5227081b2
a13a07b242c80b57e0cbbacc6cfedb538d4d331ff1f9dff370519ec57407e450

HTTP Headers

GET /js/bootstrap-notify.min.js HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:08 GMT
content-type: application/javascript
last-modified: Sat, 29 Oct 2022 13:48:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2489
date: Sat, 23 Sep 2023 03:24:08 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/js/melody.dev.js

195.3.220.45

200 OK

4.0 kB

URL GET HTTP/2
w24.cimawbas.tv/js/melody.dev.js
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
ASCII text
Size
4.0 kB (4004 bytes)
Hash
e238acf58475d3cdb95d614582134b24
b13c1da1f5254cb14f4f187bd5174ed0feb08a23
f3a4cbf3a8090b121a0d6d6dd8feda9f92831cdb5a070a7eb9ef58234c1f4eab

HTTP Headers

GET /js/melody.dev.js HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:08 GMT
content-type: application/javascript
last-modified: Sat, 29 Oct 2022 13:48:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4004
date: Sat, 23 Sep 2023 03:24:08 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/js/melody.dev.js

195.3.220.45

200 OK

2.1 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/js/melody.dev.js
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
ASCII text
Size
2.1 kB (2118 bytes)
Hash
16382a2673590ae717ee030d81e32fc5
8139236171b763ddac3c3d2b6ee4214b2469bcda
41af4a2fb3effba0f84cf21ea77ad4db2373086ee9bda4160dd7a4c14392c179

HTTP Headers

GET /templates/echo/js/melody.dev.js HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:08 GMT
content-type: application/javascript
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2118
date: Sat, 23 Sep 2023 03:24:08 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/js/jasny-bootstrap.min.js

195.3.220.45

200 OK

5.0 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/js/jasny-bootstrap.min.js
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
ASCII text, with very long lines (343)
Size
5.0 kB (4986 bytes)
Hash
f6b6e524d29d54ada53e4172b9d91cf7
427153c7a2d83d2ca800e397779f29b857801ad2
e7ad856551c720cb7c6a24a8bf4a9d6b6b24c24f07109cde96366338e53a4ff8

HTTP Headers

GET /templates/echo/js/jasny-bootstrap.min.js HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:09 GMT
content-type: application/javascript
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4986
date: Sat, 23 Sep 2023 03:24:09 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/js/jquery.plugins.b.js

195.3.220.45

200 OK

3.6 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/js/jquery.plugins.b.js
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
Unicode text, UTF-8 text, with very long lines (5838)
Size
3.6 kB (3586 bytes)
Hash
675182442ff7fc67b2f9748b6ac99a40
0b40b9937ae8018bf209ae7b10940f3b2a1411a1
9c6d06fd83d0e274e7b3f06d9f6f3320cbb5fdc9a6248f556ca39eef95708a57

HTTP Headers

GET /templates/echo/js/jquery.plugins.b.js HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:09 GMT
content-type: application/javascript
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3586
date: Sat, 23 Sep 2023 03:24:09 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/js/jquery.readmore.js

195.3.220.45

200 OK

1.1 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/js/jquery.readmore.js
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
HTML document, ASCII text, with very long lines (531)
Size
1.1 kB (1137 bytes)
Hash
c6530ce1b280d087dc3a0714f7bb29f7
c212826cbdd1d0c4d5290bbbed84727b56a9d8d1
7dbbe700df964fa01b2e5685082d1f0a6fc5c8a9b9fcb18432fb3f31ac29b208

HTTP Headers

GET /templates/echo/js/jquery.readmore.js HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:09 GMT
content-type: application/javascript
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1137
date: Sat, 23 Sep 2023 03:24:09 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/js/jquery.textcomplete.min.js

195.3.220.45

200 OK

5.1 kB

URL GET HTTP/2
w24.cimawbas.tv/js/jquery.textcomplete.min.js
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
Unicode text, UTF-8 text, with very long lines (16839)
Size
5.1 kB (5055 bytes)
Hash
871de5ca5aee55e67c1d3d8c69b49b1b
ae0e75de0282c8bf70e2fcac957c8dad975cfa11
90dfc6e75b52347f19b56f0a9d8016cf3b0bb11a3e22c749bd1f1976df43033a

HTTP Headers

GET /js/jquery.textcomplete.min.js HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:09 GMT
content-type: application/javascript
last-modified: Sat, 29 Oct 2022 13:48:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5055
date: Sat, 23 Sep 2023 03:24:09 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/js/melody.emoji.js

195.3.220.45

200 OK

37 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/js/melody.emoji.js
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
ASCII text, with very long lines (65459)
Size
37 kB (36712 bytes)
Hash
b4cef5b8bb179ac95f0751465ed4bd60
2192827ddcab4f5bc1251e854b148901680df150
d46ecb17798a5322490f29197345d74512d18fbf65a8e13f93b5d0d5adfcec9a

HTTP Headers

GET /templates/echo/js/melody.emoji.js HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:09 GMT
content-type: application/javascript
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 36712
date: Sat, 23 Sep 2023 03:24:09 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/img/ajax-loading.gif

195.3.220.45

200 OK

771 B

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/img/ajax-loading.gif
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
GIF image data, version 89a, 16 x 16\012- data
Size
771 B (771 bytes)
Hash
00ef871b291bc03a497d608a5bd8ec99
942d8fe092c1c473af19906751c2bee5322a9b55
81a161d5793ac2a33f02ddcd64fb0dc2d028616dac084e4f64e77f4898b0c4e4

HTTP Headers

GET /templates/echo/img/ajax-loading.gif HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:10 GMT
content-type: image/gif
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
accept-ranges: bytes
content-length: 771
date: Sat, 23 Sep 2023 03:24:10 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/js/jquery.cropit.js

195.3.220.45

200 OK

6.6 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/js/jquery.cropit.js
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
ASCII text, with very long lines (27266)
Size
6.6 kB (6593 bytes)
Hash
cd82e0edbcecf087be901e8e7ed0d035
2cedce9f87501152efa36eb1949d95c0ca4ff200
b8a0d09df5a79e5e9494b3061eeff55883870c66714879886348c5095faa7840

HTTP Headers

GET /templates/echo/js/jquery.cropit.js HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sun, 22 Sep 2024 03:24:10 GMT
content-type: application/javascript
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6593
date: Sat, 23 Sep 2023 03:24:10 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/uploads/articles/c888d161.jpg

195.3.220.45

200 OK

24 kB

URL GET HTTP/2
w24.cimawbas.tv/uploads/articles/c888d161.jpg
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "File source: http://ar.wikipedia.org/wiki/%D9%85%D9%84%D9%81:%D9%85%D9%84%D8%B5%D9%82_%D9%81%D9%8A%D9%84%D9%85_678.jpg", baseline, precision 8, 231x330, components 3\012- data
Size
24 kB (24003 bytes)
Hash
1cc72dc71cc08c5a945f40caa2f1dad1
0c383e06ee1bcf1318d2f76dd6a010de5196e44b
01f7c4b575836fbc5ccdb9d19b6f6ccbbaa84bfa7082db0f614a18e2fb9ff254

HTTP Headers

GET /uploads/articles/c888d161.jpg HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:10 GMT
content-type: image/jpeg
last-modified: Thu, 27 Oct 2022 14:35:36 GMT
accept-ranges: bytes
content-length: 24003
date: Sat, 23 Sep 2023 03:24:10 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/uploads/thumbs/c7aeecaab-1.jpg

195.3.220.45

200 OK

57 kB

URL GET HTTP/2
w24.cimawbas.tv/uploads/thumbs/c7aeecaab-1.jpg
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 720x400, components 3\012- data
Size
57 kB (57432 bytes)
Hash
6ac87b817ad849d9a689d533cfae0d48
96826ae1fa826862a0858a603e7513cf99f817b4
36570c1aa6ff55a5912e9c947a150ab8b836b0d53c47adaae9b0af6c4150927b

HTTP Headers

GET /uploads/thumbs/c7aeecaab-1.jpg HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:10 GMT
content-type: image/jpeg
last-modified: Thu, 27 Oct 2022 14:35:34 GMT
accept-ranges: bytes
content-length: 57432
date: Sat, 23 Sep 2023 03:24:10 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/css/fonts/Material-Icon-PHP-Melody.ttf?206bv4

195.3.220.45

200 OK

50 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/css/fonts/Material-Icon-PHP-Melody.ttf?206bv4
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Material-Icon-PHP-Melody\012- data
Size
50 kB (50503 bytes)
Hash
c66525c487d980ccda56d4668eccd47b
e9b984773ce1a225a851ac1769875b57e2e4a3f9
48ab864568194da965b383bf041943f4fbd6d13e5e7f60da9556c4667eb052f6

HTTP Headers

GET /templates/echo/css/fonts/Material-Icon-PHP-Melody.ttf?206bv4 HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/templates/echo/css/echo.css
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:24:10 GMT
content-type: font/ttf
last-modified: Sat, 29 Oct 2022 13:48:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 50503
date: Sat, 23 Sep 2023 03:24:10 GMT
X-Firefox-Spdy: h2

goomaphy.com/401/6219621

139.45.197.239

200 OK

36 kB

URL GET HTTP/2
goomaphy.com/401/6219621
IP
139.45.197.239:443
ASN
#9002 RETN Limited

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectgoomaphy.com
FingerprintC3:74:51:BB:A3:86:76:B1:BF:E9:5F:7B:8B:6D:B9:FA:A5:A9:BF:88
ValidityFri, 25 Aug 2023 05:21:05 GMT - Thu, 23 Nov 2023 05:21:04 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
36 kB (35779 bytes)
Hash
4d41c3c1a3120f301cb7e659e40344d7
d232145387aeeaa8876d05d3bb82cdf1f4e84e3e
dc749daa407f4fc9c7c4fff43532e690382f48fe8ea32e91bf82823a3818070b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /401/6219621 HTTP/1.1
Host: goomaphy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 03:24:06 GMT
content-type: application/javascript
x-trace-id: bfc5f745b888725412b6492a2001e5c1
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=5139285a872d4d6099f1537fd260047d; expires=Sun, 22 Sep 2024 03:24:06 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/img/apple-touch-icon.png

195.3.220.45

200 OK

6.1 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/img/apple-touch-icon.png
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
6.1 kB (6105 bytes)
Hash
fee24708d06c588c8e3178098dea1e36
7ffa7c609b5c4883e2813b2b4bf7b49cbcbbdcaa
e3f34f32d7b9617d171b64d63cbdee2beb37c0288fb63e8ee1972b2c7de3d8a7

HTTP Headers

GET /templates/echo/img/apple-touch-icon.png HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D; prefetchAd_6205538=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:11 GMT
content-type: image/png
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
accept-ranges: bytes
content-length: 6105
date: Sat, 23 Sep 2023 03:24:11 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/img/favicon-16x16.png

195.3.220.45

200 OK

948 B

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/img/favicon-16x16.png
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
948 B (948 bytes)
Hash
6eaedb10d98855d4d441499dae2e241b
933d3d4009b8f5a00188124d543f07528eb4584d
cebb5b5b81950b80ed8504627cd3733cf3f0e55cfd6ee2d5275069357ed11a7d

HTTP Headers

GET /templates/echo/img/favicon-16x16.png HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D; prefetchAd_6205538=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:11 GMT
content-type: image/png
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
accept-ranges: bytes
content-length: 948
date: Sat, 23 Sep 2023 03:24:11 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/uploads/thumbs/a86dec27f-1.jpg

195.3.220.45

200 OK

33 kB

URL GET HTTP/2
w24.cimawbas.tv/uploads/thumbs/a86dec27f-1.jpg
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 720x400, components 3\012- data
Size
33 kB (32647 bytes)
Hash
28b8b0e7d45f340a1b28ffbb08442767
95ff76f6b1dd95f0e4f73f6d21bfa6eb56b47f7c
513e5299f56f4a8495d8ccb9cba484c2737f9ebe3218e919d83546785e7e68ed

HTTP Headers

GET /uploads/thumbs/a86dec27f-1.jpg HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D; prefetchAd_6205538=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:11 GMT
content-type: image/jpeg
last-modified: Fri, 28 Oct 2022 03:53:05 GMT
accept-ranges: bytes
content-length: 32647
date: Sat, 23 Sep 2023 03:24:11 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/uploads/thumbs/d51193091-1.jpg

195.3.220.45

200 OK

27 kB

URL GET HTTP/2
w24.cimawbas.tv/uploads/thumbs/d51193091-1.jpg
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 720x360, components 3\012- data
Size
27 kB (26567 bytes)
Hash
4ef950ce934f96e19a551fcfb8c89d6f
356748cb36f770d1610bda99d63e7db4aa4a3986
a06c1acdd2af0a7735bba87fcb7939447027d1867dced9f0044fcf143d88e576

HTTP Headers

GET /uploads/thumbs/d51193091-1.jpg HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D; prefetchAd_6205538=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:11 GMT
content-type: image/jpeg
last-modified: Sat, 01 Oct 2022 12:23:21 GMT
accept-ranges: bytes
content-length: 26567
date: Sat, 23 Sep 2023 03:24:11 GMT
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-QV6G9CCZEB&l=dataLayer&cx=c

142.250.74.168

200 OK

81 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-QV6G9CCZEB&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT

File type
ASCII text, with very long lines (5788)
Size
81 kB (81198 bytes)
Hash
abf8779cb7520f87cd079d2e2f19f326
a5bbcad01eec5381cdce303ac82fa686dd6423ec
9034b476f0c288a1f465e8f9b773dc24f5e38a41e7f14827f1cd662c00e90610

HTTP Headers

GET /gtag/js?id=G-QV6G9CCZEB&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 23 Sep 2023 03:24:11 GMT
expires: Sat, 23 Sep 2023 03:24:11 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81198
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

w24.cimawbas.tv/uploads/thumbs/2692433e8-1.jpg

195.3.220.45

200 OK

17 kB

URL GET HTTP/2
w24.cimawbas.tv/uploads/thumbs/2692433e8-1.jpg
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x270, components 3\012- data
Size
17 kB (16731 bytes)
Hash
9043cf3e475eb3389a7be497f2e8dd29
0222c3762fed5c0cbf76f5e91dd3c150ad42cd55
e31a3af4380c2fe3f9a89172eb2857794bac6865d4d58cfd45d629155c25c2f8

HTTP Headers

GET /uploads/thumbs/2692433e8-1.jpg HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D; prefetchAd_6205538=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:12 GMT
content-type: image/jpeg
last-modified: Sat, 01 Oct 2022 12:21:45 GMT
accept-ranges: bytes
content-length: 16731
date: Sat, 23 Sep 2023 03:24:12 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/uploads/thumbs/85aa4a3f7-1.jpg

195.3.220.45

200 OK

24 kB

URL GET HTTP/2
w24.cimawbas.tv/uploads/thumbs/85aa4a3f7-1.jpg
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 480x354, components 3\012- data
Size
24 kB (24345 bytes)
Hash
08939be53cd45fef81c71b2643b56282
6882f4b68c0ee1f550fb9ec893945689725901dd
6610bd15cb446248619df2b7c14c3ac23bf4f489b3977682c10a57fb87680168

HTTP Headers

GET /uploads/thumbs/85aa4a3f7-1.jpg HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D; prefetchAd_6205538=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:12 GMT
content-type: image/jpeg
last-modified: Sat, 01 Oct 2022 12:22:50 GMT
accept-ranges: bytes
content-length: 24345
date: Sat, 23 Sep 2023 03:24:12 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/templates/echo/img/bg-desc-shadow.png

195.3.220.45

200 OK

1.7 kB

URL GET HTTP/2
w24.cimawbas.tv/templates/echo/img/bg-desc-shadow.png
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
PNG image data, 620 x 102, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1675 bytes)
Hash
99f48103f81ab7dd8cf2d271c39b221f
8dc3eac83745fc452a118b40a4dcd2da18d309e8
591db033570d36561c0d930385311327a7b8526371c2e3452b4a005a0c508580

HTTP Headers

GET /templates/echo/img/bg-desc-shadow.png HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/templates/echo/css/echo.css
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D; prefetchAd_6205538=true; _ga_QV6G9CCZEB=GS1.1.1695439451.1.0.1695439451.0.0.0; _ga=GA1.1.2109706492.1695439452; pm_elastic_player=normal
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2592000
expires: Mon, 23 Oct 2023 03:24:12 GMT
content-type: image/png
last-modified: Sat, 29 Oct 2022 13:48:48 GMT
accept-ranges: bytes
content-length: 1675
date: Sat, 23 Sep 2023 03:24:12 GMT
X-Firefox-Spdy: h2

goomaphy.com/impression/XYH6kUxRr65FpjtgpyQ0GWiDQLEWRqg5IgzMAgE1AHmc-gT9ApH661fE7AZJ5FHB4wyXcssyCva2DstlTO6k-w3V4naRhkXD1BkwpAjwvagurm4GImFSapWRN4vtra6lS-xTH4pajQyHD-Gp1dRNL_FEOGupLyI9zif6ho_Q91GKAlfUHsTKMeN5iRtT4pPoyhv2Ond_qPO8-e5AtS4B3YocG7Kw4Zr8NMNeia-a7SK2kEhxIBxWp6SIrW0FY3VBDbe62HbE507pq0VAr8g7QAUmZWsMtrkzikDfg98ZKMFHaK7SL-AvyV4Q5VzMfgZi-qVRi3vb3wk6_KiAItZRe0nnhbFlCw4GraTOMfGnbujW0nCeILqAPftfUi5czccmh2blSU8_N17Vij0j0OSO4Qo9EjmY7XIgxQ20CSXNN7dDQZCRRA40Yv-w0CKl2YHUJ44tuJ9VImYHedx174fI39XcXHr11QiH99dQYZO_Zam0A82_rJg0xL8QJ0wvrvDbFq4GV8ZrIzhadZ7R3GavR7x9twDs7VcMEX4o76j0nzd8x8MVTedaaQAdW5jEtPZ2yRMrGBVqSmavaRRQib5Ssw==?_z=6219621&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fw24.cimawbas.tv%2Fwatch.php%3Fvid%3Dc7aeecaab&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0

139.45.197.239

200 OK

43 B

URL GET HTTP/2
goomaphy.com/impression/XYH6kUxRr65FpjtgpyQ0GWiDQLEWRqg5IgzMAgE1AHmc-gT9ApH661fE7AZJ5FHB4wyXcssyCva2DstlTO6k-w3V4naRhkXD1BkwpAjwvagurm4GImFSapWRN4vtra6lS-xTH4pajQyHD-Gp1dRNL_FEOGupLyI9zif6ho_Q91GKAlfUHsTKMeN5iRtT4pPoyhv2Ond_qPO8-e5AtS4B3YocG7Kw4Zr8NMNeia-a7SK2kEhxIBxWp6SIrW0FY3VBDbe62HbE507pq0VAr8g7QAUmZWsMtrkzikDfg98ZKMFHaK7SL-AvyV4Q5VzMfgZi-qVRi3vb3wk6_KiAItZRe0nnhbFlCw4GraTOMfGnbujW0nCeILqAPftfUi5czccmh2blSU8_N17Vij0j0OSO4Qo9EjmY7XIgxQ20CSXNN7dDQZCRRA40Yv-w0CKl2YHUJ44tuJ9VImYHedx174fI39XcXHr11QiH99dQYZO_Zam0A82_rJg0xL8QJ0wvrvDbFq4GV8ZrIzhadZ7R3GavR7x9twDs7VcMEX4o76j0nzd8x8MVTedaaQAdW5jEtPZ2yRMrGBVqSmavaRRQib5Ssw==?_z=6219621&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fw24.cimawbas.tv%2Fwatch.php%3Fvid%3Dc7aeecaab&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
IP
139.45.197.239:443
ASN
#9002 RETN Limited

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectgoomaphy.com
FingerprintC3:74:51:BB:A3:86:76:B1:BF:E9:5F:7B:8B:6D:B9:FA:A5:A9:BF:88
ValidityFri, 25 Aug 2023 05:21:05 GMT - Thu, 23 Nov 2023 05:21:04 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impression/XYH6kUxRr65FpjtgpyQ0GWiDQLEWRqg5IgzMAgE1AHmc-gT9ApH661fE7AZJ5FHB4wyXcssyCva2DstlTO6k-w3V4naRhkXD1BkwpAjwvagurm4GImFSapWRN4vtra6lS-xTH4pajQyHD-Gp1dRNL_FEOGupLyI9zif6ho_Q91GKAlfUHsTKMeN5iRtT4pPoyhv2Ond_qPO8-e5AtS4B3YocG7Kw4Zr8NMNeia-a7SK2kEhxIBxWp6SIrW0FY3VBDbe62HbE507pq0VAr8g7QAUmZWsMtrkzikDfg98ZKMFHaK7SL-AvyV4Q5VzMfgZi-qVRi3vb3wk6_KiAItZRe0nnhbFlCw4GraTOMfGnbujW0nCeILqAPftfUi5czccmh2blSU8_N17Vij0j0OSO4Qo9EjmY7XIgxQ20CSXNN7dDQZCRRA40Yv-w0CKl2YHUJ44tuJ9VImYHedx174fI39XcXHr11QiH99dQYZO_Zam0A82_rJg0xL8QJ0wvrvDbFq4GV8ZrIzhadZ7R3GavR7x9twDs7VcMEX4o76j0nzd8x8MVTedaaQAdW5jEtPZ2yRMrGBVqSmavaRRQib5Ssw==?_z=6219621&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fw24.cimawbas.tv%2Fwatch.php%3Fvid%3Dc7aeecaab&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0 HTTP/1.1
Host: goomaphy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/
Cookie: OAID=48fe692cbfcb48539d2da4b5a9081392
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 03:24:12 GMT
content-type: image/gif
content-length: 43
x-trace-id: 21cef23700e43ab4326f8b701bc1ec68
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

offerimage.com/www/images/c203639f459b6e675afc744dd5393fc6.jpeg

104.22.33.172

200 OK

11 kB

URL GET HTTP/2
offerimage.com/www/images/c203639f459b6e675afc744dd5393fc6.jpeg
IP
104.22.33.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Size
11 kB (10857 bytes)
Hash
c203639f459b6e675afc744dd5393fc6
c83a0142c1a7f6a07c2dd360243197a27f560932
64b4e386658d3f5764261f576a4673eb506fcad5e38e69ef085723f8dab72263

HTTP Headers

GET /www/images/c203639f459b6e675afc744dd5393fc6.jpeg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 23 Sep 2023 03:24:12 GMT
content-type: image/jpeg
content-length: 10857
cache-control: max-age=86400
cf-bgj: h2pri
etag: "6388849a-2a69"
expires: Sat, 23 Sep 2023 08:44:02 GMT
last-modified: Thu, 01 Dec 2022 10:40:26 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 67210
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 80afac63bbe309b0-ARN
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700

142.250.74.106

200 OK

17 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT

File type
gzip compressed data, max compression\012- data
Size
17 kB (16655 bytes)
Hash
fcc7ee5678541adea03770b8cfafd146
e5d4c9d76cabeef9e8faa14ff0ed07bd097396fc
1474e26a5116379d3fa3f65cec9f195f0d826c24891a55a15f39c92dae12405d

HTTP Headers

GET /css2?family=Roboto:wght@100;300;400;500;700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 23 Sep 2023 03:24:12 GMT
date: Sat, 23 Sep 2023 03:24:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://w24.cimawbas.tv
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 04:50:55 GMT
expires: Fri, 20 Sep 2024 04:50:55 GMT
cache-control: public, max-age=31536000
age: 167597
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

w24.cimawbas.tv/watch.php?vid=c7aeecaab

195.3.220.45

200 OK

172 kB

URL User Request GET HTTP/2
w24.cimawbas.tv/watch.php?vid=c7aeecaab
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type

Size
172 kB (171831 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.php?vid=c7aeecaab HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=utf-8
set-cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; path=/; secure
watched_video_list=MTg1NzU%3D; expires=Sun, 24-Sep-2023 03:24:05 GMT; Max-Age=86400; path=/; secure
content-encoding: br
vary: Accept-Encoding
date: Sat, 23 Sep 2023 03:24:05 GMT
X-Firefox-Spdy: h2

netdna.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js

104.18.11.207

200 OK

32 kB

URL GET HTTP/2
netdna.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (31650)
Size
32 kB (31819 bytes)
Hash
abda843684d022f3bc22bc83927fe05f
26908395e7a9a4eab607d80aa50a81d65f3017cb
24cc29533598f962823c4229bc280487646a27a42a95257c31de1b9b18f3710f

HTTP Headers

GET /bootstrap/3.2.0/js/bootstrap.min.js HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 23 Sep 2023 03:24:06 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:03:57 GMT
cdn-cachedat: 11/03/2021 03:23:08
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 0b7e42ce5c8ad95295886cdcce8be1f4
cdn-cache: HIT
cf-cache-status: HIT
age: 21335842
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 80afac39dab556b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

w24.cimawbas.tv/include/securimage_show.php?sid=ab6b737437a444f7b6a7ca774bd626ff

195.3.220.45

200 OK

2.8 kB

URL GET HTTP/2
w24.cimawbas.tv/include/securimage_show.php?sid=ab6b737437a444f7b6a7ca774bd626ff
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
PNG image data, 158 x 35, 8-bit/color RGB, non-interlaced\012- data
Size
2.8 kB (2762 bytes)
Hash
ff419f1f53dcc4595afd4a72f21a5c5a
12f6a7c420fdfbc3d6b967d7961300167cf3ab19
864657abb207d3b066fd3b2cec5e189bda8063f60d71be1fcad705396a9f46dd

HTTP Headers

GET /include/securimage_show.php?sid=ab6b737437a444f7b6a7ca774bd626ff HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
expires: Mon, 26 Jul 1997 05:00:00 GMT
last-modified: Sat, 23 Sep 2023 03:24:05GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0,pre-check=0
pragma: no-cache
content-type: image/png
date: Sat, 23 Sep 2023 03:24:05 GMT
X-Firefox-Spdy: h2

goomaphy.com/500/6219621?excludes=&oaid=48fe692cbfcb48539d2da4b5a9081392&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fw24.cimawbas.tv%2Fwatch.php%3Fvid%3Dc7aeecaab&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0

139.45.197.239

200 OK

0 B

URL OPTIONS HTTP/2
goomaphy.com/500/6219621?excludes=&oaid=48fe692cbfcb48539d2da4b5a9081392&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fw24.cimawbas.tv%2Fwatch.php%3Fvid%3Dc7aeecaab&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
IP
139.45.197.239:443
ASN
#9002 RETN Limited

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectgoomaphy.com
FingerprintC3:74:51:BB:A3:86:76:B1:BF:E9:5F:7B:8B:6D:B9:FA:A5:A9:BF:88
ValidityFri, 25 Aug 2023 05:21:05 GMT - Thu, 23 Nov 2023 05:21:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /500/6219621?excludes=&oaid=48fe692cbfcb48539d2da4b5a9081392&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fw24.cimawbas.tv%2Fwatch.php%3Fvid%3Dc7aeecaab&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0 HTTP/1.1
Host: goomaphy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://w24.cimawbas.tv/
Origin: https://w24.cimawbas.tv
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 03:24:07 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://w24.cimawbas.tv
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2

139.45.197.239

200 OK

1.2 kB

URL GET HTTP/2
goomaphy.com/500/6219621?excludes=&oaid=48fe692cbfcb48539d2da4b5a9081392&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fw24.cimawbas.tv%2Fwatch.php%3Fvid%3Dc7aeecaab&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
IP
139.45.197.239:443
ASN
#9002 RETN Limited

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectgoomaphy.com
FingerprintC3:74:51:BB:A3:86:76:B1:BF:E9:5F:7B:8B:6D:B9:FA:A5:A9:BF:88
ValidityFri, 25 Aug 2023 05:21:05 GMT - Thu, 23 Nov 2023 05:21:04 GMT

File type
troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (1249), with no line terminators
Size
1.2 kB (1226 bytes)
Hash
51fb344c11feaac808ac2f9ee5298a37
cf862eb54e0ac27cb3ba68fb4782afec2bed98b7
2434a4e690bcdf7dc41d794d8fc1a6b691bbd490296d870c71d80086ee5cfca1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /500/6219621?excludes=&oaid=48fe692cbfcb48539d2da4b5a9081392&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fw24.cimawbas.tv%2Fwatch.php%3Fvid%3Dc7aeecaab&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0 HTTP/1.1
Host: goomaphy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://w24.cimawbas.tv
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/
Cookie: OAID=5139285a872d4d6099f1537fd260047d
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 03:24:07 GMT
content-type: application/javascript
x-trace-id: 1561e56868d1e8d6b8b58270e413dd32
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://w24.cimawbas.tv
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=48fe692cbfcb48539d2da4b5a9081392; expires=Sun, 22 Sep 2024 03:24:07 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

w24.cimawbas.tv/ajax.php?p=stats&do=show&aid=1&at=1

195.3.220.45

200 OK

42 B

URL GET HTTP/2
w24.cimawbas.tv/ajax.php?p=stats&do=show&aid=1&at=1
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
9b5e8704c89f018cff215cb5ed3e0128
2a9fa3661b326c503e492b89cdd9130d12ead03d
b2c78c910f5ea29e3a9d223dabc203c055c8708b1fe7d83788b490638126db4d

HTTP Headers

GET /ajax.php?p=stats&do=show&aid=1&at=1 HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
pragma: no-cache
content-type: image/gif
expires: Wed, 5 Feb 1986 06:06:06 GMT
cache-control: must-revalidate
date: Sat, 23 Sep 2023 03:24:05 GMT
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:400,300,500,700|Noticia+Text:400,400italic,700

142.250.74.106

200 OK

12 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:400,300,500,700|Noticia+Text:400,400italic,700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT

File type
ASCII text
Size
12 kB (11978 bytes)
Hash
06596cfa2dee431129c328e050b9fb2a
1a991c51ab2b2da5647e83f481e7d18d60a45b3b
bf6fe0ffee1d57731da4d1cf3cfe88e1effa9b36c51a85018a91ed43b91c3de6

HTTP Headers

GET /css?family=Roboto:400,300,500,700|Noticia+Text:400,400italic,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 23 Sep 2023 03:24:06 GMT
date: Sat, 23 Sep 2023 03:24:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://w24.cimawbas.tv
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 10:05:24 GMT
expires: Sat, 21 Sep 2024 10:05:24 GMT
cache-control: public, max-age=31536000
age: 62328
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

w24.cimawbas.tv/ajax.php?p=stats&do=show&aid=3&at=1

195.3.220.45

200 OK

42 B

URL GET HTTP/2
w24.cimawbas.tv/ajax.php?p=stats&do=show&aid=3&at=1
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
9b5e8704c89f018cff215cb5ed3e0128
2a9fa3661b326c503e492b89cdd9130d12ead03d
b2c78c910f5ea29e3a9d223dabc203c055c8708b1fe7d83788b490638126db4d

HTTP Headers

GET /ajax.php?p=stats&do=show&aid=3&at=1 HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
pragma: no-cache
content-type: image/gif
expires: Wed, 5 Feb 1986 06:06:06 GMT
cache-control: must-revalidate
date: Sat, 23 Sep 2023 03:24:05 GMT
X-Firefox-Spdy: h2

w24.cimawbas.tv/ajax.php?p=stats&do=show&aid=2&at=1

195.3.220.45

200 OK

42 B

URL GET HTTP/2
w24.cimawbas.tv/ajax.php?p=stats&do=show&aid=2&at=1
IP
195.3.220.45:443
ASN
#201814 Meverywhere sp. z o.o.

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectwww.y.cimawbas.tv
Fingerprint71:95:E4:1C:29:DD:45:94:B3:C0:A9:82:5B:AF:FD:F7:F2:4E:7A:5C
ValidityThu, 21 Sep 2023 22:17:32 GMT - Wed, 20 Dec 2023 22:17:31 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
9b5e8704c89f018cff215cb5ed3e0128
2a9fa3661b326c503e492b89cdd9130d12ead03d
b2c78c910f5ea29e3a9d223dabc203c055c8708b1fe7d83788b490638126db4d

HTTP Headers

GET /ajax.php?p=stats&do=show&aid=2&at=1 HTTP/1.1
Host: w24.cimawbas.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Cookie: PHPSESSID=f9d98dc16c992d924c260f0ed08ccad1; watched_video_list=MTg1NzU%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
pragma: no-cache
content-type: image/gif
expires: Wed, 5 Feb 1986 06:06:06 GMT
cache-control: must-revalidate
date: Sat, 23 Sep 2023 03:24:05 GMT
X-Firefox-Spdy: h2

augailou.com/?rb=_njq5_IXRCbmaF3ecBNn2nMsD3RsMcWLHfqaKFuf2thGPj568CBitCdG4NOnq4JQ0lZ01ai6pt2FLev3Q8qgHMVKrVI29cec3IBP3SQoXG4dIKVwN_f9q13S2cmtvyv7VYGh5wkRmoUuuJ7PmGaQJnNuFFFJN8Cq5amDFUaDU_Si7vRikgn7hlC4dK7YTBVgHutAfxsXZ5Io9haQb_nVqzSFc8AtSulG&request_ab2=0&zoneid=6205538&js_build=iclick-v1.601.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=0&pl=https%3A%2F%2Fw24.cimawbas.tv%2Fwatch.php%3Fvid%3Dc7aeecaab&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.601.0&bs=7a1a095f-ae8e-41b7-8385-4dc56da207f5&userId=48fe692cbfcb48539d2da4b5a9081392&m=link

139.45.197.243

200 OK

1.7 kB

URL GET HTTP/2
augailou.com/?rb=_njq5_IXRCbmaF3ecBNn2nMsD3RsMcWLHfqaKFuf2thGPj568CBitCdG4NOnq4JQ0lZ01ai6pt2FLev3Q8qgHMVKrVI29cec3IBP3SQoXG4dIKVwN_f9q13S2cmtvyv7VYGh5wkRmoUuuJ7PmGaQJnNuFFFJN8Cq5amDFUaDU_Si7vRikgn7hlC4dK7YTBVgHutAfxsXZ5Io9haQb_nVqzSFc8AtSulG&request_ab2=0&zoneid=6205538&js_build=iclick-v1.601.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=0&pl=https%3A%2F%2Fw24.cimawbas.tv%2Fwatch.php%3Fvid%3Dc7aeecaab&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.601.0&bs=7a1a095f-ae8e-41b7-8385-4dc56da207f5&userId=48fe692cbfcb48539d2da4b5a9081392&m=link
IP
139.45.197.243:443
ASN
#9002 RETN Limited

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerLet's Encrypt
Subjectaugailou.com
FingerprintB9:7E:0E:C7:F9:64:DD:50:AA:09:D2:00:44:48:A2:F6:11:81:7B:11
ValidityWed, 09 Aug 2023 05:27:59 GMT - Tue, 07 Nov 2023 05:27:58 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1678), with no line terminators
Size
1.7 kB (1658 bytes)
Hash
3498dfa785f85f08412148b4f9a5de75
ce015f95824824b557899bfbedabac14c294a3f8
d4df810fc4669808cb7d226889103ad276d52eabf88a7ba09e213c2a5a48679a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rb=_njq5_IXRCbmaF3ecBNn2nMsD3RsMcWLHfqaKFuf2thGPj568CBitCdG4NOnq4JQ0lZ01ai6pt2FLev3Q8qgHMVKrVI29cec3IBP3SQoXG4dIKVwN_f9q13S2cmtvyv7VYGh5wkRmoUuuJ7PmGaQJnNuFFFJN8Cq5amDFUaDU_Si7vRikgn7hlC4dK7YTBVgHutAfxsXZ5Io9haQb_nVqzSFc8AtSulG&request_ab2=0&zoneid=6205538&js_build=iclick-v1.601.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=0&pl=https%3A%2F%2Fw24.cimawbas.tv%2Fwatch.php%3Fvid%3Dc7aeecaab&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.601.0&bs=7a1a095f-ae8e-41b7-8385-4dc56da207f5&userId=48fe692cbfcb48539d2da4b5a9081392&m=link HTTP/1.1
Host: augailou.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://w24.cimawbas.tv/
Origin: https://w24.cimawbas.tv
DNT: 1
Connection: keep-alive
Cookie: OAID=48fe692cbfcb48539d2da4b5a9081392; oaidts=1695439446
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 03:24:07 GMT
content-type: application/json
x-trace-id: 68f9772dea35d1a6ff3cbc1818f53326
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://w24.cimawbas.tv
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=48fe692cbfcb48539d2da4b5a9081392; expires=Sun, 22 Sep 2024 03:24:07 GMT; path=/; secure; SameSite=None
oaidts=1695439447; expires=Sun, 22 Sep 2024 03:24:07 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sat, 30 Sep 2023 03:24:07 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

netdna.bootstrapcdn.com/font-awesome/4.4.0/css/font-awesome.min.css

104.18.11.207

200 OK

27 kB

URL GET HTTP/2
netdna.bootstrapcdn.com/font-awesome/4.4.0/css/font-awesome.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://w24.cimawbas.tv/watch.php?vid=c7aeecaab
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (26548)
Size
27 kB (26711 bytes)
Hash
0831cba6a670e405168b84aa20798347
05ea25bc9b3ac48993e1fee322d3bc94b49a6e22
936ffccdc35bc55221e669d0e76034af76ba8c080c1b1149144dbbd3b5311829

HTTP Headers

GET /font-awesome/4.4.0/css/font-awesome.min.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w24.cimawbas.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 23 Sep 2023 03:24:06 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 12/13/2021 21:25:06
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 632
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: ce46644f14621522f2593a9762829805
cdn-cache: HIT
cf-cache-status: HIT
age: 1954735
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 80afac398a9d56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (40)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash