Report - mycimaaa.click/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/

Report Overview

Submitted URL
mycimaaa.click/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/
IP
104.21.82.184
ASN
#13335 CLOUDFLARENET
Submitted
2022-12-07 13:30:05
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
18

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
b.m2track.co	694165	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.4 kB	11 kB	44.198.23.116
unpkg.com	11693	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	175 kB	104.16.122.175
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	601 B	707 B	64.233.164.157
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.162.50.16
my.rtmark.net	9054	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	418 B	741 B	139.45.195.8
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	367 B	31 kB	69.16.175.10
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	513 B	694 B	142.250.74.163
cdn.jsdelivr.net	439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	851 B	3.8 kB	151.101.193.229
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	1.9 kB	104.18.20.226
fleraprt.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	482 B	480 B	139.45.195.254
oaphoace.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	356 B	681 B	139.45.197.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.0 kB	93.184.220.29
mycimaa.tube	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.2 kB	69 kB	172.67.71.57
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	382 B	44 kB	142.250.74.168
vjs.zencdn.net	4968	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	454 kB	151.101.66.217
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	51 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	9.8 kB	95.101.11.115
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
lw.sciniphruffin.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	386 B	1.4 kB	23.109.82.72
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	964 B	172.64.155.188
whoursie.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	2.1 kB	139.45.197.237
mycimaaa.click	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	483 B	912 B	172.67.161.115
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	369 B	21 kB	142.250.74.110
upbam.org	252440	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	505 B	801 B	172.67.156.2
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	7.7 kB	216.58.211.3
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.9 kB	52 kB	216.58.207.227
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	700 B	2.0 kB	54.230.245.39
upgulpinon.com	83187	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	358 B	593 B	139.45.197.242
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	676 B	1.5 kB	23.33.119.27
site-assets.fontawesome.com	299062	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	1.2 MB	104.18.22.52
nanouwho.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	13 kB	139.45.197.242
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	514 B	694 B	216.58.207.228
tzegilo.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	354 B	13 kB	172.67.194.45

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-12-07	medium	mycimaaa.click	Sinkholed
2022-12-07	medium	nanouwho.com	Sinkholed
2022-12-07	medium	nanouwho.com	Sinkholed
2022-12-07	medium	fleraprt.com	Sinkholed
2022-12-07	medium	nanouwho.com	Sinkholed
2022-12-07	medium	nanouwho.com	Sinkholed
2022-12-07	medium	whoursie.com	Sinkholed
2022-12-07	medium	oaphoace.net	Sinkholed
2022-12-07	medium	whoursie.com	Sinkholed

JavaScript (27)

	URL	Size	First Seen	Last Seen
	b.m2track.co/adb/za/160.js?v=1&v=1.22&t=6390955212b020.47504628&&referer=https%3A%2F%2Fmycimaa.tube%2Fwatch%2F%25D9%2585%25D8%25B4%25D8%25A7%25D9%2587%25D8%25AF%25D8%25A9-%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-house-md-%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-5-%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-7%2F&ct=1670419794073	7.4 kB	2023-03-08	2023-03-08
Pretty URL b.m2track.co/adb/za/160.js?v=1&v=1.22&t=6390955212b020.47504628&&referer=https%3A%2F%2Fmycimaa.tube%2Fwatch%2F%25D9%2585%25D8%25B4%25D8%25A7%25D9%2587%25D8%25AF%25D8%25A9-%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-house-md-%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-5-%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-7%2F&ct=1670419794073 IP 44.198.23.116 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:53:59 Last Seen2023-03-08 20:53:59 Times Seen1 Hash 2831b59ead2261b007ced7447b4a66d0 d0aa8110f42d3e6b959d8b2209661add6c9fb4d2 824302b07ff777634c2aae0448639444ff3b4ad953a9b728e9698a75e18ae3dc Loading...

	b.m2track.co/adb/zi/NTg3NTY4NTctMzI4Mjk4Ni0yMDIyLTEyLTA3LTEzfDkxLjkwLjQyLjE1NHx8NjM5MDk1NTI3OTg2Mw==.js?data=aVVQS1V6VkJ3bDRrZ0h2ZUx4WEJ5RUlsdTRNYW9ZNU1HUDlQYXZUUmw5Z0NoQVhYYy9odEUwZCt0SUJ4VHhwekJIYmtVRG5MaXlKQ21hOU9uSC93YytqQVorc3oxNU9OTG5UTWUvcDR4R1k9	14 B	2023-03-07	2024-02-11
Pretty URL b.m2track.co/adb/zi/NTg3NTY4NTctMzI4Mjk4Ni0yMDIyLTEyLTA3LTEzfDkxLjkwLjQyLjE1NHx8NjM5MDk1NTI3OTg2Mw==.js?data=aVVQS1V6VkJ3bDRrZ0h2ZUx4WEJ5RUlsdTRNYW9ZNU1HUDlQYXZUUmw5Z0NoQVhYYy9odEUwZCt0SUJ4VHhwekJIYmtVRG5MaXlKQ21hOU9uSC93YytqQVorc3oxNU9OTG5UTWUvcDR4R1k9 IP 44.198.23.116 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:18 Last Seen2024-02-11 23:55:57 Times Seen119 Hash b22157c4043910c5d040a4580744f1e4 72cbcc3bd16eb060bfee9c3b40a8defb212f4e1a 717ad9548beeb68612e9d6a0c0638f0c489429bf813e81b29af3181de0455c2e Loading...

	cdn.jsdelivr.net/npm/videojs-qualityselector@0.0.4/dist/videojs-qualityselector.min.js	4.0 kB	2023-03-07	2023-12-05
Pretty URL cdn.jsdelivr.net/npm/videojs-qualityselector@0.0.4/dist/videojs-qualityselector.min.js IP 151.101.193.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:18 Last Seen2023-12-05 20:51:36 Times Seen13 Hash a9f8137f9a0d82a2a850b7fff58a03c6 a919bafdd61a1481a7cfa87eafbc62a9aa242b7e dc4c18f9225a2ac4f781c33e8f3b6a3804b1efb972a9fe4dc1396cc1eec0a1ad Loading...

	b.m2track.co/adb/zone/161.js?v=1.22	1.8 kB	2023-03-08	2023-05-23
Pretty URL b.m2track.co/adb/zone/161.js?v=1.22 IP 44.198.23.116 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:53:59 Last Seen2023-05-23 23:54:02 Times Seen9 Hash 9b85dc9c1f644a8842ffc75c3b5e8ca2 2b55df9370df5696572eecd9eca51a16495c17b1 888b7958c50d49538fd9a5f7caccef10ded1e73a10f9d526e521f02acd670f09 Loading...

	oaphoace.net/401/5097541	84 kB	2023-03-08	2023-03-08
Pretty URL oaphoace.net/401/5097541 IP 139.45.197.239 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:53:59 Last Seen2023-03-08 20:53:59 Times Seen1 Hash 49cc21f857e70ddc8dc9af9f003d3d96 7dc1cf93167bfda00232169378d2d54626fa1c5e c83fa386a82b09a8b19f599381d31dd01c4d606d4a2143359b3f0fa35f111e82 Loading...

	mycimaa.tube/run/113d3fe9ff884dfb1288eaf720099e09d3b989c433846e6c786695ab2f7c6ef7a52caed7873d0342e2e8b2d93ad74f107a5529e68a61c28f50aaaf4f5f26283fe54b42c9712f8c036c8dbfabfb4c558b4f6f01e56623e2b4c1fa0bf440c927ddb91792/?Key=pVXv6Kjn2grmtEeh9y_9xw&Expires=1670430586	5.7 kB	2023-03-08	2023-03-08
Pretty URL mycimaa.tube/run/113d3fe9ff884dfb1288eaf720099e09d3b989c433846e6c786695ab2f7c6ef7a52caed7873d0342e2e8b2d93ad74f107a5529e68a61c28f50aaaf4f5f26283fe54b42c9712f8c036c8dbfabfb4c558b4f6f01e56623e2b4c1fa0bf440c927ddb91792/?Key=pVXv6Kjn2grmtEeh9y_9xw&Expires=1670430586 IP 172.67.71.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:53:59 Last Seen2023-03-08 20:53:59 Times Seen1 Hash 40f8ffcc876de99d3d9dbe78dffe60ae 0df9b6e6cedf5e8f1b68b864ce73929e18411be2 b20442b8d5d58fafaeaa93a477d8db820b8bb37cae0acf3b3a6f7a475755ee89 Loading...

	mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/	2.5 kB	2023-03-08	2023-03-09
Pretty URL mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/ IP 172.67.71.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:53:59 Last Seen2023-03-09 14:38:16 Times Seen1 Hash 3f0a6d8f61e6884b2047a3a7b7493178 23a18a1afc94475653d02b58c0755598bd125c4b 26ab05afd5cee1575d890fe04f5b35e8f7906229139ddd09ef808b0d6b2cd6ac Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-24
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-24 18:41:20 Times Seen1526 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	tzegilo.com/stattag.js	13 kB	2023-03-08	2023-03-12
Pretty URL tzegilo.com/stattag.js IP 172.67.194.45 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:59 Last Seen2023-03-12 10:48:49 Times Seen1 Hash d0de06f954f7dedba242231b0ec4052d 188d75bb9077832384f889dd15584845790bc146 efae63871ebdeb69e7d64c6782924f72584f962d540b8c55237cba93c026af16 Loading...

	mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/	1.5 kB	2023-03-08	2023-03-09
Pretty URL mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/ IP 172.67.71.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:53:59 Last Seen2023-03-09 14:38:16 Times Seen1 Hash 203669cbade87ad81e94da570afae0f8 2847ca84cbbc48c8e72d516c52255def62bf5802 0205a7086f2f187c43831608e868922b54652a503a946ca08058352fe8b69070 Loading...

	b.m2track.co/adb/zone/160.js?v=1.22	1.8 kB	2023-03-08	2023-05-23
Pretty URL b.m2track.co/adb/zone/160.js?v=1.22 IP 44.198.23.116 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:53:59 Last Seen2023-05-23 23:54:02 Times Seen9 Hash ad7e4c09fadfdfd0b12856f81047d864 f6c10041f2c8a1c540618ada8f0a619b3a10131a c675e05df663ad6a9e2a895b6d26f61544926befeee1b1b6986bc32f6382df60 Loading...

	code.jquery.com/jquery-3.5.1.min.js	90 kB	2023-03-07	2024-04-24
Pretty URL code.jquery.com/jquery-3.5.1.min.js IP 69.16.175.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-24 19:57:35 Times Seen139014 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	vjs.zencdn.net/7.10.2/video.js	1.9 MB	2023-03-08	2023-05-27
Pretty URL vjs.zencdn.net/7.10.2/video.js IP 151.101.66.217 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:53:59 Last Seen2023-05-27 13:08:38 Times Seen11 Hash 0a14314aa8dde52542a3ef298e9601b8 c13d2a141ae49cd2e725853bcf4d2a856309c0c9 ae5d16b750130e219c2c507a86631cf365e3cad489a760cb56606bc947bff05a Loading...

	unpkg.com/videojs-contrib-hls/dist/videojs-contrib-hls.js	717 kB	2023-03-07	2024-04-10
Pretty URL unpkg.com/videojs-contrib-hls/dist/videojs-contrib-hls.js IP 104.16.122.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:29 Last Seen2024-04-10 07:54:05 Times Seen79 Hash f4cfc74056724c22c4841e1d085e51e2 c9d7412fe37b091832074ee9c5656849e87ef41c aa938226e6eddc96da5a52d7a9aba85c6b4eed0e56ad1ca66fd8f5ee8bb0acd1 Loading...

	mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/	160 B	2023-03-07	2023-03-12
Pretty URL mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/ IP 172.67.71.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:18 Last Seen2023-03-12 09:39:22 Times Seen1 Hash e6f71d354e31d0e6f58467bc4a5047b7 bf0c905cfbf56fd41c4938f9189476762cd399a7 e3f9af516b9245ab5f65c1594e69b5f957c81e69d7f7a4ec15d17e0ac0e3a53a Loading...

	mycimaa.tube/wp-content/themes/Mycima2021/components/packs/%23footer/js/jquery-3.4.1.min.js?ver=6.0.2	88 kB	2023-03-07	2024-04-24
Pretty URL mycimaa.tube/wp-content/themes/Mycima2021/components/packs/%23footer/js/jquery-3.4.1.min.js?ver=6.0.2 IP 172.67.71.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:29 Last Seen2024-04-24 20:00:34 Times Seen397 Hash b4999cbb6a73a9b312f635cff75e5a53 c7b683fc72d06eac129185c3e60362f5c1adc2a8 736173659d4431b8a53a08aacc1bec3ad3a2f44df5209c09d76c265374698302 Loading...

	lw.sciniphruffin.com/r637e582fcc8a7637e582fcc8a8/55767	5 B	2023-03-07	2024-04-24
Pretty URL lw.sciniphruffin.com/r637e582fcc8a7637e582fcc8a8/55767 IP 23.109.82.72 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:39 Last Seen2024-04-24 18:42:43 Times Seen6319 Hash f7a2939527fd9e68723da600e96d76bd a9e717b6364d2895ee0a716050db32ca0ef1bb42 d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a Loading...

	b.m2track.co/adb/za/161.js?v=1&v=1.22&t=63909552133334.64381056&&referer=https%3A%2F%2Fmycimaa.tube%2Fwatch%2F%25D9%2585%25D8%25B4%25D8%25A7%25D9%2587%25D8%25AF%25D8%25A9-%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-house-md-%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-5-%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-7%2F&ct=1670419794075	7.4 kB	2023-03-08	2023-03-08
Pretty URL b.m2track.co/adb/za/161.js?v=1&v=1.22&t=63909552133334.64381056&&referer=https%3A%2F%2Fmycimaa.tube%2Fwatch%2F%25D9%2585%25D8%25B4%25D8%25A7%25D9%2587%25D8%25AF%25D8%25A9-%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-house-md-%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-5-%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-7%2F&ct=1670419794075 IP 44.198.23.116 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:53:59 Last Seen2023-03-08 20:53:59 Times Seen1 Hash ec5c2aab1006217d4b0e9bcd63002bf2 c1b18a7fc823c33f2763834a2af50aa9e804562b 8a3bf2e3cd1c7e53ff59004ae889d77683208ad515820156af8ffbbe08fcb272 Loading...

	nanouwho.com/1?z=4807448	17 kB	2023-03-08	2023-03-08
Pretty URL nanouwho.com/1?z=4807448 IP 139.45.197.242 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:53:59 Last Seen2023-03-08 20:53:59 Times Seen1 Hash 4fd1e0fde00a2856064b87bbe6e795ca 1a975bb591a885f8f34d212f1a77b56da2920fec 69c9b64091ae4bedf824b9e410d098455702638e5aadbfe212d5af223dd711e3 Loading...

	nanouwho.com/27/3994ff6595fb5bf65437d4c0fac557c7	378 kB	2023-03-08	2023-03-08
Pretty URL nanouwho.com/27/3994ff6595fb5bf65437d4c0fac557c7 IP 139.45.197.242 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:53:59 Last Seen2023-03-08 20:53:59 Times Seen1 Hash 2dfcadf2ce7fd884777221d0555a0cb5 b41cd8e7e3ab2affc50841ba8f9a86296026b852 50b66862994940e8c9c286d7f25ead266cce4e1afc854271defd4090afe7af6e Loading...

	mycimaa.tube/wp-content/themes/Mycima2021/components/packs/%23footer/js/owl.carousel.min.js?ver=6.0.2	95 kB	2023-03-07	2024-04-24
Pretty URL mycimaa.tube/wp-content/themes/Mycima2021/components/packs/%23footer/js/owl.carousel.min.js?ver=6.0.2 IP 172.67.71.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:18 Last Seen2024-04-24 11:06:00 Times Seen185 Hash fcdee094e98d38fe380e1b5aad9bf444 d0ea8bb98673c7daa2da3af292eeea39a4f7479a ab97310577a6474ae4b0bd9bb8ef5267698bb9fa61127cb358d4512676d90488 Loading...

	www.googletagmanager.com/gtag/js?id=UA-128370636-1	112 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=UA-128370636-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:53:59 Last Seen2023-03-08 20:53:59 Times Seen1 Hash 5f7d6f47e5e4a65d5f4dbe4da5e31007 9ddfb5ab10f78eb68b417820624f0f70e79f468a 717ff70aebc6bed0212c97efb448840ce69dbdca5be39ed969b0cb8959f75656 Loading...

	whoursie.com/5/4796941	64 kB	2023-03-08	2023-03-08
Pretty URL whoursie.com/5/4796941 IP 139.45.197.237 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:53:59 Last Seen2023-03-08 20:53:59 Times Seen1 Hash a20a27098d955de36918e2f906c10373 48ba5291ad974baa432ff6295fd8040008d375fd 3ec080163aa044391a8dc80ff9ccc77e9e036bc370e7f6e8c9d88b59e5cdcf52 Loading...

	unpkg.com/videojs-flash/dist/videojs-flash.js	39 kB	2023-03-07	2024-01-06
Pretty URL unpkg.com/videojs-flash/dist/videojs-flash.js IP 104.16.122.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:18 Last Seen2024-01-06 23:43:58 Times Seen51 Hash b671db9a73a06770313c1a05bcdc0b58 12280acce4192448e93e3b2ef9e1adf6c6eba94a 9162832cc3ed9507d8f869dd0d4fd0dacde05a078172d82a98b05e0aef1f1a34 Loading...

	mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/	749 B	2023-03-08	2023-03-13
Pretty URL mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/ IP 172.67.71.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:53:59 Last Seen2023-03-13 00:55:29 Times Seen1 Hash c7ccca35ff83e981c6623b412d41c954 e97d1ae128a7b9f4965da4f23d2e40401aebc135 d853de6e5daf5b7b5d9d6900db07e0a4eec608f72f43cacdbfe85594758e8cc8 Loading...

	mycimaa.tube/wp-content/themes/Mycima2021/components/packs/%23footer/js/setup.js?1344765082&ver=6.0.2	153 kB	2023-03-08	2023-03-13
Pretty URL mycimaa.tube/wp-content/themes/Mycima2021/components/packs/%23footer/js/setup.js?1344765082&ver=6.0.2 IP 172.67.71.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:53:59 Last Seen2023-03-13 11:03:46 Times Seen1 Hash ce5f95449cb64073e0754922aeb91928 6cdf91edd824c262129fa16ca9e08567b9ec7045 73ba5a5441b74adbb243182b17511594dccbb22326c1515c4ec874b58da19364 Loading...

	vjs.zencdn.net/ie8/1.1.2/videojs-ie8.min.js	27 kB	2023-03-07	2024-04-24
Pretty URL vjs.zencdn.net/ie8/1.1.2/videojs-ie8.min.js IP 151.101.66.217 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:11 Last Seen2024-04-24 15:05:56 Times Seen567 Hash 2ff9bb22f0b1789ac170247b0825488f f2b1471c6b72cef3df20d2b16fed14739c4831f1 3cea9fd4486e2820f34fdeb7970fd29c4fa531e79a285bf58aaab1ecdadfa99a Loading...

HTTP Transactions (100)

URL IP Response Size

mycimaaa.click/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/

172.67.161.115

301 Moved Permanently

162 B

URL HTTP/1.1
mycimaaa.click/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/
IP
172.67.161.115:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/ HTTP/1.1
Host: mycimaaa.click
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Wed, 07 Dec 2022 13:29:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6l0IqIM2J93f0VjN2XCcnWYJ2QxM99enRLiCL0%2BkkgQEKsEdE4kHcuLK6FoYZXYJC%2FYLVUUfZQlNr8HPxvxvr2spRlCCPxT%2BT53%2BfqfKoEVQTyugBfkt%2B70ncTc0b6ZwbA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775d9cdbefd9b524-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5ceaca9fd4ad000cb435820812fc69c8
8168397aaf7b572c89a9c83f46c0b65e4ac509f2
9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2749
Expires: Wed, 07 Dec 2022 14:15:42 GMT
Date: Wed, 07 Dec 2022 13:29:53 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
aaee4cb7873d6f1effbadf269482e100
bd55730ac8414fb6861b03c2a97319b4063e2cb9
d724fd9c5704fb8948d575357cad0032e89cf275d57ddb86f013fa97e033487c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4069
Cache-Control: max-age=166151
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 13:29:53 GMT
Etag: "63906b73-1d7"
Expires: Fri, 09 Dec 2022 11:39:04 GMT
Last-Modified: Wed, 07 Dec 2022 10:31:15 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a0abf10fb7e96c1c98dacf2f013a68b4
acdd839bce85eadc78a8e821e32e00a958d5c0c8
b85d98f8df05431777d96c767ce4c152302ec3f653cdf6e61c8c3fa9574f3255

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B85D98F8DF05431777D96C767CE4C152302EC3F653CDF6E61C8C3FA9574F3255"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12189
Expires: Wed, 07 Dec 2022 16:53:02 GMT
Date: Wed, 07 Dec 2022 13:29:53 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: ZAnQP6GlVMV0YxBfd2P6y2+AKsmLe0kMiM6IpZjy2WMrwZwLnApAAzqz4yBL4H939HNMFj0u9Ac=
x-amz-request-id: NN7Z4FR5MPKQJ5H1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 07 Dec 2022 12:49:22 GMT
age: 2431
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 13:29:53 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.33.119.27

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
0709a2411865abcc2e593477fa5470b4
4333c538216489ac0667c8ceb872c572eaba4d9d
49958392c6e6948822385e45158143cd476db22358d7b1251c3854ec4ef99bf8

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "49958392C6E6948822385E45158143CD476DB22358D7B1251C3854EC4EF99BF8"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19568
Expires: Wed, 07 Dec 2022 18:56:01 GMT
Date: Wed, 07 Dec 2022 13:29:53 GMT
Connection: keep-alive

mycimaa.tube/contents/avatars/50/1603596723.png

172.67.71.57

200 OK

843 B

URL HTTP/2
mycimaa.tube/contents/avatars/50/1603596723.png
IP
172.67.71.57:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
843 B (843 bytes)
Hash
f15a59cd9ed519c37d388a3349fad1ae
4e309604bb0d83712d9424e8ec9d4a40832a6fba
ab190b9e6dcf678843a1950b62258d3d1062481b947ade3183bcc1ef8cb9f212

HTTP Headers

GET /contents/avatars/50/1603596723.png HTTP/1.1
Host: mycimaa.tube
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:53 GMT
content-type: image/png
content-length: 843
last-modified: Sun, 25 Oct 2020 03:32:03 GMT
etag: "5f94f1b3-34b"
vary: Accept, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1585
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1y90%2FndiFrHDXG0MTCTllItM%2FeXvhrMREVoCJTC%2BdORPMGCYb66sSTtACFr%2Fi8QONNTyzYsTAR6OqzOU%2Bg7cbQstLsJ41DSzmDx93AtNR6Yl9eMbeMG7ekIzOXv8kA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 775d9ce00fecb506-OSL
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
30aec170d58f580f2ed4da4b92d72cc7
3b11a98ba9563f7f266e7a935e3b78bd0c0712aa
7b25e66e4383cdb29228d0451a4810eeab7d194ca81045e066c00c9467f29312

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 13:29:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-128370636-1

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-128370636-1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43634 bytes)
Hash
78f3f54bbf617cf6fc6e7bcfbd3f8be9
952923b739342d671890b29b73d8d4347580a592
7106f6178746d0c3edcdba355b0b7a16593d9f5db755058e6be067673dacdb93

HTTP Headers

GET /gtag/js?id=UA-128370636-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Dec 2022 13:29:53 GMT
expires: Wed, 07 Dec 2022 13:29:53 GMT
cache-control: private, max-age=900
last-modified: Wed, 07 Dec 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43634
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 13:29:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 13:29:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 13:29:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/tajawal/v3/Iurf6YBj_oCad4k1l5anHrFpiQ.woff2

216.58.207.227

200 OK

11 kB

URL HTTP/2
fonts.gstatic.com/s/tajawal/v3/Iurf6YBj_oCad4k1l5anHrFpiQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 10580, version 1.0\012- data
Size
11 kB (10580 bytes)
Hash
245d8f75ea8c5799e5de85a8a7bd4172
7f546a6c551e87bb224124789c11fdb2f6429479
2f96f4fd6fe569f64e044e0409274b2f2d79976497a9b275deb497dbbfc542b0

HTTP Headers

GET /s/tajawal/v3/Iurf6YBj_oCad4k1l5anHrFpiQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mycimaa.tube
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 16:37:35 GMT
expires: Wed, 06 Dec 2023 16:37:35 GMT
cache-control: public, max-age=31536000
age: 75139
last-modified: Tue, 16 Jul 2019 03:31:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

mycimaa.tube/wp-content/themes/Mycima2021/components/packs/%23footer/js/owl.carousel.min.js?ver=6.0.2

172.67.71.57

200 OK

33 kB

URL HTTP/2
mycimaa.tube/wp-content/themes/Mycima2021/components/packs/%23footer/js/owl.carousel.min.js?ver=6.0.2
IP
172.67.71.57:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
33 kB (32803 bytes)
Hash
f59559006ea5301e9421c11166ad4157
78a9f4d3a3257d734cd1bbb8994139ccca5a0b55
5d580fab5d3697758ee4c9482bf75f5a1b08bef5419077b5bbe5e3761bed7f7f

HTTP Headers

GET /wp-content/themes/Mycima2021/components/packs/%23footer/js/owl.carousel.min.js?ver=6.0.2 HTTP/1.1
Host: mycimaa.tube
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:53 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 22 Aug 2021 16:57:00 GMT
etag: W/"612281dc-17394"
access-control-allow-origin: *
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3940
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=30eqyKgU8nra9weUm2rFiPWzEjw9BogG4tHCXal5bPgRMvpNlvdxxo04FfUY0EO1IOxDqL00IJKi8P%2BQnYKqEhBMFGAMni0pRGJlizNPCgY%2BRYV51BxqbVoVbAVtlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775d9ce00ff1b506-OSL
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/bevan/v12/4iCj6KZ0a9NXjG8dWCs.woff2

216.58.207.227

200 OK

20 kB

URL HTTP/2
fonts.gstatic.com/s/bevan/v12/4iCj6KZ0a9NXjG8dWCs.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 19984, version 1.0\012- data
Size
20 kB (19984 bytes)
Hash
0db10b5d1f471ef6c3a30158ff403106
ea993e87704687d1399a3b1fd79aa84c47659c82
e0e544b2864b4c3d7425f4eff9f9365b629abcbaf37f03d0bf5ba381f227d48a

HTTP Headers

GET /s/bevan/v12/4iCj6KZ0a9NXjG8dWCs.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mycimaa.tube
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19984
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 18:14:29 GMT
expires: Thu, 30 Nov 2023 18:14:29 GMT
cache-control: public, max-age=31536000
age: 587725
last-modified: Tue, 01 Sep 2020 03:51:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/tajawal/v3/Iurf6YBj_oCad4k1l8KiHrRpiYlJ.woff2

216.58.207.227

200 OK

8.5 kB

URL HTTP/2
fonts.gstatic.com/s/tajawal/v3/Iurf6YBj_oCad4k1l8KiHrRpiYlJ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 8488, version 1.0\012- data
Size
8.5 kB (8488 bytes)
Hash
b405dddf4639fdf946fed00d4b91139c
5df4eb97753c51715b996fcec1dec7e55877404b
b0d3610919043227b56c8d5130e2ead271a067bb1b930678d5af24bbbae7c16f

HTTP Headers

GET /s/tajawal/v3/Iurf6YBj_oCad4k1l8KiHrRpiYlJ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mycimaa.tube
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8488
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Dec 2022 07:20:32 GMT
expires: Sun, 03 Dec 2023 07:20:32 GMT
cache-control: public, max-age=31536000
age: 367762
last-modified: Tue, 16 Jul 2019 03:31:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
30aec170d58f580f2ed4da4b92d72cc7
3b11a98ba9563f7f266e7a935e3b78bd0c0712aa
7b25e66e4383cdb29228d0451a4810eeab7d194ca81045e066c00c9467f29312

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 13:29:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/tajawal/v3/Iurf6YBj_oCad4k1l5anHrRpiYlJ.woff2

216.58.207.227

200 OK

8.9 kB

URL HTTP/2
fonts.gstatic.com/s/tajawal/v3/Iurf6YBj_oCad4k1l5anHrRpiYlJ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 8948, version 1.0\012- data
Size
8.9 kB (8948 bytes)
Hash
3ca4aaa12ffa2e1f165db59f857ee5b0
1a72fa6677fa1b70f43d4a0abf3c309c211ee9fa
d404f987f0d261c3eff16cd778fb138d5c604af7f361e609ef0b91bac16d7e67

HTTP Headers

GET /s/tajawal/v3/Iurf6YBj_oCad4k1l5anHrRpiYlJ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mycimaa.tube
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 13:36:32 GMT
expires: Fri, 01 Dec 2023 13:36:32 GMT
cache-control: public, max-age=31536000
age: 518002
last-modified: Tue, 16 Jul 2019 03:31:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
053aff7451e55d4269dd9610ab070f3f
b3376256d11d159b0c7280ba1515b78d7d9e12ca
24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4058
Cache-Control: max-age=161074
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 13:29:54 GMT
Etag: "639057aa-1d7"
Expires: Fri, 09 Dec 2022 10:14:28 GMT
Last-Modified: Wed, 07 Dec 2022 09:06:50 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 13:29:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
579e472b5229bea68770fea937999c5f
b9c7988957091102bb4e370cd693571c1b6c006c
938ac157c3c498383c8ac1495e09d34bd6a9b232bbe2d12a7c5394e63db79d69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938AC157C3C498383C8AC1495E09D34BD6A9B232BBE2D12A7C5394E63DB79D69"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11553
Expires: Wed, 07 Dec 2022 16:42:27 GMT
Date: Wed, 07 Dec 2022 13:29:54 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4b9a9360a16473f81260f8eacb8e61a2
c5175d926d4a57c0afd9d2ceca0f0fa13f667197
d3796209364572715ad3f51985a3db439e1a25947598baf09c6db564e2d6a9a5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3796209364572715AD3F51985A3DB439E1A25947598BAF09C6DB564E2D6A9A5"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 07 Dec 2022 19:29:54 GMT
Date: Wed, 07 Dec 2022 13:29:54 GMT
Connection: keep-alive

lw.sciniphruffin.com/r637e582fcc8a7637e582fcc8a8/55767

23.109.82.72

200 OK

25 B

URL HTTP/1.1
lw.sciniphruffin.com/r637e582fcc8a7637e582fcc8a8/55767
IP
23.109.82.72:0
ASN
#7979 SERVERS-COM

File type
ASCII text, with no line terminators
Size
25 B (25 bytes)
Hash
d488addc5df5fc9b9ff4135bb4e3a823
6ce56f48e851df4d562b43d3bc1269a504ae83fc
d1e90b8aef655ca37932287e04cbda72092eb029fe90de2bac019c10d3431f60

HTTP Headers

GET /r637e582fcc8a7637e582fcc8a8/55767 HTTP/1.1
Host: lw.sciniphruffin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 13:29:54 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://mycimaa.tube
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Thu, 08-Dec-2022 13:29:54 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D; expires=Thu, 08-Dec-2022 13:29:54 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
d73f64ff2fa407178e3294afbfbba950
dc759cdd891e713709739c8fd992142e89060a24
bf79fb74c48994ea894eb50a67e4585b2fa61899bba876d8e7020887253549a9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=128367
Date: Wed, 07 Dec 2022 13:29:54 GMT
Etag: "638fd36f-1d7"
Expires: Fri, 09 Dec 2022 01:09:21 GMT
Last-Modified: Tue, 06 Dec 2022 23:42:39 GMT
Server: ECS (nyb/1D0C)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: q9gJTsA-gWDDI14ngQTHvyd2yB4_l2uNjbD4E0St9zr-mVBZ_RgvYQ==
Age: 5202

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
d73f64ff2fa407178e3294afbfbba950
dc759cdd891e713709739c8fd992142e89060a24
bf79fb74c48994ea894eb50a67e4585b2fa61899bba876d8e7020887253549a9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=128361
Date: Wed, 07 Dec 2022 13:29:54 GMT
Etag: "638fd36f-1d7"
Expires: Fri, 09 Dec 2022 01:09:15 GMT
Last-Modified: Tue, 06 Dec 2022 23:42:39 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Vm2z90gldT164d-PFbREWlylNU1ZPkMxD0-F3y826bk8CLWOV-zMUA==
Age: 5196

mycimaa.tube/wp-content/themes/Mycima2021/components/packs/%23header/netflix.png

172.67.71.57

200 OK

3.5 kB

URL HTTP/2
mycimaa.tube/wp-content/themes/Mycima2021/components/packs/%23header/netflix.png
IP
172.67.71.57:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
3.5 kB (3533 bytes)
Hash
54110064037a44285faf10b2cbe55e87
b2677d46ed052bfda6eecbb61ee5539349f5603d
c5b633a4f58b811923c6d41cbe24939af6aebb02e6796169c1797f0eeb31bdd4

HTTP Headers

GET /wp-content/themes/Mycima2021/components/packs/%23header/netflix.png HTTP/1.1
Host: mycimaa.tube
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: image/png
content-length: 3533
last-modified: Sun, 22 Aug 2021 16:56:59 GMT
etag: "612281db-dcd"
vary: Accept, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3940
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wiacG%2F3bdgwqBEOYCXxPke6dw2itdBc7an4RAJKsNHfKFG0BbQZ2jJYRHKXfV7jO%2BwCoYZjtV1jsigeXtZIGyDJX2sOyqRA5Ma37HmoRCSDULBOlbKkY8Dzh6fE4gg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 775d9ce27beeb506-OSL
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b73b8ca480d4855b7dcdd63d2b419b5d
2278d901683a1623441aa428363190440dea88e6
9fd001157042c511e4dfe8a5b800288da3192022a04deb3d9dbe89054256ef71

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2286
Cache-Control: max-age=170103
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 13:29:54 GMT
Etag: "639081db-1d7"
Expires: Fri, 09 Dec 2022 12:44:57 GMT
Last-Modified: Wed, 07 Dec 2022 12:06:51 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

b.m2track.co/adb/zone/160.js?v=1.22

44.198.23.116

200 OK

963 B

URL HTTP/1.1
b.m2track.co/adb/zone/160.js?v=1.22
IP
44.198.23.116:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (540)
Size
963 B (963 bytes)
Hash
34fef04ed57ab690821cb842e13cdbf0
fb6a3c67730b21e331b391a77cf5b038a07d0988
c61a0a2a9e91234229c047f793a26a56200441fcf660d97a3a2e2505f09e7f54

HTTP Headers

GET /adb/zone/160.js?v=1.22 HTTP/1.1
Host: b.m2track.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 13:29:54 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip

b.m2track.co/adb/zone/161.js?v=1.22

44.198.23.116

200 OK

963 B

URL HTTP/1.1
b.m2track.co/adb/zone/161.js?v=1.22
IP
44.198.23.116:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (540)
Size
963 B (963 bytes)
Hash
5af0753d23638c906e8c8b07ddb3831a
b25b4772d623bc2bc04670fd66245c3b90cb13b0
519cd9b1c5ab7c75ae3e0e013720736b38a34a7030053ea3e5492a7c0f385c96

HTTP Headers

GET /adb/zone/161.js?v=1.22 HTTP/1.1
Host: b.m2track.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 13:29:54 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip

mycimaa.tube/wp-content/uploads/2019/04/5c9b2e39e0a90--360x520.jpg

172.67.71.57

200 OK

22 kB

URL HTTP/2
mycimaa.tube/wp-content/uploads/2019/04/5c9b2e39e0a90--360x520.jpg
IP
172.67.71.57:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x520, components 3\012- data
Size
22 kB (21833 bytes)
Hash
3a54240e454f39d20c824671d3695a63
188411d7c53446ca6781b6613f441936a246a987
6b703d1e57fbc47debfeb644074123f2622d62542902909126303c93dcd0109f

HTTP Headers

GET /wp-content/uploads/2019/04/5c9b2e39e0a90--360x520.jpg HTTP/1.1
Host: mycimaa.tube
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: image/jpeg
content-length: 21833
last-modified: Sat, 08 Feb 2020 22:59:50 GMT
etag: "5e3f3d66-5549"
vary: Accept, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rc6G93%2BMdn7BsT4JIydFi40Zt5HcLwys0vBI8sBI0nGOomIOsKRFQ5cRInpovVznU%2FhgMOb5XFc%2BnQyX%2BlLupeUpteEvDzKO6YXZ5ItQv8c7MCnNJO%2BL5ZPLrXyNyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 775d9ce26bd7b506-OSL
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.162.50.16

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.162.50.16:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yJbS/BHP0FVw7xgL3k5B/w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: G5ugd2KOHTRkF4W4XTR4yDm+KcU=

site-assets.fontawesome.com/releases/v6.0.0/css/all.css

104.18.22.52

200 OK

77 kB

URL HTTP/2
site-assets.fontawesome.com/releases/v6.0.0/css/all.css
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
77 kB (77185 bytes)
Hash
6ed392736c0559fee64fe603439eba0d
474a222be3ad2f6083fa989f97414180927befca
06326a24148b04a05520ab77142c58d6f795174c6d25917156e5849cad406de5

HTTP Headers

GET /releases/v6.0.0/css/all.css HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: text/css
x-amz-id-2: XUvm76SGITh+/KQ9U1gjxxT78er6DZD5AXQVdF8ljvlspKJhHovFpPspMBYNsKVfMweoRDlzL14=
x-amz-request-id: J1WG7T15YKNH2KQG
last-modified: Mon, 07 Feb 2022 20:23:49 GMT
etag: W/"c8ccf9786058107114b343d52efb40bc"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 26070901
vary: Accept-Encoding
server: cloudflare
cf-ray: 775d9ce2be24b4f3-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b22490b02628e79842aa551994331a2e
238870b8a3e6ef3b6a761154e3abee386643597c
ef2e0268a5ed0ca7d64dfc1baa3d56d55f4062e4d84972bc9423fe56df585673

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF2E0268A5ED0CA7D64DFC1BAA3D56D55F4062E4D84972BC9423FE56DF585673"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2080
Expires: Wed, 07 Dec 2022 14:04:34 GMT
Date: Wed, 07 Dec 2022 13:29:54 GMT
Connection: keep-alive

b.m2track.co/adb/za/160.js?v=1&v=1.22&t=6390955212b020.47504628&&referer=https%3A%2F%2Fmycimaa.tube%2Fwatch%2F%25D9%2585%25D8%25B4%25D8%25A7%25D9%2587%25D8%25AF%25D8%25A9-%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-house-md-%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-5-%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-7%2F&ct=1670419794073

44.198.23.116

200 OK

3.1 kB

URL HTTP/1.1
b.m2track.co/adb/za/160.js?v=1&v=1.22&t=6390955212b020.47504628&&referer=https%3A%2F%2Fmycimaa.tube%2Fwatch%2F%25D9%2585%25D8%25B4%25D8%25A7%25D9%2587%25D8%25AF%25D8%25A9-%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-house-md-%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-5-%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-7%2F&ct=1670419794073
IP
44.198.23.116:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (1282)
Size
3.1 kB (3051 bytes)
Hash
3d21b27d85bea94d7eb1e9aae4b1a1a8
65473c0bf937fddfae402d8dec6c4f747e71918e
c3974e071c1c9651e8dfe7ebabb8dc5300ad33be1e6f2f5fbf39a9295896f4c6

HTTP Headers

GET /adb/za/160.js?v=1&v=1.22&t=6390955212b020.47504628&&referer=https%3A%2F%2Fmycimaa.tube%2Fwatch%2F%25D9%2585%25D8%25B4%25D8%25A7%25D9%2587%25D8%25AF%25D8%25A9-%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-house-md-%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-5-%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-7%2F&ct=1670419794073 HTTP/1.1
Host: b.m2track.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 13:29:54 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip

b.m2track.co/adb/za/161.js?v=1&v=1.22&t=63909552133334.64381056&&referer=https%3A%2F%2Fmycimaa.tube%2Fwatch%2F%25D9%2585%25D8%25B4%25D8%25A7%25D9%2587%25D8%25AF%25D8%25A9-%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-house-md-%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-5-%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-7%2F&ct=1670419794075

44.198.23.116

200 OK

3.1 kB

URL HTTP/1.1
b.m2track.co/adb/za/161.js?v=1&v=1.22&t=63909552133334.64381056&&referer=https%3A%2F%2Fmycimaa.tube%2Fwatch%2F%25D9%2585%25D8%25B4%25D8%25A7%25D9%2587%25D8%25AF%25D8%25A9-%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-house-md-%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-5-%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-7%2F&ct=1670419794075
IP
44.198.23.116:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (1282)
Size
3.1 kB (3051 bytes)
Hash
30037402d71b98a845a890e634856e90
a7329403189e55ec3bd9e08be728f138a272724f
7af7ca9d54b633fb01b12a49b9400a86dbe8dca11edf449983f3fafb8eb2a38a

HTTP Headers

GET /adb/za/161.js?v=1&v=1.22&t=63909552133334.64381056&&referer=https%3A%2F%2Fmycimaa.tube%2Fwatch%2F%25D9%2585%25D8%25B4%25D8%25A7%25D9%2587%25D8%25AF%25D8%25A9-%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-house-md-%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-5-%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-7%2F&ct=1670419794075 HTTP/1.1
Host: b.m2track.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 13:29:54 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e36cc96b55f9c80082cefbfd36848516
93bd8ec63f0de4bb8b8d905ccf5b93d1d9c4faac
117d774061bffd2f6a0fd0e64c0c44675d7ffe76a92186c154d60330b5a07d67

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "117D774061BFFD2F6A0FD0E64C0C44675D7FFE76A92186C154D60330B5A07D67"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17252
Expires: Wed, 07 Dec 2022 18:17:26 GMT
Date: Wed, 07 Dec 2022 13:29:54 GMT
Connection: keep-alive

site-assets.fontawesome.com/releases/v6.0.0/webfonts/fa-brands-400.woff2

104.18.22.52

200 OK

105 kB

URL HTTP/2
site-assets.fontawesome.com/releases/v6.0.0/webfonts/fa-brands-400.woff2
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 104740, version 768.256\012- data
Size
105 kB (104740 bytes)
Hash
27ed7b486bfe3163c0d312b6d2aa9069
97cb3773774b591841557c859b0f1b4b1b1cde09
fb347c28258cfeeb9b0904c469d8049fcb2ad4d1bb5e4c9601e0edda3b76bb69

HTTP Headers

GET /releases/v6.0.0/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mycimaa.tube
Connection: keep-alive
Referer: https://site-assets.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: font/woff2
content-length: 104740
x-amz-id-2: buRFIjCyTAAg/Rm/jvrwJVpan/TZORiIhIY8fy5txL8v3Qc9+OWE7VHlMtaGVEgDGhYRVIKPKrBwZ5KU4/eXCA==
x-amz-request-id: 8EP40V6P6ET9AP8R
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 07 Feb 2022 20:26:45 GMT
etag: "27ed7b486bfe3163c0d312b6d2aa9069"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 5958866
accept-ranges: bytes
server: cloudflare
cf-ray: 775d9ce42f67b52d-OSL
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?userId=76499598f9b84920bef8b6dc6e1a79be

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?userId=76499598f9b84920bef8b6dc6e1a79be
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
8554df2cd3f5ab5c3f54c59c275042aa
c33749e2e14ca9e8935efcfd9e56f1831f220442
10d08b62597d4cfad63eb3377f155864a7848d911f9f72e7cc90cbc151decbb5

HTTP Headers

GET /gid.js?userId=76499598f9b84920bef8b6dc6e1a79be HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mycimaa.tube
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://mycimaa.tube
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=76499598f9b84920bef8b6dc6e1a79be; expires=Thu, 07 Dec 2023 13:29:54 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

site-assets.fontawesome.com/releases/v6.0.0/webfonts/fa-light-300.woff2

104.18.22.52

200 OK

392 kB

URL HTTP/2
site-assets.fontawesome.com/releases/v6.0.0/webfonts/fa-light-300.woff2
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 392136, version 768.256\012- data
Size
392 kB (392136 bytes)
Hash
2cb9262f4870f225de120af23500828a
0330732496c970248a96c6df732b4b6e8407246f
d9c0c73c3e6a75d59ff20ce5e1d4bdec5ee8c6f2724ff0deb6cddb8f7f207dbe

HTTP Headers

GET /releases/v6.0.0/webfonts/fa-light-300.woff2 HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mycimaa.tube
Connection: keep-alive
Referer: https://site-assets.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: font/woff2
content-length: 392136
x-amz-id-2: bgpzAPFbqAIJpbhYzS3LqLp0cAYa4G4/2vUGl0y8BWcoCmDdld/6PLLTGRs2+sSq1L7iaPhe9rs=
x-amz-request-id: P22WZ8TE13MYT8D1
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 07 Feb 2022 20:26:45 GMT
etag: "2cb9262f4870f225de120af23500828a"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 5958866
accept-ranges: bytes
server: cloudflare
cf-ray: 775d9ce42f7bb52d-OSL
X-Firefox-Spdy: h2

site-assets.fontawesome.com/releases/v6.0.0/webfonts/fa-regular-400.woff2

104.18.22.52

200 OK

358 kB

URL HTTP/2
site-assets.fontawesome.com/releases/v6.0.0/webfonts/fa-regular-400.woff2
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 357732, version 768.256\012- data
Size
358 kB (357732 bytes)
Hash
aca950cc283a103f77e0001fb67043b7
bf0d2965fbc75a8a23ca081c7094a95535d46ca6
d2d786476ddb1827a07bc0ac83e78cee6d262a16092b6064c166091132f09b65

HTTP Headers

GET /releases/v6.0.0/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mycimaa.tube
Connection: keep-alive
Referer: https://site-assets.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: font/woff2
content-length: 357732
x-amz-id-2: nG8m50MjoI+iRJZUFV8cFRNHKwh5VXjALVpklQs5DrR96WrsvF7PKqiJhTWSz7hzN+y/drQ3Pbs=
x-amz-request-id: P22X2SBMARD8WN8S
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 07 Feb 2022 20:26:45 GMT
etag: "aca950cc283a103f77e0001fb67043b7"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 5958866
accept-ranges: bytes
server: cloudflare
cf-ray: 775d9ce43f7fb52d-OSL
X-Firefox-Spdy: h2

site-assets.fontawesome.com/releases/v6.0.0/webfonts/fa-solid-900.woff2

104.18.22.52

200 OK

304 kB

URL HTTP/2
site-assets.fontawesome.com/releases/v6.0.0/webfonts/fa-solid-900.woff2
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 303544, version 768.256\012- data
Size
304 kB (303544 bytes)
Hash
78863e0f6e65fbe6175866e6d5b6f18a
8cda0fc2a701bd6dcfaa94261178fa78df1d15de
82877c6d33c5d786db4815f756437c3e853e08bf8c6c267fd246760d2a96d029

HTTP Headers

GET /releases/v6.0.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mycimaa.tube
Connection: keep-alive
Referer: https://site-assets.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: font/woff2
content-length: 303544
x-amz-id-2: HsRSpZHuvBLe94ID1IHNcX+mOKBrpHWrNVmZoYTogr7wHO7R+3TM0gdw1CcgaMQtiOmYXAes4cc=
x-amz-request-id: P22TH4VF72FRJ48Y
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 07 Feb 2022 20:26:45 GMT
etag: "78863e0f6e65fbe6175866e6d5b6f18a"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 5958866
accept-ranges: bytes
server: cloudflare
cf-ray: 775d9ce4afe2b52d-OSL
X-Firefox-Spdy: h2

nanouwho.com/1?z=4807448

139.45.197.242

200 OK

10 kB

URL HTTP/2
nanouwho.com/1?z=4807448
IP
139.45.197.242:0
ASN
#9002 RETN Limited

File type
data
Size
10 kB (9999 bytes)
Hash
b7312e9925aa8755d2a4902a5f22f1f7
c87cd73770e54f3608e6a939069e4a560cd80e7c
6668b6d65cb4bc2edd3b9c24f2404a250ae153b6f7ae7fb7f496c52a75d4d286

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /1?z=4807448 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: cf5e3295ea4bbda912eefed9ba4293b2
access-control-expose-headers: X-Sc
x-sc: ces_LF0I9CP3CKlzQ0dU0wVCVBUztLGKBBzonVMf2LWDl6EI-HGd8yKRD6r6kImu-07r3BTUIvJTUGpufanR0gGU104=
set-cookie: scm=1; expires=Thu, 07 Dec 2023 13:29:54 GMT; secure; SameSite=None
OAID=9cf8c08cf9194232a1c23980ca38d788; expires=Thu, 07 Dec 2023 13:29:54 GMT; secure; SameSite=None
oaidts=1670419794; expires=Thu, 07 Dec 2023 13:29:54 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

b.m2track.co/adb/zi/NTg3NTY4NTctMzI4Mjk4Ni0yMDIyLTEyLTA3LTEzfDkxLjkwLjQyLjE1NHx8NjM5MDk1NTI3OTg2Mw==.js?data=aVVQS1V6VkJ3bDRrZ0h2ZUx4WEJ5RUlsdTRNYW9ZNU1HUDlQYXZUUmw5Z0NoQVhYYy9odEUwZCt0SUJ4VHhwekJIYmtVRG5MaXlKQ21hOU9uSC93YytqQVorc3oxNU9OTG5UTWUvcDR4R1k9

44.198.23.116

200 OK

34 B

URL HTTP/1.1
b.m2track.co/adb/zi/NTg3NTY4NTctMzI4Mjk4Ni0yMDIyLTEyLTA3LTEzfDkxLjkwLjQyLjE1NHx8NjM5MDk1NTI3OTg2Mw==.js?data=aVVQS1V6VkJ3bDRrZ0h2ZUx4WEJ5RUlsdTRNYW9ZNU1HUDlQYXZUUmw5Z0NoQVhYYy9odEUwZCt0SUJ4VHhwekJIYmtVRG5MaXlKQ21hOU9uSC93YytqQVorc3oxNU9OTG5UTWUvcDR4R1k9
IP
44.198.23.116:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with no line terminators
Size
34 B (34 bytes)
Hash
a06b036222ece809719bd39e71abc21c
3ac40c9b57929a65abc7e31d725e5689eb60b2e8
c4153eea6d15149ba2a18ecb7727a1734b7e49026d1a04af50d6285499329b17

HTTP Headers

GET /adb/zi/NTg3NTY4NTctMzI4Mjk4Ni0yMDIyLTEyLTA3LTEzfDkxLjkwLjQyLjE1NHx8NjM5MDk1NTI3OTg2Mw==.js?data=aVVQS1V6VkJ3bDRrZ0h2ZUx4WEJ5RUlsdTRNYW9ZNU1HUDlQYXZUUmw5Z0NoQVhYYy9odEUwZCt0SUJ4VHhwekJIYmtVRG5MaXlKQ21hOU9uSC93YytqQVorc3oxNU9OTG5UTWUvcDR4R1k9 HTTP/1.1
Host: b.m2track.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 13:29:54 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip

b.m2track.co/adb/zui/NTg3NTY4NTctMzI4Mjk4Ni0yMDIyLTEyLTA3LTEzfDkxLjkwLjQyLjE1NHx8NjM5MDk1NTI3OTg2Mw==.js?data=aVVQS1V6VkJ3bDRrZ0h2ZUx4WEJ5RUlsdTRNYW9ZNU1HUDlQYXZUUmw5Z0NoQVhYYy9odEUwZCt0SUJ4VHhwekJIYmtVRG5MaXlKQ21hOU9uSC93YytqQVorc3oxNU9OTG5UTWUvcDR4R1k9

44.198.23.116

200 OK

34 B

URL HTTP/1.1
b.m2track.co/adb/zui/NTg3NTY4NTctMzI4Mjk4Ni0yMDIyLTEyLTA3LTEzfDkxLjkwLjQyLjE1NHx8NjM5MDk1NTI3OTg2Mw==.js?data=aVVQS1V6VkJ3bDRrZ0h2ZUx4WEJ5RUlsdTRNYW9ZNU1HUDlQYXZUUmw5Z0NoQVhYYy9odEUwZCt0SUJ4VHhwekJIYmtVRG5MaXlKQ21hOU9uSC93YytqQVorc3oxNU9OTG5UTWUvcDR4R1k9
IP
44.198.23.116:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with no line terminators
Size
34 B (34 bytes)
Hash
a06b036222ece809719bd39e71abc21c
3ac40c9b57929a65abc7e31d725e5689eb60b2e8
c4153eea6d15149ba2a18ecb7727a1734b7e49026d1a04af50d6285499329b17

HTTP Headers

GET /adb/zui/NTg3NTY4NTctMzI4Mjk4Ni0yMDIyLTEyLTA3LTEzfDkxLjkwLjQyLjE1NHx8NjM5MDk1NTI3OTg2Mw==.js?data=aVVQS1V6VkJ3bDRrZ0h2ZUx4WEJ5RUlsdTRNYW9ZNU1HUDlQYXZUUmw5Z0NoQVhYYy9odEUwZCt0SUJ4VHhwekJIYmtVRG5MaXlKQ21hOU9uSC93YytqQVorc3oxNU9OTG5UTWUvcDR4R1k9 HTTP/1.1
Host: b.m2track.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 13:29:54 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=86400, public
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
2c775ceae5ed5d9f108a45e6882050e6
864d1fbe638284316f1c6525e9e9047f2434c6ab
e92b7a834888c577ccf70a2d8e1cc3a21053e4991d38cbaff5dbd789270f1e85

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3205
Cache-Control: max-age=94712
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 13:29:54 GMT
Etag: "638f57c5-118"
Expires: Thu, 08 Dec 2022 15:48:26 GMT
Last-Modified: Tue, 06 Dec 2022 14:55:01 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280

b.m2track.co/adb/zui/NTg3NTY4NTYtMzI4Mjk4Ni0yMDIyLTEyLTA3LTEzfDkxLjkwLjQyLjE1NHx8NjM5MDk1NTI3OTdhNg==.js?data=N3BHYU1CY0k4QnRKMHVGMzlzV3ZzM242K1BKa0RhamgwOWNLK3JlQXM1VUt0QlIvdTFyakIxYzhuYnQ3ZVpFRklZemNFZlNrVzFUV1FMQnNSTUhjZkFreU5aY3RlYmFVQW9rWlBQaUpZVzA9

44.198.23.116

200 OK

34 B

URL HTTP/1.1
b.m2track.co/adb/zui/NTg3NTY4NTYtMzI4Mjk4Ni0yMDIyLTEyLTA3LTEzfDkxLjkwLjQyLjE1NHx8NjM5MDk1NTI3OTdhNg==.js?data=N3BHYU1CY0k4QnRKMHVGMzlzV3ZzM242K1BKa0RhamgwOWNLK3JlQXM1VUt0QlIvdTFyakIxYzhuYnQ3ZVpFRklZemNFZlNrVzFUV1FMQnNSTUhjZkFreU5aY3RlYmFVQW9rWlBQaUpZVzA9
IP
44.198.23.116:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with no line terminators
Size
34 B (34 bytes)
Hash
a06b036222ece809719bd39e71abc21c
3ac40c9b57929a65abc7e31d725e5689eb60b2e8
c4153eea6d15149ba2a18ecb7727a1734b7e49026d1a04af50d6285499329b17

HTTP Headers

GET /adb/zui/NTg3NTY4NTYtMzI4Mjk4Ni0yMDIyLTEyLTA3LTEzfDkxLjkwLjQyLjE1NHx8NjM5MDk1NTI3OTdhNg==.js?data=N3BHYU1CY0k4QnRKMHVGMzlzV3ZzM242K1BKa0RhamgwOWNLK3JlQXM1VUt0QlIvdTFyakIxYzhuYnQ3ZVpFRklZemNFZlNrVzFUV1FMQnNSTUhjZkFreU5aY3RlYmFVQW9rWlBQaUpZVzA9 HTTP/1.1
Host: b.m2track.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 13:29:54 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=86400, public
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff9a2779e74d468a9d0aa4a64b3bacec
a276452f814f2bd45b204b3fa5bf0180c0706c1f
a5f4e284850445e158e3628a7d66beb8cdb770f94b601106bdd4f705eced9447

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A5F4E284850445E158E3628A7D66BEB8CDB770F94B601106BDD4F705ECED9447"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21386
Expires: Wed, 07 Dec 2022 19:26:20 GMT
Date: Wed, 07 Dec 2022 13:29:54 GMT
Connection: keep-alive

vjs.zencdn.net/ie8/1.1.2/videojs-ie8.min.js

151.101.66.217

200 OK

8.9 kB

URL HTTP/2
vjs.zencdn.net/ie8/1.1.2/videojs-ie8.min.js
IP
151.101.66.217:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (27236), with no line terminators
Size
8.9 kB (8924 bytes)
Hash
c1f1df0d15c6c2385354cd6f1d55ac90
29d75b7acb3856360eaf22df07d5d8fe8e9917db
8fb2e6f24918cbce5dc1984062388d8d2a2191bf107606bedbae6e2f4451b151

HTTP Headers

GET /ie8/1.1.2/videojs-ie8.min.js HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Wed, 10 Feb 2016 20:27:09 GMT
etag: "2ff9bb22f0b1789ac170247b0825488f"
cache-control: public, max-age=31536000
content-type: application/javascript; charset=utf-8
content-encoding: gzip
date: Wed, 07 Dec 2022 13:29:54 GMT
x-served-by: cache-bma1648-BMA
x-cache: HIT
x-cache-hits: 1056
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 8924
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/videojs-qualityselector@0.0.4/dist/videojs-qualityselector.min.js

151.101.193.229

200 OK

1.6 kB

URL HTTP/2
cdn.jsdelivr.net/npm/videojs-qualityselector@0.0.4/dist/videojs-qualityselector.min.js
IP
151.101.193.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (3841)
Size
1.6 kB (1590 bytes)
Hash
2f1da2bbf482d3722cd982adbd5044f9
dc2c3fe9bd7cfdf0be69e68f93598a7ab32e7eff
45caff63c44d0cc54f9a3578e8c5208c9dd868801153f0a3a1251b77a7fd1706

HTTP Headers

GET /npm/videojs-qualityselector@0.0.4/dist/videojs-qualityselector.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.0.4
x-jsd-version-type: version
etag: W/"f7d-qRm6/dYaFIGnz6h+r7xiqaokK34"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 07 Dec 2022 13:29:54 GMT
age: 1928191
x-served-by: cache-fra-eddf8230135-FRA, cache-bma1661-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1590
X-Firefox-Spdy: h2

vjs.zencdn.net/7.10.2/video-js.css

151.101.66.217

200 OK

11 kB

URL HTTP/2
vjs.zencdn.net/7.10.2/video-js.css
IP
151.101.66.217:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (5844)
Size
11 kB (10738 bytes)
Hash
9f703c1d1b064f5e72d8dba3484e868f
008cc8c438c57c51cc20bb4cb3e6452a287aaa8f
a1a9f6ebf0e40976737eeb1b6c544d462e5e444fcc8f59ab044833e2737c05e0

HTTP Headers

GET /7.10.2/video-js.css HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Tue, 17 Nov 2020 17:06:28 GMT
etag: "397a94bb87dfd0a64ba4d3d502912e4a"
cache-control: public, max-age=31536000
content-type: text/css; charset=utf-8
content-encoding: gzip
date: Wed, 07 Dec 2022 13:29:54 GMT
x-served-by: cache-bma1648-BMA
x-cache: HIT
x-cache-hits: 278
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 10738
X-Firefox-Spdy: h2

upgulpinon.com/1?z=4967771

139.45.197.242

404 Not Found

7 B

URL HTTP/2
upgulpinon.com/1?z=4967771
IP
139.45.197.242:0
ASN
#9002 RETN Limited

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
3b66fb7a307f3ca29bd59b2f354055bd
d6ae6ccb37eb272d94d4a5191fa50372f4d06bba
de68e8f959bc131328db7581860711517d6ae1eb03aa047043dc7f826906e5a4

HTTP Headers

GET /1?z=4967771 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
server: nginx
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: text/plain; charset=utf-8
content-length: 7
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: fb27771a06989521e7d0b2101c8d19fe
access-control-expose-headers: X-Sc
x-sc: 4KdnrdofxFOHMlcU
set-cookie: scm=1; expires=Thu, 07 Dec 2023 13:29:54 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/videojs-qualityselector@0.0.4/dist/videojs-qualityselector.min.css

151.101.193.229

200 OK

632 B

URL HTTP/2
cdn.jsdelivr.net/npm/videojs-qualityselector@0.0.4/dist/videojs-qualityselector.min.css
IP
151.101.193.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (1364)
Size
632 B (632 bytes)
Hash
bc88d02b3843ed3e69819bfc3e6e1975
daa4168e9cb60c9b584cf7ea141fc6afe91e36d3
bce4e347182105fdc87d10365353fcfed4f5c6328dcb511214a4fe5dce0c9b78

HTTP Headers

GET /npm/videojs-qualityselector@0.0.4/dist/videojs-qualityselector.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 0.0.4
x-jsd-version-type: version
etag: W/"6a8-2O4KFel7pYPtzYeT88i8Cn1k530"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 07 Dec 2022 13:29:54 GMT
age: 3738526
x-served-by: cache-fra-eddf8230022-FRA, cache-bma1661-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 632
X-Firefox-Spdy: h2

b.m2track.co/adb/zi/NTg3NTY4NTYtMzI4Mjk4Ni0yMDIyLTEyLTA3LTEzfDkxLjkwLjQyLjE1NHx8NjM5MDk1NTI3OTdhNg==.js?data=N3BHYU1CY0k4QnRKMHVGMzlzV3ZzM242K1BKa0RhamgwOWNLK3JlQXM1VUt0QlIvdTFyakIxYzhuYnQ3ZVpFRklZemNFZlNrVzFUV1FMQnNSTUhjZkFreU5aY3RlYmFVQW9rWlBQaUpZVzA9

44.198.23.116

200 OK

34 B

URL HTTP/1.1
b.m2track.co/adb/zi/NTg3NTY4NTYtMzI4Mjk4Ni0yMDIyLTEyLTA3LTEzfDkxLjkwLjQyLjE1NHx8NjM5MDk1NTI3OTdhNg==.js?data=N3BHYU1CY0k4QnRKMHVGMzlzV3ZzM242K1BKa0RhamgwOWNLK3JlQXM1VUt0QlIvdTFyakIxYzhuYnQ3ZVpFRklZemNFZlNrVzFUV1FMQnNSTUhjZkFreU5aY3RlYmFVQW9rWlBQaUpZVzA9
IP
44.198.23.116:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with no line terminators
Size
34 B (34 bytes)
Hash
a06b036222ece809719bd39e71abc21c
3ac40c9b57929a65abc7e31d725e5689eb60b2e8
c4153eea6d15149ba2a18ecb7727a1734b7e49026d1a04af50d6285499329b17

HTTP Headers

GET /adb/zi/NTg3NTY4NTYtMzI4Mjk4Ni0yMDIyLTEyLTA3LTEzfDkxLjkwLjQyLjE1NHx8NjM5MDk1NTI3OTdhNg==.js?data=N3BHYU1CY0k4QnRKMHVGMzlzV3ZzM242K1BKa0RhamgwOWNLK3JlQXM1VUt0QlIvdTFyakIxYzhuYnQ3ZVpFRklZemNFZlNrVzFUV1FMQnNSTUhjZkFreU5aY3RlYmFVQW9rWlBQaUpZVzA9 HTTP/1.1
Host: b.m2track.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 13:29:54 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip

code.jquery.com/jquery-3.5.1.min.js

69.16.175.10

200 OK

31 kB

URL HTTP/2
code.jquery.com/jquery-3.5.1.min.js
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65451)
Size
31 kB (30879 bytes)
Hash
3700d0b271343804b9b9aa1c13efa521
3d6b03dbd74872ca3dfbb0529f6c80943788f918
fda7541f8e4cf921d20bcd0dc1d0efe69644c79bd18a0be4ce2f34246c83603e

HTTP Headers

GET /jquery-3.5.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:54 GMT
content-encoding: gzip
content-length: 30879
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d84"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670419794.dop001.sk1.t,1670419794.cds248.sk1.hn,1670419794.cds208.sk1.c
X-Firefox-Spdy: h2

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
9a164e710986b149adf8b5462d564cda
135c15b53049b599efbc42a9f9fc72c44c88e1f0
7eb11d7450642ef3d08b3c50c88461bdd961f11e81846bb4bfcda7fb631b8118

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 13:29:55 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "5E3161BB4E46B8E23AA26CAB78B562B1719188D3"
Expires: Thu, 08 Dec 2022 00:00:00 GMT
Last-Modified: Wed, 07 Dec 2022 12:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1669
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d9ce6bab7b50c-OSL

vjs.zencdn.net/7.10.2/video.js

151.101.66.217

200 OK

434 kB

URL HTTP/2
vjs.zencdn.net/7.10.2/video.js
IP
151.101.66.217:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (320)
Size
434 kB (433516 bytes)
Hash
162d654c2acc2dfc7c43e17cc3b9b78d
356f102c29e1e0aa1c7398a8abf2a0780a4855d2
10eec1ef018c32a8a89b7c4b5fbcc15b6b7d50d849d09c2947928accdfc28ba4

HTTP Headers

GET /7.10.2/video.js HTTP/1.1
Host: vjs.zencdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Tue, 17 Nov 2020 17:06:33 GMT
etag: "0a14314aa8dde52542a3ef298e9601b8"
cache-control: public, max-age=31536000
content-type: application/javascript; charset=utf-8
content-encoding: gzip
date: Wed, 07 Dec 2022 13:29:54 GMT
x-served-by: cache-bma1648-BMA
x-cache: HIT
x-cache-hits: 2
vary: Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
content-length: 433516
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
36f1e49c3bdeda15408a6f36c440be82
4c4dfd446bba9e9b315504514498f2b28538cc2e
7c8f91838f7b9194933317395f552b9e5459b5d8dec8f06dd1c1e41bc6124c90

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 13:29:55 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 00:52:19 GMT
Expires: Mon, 12 Dec 2022 00:52:18 GMT
Etag: "4c4dfd446bba9e9b315504514498f2b28538cc2e"
Cache-Control: max-age=385942,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775d9ce6ea2db52d-OSL

nanouwho.com/9?z=4807448&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fmycimaa.tube%2Fwatch%2F%25D9%2585%25D8%25B4%25D8%25A7%25D9%2587%25D8%25AF%25D8%25A9-%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-house-md-%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-5-%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-7%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=76499598f9b84920bef8b6dc6e1a79be

139.45.197.242

204 No Content

0 B

URL HTTP/2
nanouwho.com/9?z=4807448&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fmycimaa.tube%2Fwatch%2F%25D9%2585%25D8%25B4%25D8%25A7%25D9%2587%25D8%25AF%25D8%25A9-%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-house-md-%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-5-%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-7%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=76499598f9b84920bef8b6dc6e1a79be
IP
139.45.197.242:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

OPTIONS /9?z=4807448&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fmycimaa.tube%2Fwatch%2F%25D9%2585%25D8%25B4%25D8%25A7%25D9%2587%25D8%25AF%25D8%25A9-%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-house-md-%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-5-%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-7%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=76499598f9b84920bef8b6dc6e1a79be HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://mycimaa.tube/
Origin: https://mycimaa.tube
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Wed, 07 Dec 2022 13:29:55 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://mycimaa.tube
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f

139.45.195.254

200 OK

12 B

URL HTTP/1.1
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP
139.45.195.254:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1028
Origin: https://mycimaa.tube
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Wed, 07 Dec 2022 13:30:00 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://mycimaa.tube
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true

139.45.197.242

200 OK

7 B

URL HTTP/2
nanouwho.com/9?z=4807448&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fmycimaa.tube%2Fwatch%2F%25D9%2585%25D8%25B4%25D8%25A7%25D9%2587%25D8%25AF%25D8%25A9-%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-house-md-%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-5-%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-7%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=76499598f9b84920bef8b6dc6e1a79be
IP
139.45.197.242:0
ASN
#9002 RETN Limited

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /9?z=4807448&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fmycimaa.tube%2Fwatch%2F%25D9%2585%25D8%25B4%25D8%25A7%25D9%2587%25D8%25AF%25D8%25A9-%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-house-md-%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-5-%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-7%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=76499598f9b84920bef8b6dc6e1a79be HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 841
Origin: https://mycimaa.tube
Connection: keep-alive
Referer: https://mycimaa.tube/
Cookie: scm=1; OAID=9cf8c08cf9194232a1c23980ca38d788; oaidts=1670419794
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 13:29:55 GMT
content-type: application/javascript
content-length: 7
access-control-allow-credentials: true
access-control-allow-origin: https://mycimaa.tube
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: db4ee626851bf344836b970b9ded7a6d
access-control-expose-headers: X-Sc
set-cookie: OAID=76499598f9b84920bef8b6dc6e1a79be; expires=Thu, 07 Dec 2023 13:29:55 GMT; secure; SameSite=None
oaidts=1670419794; expires=Thu, 07 Dec 2023 13:29:55 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

mycimaa.tube/wp-content/uploads/2019/11/favicon-1.jpg

172.67.71.57

200 OK

1.6 kB

URL HTTP/2
mycimaa.tube/wp-content/uploads/2019/11/favicon-1.jpg
IP
172.67.71.57:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 142x84, components 3\012- data
Size
1.6 kB (1577 bytes)
Hash
022d64ba38b2ac4bc4c07baa71fe7fd4
b162780e47c3eca40a974b09d87e7ade9bc1df9a
f385f0501b849b0528c93fdaabd5501cceadba16f2f652c618a86769f7224cef

HTTP Headers

GET /wp-content/uploads/2019/11/favicon-1.jpg HTTP/1.1
Host: mycimaa.tube
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/
Cookie: cap160={"zi":{"v":1,"t":1670419794238},"zc":{"v":0,"t":null},"ac":{"i":1,"c":0,"t":null},"c":{"1120":{"i":0,"c":0,"t":null}}}; cap161={"zi":{"v":1,"t":1670419794241},"zc":{"v":0,"t":null},"ac":{"i":1,"c":0,"t":null},"c":{"1120":{"i":0,"c":0,"t":null}}}; prefetchAd_4796941=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:55 GMT
content-type: image/jpeg
content-length: 1577
cf-bgj: h2pri
etag: "5e3f3bcb-629"
last-modified: Sat, 08 Feb 2020 22:52:59 GMT
vary: Accept, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3713
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pV7iJCsEaX5VACvH2%2Bl%2F8HDJqz4DB1y72Gjdu9NfbtRSfogxAEKewDrrqAi84Zf01AYALl3fsEDVK2zvPQUQPzcm2gmn1nwmhjWz2mg6%2Ffb4%2FZ5UGpsqrqNvlU2u%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 775d9ce79af1b506-OSL
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 07 Dec 2022 12:41:08 GMT
expires: Wed, 07 Dec 2022 14:41:08 GMT
cache-control: public, max-age=7200
age: 2927
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

unpkg.com/videojs-contrib-hls@5.15.0/dist/videojs-contrib-hls.js

104.16.122.175

200 OK

161 kB

URL HTTP/2
unpkg.com/videojs-contrib-hls@5.15.0/dist/videojs-contrib-hls.js
IP
104.16.122.175:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (857)
Size
161 kB (160580 bytes)
Hash
2984f59e451428bc21551ab633d399ba
1b73942122a759f9134f69b159b1f3e624edb9ce
22df6791b019e306ad03e7157ce05018c813bb82609ca4e53bcb96fcc9dbe510

HTTP Headers

GET /videojs-contrib-hls@5.15.0/dist/videojs-contrib-hls.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycimaa.tube/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:55 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"af180-yddBL+N7CRgyB07pxWVoSeh+9Bw"
via: 1.1 fly.io
fly-request-id: 01G4XKX4QG128115AQAE4NBFMX-fra
cf-cache-status: HIT
age: 15863426
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 775d9ce79a5db509-OSL
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/videojs-flash@2.2.1/dist/videojs-flash.js

104.16.122.175

200 OK

10 kB

URL HTTP/2
unpkg.com/videojs-flash@2.2.1/dist/videojs-flash.js
IP
104.16.122.175:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
10 kB (10203 bytes)
Hash
f4af526a83a71d00ff7b7a19c36f1f0e
788eab21ac6e48bb10034603e7ad0b6193f14dd5
a786ad58af8f6ea66427f439d6f76664ca1e01c039063bf329cccac0faf4de01

HTTP Headers

GET /videojs-flash@2.2.1/dist/videojs-flash.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycimaa.tube/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:55 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"99ef-EigKzOQZJEjpPjsu+eGt9sbrqUo"
via: 1.1 fly.io
fly-request-id: 01G4XED00012H0FHS4H5YGBK8Y-fra
cf-cache-status: HIT
age: 15869123
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 775d9ce79a60b509-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
81a7e0ed8b45460991a7d9b719423d48
fa4824b64d5484b955cecebbeea06710ced4fba5
2fb356139722003d5c83566b936968a5ce9ba3756f69ace50a53bea6c1b9f7eb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 13:29:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-128370636-1&cid=2063917478.1670419795&jid=2001848415&gjid=1070451826&_gid=1769575416.1670419795&_u=YEBAAUAAAAAAACAAI~&z=420175303

64.233.164.157

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-128370636-1&cid=2063917478.1670419795&jid=2001848415&gjid=1070451826&_gid=1769575416.1670419795&_u=YEBAAUAAAAAAACAAI~&z=420175303
IP
64.233.164.157:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-128370636-1&cid=2063917478.1670419795&jid=2001848415&gjid=1070451826&_gid=1769575416.1670419795&_u=YEBAAUAAAAAAACAAI~&z=420175303 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://mycimaa.tube
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://mycimaa.tube
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 07 Dec 2022 13:29:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
81a7e0ed8b45460991a7d9b719423d48
fa4824b64d5484b955cecebbeea06710ced4fba5
2fb356139722003d5c83566b936968a5ce9ba3756f69ace50a53bea6c1b9f7eb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 13:29:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0fa282ae07239f0cf04503485877d681
631aa2fff49d29c46341db6540d25917b3626ef5
9020928ea0c9addf3e0a04d78db4158b54b4f29577785b5adb4cf7f2949ced17

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 13:29:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9084a518c70ad57bb3226fb519b648fd
79348ebe6f5900a035d4d65e08a7409fd9708f15
f0c6b0f66c31aa7cb2d2808eb4c04c3681d48e731efc8cbba0f3fef1d218ce7b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 13:29:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

e1.o.lencr.org/

23.33.119.27

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
171c16579ee3aa4bfb5c199b7ee0a94b
0b4a5f763c7a0132aaa6fa4c74d395cb70dc1e02
b86798cab75f10d4e93e2d4523c1e03a872047756c65255227574ea65f9ebff7

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B86798CAB75F10D4E93E2D4523C1E03A872047756C65255227574EA65F9EBFF7"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4480
Expires: Wed, 07 Dec 2022 14:44:35 GMT
Date: Wed, 07 Dec 2022 13:29:55 GMT
Connection: keep-alive

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-128370636-1&cid=2063917478.1670419795&jid=2001848415&_u=YEBAAUAAAAAAACAAI~&z=770730498

216.58.207.228

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-128370636-1&cid=2063917478.1670419795&jid=2001848415&_u=YEBAAUAAAAAAACAAI~&z=770730498
IP
216.58.207.228:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-128370636-1&cid=2063917478.1670419795&jid=2001848415&_u=YEBAAUAAAAAAACAAI~&z=770730498 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Dec 2022 13:29:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-128370636-1&cid=2063917478.1670419795&jid=2001848415&_u=YEBAAUAAAAAAACAAI~&z=770730498

142.250.74.163

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-128370636-1&cid=2063917478.1670419795&jid=2001848415&_u=YEBAAUAAAAAAACAAI~&z=770730498
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-128370636-1&cid=2063917478.1670419795&jid=2001848415&_u=YEBAAUAAAAAAACAAI~&z=770730498 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Dec 2022 13:29:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

mycimaa.tube/run/113d3fe9ff884dfb1288eaf720099e09d3b989c433846e6c786695ab2f7c6ef7a52caed7873d0342e2e8b2d93ad74f107a5529e68a61c28f50aaaf4f5f26283fe54b42c9712f8c036c8dbfabfb4c558b4f6f01e56623e2b4c1fa0bf440c927ddb91792?Key=pVXv6Kjn2grmtEeh9y_9xw&Expires=1670430586

172.67.71.57

301 Moved Permanently

471 B

URL HTTP/2
mycimaa.tube/run/113d3fe9ff884dfb1288eaf720099e09d3b989c433846e6c786695ab2f7c6ef7a52caed7873d0342e2e8b2d93ad74f107a5529e68a61c28f50aaaf4f5f26283fe54b42c9712f8c036c8dbfabfb4c558b4f6f01e56623e2b4c1fa0bf440c927ddb91792?Key=pVXv6Kjn2grmtEeh9y_9xw&Expires=1670430586
IP
172.67.71.57:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
0fa282ae07239f0cf04503485877d681
631aa2fff49d29c46341db6540d25917b3626ef5
9020928ea0c9addf3e0a04d78db4158b54b4f29577785b5adb4cf7f2949ced17

HTTP Headers

GET /run/113d3fe9ff884dfb1288eaf720099e09d3b989c433846e6c786695ab2f7c6ef7a52caed7873d0342e2e8b2d93ad74f107a5529e68a61c28f50aaaf4f5f26283fe54b42c9712f8c036c8dbfabfb4c558b4f6f01e56623e2b4c1fa0bf440c927ddb91792?Key=pVXv6Kjn2grmtEeh9y_9xw&Expires=1670430586 HTTP/1.1
Host: mycimaa.tube
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 301 Moved Permanently
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: text/html; charset=UTF-8
location: https://mycimaa.tube/run/113d3fe9ff884dfb1288eaf720099e09d3b989c433846e6c786695ab2f7c6ef7a52caed7873d0342e2e8b2d93ad74f107a5529e68a61c28f50aaaf4f5f26283fe54b42c9712f8c036c8dbfabfb4c558b4f6f01e56623e2b4c1fa0bf440c927ddb91792/?Key=pVXv6Kjn2grmtEeh9y_9xw&Expires=1670430586
x-redirect-by: WordPress
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MsAGrxCId84VpBwTW08lMPu8vvAFl%2FssMsbs9ahvWc6VsZQNiDfPvfXT56QJeyUHWZMgj5Dn5BHRPMVy%2B4p7hMpyiMBsIyTb4O99%2FoOf8odSxd4x1BA1DV6yjTDxrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 775d9ce2cc4fb506-OSL
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
cd6dabd083ee1c237c8ea3ba38cc48d5
bbe4420bf1c0fe0d5621336865563418d2f16f39
c9314cdac13bc2ea94505f473538ab4d5c0a940dfbc2f5447e6f22a5af580572

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 13:29:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

upbam.org/rea7gf5t5mmo/House.MD.S05E07.1080p.Bluray.MyCima.ME.mp4.html?Key=mP0tdKrwLqNmyPbTuwKOnA&Expires=1670430594

172.67.156.2

302 Found

0 B

URL HTTP/2
upbam.org/rea7gf5t5mmo/House.MD.S05E07.1080p.Bluray.MyCima.ME.mp4.html?Key=mP0tdKrwLqNmyPbTuwKOnA&Expires=1670430594
IP
172.67.156.2:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rea7gf5t5mmo/House.MD.S05E07.1080p.Bluray.MyCima.ME.mp4.html?Key=mP0tdKrwLqNmyPbTuwKOnA&Expires=1670430594 HTTP/1.1
Host: upbam.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Wed, 07 Dec 2022 13:29:55 GMT
content-length: 0
location: https://n31.cdnbom.org:82/d/ejrqn7rvbgeyf3tkkeojh6i7ffnjefzgid3lf3yfl7zd5m4x7auenra2sbnmzj3lkiu3p6xu/House.MD.S05E07.1080p.Bluray.MyCima.ME.mp4
set-cookie: lang=english; domain=.upbam.org; path=/
access-control-allow-origin: https://upbam.org
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hhfI7KZLzSWXPR%2BgjPwYZU1D%2FwT5hbHHAGnEc3mb9fzP3%2BYGCX%2FEJLhVGKnL4%2BO6xa8xxxmT1HCnDLWcLLnyGHZfAGTvIe9i0Gld0bj0ZDiPaOxtOM6ePk42KbQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 775d9ceb29ac0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

unpkg.com/videojs-contrib-hls/dist/videojs-contrib-hls.js

104.16.122.175

302 Found

422 B

URL HTTP/2
unpkg.com/videojs-contrib-hls/dist/videojs-contrib-hls.js
IP
104.16.122.175:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
422 B (422 bytes)
Hash
bf2e75312fe5ee5978f47f4d322067e6
e62a05cb0149c4c68db6eb0c3fd4e681b4494cf0
e22e4f0bff74bb8f800fb2c98e98f5f4bdfb0c04ba2cb1b9a409cd48d7efa81f

HTTP Headers

GET /videojs-contrib-hls/dist/videojs-contrib-hls.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /videojs-contrib-hls@5.15.0/dist/videojs-contrib-hls.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GKPC3X7BWE7JRPCRNCJ2NTY6-ams
cf-cache-status: HIT
age: 349
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 775d9ce65896b509-OSL
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3339
Expires: Wed, 07 Dec 2022 14:25:34 GMT
Date: Wed, 07 Dec 2022 13:29:55 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3339
Expires: Wed, 07 Dec 2022 14:25:34 GMT
Date: Wed, 07 Dec 2022 13:29:55 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3339
Expires: Wed, 07 Dec 2022 14:25:34 GMT
Date: Wed, 07 Dec 2022 13:29:55 GMT
Connection: keep-alive

unpkg.com/@videojs/themes@1/dist/forest/index.css

104.16.122.175

302 Found

569 B

URL HTTP/2
unpkg.com/@videojs/themes@1/dist/forest/index.css
IP
104.16.122.175:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
569 B (569 bytes)
Hash
1e73bfa5bf136d580c2baa2c4af36e19
2dc37483698b23e1f34718049d44dc9fbf057a91
dd1a19d8ccc899c6b9ef2bee200dcfab8e3f34fa95c0971be5329a2c71d8822e

HTTP Headers

GET /@videojs/themes@1/dist/forest/index.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /@videojs/themes@1.0.1/dist/forest/index.css
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GKPC1HT3R62D13Q1VG5HFWEK-ams
cf-cache-status: HIT
age: 426
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 775d9ce63871b509-OSL
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3339
Expires: Wed, 07 Dec 2022 14:25:34 GMT
Date: Wed, 07 Dec 2022 13:29:55 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3a455f5-9c19-4e6f-ab7a-1fe9c399118f.jpeg

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3a455f5-9c19-4e6f-ab7a-1fe9c399118f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8579 bytes)
Hash
a0f0782df385287698881f1c19e79b96
5a25f245b594f6cbf2fdaeed2463ac5fbc08068a
4f795cd2286e194cd96751e6a4e3bd0da09c6db5344182e51986b65149e75cd7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3a455f5-9c19-4e6f-ab7a-1fe9c399118f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8579
x-amzn-requestid: 0efa303a-364e-488d-beac-24836c7c1e4f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlirE2KoAMFX9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb610-5564a0c0264ed36f0497e17e;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:37:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xpzGji_JAWkUjhXLouXWlin6rV-44shz6Z_STqo7uK7ZUV2PWs7Zpg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:54:15 GMT
age: 56140
etag: "5a25f245b594f6cbf2fdaeed2463ac5fbc08068a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

tzegilo.com/stattag.js

172.67.194.45

200 OK

12 kB

URL HTTP/2
tzegilo.com/stattag.js
IP
172.67.194.45:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (12966), with no line terminators
Size
12 kB (11789 bytes)
Hash
169376a16cf388541355964ef51ee6b8
af97671cc145c5c04221ffcdaa0cb47829af6214
0c099b1e19da37b3b4930b9abb53a900a979ec23eb95e03877e92dba9c2acca9

HTTP Headers

GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 15:07:42 GMT
etag: W/"637e373e-32a6"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 3717
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FemOxqvX5vM7F3FcdZsFT19cculYBIFgM1XG%2BfGF%2Fbr1ILIHo1EiUulvZpF1Ughhe30mtdU3B03mecZu5ACG2VxrbOIsfAgH9It6HXZ8tFhf9cVqf%2BLrmVVg3gm7qw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775d9ce59ff3b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8438 bytes)
Hash
e95ebce9d79ba46cb96af9a45af1762f
985c6761675e6bcc0186f64d55f94cf09352f05c
5837d6bf31e57f955ba2577f112281cc33a5502b358c83192f4e396b57042ac0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8438
x-amzn-requestid: 0f5d1b0e-1193-4006-8a54-555681d9f62e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlqVGMjoAMFS6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb641-6366ea6464122d857407cdff;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:38:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2j9gqNvWYRFM-li9Nj4nLAWe_eKWMSwagPgU3eAtk0pjcJUX4Q8XEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:55:40 GMT
etag: "985c6761675e6bcc0186f64d55f94cf09352f05c"
content-type: image/jpeg
age: 56055
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feeb81330-af0b-4cc3-bd0e-591ba064667a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7392 bytes)
Hash
c9257f2e3b9bd1b3aa262b0f4bf57968
4bcdd6ecd63834aa1010faf19457a97f37ae99fa
9afd592279c51b533b3bf72a860cf4a8f2bc6cf01b07d1ab6f11f0ff302e0ef6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feeb81330-af0b-4cc3-bd0e-591ba064667a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7392
x-amzn-requestid: f4b6890a-7a8f-48f8-b2af-365cb5f681e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cpwREFiXoAMFSMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d60d3-009e524f30c72d0629c877bb;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 03:09:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C0-H0LUbxaxMEXoDf6PXEFAvVTj2D9K2M7eshRo39QzAAWSk2ubepA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 03:27:19 GMT
age: 36156
etag: "4bcdd6ecd63834aa1010faf19457a97f37ae99fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (9987 bytes)
Hash
8055d0db573ab34924db3b60ed788bb2
a4aae05e7a929fc7f652f56748d2a2da9c44ac45
f6a9555f112882d4ac284c6dc26ae0f02f6ccf8ee312615e01ebec8242bade1f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 3d4d7dd0-2be0-46c1-a9c0-aa3cce2e8c81
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSvUHhJIAMFZYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c8-63a6960043564aa762caaabe;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XuCC11WgzRMNmSeJIacnkPnv1FU_H6_MHMwXYHDoiuXbAWXT7zjDQw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:28:34 GMT
age: 54081
etag: "a4aae05e7a929fc7f652f56748d2a2da9c44ac45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11224 bytes)
Hash
b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ViuPsZBEVJ-aGOcsfrl3nXu244mzMUMQVhpPeNlO7W3sBrrfuUfXpA==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:32:04 GMT
age: 53871
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

172.67.71.57

200 OK

0 B

URL HTTP/2
mycimaa.tube/run/113d3fe9ff884dfb1288eaf720099e09d3b989c433846e6c786695ab2f7c6ef7a52caed7873d0342e2e8b2d93ad74f107a5529e68a61c28f50aaaf4f5f26283fe54b42c9712f8c036c8dbfabfb4c558b4f6f01e56623e2b4c1fa0bf440c927ddb91792/?Key=pVXv6Kjn2grmtEeh9y_9xw&Expires=1670430586
IP
172.67.71.57:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /run/113d3fe9ff884dfb1288eaf720099e09d3b989c433846e6c786695ab2f7c6ef7a52caed7873d0342e2e8b2d93ad74f107a5529e68a61c28f50aaaf4f5f26283fe54b42c9712f8c036c8dbfabfb4c558b4f6f01e56623e2b4c1fa0bf440c927ddb91792/?Key=pVXv6Kjn2grmtEeh9y_9xw&Expires=1670430586 HTTP/1.1
Host: mycimaa.tube
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QoNlP4TZz13rXWxfZbevwnn54EDMZV%2BrktzelPS7qUPb9WXKsguSlXpyUNhuQx9ZHRaz8mN22tJXdZUiIzCce4ZeVvFO7SKzIPfcyr4K%2B1DPCVGaK74%2F6uLgm2mZDA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 775d9ce42e21b506-OSL
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/@videojs/themes@1.0.1/dist/forest/index.css

104.16.122.175

200 OK

0 B

URL HTTP/2
unpkg.com/@videojs/themes@1.0.1/dist/forest/index.css
IP
104.16.122.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /@videojs/themes@1.0.1/dist/forest/index.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycimaa.tube/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Wed, 28 Oct 2020 04:24:35 GMT
etag: W/"1261-TREtap8czYudjMboZWzHkoZFOgs"
via: 1.1 fly.io
fly-request-id: 01F3YH57QCRAJEKS87K1HVJY3F
cf-cache-status: HIT
age: 19730058
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 775d9ce668afb509-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/

172.67.71.57

200 OK

0 B

URL HTTP/2
mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/
IP
172.67.71.57:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/ HTTP/1.1
Host: mycimaa.tube
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:53 GMT
content-type: text/html; charset=UTF-8
x-pingback: https://mycimaa.tube/xmlrpc.php
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jw4R5KRklv5wPaXM1CsFxGVBliP0RoogKZTgf0qtp49Be43K3ShDtHl9iXg%2BFDn1JYB46T%2FbiVVtBMaRef3OsxGsKauf99LhiHzcDM8EameVdtBE9KLl%2FSmyhtCLrg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 775d9cdebdb8b506-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycimaa.tube/insights.php

172.67.71.57

200 OK

0 B

URL HTTP/2
mycimaa.tube/insights.php
IP
172.67.71.57:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /insights.php HTTP/1.1
Host: mycimaa.tube
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 12
Origin: https://mycimaa.tube
Connection: keep-alive
Referer: https://mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: application/json
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dXUa1zc9BAhYoWa67vzVdZqDPg0UKLxhgQGW%2BhQVWgfSfTnb%2BJ2qKA24bgFRaBAImuYUdIwRZAq1t4p6gHjeT%2B3sAr1sN0TWpsxmrMVNv9znmrKTCeeyOTmM1q0dsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 775d9ce14a36b506-OSL
content-encoding: br
X-Firefox-Spdy: h2

nanouwho.com/27/3994ff6595fb5bf65437d4c0fac557c7

139.45.197.242

200 OK

0 B

URL HTTP/2
nanouwho.com/27/3994ff6595fb5bf65437d4c0fac557c7
IP
139.45.197.242:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /27/3994ff6595fb5bf65437d4c0fac557c7 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Cookie: scm=1; OAID=9cf8c08cf9194232a1c23980ca38d788; oaidts=1670419794
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
cache-control: max-age:290304000, public
last-modified: Wed, 07 Dec 2022 07:13:17 GMT
expires: Wed, 06 Jan 2083 07:13:17 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

whoursie.com/?rb=0AJZ4bnOgqRK79vWubAsbXy9Pfi1bMicD9bQlU5L5H-9EoBbFVqB_mw33Vilg2HiSOGqSXKrX_dzVXCjFNdZrHgOXcb4156ZaK9wjcK6h3Iam--S24D4Hb52FisLGHxruSEv3d-vVJ-MSis0a_Tcex135Ct2Tk-BLJuUhBUyags33ujsecuhGNbzKh4Li-EPjWV6KuoONf6a5PZtOq9K5do3_uoWxCkTnjr5DmCAfnjLbaIF&request_ab2=96003&zoneid=4796941&js_build=iclick-v1.458.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=1&pl=https%3A%2F%2Fmycimaa.tube%2Fwatch%2F%25D9%2585%25D8%25B4%25D8%25A7%25D9%2587%25D8%25AF%25D8%25A9-%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-house-md-%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-5-%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-7%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.458.0&bs=37acd4b1-309f-40d9-aedd-40b4a7187496&userId=76499598f9b84920bef8b6dc6e1a79be&m=link

139.45.197.237

200 OK

0 B

URL HTTP/2
whoursie.com/?rb=0AJZ4bnOgqRK79vWubAsbXy9Pfi1bMicD9bQlU5L5H-9EoBbFVqB_mw33Vilg2HiSOGqSXKrX_dzVXCjFNdZrHgOXcb4156ZaK9wjcK6h3Iam--S24D4Hb52FisLGHxruSEv3d-vVJ-MSis0a_Tcex135Ct2Tk-BLJuUhBUyags33ujsecuhGNbzKh4Li-EPjWV6KuoONf6a5PZtOq9K5do3_uoWxCkTnjr5DmCAfnjLbaIF&request_ab2=96003&zoneid=4796941&js_build=iclick-v1.458.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=1&pl=https%3A%2F%2Fmycimaa.tube%2Fwatch%2F%25D9%2585%25D8%25B4%25D8%25A7%25D9%2587%25D8%25AF%25D8%25A9-%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-house-md-%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-5-%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-7%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.458.0&bs=37acd4b1-309f-40d9-aedd-40b4a7187496&userId=76499598f9b84920bef8b6dc6e1a79be&m=link
IP
139.45.197.237:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /?rb=0AJZ4bnOgqRK79vWubAsbXy9Pfi1bMicD9bQlU5L5H-9EoBbFVqB_mw33Vilg2HiSOGqSXKrX_dzVXCjFNdZrHgOXcb4156ZaK9wjcK6h3Iam--S24D4Hb52FisLGHxruSEv3d-vVJ-MSis0a_Tcex135Ct2Tk-BLJuUhBUyags33ujsecuhGNbzKh4Li-EPjWV6KuoONf6a5PZtOq9K5do3_uoWxCkTnjr5DmCAfnjLbaIF&request_ab2=96003&zoneid=4796941&js_build=iclick-v1.458.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=1&pl=https%3A%2F%2Fmycimaa.tube%2Fwatch%2F%25D9%2585%25D8%25B4%25D8%25A7%25D9%2587%25D8%25AF%25D8%25A9-%25D9%2585%25D8%25B3%25D9%2584%25D8%25B3%25D9%2584-house-md-%25D9%2585%25D9%2588%25D8%25B3%25D9%2585-5-%25D8%25AD%25D9%2584%25D9%2582%25D8%25A9-7%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.458.0&bs=37acd4b1-309f-40d9-aedd-40b4a7187496&userId=76499598f9b84920bef8b6dc6e1a79be&m=link HTTP/1.1
Host: whoursie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mycimaa.tube/
Origin: https://mycimaa.tube
Connection: keep-alive
Cookie: OAID=76499598f9b84920bef8b6dc6e1a79be; oaidts=1670419794
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: application/json
x-trace-id: 789d35016102864b194fe03457f454ae
access-control-allow-origin: https://mycimaa.tube
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=76499598f9b84920bef8b6dc6e1a79be; expires=Thu, 07 Dec 2023 13:29:54 GMT; path=/; secure; SameSite=None
oaidts=1670419794; expires=Thu, 07 Dec 2023 13:29:54 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Wed, 14 Dec 2022 13:29:54 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

mycimaa.tube/wp-content/themes/Mycima2021/Style/fonts.css

172.67.71.57

404 Not Found

0 B

URL HTTP/2
mycimaa.tube/wp-content/themes/Mycima2021/Style/fonts.css
IP
172.67.71.57:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/Mycima2021/Style/fonts.css HTTP/1.1
Host: mycimaa.tube
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/run/113d3fe9ff884dfb1288eaf720099e09d3b989c433846e6c786695ab2f7c6ef7a52caed7873d0342e2e8b2d93ad74f107a5529e68a61c28f50aaaf4f5f26283fe54b42c9712f8c036c8dbfabfb4c558b4f6f01e56623e2b4c1fa0bf440c927ddb91792/?Key=pVXv6Kjn2grmtEeh9y_9xw&Expires=1670430586
Cookie: cap160={"zi":{"v":1,"t":1670419794238},"zc":{"v":0,"t":null},"ac":{"i":1,"c":0,"t":null},"c":{"1120":{"i":0,"c":0,"t":null}}}; cap161={"zi":{"v":1,"t":1670419794241},"zc":{"v":0,"t":null},"ac":{"i":1,"c":0,"t":null},"c":{"1120":{"i":0,"c":0,"t":null}}}
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
date: Wed, 07 Dec 2022 13:29:55 GMT
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=31536000, must-revalidate
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vPrp%2BX11hbsfiCaBlsTfA9Uu4j4RBQ3ajqgDYzRrneL%2F1kR8Q1EQmE4lqWOitPAV29iOIZtdsiWEqkza5yXX%2FlyF%2FOIl%2BNtC%2F9rOD6JjqYHhlMUIMBhKMPQcVljiGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775d9ce5b80cb506-OSL
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/videojs-flash/dist/videojs-flash.js

104.16.122.175

302 Found

0 B

URL HTTP/2
unpkg.com/videojs-flash/dist/videojs-flash.js
IP
104.16.122.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /videojs-flash/dist/videojs-flash.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /videojs-flash@2.2.1/dist/videojs-flash.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GKPCAP120E8PGW2MF75WM4XR-ams
cf-cache-status: HIT
age: 127
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 775d9ce668a0b509-OSL
X-Firefox-Spdy: h2

oaphoace.net/401/5097541

139.45.197.239

200 OK

0 B

URL HTTP/2
oaphoace.net/401/5097541
IP
139.45.197.239:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /401/5097541 HTTP/1.1
Host: oaphoace.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: application/javascript
x-trace-id: c38753bfbd8db8df3c7776539398a077
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=7bba83be8c6b4774b0344d9a30cf7d34; expires=Thu, 07 Dec 2023 13:29:54 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

mycimaa.tube/wp-content/themes/Mycima2021/components/packs/%23footer/js/jquery-3.4.1.min.js?ver=6.0.2

172.67.71.57

200 OK

0 B

URL HTTP/2
mycimaa.tube/wp-content/themes/Mycima2021/components/packs/%23footer/js/jquery-3.4.1.min.js?ver=6.0.2
IP
172.67.71.57:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/Mycima2021/components/packs/%23footer/js/jquery-3.4.1.min.js?ver=6.0.2 HTTP/1.1
Host: mycimaa.tube
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:53 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 22 Aug 2021 16:57:00 GMT
etag: W/"612281dc-157fb"
access-control-allow-origin: *
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3940
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HuUZRBoE9sHtOl2XBcOBQy%2FOnkvZPuRxq1G2N%2FAttVReCfiATxUNEbL4fYCLGWKK8hDyB16fRyEoAWC7sOBUkx1dBtXmPO%2BT1aiu0DKYKriNR3e1swhlahMiFqTUhQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775d9ce00fefb506-OSL
content-encoding: br
X-Firefox-Spdy: h2

mycimaa.tube/wp-content/themes/Mycima2021/components/packs/%23footer/js/setup.js?1344765082&ver=6.0.2

172.67.71.57

200 OK

0 B

URL HTTP/2
mycimaa.tube/wp-content/themes/Mycima2021/components/packs/%23footer/js/setup.js?1344765082&ver=6.0.2
IP
172.67.71.57:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/Mycima2021/components/packs/%23footer/js/setup.js?1344765082&ver=6.0.2 HTTP/1.1
Host: mycimaa.tube
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/watch/%D9%85%D8%B4%D8%A7%D9%87%D8%AF%D8%A9-%D9%85%D8%B3%D9%84%D8%B3%D9%84-house-md-%D9%85%D9%88%D8%B3%D9%85-5-%D8%AD%D9%84%D9%82%D8%A9-7/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 29 Sep 2022 16:18:32 GMT
etag: W/"6335c558-254b0"
access-control-allow-origin: *
cache-control: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wILtE12Rwsvg5lcQ8eX8lQRZ1qjytAWMj8Hk279E7pWTBObtXt61zkvNihDTJhYMUHIoWkYbU6k25pX6%2FBNiFLQZLTEjUqAf3prbi6gMZ3goXNO5VacF9oHUkoubcQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775d9ce00ff3b506-OSL
content-encoding: br
X-Firefox-Spdy: h2

whoursie.com/5/4796941

139.45.197.237

200 OK

0 B

URL HTTP/2
whoursie.com/5/4796941
IP
139.45.197.237:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /5/4796941 HTTP/1.1
Host: whoursie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mycimaa.tube/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 13:29:54 GMT
content-type: application/javascript
x-trace-id: 7d2225336895b7e2aea14e2982163887
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=76499598f9b84920bef8b6dc6e1a79be; expires=Thu, 07 Dec 2023 13:29:54 GMT; path=/; secure; SameSite=None
oaidts=1670419794; expires=Thu, 07 Dec 2023 13:29:54 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (27)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations