33548-parazit.kinogo.ru.net/
200 OK 4.5 kB URL HTTP/1.1 33548-parazit.kinogo.ru.net/
IP
ASN #43624 Pq Hosting S.r.l.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1086)
Hash e18483a00d202dd85c124512e6b006f4
0b17898bc31590d48dec3bf2930c2f97b2522fda
e5d72bf1b9f72a8e4707ec36fa2f596f40e4e3132eba2e09f0d72a0bd0539364
GET / HTTP/1.1
Host: 33548-parazit.kinogo.ru.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:17 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding, Host
X-Powered-By: PHP/8.1.5RC1
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3236
Expires: Sat, 03 Sep 2022 12:19:14 GMT
Date: Sat, 03 Sep 2022 11:25:18 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 03 Sep 2022 10:42:59 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2ohBCnIlphSLNJs94dQ9CIbKgLOYjx3c-t9egNdDdyApwB6bmqDEQw==
Age: 2539
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 03 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kyKMYA0zdJU7foE7fcxnU8aYogfZdEc3zRi3Lv555VZ25kX8GW8SRg==
age: 36601
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 11:25:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
styles.kinogo.ru.net/styles.css?v=1
200 OK 8.9 kB URL HTTP/1.1 styles.kinogo.ru.net/styles.css?v=1
IP
ASN #43624 Pq Hosting S.r.l.
File type Unicode text, UTF-8 text, with very long lines (371)
Hash b98e1303f7a36c7a095daa160047aefa
8c0d0822102727652b26b5c76151bae8bc92100b
ac41a7ea9bb62825c599b251285cf5617d91d573f137cbbf45ef6181507f5661
GET /styles.css?v=1 HTTP/1.1
Host: styles.kinogo.ru.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33548-parazit.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:18 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Last-Modified: Fri, 08 Apr 2022 19:15:21 GMT
ETag: W/"9674-5dc296a7b796e"
Content-Encoding: gzip
styles.kinogo.ru.net/engine.css
200 OK 8.8 kB URL HTTP/1.1 styles.kinogo.ru.net/engine.css
IP
ASN #43624 Pq Hosting S.r.l.
File type ASCII text, with very long lines (12780)
Hash 42119c6f27aa30498f7881e58cbdaba8
f5ac31b40d83a6b63e169d629e045a41096370b8
a537392ab9f1dbf3da79917ef4a56666f09a985a06e65b27c58a08cc9854ff5d
GET /engine.css HTTP/1.1
Host: styles.kinogo.ru.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33548-parazit.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:18 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Last-Modified: Fri, 08 Apr 2022 19:15:21 GMT
ETag: W/"57fc-5dc296a74fd46"
Content-Encoding: gzip
js.kinogo.ru.net/libs.js
200 OK 12 kB IP
ASN #43624 Pq Hosting S.r.l.
File type ASCII text, with very long lines (9724)
Hash 656b78706d4f72aef346cb7d1e7a066e
b5062a78c2e4bcf735bbb8d3b63150f2840bcb81
19d0f7a8b1fb48c08935362d61aa5cea18bdb251281fb142b958d16f0a7bcf98
GET /libs.js HTTP/1.1
Host: js.kinogo.ru.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33548-parazit.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:18 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Last-Modified: Fri, 08 Apr 2022 19:15:19 GMT
ETag: W/"9fba-5dc296a5db83d"
Content-Encoding: gzip
js.kinogo.ru.net/dle_js.js
200 OK 6.6 kB URL HTTP/1.1 js.kinogo.ru.net/dle_js.js
IP
ASN #43624 Pq Hosting S.r.l.
File type HTML document, ASCII text, with very long lines (602)
Hash bdd3d214f52f5a18f26b638c5fa4ad65
ad0b8396c6094e5c4069b26640cac5a11497e485
67e40f2a150a6115ef6e61dc4c06845ef361beb28f710e8142d8be88bff898a6
GET /dle_js.js HTTP/1.1
Host: js.kinogo.ru.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33548-parazit.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:18 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Last-Modified: Fri, 08 Apr 2022 19:15:19 GMT
ETag: W/"6f92-5dc296a557ec5"
Content-Encoding: gzip
js.kinogo.ru.net/jquery.cookie.js
200 OK 1.5 kB URL HTTP/1.1 js.kinogo.ru.net/jquery.cookie.js
IP
ASN #43624 Pq Hosting S.r.l.
Hash c3c0b2b73c71bc979836850078b8dd55
822ef574ca5b8382df2abcb3cf517a7fb0fa0b5b
dd0945498e5e2dc4ce026d57a11bf1e52acc2bac1dc16a8b41e68cd48a83ca5c
GET /jquery.cookie.js HTTP/1.1
Host: js.kinogo.ru.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33548-parazit.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:18 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Last-Modified: Fri, 08 Apr 2022 19:15:19 GMT
ETag: W/"1096-5dc296a5309dd"
Content-Encoding: gzip
js.kinogo.ru.net/jqueryui.js
200 OK 26 kB URL HTTP/1.1 js.kinogo.ru.net/jqueryui.js
IP
ASN #43624 Pq Hosting S.r.l.
File type ASCII text, with very long lines (18446)
Hash 6c67df4c6a7aa42e10407247948e9c25
8847bc0273e97ca42bdcede97623884cd2e61a2e
bc97c7f1cc4700920debece0a31b32dda745e13573e8255a281cb6579edca3a8
GET /jqueryui.js HTTP/1.1
Host: js.kinogo.ru.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33548-parazit.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:18 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Last-Modified: Fri, 08 Apr 2022 19:15:19 GMT
ETag: W/"16f9d-5dc296a5d9ce5"
Content-Encoding: gzip
js.kinogo.ru.net/jquery.js
200 OK 33 kB URL HTTP/1.1 js.kinogo.ru.net/jquery.js
IP
ASN #43624 Pq Hosting S.r.l.
File type ASCII text, with very long lines (32038)
Hash 17edf746df3aa29160211e52ca786fc5
2bf194df0e45ebf047e60ebd143cf7f665ff61b1
f7e0131bb3f6b858ee1adf09af3912a8a385e3d075545f1793b0883d329a0e50
GET /jquery.js HTTP/1.1
Host: js.kinogo.ru.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33548-parazit.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:18 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Last-Modified: Fri, 08 Apr 2022 19:15:19 GMT
ETag: W/"176d5-5dc296a559635"
Content-Encoding: gzip
pictures.kinogo.ru.net/android.png
200 OK 1.6 kB URL HTTP/1.1 pictures.kinogo.ru.net/android.png
IP
ASN #43624 Pq Hosting S.r.l.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 95fa2411ba5f87e6975533d128d86fd9
344eb25657e38bcd3a98a9529f52c02102188b1e
fa0906871dc8fe44cd0e50efafd67571e970237865bc7fc82b6d88d44c1e8e80
GET /android.png HTTP/1.1
Host: pictures.kinogo.ru.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33548-parazit.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:18 GMT
Content-Type: image/png
Content-Length: 1642
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 08 Apr 2022 18:56:05 GMT
ETag: "66a-5dc29258c6192"
Accept-Ranges: bytes
pictures.kinogo.ru.net/proverka.png
200 OK 1.4 kB URL HTTP/1.1 pictures.kinogo.ru.net/proverka.png
IP
ASN #43624 Pq Hosting S.r.l.
File type PNG image data, 30 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 8ccf0d92cc68925300e3de8bef45eedd
28f883fcc4f21596321faa52f86be26ea1c29ca5
64224269f1b5f8be16be6063db3c21bb843093aeb23f52e32616f1581185cdb3
GET /proverka.png HTTP/1.1
Host: pictures.kinogo.ru.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33548-parazit.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:18 GMT
Content-Type: image/png
Content-Length: 1355
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 08 Apr 2022 18:56:11 GMT
ETag: "54b-5dc2925ece49e"
Accept-Ranges: bytes
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 03 Sep 2022 10:38:16 GMT
Expires: Sat, 03 Sep 2022 11:33:20 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2goAnbVSwd-ig0V97c1s2z287LU4P-EM6qENQg2sFmkfbqEX5OErvA==
Age: 2822
vak345.com/s.js?v=017a8ed34404eabe8b3513789c2b0929
200 OK 6.9 kB URL HTTP/2 vak345.com/s.js?v=017a8ed34404eabe8b3513789c2b0929
IP
File type ASCII text, with very long lines (3641)
Hash b32bddaf1552835e764767407588b5b3
f4a3dfaa80aaa2df070a38994ba4f40bbeb9a7e4
fe36e059a307c70bd88f511f881c442c5ca7adbd5156c03889407c997e80a823
GET /s.js?v=017a8ed34404eabe8b3513789c2b0929 HTTP/1.1
Host: vak345.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://33548-parazit.kinogo.ru.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 11:25:18 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-movieads-country: NO
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vGx1Hol8pajgxWep7M3JaU7TcTbD%2F1KcsnAECwQuqMYZRJgoj8%2Fh15b7aTukgC8zM5IogJpyw0kiykOL0yv4bB9PXxETm29Y9k3m4AUNwZ1jnHTiWv9YVtRXDuaS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 744e1fbdad2ab527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pictures.kinogo.ru.net/kino.png
200 OK 7.3 kB URL HTTP/1.1 pictures.kinogo.ru.net/kino.png
IP
ASN #43624 Pq Hosting S.r.l.
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash abae36d0c275199afa0b074eba75ea16
76f9f29edeab79ad9ccf4ee3d511df7af25d5cf2
3f225a8767813188991f09a59124e3828da587a7875a80bbda2ac78bbf632858
GET /kino.png HTTP/1.1
Host: pictures.kinogo.ru.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://styles.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:18 GMT
Content-Type: image/png
Content-Length: 7252
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 08 Apr 2022 18:56:08 GMT
ETag: "1c54-5dc2925b5ea63"
Accept-Ranges: bytes
videopleer.kinogo.ru.net/?id=33548
200 OK 1.4 kB URL HTTP/1.1 videopleer.kinogo.ru.net/?id=33548
IP
ASN #43624 Pq Hosting S.r.l.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (423)
Hash ce172ff58814b9f4b53e0d0c7b1738e8
13cf1d365b8857cf3e47075a83f5c85b214d096f
debe34f7a3b5fdcebf8f9a8433815fa5e521412127bc31ac99aa48f2e12fe060
GET /?id=33548 HTTP/1.1
Host: videopleer.kinogo.ru.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33548-parazit.kinogo.ru.net/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:18 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
X-Powered-By: PHP/8.1.5RC1
Content-Encoding: gzip
partnercoll.github.io/actualize.js
200 OK 1.5 kB URL HTTP/2 partnercoll.github.io/actualize.js
IP
Hash 428862708a363e6c3d8ecfaa3f5ba5f9
123447813223bffad7e8eb9e71fe05d777ca18a0
82a085fb20b7e3c3ecb2a1258eec0a6875f1f8e22a3d6c8b324bb4e353711bdf
GET /actualize.js HTTP/1.1
Host: partnercoll.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
last-modified: Mon, 20 Sep 2021 11:32:00 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: W/"61487130-bb2"
expires: Wed, 17 Aug 2022 01:01:40 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6E26:4712:43386A:6FF7CF:62FC3B9C
accept-ranges: bytes
date: Sat, 03 Sep 2022 11:25:18 GMT
via: 1.1 varnish
age: 151
x-served-by: cache-bma1639-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1662204319.983599,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: fa5fedfe4514daa42fb31630a3907064302f8a59
content-length: 1463
X-Firefox-Spdy: h2
pictures.kinogo.ru.net/poster/33548-parazit.jpg
200 OK 88 kB URL HTTP/1.1 pictures.kinogo.ru.net/poster/33548-parazit.jpg
IP
ASN #43624 Pq Hosting S.r.l.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 250x357, components 3\012- data
Hash 9c3ab8cdd7cc140d75014ae0f1caebf9
122daf9385287fba46775339ef944bed94c792d1
b303b06244f3e51bd6f548539dbe283d6ec1afffcaee5a72d736743a8392e830
GET /poster/33548-parazit.jpg HTTP/1.1
Host: pictures.kinogo.ru.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33548-parazit.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:18 GMT
Content-Type: image/jpeg
Content-Length: 88434
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 08 Apr 2022 20:34:34 GMT
ETag: "15972-5dc2a85c3dea2"
Accept-Ranges: bytes
ocsp.digicert.com/
200 OK 471 B IP
Hash 4fc12f0a98aa28ccb56e0b56d7e40ded
f7efcfb8b4f4aa40268bada3fec380820a70ee35
a34aa9b7db949a583c3f1b4d87fed415a11d119c9615b5e710c3125173f8a277
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1781
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 11:25:19 GMT
Last-Modified: Sat, 03 Sep 2022 10:55:38 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
connect.ok.ru/dk?st.cmd=extLike&ref=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&uid=0&_=1662204316398
301 0 B URL HTTP/1.1 connect.ok.ru/dk?st.cmd=extLike&ref=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&uid=0&_=1662204316398
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dk?st.cmd=extLike&ref=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&uid=0&_=1662204316398 HTTP/1.1
Host: connect.ok.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33548-parazit.kinogo.ru.net/
HTTP/1.1 301
Server: Apache
Date: Sat, 03 Sep 2022 11:25:19 GMT
Content-Length: 0
Connection: keep-alive
Location: https://connect.ok.ru/dk?st.cmd=extLike&ref=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&uid=0&_=1662204316398
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f0f160859e2fd32fda97bfabdadb9581
cb5a32f699938dd3b8c1a8b1a5b093dc11727fc8
82109f472402c9e82fbfb9da065581b30d9acab69b7dd19e9ca4cc2ae5d73733
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82109F472402C9E82FBFB9DA065581B30D9ACAB69B7DD19E9CA4CC2AE5D73733"
Last-Modified: Fri, 02 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=996
Expires: Sat, 03 Sep 2022 11:41:55 GMT
Date: Sat, 03 Sep 2022 11:25:19 GMT
Connection: keep-alive
pictures.kinogo.ru.net/loading.gif
200 OK 6.8 kB URL HTTP/1.1 pictures.kinogo.ru.net/loading.gif
IP
ASN #43624 Pq Hosting S.r.l.
File type GIF image data, version 89a, 66 x 66\012- data
Hash 4541efce638d04a7cc00aa56c996b85b
850aed089a4ded8baa79d66c94ed3a08c166649e
49529f9580087fb28110d6383c3f5de6f426a82acc59ede6f1b56ba317d09bfe
GET /loading.gif HTTP/1.1
Host: pictures.kinogo.ru.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:19 GMT
Content-Type: image/gif
Content-Length: 6820
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 08 Apr 2022 18:56:08 GMT
ETag: "1aa4-5dc2925c4f20c"
Accept-Ranges: bytes
videosmor.com/player/
200 OK 39 kB IP
ASN #44066 diva-e Datacenters GmbH
File type ASCII text, with very long lines (32032)
Hash 7fd1e29ebed2d11836975a5d4720b4d4
a12ebf7ff4cdba09793e81f32f22b031e71daac9
9f7cd092ad00bfac3674bc39c2b8b2c5ed72ef805eaf4284afa8d937c39b7dc0
GET /player/ HTTP/1.1
Host: videosmor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:19 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Hostname: dsde382.rotator.viboom.com
ETag: W/"1f70a-yfG6IBt8uGAGm9rdITStig"
Vary: Accept-Encoding
Content-Encoding: gzip
counter.yadro.ru/hit;kinogo-ru-net?t45.3;r;s1280*1024*24;uhttp%3A//33548-parazit.kinogo.ru.net/;h%u041F%u0430%u0440%u0430%u0437%u0438%u0442%u044B%20/%20Gisaengchung%20%282019%29%20%u041A%u0438%u043D%u043E%u0413%u043E%20%u043E%u043D%u043B%u0430%u0439%u043D.;0.7147445891875754
302 Moved Temporarily 32 B URL HTTP/1.1 counter.yadro.ru/hit;kinogo-ru-net?t45.3;r;s1280*1024*24;uhttp%3A//33548-parazit.kinogo.ru.net/;h%u041F%u0430%u0440%u0430%u0437%u0438%u0442%u044B%20/%20Gisaengchung%20%282019%29%20%u041A%u0438%u043D%u043E%u0413%u043E%20%u043E%u043D%u043B%u0430%u0439%u043D.;0.7147445891875754
IP
ASN #39134 United Network LLC
File type HTML document, ASCII text
Hash 3e9c09a8c5a87f266e047a596f48578c
07d7b1940b7e3f9a3db43197458f9b8ef18a6bce
57fad7ae62012ff4a38ecb6045ac6e8e3a070a33bbd033b21ab6cad3566d9254
GET /hit;kinogo-ru-net?t45.3;r;s1280*1024*24;uhttp%3A//33548-parazit.kinogo.ru.net/;h%u041F%u0430%u0440%u0430%u0437%u0438%u0442%u044B%20/%20Gisaengchung%20%282019%29%20%u041A%u0438%u043D%u043E%u0413%u043E%20%u043E%u043D%u043B%u0430%u0439%u043D.;0.7147445891875754 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33548-parazit.kinogo.ru.net/
HTTP/1.1 302 Moved Temporarily
Date: Sat, 03 Sep 2022 11:25:19 GMT
Server: 0W/0.8c
Content-Type: text/html
Location: https://counter.yadro.ru/hit;kinogo-ru-net?t45.3;r;s1280*1024*24;uhttp%3A//33548-parazit.kinogo.ru.net/;h%u041F%u0430%u0440%u0430%u0437%u0438%u0442%u044B%20/%20Gisaengchung%20%282019%29%20%u041A%u0438%u043D%u043E%u0413%u043E%20%u043E%u043D%u043B%u0430%u0439%u043D.;0.7147445891875754
Content-Length: 32
Expires: Thu, 02 Sep 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
kodik.info/video/41167/4509cc271da1e4cb695ed0bede4aeeb4/720p
200 OK 6.1 kB URL HTTP/1.1 kodik.info/video/41167/4509cc271da1e4cb695ed0bede4aeeb4/720p
IP
ASN #262254 DDOS-GUARD CORP.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (818)
Hash 586800c77fef2f4419c996468044d018
e2a1dc22722dde79516e4416981399180987d8b3
946ebc67fb44c420e13eb118af11a841c2591832e3991bb4630ee2768588c505
GET /video/41167/4509cc271da1e4cb695ed0bede4aeeb4/720p HTTP/1.1
Host: kodik.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg1_=nHCPIgdZTO4m8ZdYUHbx; Domain=.kodik.info; HttpOnly; Path=/; Expires=Sun, 03-Sep-2023 11:25:19 GMT
Date: Sat, 03 Sep 2022 11:25:19 GMT
Content-Type: text/html; charset=utf-8
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
ocsp.digicert.com/
200 OK 471 B IP
Hash 9d068c535026c4f1881a39b57510abfe
b464bbd240f33902620e421030de83590355a86a
61fb6fb77c3c3c0182157a20f7062d62a0338a8208c34beb1516c21fe8c3c575
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5716
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 11:25:19 GMT
Last-Modified: Sat, 03 Sep 2022 09:50:03 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
pictures.kinogo.ru.net/favicon.ico
200 OK 1.2 kB URL HTTP/1.1 pictures.kinogo.ru.net/favicon.ico
IP
ASN #43624 Pq Hosting S.r.l.
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 3046d91b91c5e0f9b3bc5e49b92731e0
96a7aee4716e6f1beae93f1dbc6f1e81b7421588
23311d6c7ad91c4e489b55e6faaa187a16e192744645da5043624ae77dda175e
GET /favicon.ico HTTP/1.1
Host: pictures.kinogo.ru.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33548-parazit.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:19 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 1150
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 08 Apr 2022 18:56:07 GMT
ETag: "47e-5dc2925a7a9f3"
Accept-Ranges: bytes
8846.svetacdn.in/F8jvkSn90D81/movie/28769
200 OK 1.4 kB URL HTTP/1.1 8846.svetacdn.in/F8jvkSn90D81/movie/28769
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2720)
Hash cce0c235e6e30b5496263d2581c89130
d2f6e9363d6acb0c517240e5893addc92183ad69
4148215e458d9dc5b9c0397ce2da80e817abc26800a4434a516fe625e03fa050
GET /F8jvkSn90D81/movie/28769 HTTP/1.1
Host: 8846.svetacdn.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 11:25:19 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.33
Cache-Control: private, must-revalidate
pragma: no-cache
expires: -1
Set-Cookie: XSRF-TOKEN=eyJpdiI6ImtYK254bU44QjFnZ0dMTSsyMzZOakE9PSIsInZhbHVlIjoidHNvaFdVS2dETjhKaU1UQ3AzWW80TlwvT3hEUDJhMUxRdGFwNlZxbnpDRzVFUnVEaUh2YzBCTjFaRlwvNlRcL3NKQSIsIm1hYyI6ImMwNDRjZDRlZjZlZTJkNGNlYjFlYjljYTU5YTc4ODIxYjNjOTYyYzAxMGQ2YWUyMDIyYTAwYTY3MzMwZGQwMWYifQ%3D%3D; expires=Sat, 03-Sep-2022 13:25:19 GMT; Max-Age=7200; path=/
arch1s_session=eyJpdiI6IjRyOUVqVTVvM3VZaGhwbHNpR1hzalE9PSIsInZhbHVlIjoiXC9TUktxdUY1bjcwTlp0RENwRjV0U1lnVE9CWXNOVDBrWHhJT1MxRG5QYUxzZVRQV3ZrS3JJT2xsZTZoYTU5TTkiLCJtYWMiOiI2ODNiNjJiNzU0OWJmY2E4MjIyYzU3Yzc2NjIwN2YzM2VlMjI1YjRhYjU5ODMxZjgwZTk5ZDVlNDg3MTdlMzVlIn0%3D; expires=Sat, 03-Sep-2022 13:25:19 GMT; Max-Age=7200; path=/; httponly
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=buAgjfbM0t7GcFyMIPcFEgtKrX%2Bjgun%2BqAbhqZxfGe1Ni1Bqkbzp6FGSNLwZqqqmu%2FwFhMZH7l5fQS%2FXMTRcBesgYO5icq3PeFStC1O9JNvQKql927jT%2FX8%2BzuOCk1TcP%2F%2BV"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 744e1fc21bc8b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
stats.myangular.life/player?hit=script&sub=actualize&host=videopleer.kinogo.ru.net
200 OK 0 B URL HTTP/1.1 stats.myangular.life/player?hit=script&sub=actualize&host=videopleer.kinogo.ru.net
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?hit=script&sub=actualize&host=videopleer.kinogo.ru.net HTTP/1.1
Host: stats.myangular.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:19 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
graph.facebook.com/fql?q=SELECT+total_count+FROM+link_stat+WHERE+url%3D%22http%3A%2F%2F33548-parazit.kinogo.ru.net%2F%22&callback=jQuery111309828451878463487_1662204316394&_=1662204316395
200 OK 303 B URL HTTP/2 graph.facebook.com/fql?q=SELECT+total_count+FROM+link_stat+WHERE+url%3D%22http%3A%2F%2F33548-parazit.kinogo.ru.net%2F%22&callback=jQuery111309828451878463487_1662204316394&_=1662204316395
IP
Hash 34fe1b771cdebf1a9e5dde520b0d2173
247e61ddbcf883e51c8a069affc7d39984d57da0
73cb1f57fbf780f71386465c7bbd3c6223f739efaf7f6d28c5227488f1e69b5c
GET /fql?q=SELECT+total_count+FROM+link_stat+WHERE+url%3D%22http%3A%2F%2F33548-parazit.kinogo.ru.net%2F%22&callback=jQuery111309828451878463487_1662204316394&_=1662204316395 HTTP/1.1
Host: graph.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://33548-parazit.kinogo.ru.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
vary: Origin, Accept-Encoding
access-control-allow-origin: *
x-fb-rlafr: 0
content-type: text/javascript; charset=UTF-8
www-authenticate: OAuth "Facebook Platform" "invalid_request" "Unsupported get request. Object with ID 'fql' does not exist, cannot be loaded due to missing permissions, or does not support this operation. Please read the Graph API documentation at https://developers.facebook.com/docs/graph-api"
facebook-api-version: v8.0
strict-transport-security: max-age=15552000; preload
pragma: no-cache
cache-control: no-store
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-fb-request-id: AIGw5-ig42jT3jXWuD8-T44
x-fb-trace-id: GC0ASXqIGO5
x-fb-rev: 1006140878
x-fb-debug: Dd/+chrtmHrAYTQNzvxpQPLPCv/Hjuf5uHQDR24qKLVlujQX4hfOna+q3FOinARavtSjoXOIzGihb12ij5sdBQ==
content-length: 303
date: Sat, 03 Sep 2022 11:25:19 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
Hash c1b600c722373c8d82cd03d9875b3c87
f3ed4fec1cec04f304b160c739017701c48a16cc
8f668803e9c9d193d08484247d47329c4e23df4aba9403c1ece4024215902204
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 11:25:19 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 07 Sep 2022 09:27:02 GMT
ETag: "f3ed4fec1cec04f304b160c739017701c48a16cc"
Last-Modified: Sat, 03 Sep 2022 09:27:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3366
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 744e1fc35a86b4fd-OSL
8846.svetacdn.in/iframe.css?id=0ab1b01c0aafefaf9c0f
200 OK 3.6 kB URL HTTP/1.1 8846.svetacdn.in/iframe.css?id=0ab1b01c0aafefaf9c0f
IP
File type ASCII text, with very long lines (7476), with no line terminators
Hash 35348df5f12cad95808f6aa485ec5ea8
ffe568a341548e6b2fc77fba7c58988825147baa
8db71a40abd77e7b4e01795c6d783f60fed5a861131784e0bd73e735391ea4f7
GET /iframe.css?id=0ab1b01c0aafefaf9c0f HTTP/1.1
Host: 8846.svetacdn.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://8846.svetacdn.in/F8jvkSn90D81/movie/28769
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 11:25:19 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 18 Aug 2022 06:01:05 GMT
ETag: W/"62fdd5a1-1d34"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 7159
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gRfl6LaWbBYTr%2BK36q7m29VqQ4qwcwVsGZSkqtd0pk7Byxyp3yREmvI0qO1Xzirjv%2BSwt80CpiSTgOUF8TMUjVq%2FILNs6%2BfBVWZKNYaoBKf4MN%2F2SDeEHCRMZIbSQJk8UmNu"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 744e1fc38d3bb527-OSL
alt-svc: h2=":443"; ma=60
status.geotrust.com/
200 OK 471 B IP
Hash a94aeba9350ff3c71cd23557c05a0ea6
1704d8eab081aaf7eb9f6661ea7dbb10c56513a7
52b54ae8ab33fba8e0823a6298e033c22380dc2402b97848404be0172194840a
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1213
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 11:25:19 GMT
Last-Modified: Sat, 03 Sep 2022 11:05:06 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
8846.svetacdn.in/iframe.js?id=c159623d8b139031ce1b
200 OK 33 kB URL HTTP/1.1 8846.svetacdn.in/iframe.js?id=c159623d8b139031ce1b
IP
File type Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Hash aca742495e161d753136f6429a50a263
6b48ae9a2593278d8829ae52145fe062670be2d3
c68ed19413449057a12f8da95362a21a37c4fd168920546b90c4e0e258032962
GET /iframe.js?id=c159623d8b139031ce1b HTTP/1.1
Host: 8846.svetacdn.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://8846.svetacdn.in/F8jvkSn90D81/movie/28769
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 11:25:19 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 18 Aug 2022 06:01:05 GMT
ETag: W/"62fdd5a1-17286"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 7159
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qvOOJ83I4Xr%2BoR5nC4RJZ%2F5pZjrWDbgfjKi8E7gT1ivbzB6xdWy3%2FbKczRL%2FrOitTvsfsSfqx%2FZi6UdcBFxroy8gYOI9N4X5eME2yv0eU6TJdV7wPYYkc8JSrGTWMtcWqmy6"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 744e1fc39d4bb527-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
200 OK 471 B IP
Hash 9d068c535026c4f1881a39b57510abfe
b464bbd240f33902620e421030de83590355a86a
61fb6fb77c3c3c0182157a20f7062d62a0338a8208c34beb1516c21fe8c3c575
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5716
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 11:25:19 GMT
Last-Modified: Sat, 03 Sep 2022 09:50:03 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
kodik.info/adsbygoogle.js
200 OK 111 B URL HTTP/1.1 kodik.info/adsbygoogle.js
IP
ASN #262254 DDOS-GUARD CORP.
File type ASCII text, with no line terminators
Hash b6ba525fe821b029069e0eed9256ede6
87a89083e3724d261a0c9c10cf4ca426180a4314
589bc47701827224c0b686ca5fae614e71ac5abce822e5412bdcc23cc04f0459
GET /adsbygoogle.js HTTP/1.1
Host: kodik.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kodik.info/video/41167/4509cc271da1e4cb695ed0bede4aeeb4/720p
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg1_=mx3GPF8OICfgpPiDq3mZ; Domain=.kodik.info; HttpOnly; Path=/; Expires=Sun, 03-Sep-2023 11:25:19 GMT
Date: Sat, 03 Sep 2022 11:20:39 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 111
Last-Modified: Fri, 02 Sep 2022 12:11:22 GMT
Accept-Ranges: bytes
DDG-Cache-Status: HIT,HIT
Etag: "6311f2ea-6f"
Age: 280
www.googletagmanager.com/gtag/js?id=UA-57015589-1&l=viboomGa
302 Found 269 B URL HTTP/1.1 www.googletagmanager.com/gtag/js?id=UA-57015589-1&l=viboomGa
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash e817de2485504430d67bb8beee1b51f4
8eda9470e23e20e2adbe8480e21c9ebfff8e2118
d8dde6566a0bb05ebe5d28347033d02628ea8d5b1ca47e291cbd725a8397fded
GET /gtag/js?id=UA-57015589-1&l=viboomGa HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtag/js?id=UA-57015589-1&l=viboomGa
Cross-Origin-Resource-Policy: cross-origin
Date: Sat, 03 Sep 2022 11:25:19 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 269
X-XSS-Protection: 0
videosmor.com/video.css
200 OK 5.6 kB IP
ASN #44066 diva-e Datacenters GmbH
File type ASCII text, with very long lines (26797), with no line terminators
Hash 07b90f3792316ea4e189a91fd0378a38
b94691949b490d273ce9285dd83018af914b63c3
f2bc18cf5718b860c7996d96cc909a2c24275e58009ae604468975d09b61c46f
GET /video.css HTTP/1.1
Host: videosmor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:19 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Hostname: dsde382.rotator.viboom.com
ETag: W/"68ad-W2r8yRMfH+wcSK3E+5LzTg"
Vary: Accept-Encoding
Content-Encoding: gzip
8846.svetacdn.in/storage/default_players/f_v174.js
200 OK 160 kB URL HTTP/1.1 8846.svetacdn.in/storage/default_players/f_v174.js
IP
File type ASCII text, with very long lines (65448)
Size 160 kB (159550 bytes)
Hash c831ec2e4c7ebaaf28d339383bcd6e8a
e18eed28323fc83c77dcb0f217179f10083af98a
611cb50463f2ff5f4e667440f5aa5b33636658ba6f3de86b1c7856f4e3c9dd75
GET /storage/default_players/f_v174.js HTTP/1.1
Host: 8846.svetacdn.in
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://8846.svetacdn.in/F8jvkSn90D81/movie/28769
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 11:25:19 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 07 Aug 2022 21:20:09 GMT
ETag: W/"62f02c89-5d947"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 7159
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7XxywMCOSt2xDPFY44L9UBdIvzQfWZZ4T%2BUwea8flppXWKroibUv69t1AtDOCMLh8v8%2BYUloDQxCVMjsC6zrH6fyOnfmnUQrhhoCmcy0Bc5fo%2Fpzlk5oeNQAYQvGckjvlZiI"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 744e1fc39937b4f7-OSL
alt-svc: h2=":443"; ma=60
vk.com/share.php?act=count&url=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&index=0&_=1662204316393
200 OK 41 B URL HTTP/2 vk.com/share.php?act=count&url=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&index=0&_=1662204316393
IP
File type ASCII text, with no line terminators
Hash 6de86497641c67868bfddcbf5a8bf434
6065bb53c9addbda818a6b172597326ebc31e8dc
51d446e1b704e289975e53c6945dee986d432bb439d02a2afcee7ce1b5bddcf8
GET /share.php?act=count&url=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&index=0&_=1662204316393 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://33548-parazit.kinogo.ru.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Sat, 03 Sep 2022 11:25:19 GMT
content-type: text/html; charset=windows-1251
content-length: 41
x-powered-by: KPHP/7.4.112054
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Mon, 04 Sep 2023 05:25:05 GMT; path=/; domain=.vk.com
remixstlid=9087216901245108129_r65oHGMZp8ZJBitkYBSZ8N2vdrh5QZ8I46Ko5NhmzDk; expires=Sun, 03 Sep 2023 11:25:19 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-encoding: gzip
x-frontend: front224007
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
level1cdn.com/uid/?uid=false
200 OK 34 B URL HTTP/1.1 level1cdn.com/uid/?uid=false
IP
ASN #44066 diva-e Datacenters GmbH
File type ASCII text, with no line terminators
Hash 3b7ddbdefd0d32c9ab9023b105933d78
9592ea38d578362d863d67f34e9f2a20dee24ebf
c0169adfac658e7fc245791b505a2c2e32f830633200e6c6eb63d33c539fe5fe
GET /uid/?uid=false HTTP/1.1
Host: level1cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://videopleer.kinogo.ru.net
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:19 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 34
Connection: keep-alive
X-Hostname: dsde382.rotator.viboom.com
Access-Control-Allow-Origin: http://videopleer.kinogo.ru.net
Access-Control-Allow-Credentials: true
Set-Cookie: UID=d8516c9a685c98639841fbd84ecc60af; Max-Age=16070400; Path=/; Expires=Wed, 08 Mar 2023 11:25:19 GMT; HttpOnly
ETag: W/"22-O33b3v0NMsmrkCOxBZM9eA"
Vary: Accept-Encoding
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +vxi/P6Qf4JD1bZV6g867Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GYLHmlE79X9xEwL3Ognu5rZbOG8=
counter.yadro.ru/hit;kinogo-ru-net?t45.3;r;s1280*1024*24;uhttp%3A//33548-parazit.kinogo.ru.net/;h%u041F%u0430%u0440%u0430%u0437%u0438%u0442%u044B%20/%20Gisaengchung%20%282019%29%20%u041A%u0438%u043D%u043E%u0413%u043E%20%u043E%u043D%u043B%u0430%u0439%u043D.;0.7147445891875754
200 OK 112 B URL HTTP/1.1 counter.yadro.ru/hit;kinogo-ru-net?t45.3;r;s1280*1024*24;uhttp%3A//33548-parazit.kinogo.ru.net/;h%u041F%u0430%u0440%u0430%u0437%u0438%u0442%u044B%20/%20Gisaengchung%20%282019%29%20%u041A%u0438%u043D%u043E%u0413%u043E%20%u043E%u043D%u043B%u0430%u0439%u043D.;0.7147445891875754
IP
ASN #39134 United Network LLC
File type GIF image data, version 89a, 31 x 31\012- data
Hash da215654865aa0929cb6e6b9b8a530b6
29b2aa780e793c7a410257c9c7a5c29b79c8ed63
2a4db33bc3012541239e266c12136f1c93ca3e072148085fcf87acd84aafc7b3
GET /hit;kinogo-ru-net?t45.3;r;s1280*1024*24;uhttp%3A//33548-parazit.kinogo.ru.net/;h%u041F%u0430%u0440%u0430%u0437%u0438%u0442%u044B%20/%20Gisaengchung%20%282019%29%20%u041A%u0438%u043D%u043E%u0413%u043E%20%u043E%u043D%u043B%u0430%u0439%u043D.;0.7147445891875754 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://33548-parazit.kinogo.ru.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sat, 03 Sep 2022 11:25:19 GMT
Content-Type: image/gif
Content-Length: 112
Connection: keep-alive
Expires: Thu, 02 Sep 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
movie28769.annacdn.cc/vidcdn.js
200 OK 617 B URL HTTP/2 movie28769.annacdn.cc/vidcdn.js
IP
Hash fbfeae2287a15ec965e6fae81b6ef904
e67e6ec4f7b10cab890398c47f96fd2d56663697
65077874c8ff9b8d0ebb5d51b6755fa4f4a6384d08a9df141ede4ca3ddd135ca
GET /vidcdn.js HTTP/1.1
Host: movie28769.annacdn.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8846.svetacdn.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 11:25:19 GMT
content-type: application/javascript
last-modified: Thu, 04 Aug 2022 06:15:06 GMT
etag: W/"62eb63ea-104"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2SkFZ7lObq7QExs3CQS3qMlqX2V8M0Ep%2Fx1MJEH9uiI7pPiZUP%2BuHwattX6J9IOSvbMz9ljTw5zBo3DAWMkm0Z44ud9r8iwNWJpaEL9x4aWL%2F585qP2Fyh0w0lZTTqNSULdBE6fWNB0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 744e1fc3f9ddb521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 20cc30f2a41f9c5e824ea46460548950
c153b447d44cbbe8f30d7f490605d1a430af20a1
0f8bb96e7dfd8a6bb3d7eae1a958195cb8ca9f20e0ad8cd952c34267ff0625f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 11:25:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash b1809cd1a1309cbabf332f6395887cb4
66f5f8df5c1f24103aac41f9ba2d6dc305ea73ca
aa560f47e3a9c7ac5f8ef91bc752c9ee48b897b05df18c2feb92e2d519c9b567
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "AA560F47E3A9C7AC5F8EF91BC752C9EE48B897B05DF18C2FEB92E2D519C9B567"
Last-Modified: Fri, 02 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6360
Expires: Sat, 03 Sep 2022 13:11:19 GMT
Date: Sat, 03 Sep 2022 11:25:19 GMT
Connection: keep-alive
kinchik.allohalive.com/?token_movie=fe6ebc9592a115fc635e92d1ca7c5c&token=54e4f1b52d15f9f39add8c724b1631
200 OK 12 kB URL HTTP/2 kinchik.allohalive.com/?token_movie=fe6ebc9592a115fc635e92d1ca7c5c&token=54e4f1b52d15f9f39add8c724b1631
IP
Hash cc1d3a83cc9de1730ffbc1d1c2abd068
a0fa2641fcb21af566bf1b1cbbaaef06e66683b9
ead7a9c69a5da86c7f6a82e2d3510fd25cff9970aa247bf24d5f34a9152f2cef
GET /?token_movie=fe6ebc9592a115fc635e92d1ca7c5c&token=54e4f1b52d15f9f39add8c724b1631 HTTP/1.1
Host: kinchik.allohalive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 11:25:19 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.13
cache-control: max-age=60
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-57015589-1&l=viboomGa
200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-57015589-1&l=viboomGa
IP
File type ASCII text, with very long lines (1615)
Hash d01a28a45924983afcd43462f6cc8565
1f4927045334774e1864c8c8cb04e489506af97f
24480179a24ecb68c2765ab2b787da5c70338c161ac42e97e9fe743e930c8a6c
GET /gtag/js?id=UA-57015589-1&l=viboomGa HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://videopleer.kinogo.ru.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 03 Sep 2022 11:25:19 GMT
expires: Sat, 03 Sep 2022 11:25:19 GMT
cache-control: private, max-age=900
last-modified: Sat, 03 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41862
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/yandex-metrica-watch/tag.js
200 OK 83 kB URL HTTP/2 cdn.jsdelivr.net/npm/yandex-metrica-watch/tag.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (681)
Hash 5e95fd71c0607321599b2ed694f30adc
15e75c6e8fd13c12afb93e659206ec28893f7d17
eb5c363392c61c58e2ab8088a17da732d4c552a8a063e8276082192d5aa81a77
GET /npm/yandex-metrica-watch/tag.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8846.svetacdn.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.242.0
x-jsd-version-type: version
etag: W/"3364d-8zUodyTu6b7iC+HzYMc9hdc5tyQ"
content-encoding: gzip
accept-ranges: bytes
date: Sat, 03 Sep 2022 11:25:19 GMT
age: 8088
x-served-by: cache-fra19171-FRA, cache-bma1653-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
content-length: 83361
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
Hash d07a3d0f1eb55313e615c655267bb6ec
329b0b278fbc48c94a5c9a83776ed8c302564a8d
22cac8a759bef3a7d3e353f19b53e603b2aadbc41f7cb4a2b8621c28a05b11e3
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 11:25:19 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "81A22A25A1FEC1DEF45F3B325CE8A611AE932B11"
Expires: Sat, 03 Sep 2022 22:00:00 GMT
Last-Modified: Sat, 03 Sep 2022 10:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1009
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 744e1fc5edd0b51e-OSL
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 20cc30f2a41f9c5e824ea46460548950
c153b447d44cbbe8f30d7f490605d1a430af20a1
0f8bb96e7dfd8a6bb3d7eae1a958195cb8ca9f20e0ad8cd952c34267ff0625f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 11:25:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b69e4ee589f24deef7c8a3004daae9d1
e96ab184083a5084569b86b8846a6fa0c3b6af9a
7560417294eeb0f5c955d68bcc9b9eae40d69d1ff4b717a115ca1c614b1f4a17
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 11:25:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kinchik.allohalive.com/style/style.css?v=1.761
200 OK 3.0 kB URL HTTP/2 kinchik.allohalive.com/style/style.css?v=1.761
IP
Hash 52d501f15af33a6e98aa1d84097b132d
40183c5fb88ecbab0006739f8bbdfa29b22eb617
3a4d1fabcfbd42c5238c013cdf4ebef32b5ecfa78430968cd5908814960288cd
GET /style/style.css?v=1.761 HTTP/1.1
Host: kinchik.allohalive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinchik.allohalive.com/?token_movie=fe6ebc9592a115fc635e92d1ca7c5c&token=54e4f1b52d15f9f39add8c724b1631
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 11:25:19 GMT
content-type: text/css
last-modified: Wed, 01 Dec 2021 21:13:41 GMT
etag: W/"61a7e585-1c52"
expires: Mon, 31 Oct 2022 10:51:05 GMT
cache-control: max-age=7776000
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/watch.js
200 OK 57 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (569)
Hash c88af7521379660d8b1c4cfaad1362f4
f4a277fbd562a31d329bf4561878c2512be3b4a0
3e33643c480df9268cc54e0086082dd14e1791ba6bc161c0ec81c5855b0acca5
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 56896
date: Sat, 03 Sep 2022 11:25:19 GMT
access-control-allow-origin: *
etag: "6312122a-de40"
expires: Sat, 03 Sep 2022 12:25:19 GMT
last-modified: Fri, 02 Sep 2022 17:24:42 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/tag.js
200 OK 72 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (681)
Hash 034d4604beaddff5783b9878fadfaee6
64d5e1e0dbbbd62d6a64349dd964763b7ab4cbea
f8a957ee3468693f465da61d899438a2b674369b80c9d5c9ffff1111a7091290
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinchik.allohalive.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 71985
date: Sat, 03 Sep 2022 11:25:20 GMT
access-control-allow-origin: *
etag: "6312122a-11931"
expires: Sat, 03 Sep 2022 12:25:20 GMT
last-modified: Fri, 02 Sep 2022 17:24:42 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
test.takedwn.ws/ping
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /ping HTTP/1.1
Host: test.takedwn.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://videopleer.kinogo.ru.net/
Origin: http://videopleer.kinogo.ru.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:20 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
allvideometrika.com/alloha.php
200 OK 876 B URL HTTP/2 allvideometrika.com/alloha.php
IP
File type ASCII text, with CRLF line terminators
Hash 26c83935eb21d9b8872f7c8b053bd598
c9c10674fb13d288dcc7d987084db5219a793375
c3a30917b7ae6f0e87287e50c2efefae71b47762f8c9c36a900245460594307c
GET /alloha.php HTTP/1.1
Host: allvideometrika.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinchik.allohalive.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 11:25:19 GMT
content-type: application/javascript
x-powered-by: PHP/7.1.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gR2LLAurs%2B1dh0A5TFX9h8PI77YAIOQXNHnJn7aLHtqzWyN6h3HUw9W8PJetE3Kn1wolCkdGaY6siWfMouUHtAfMbzxi3DtKWHvB7z2JrtBc4bOLfIkGN1EdFQDQ%2BhYzXC6s%2Fys%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 744e1fc5cd42b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
kinchik.allohalive.com/js/playerjs-alloha-new.js?v=16.14.2
200 OK 274 kB URL HTTP/2 kinchik.allohalive.com/js/playerjs-alloha-new.js?v=16.14.2
IP
File type ASCII text, with very long lines (65447)
Size 274 kB (273571 bytes)
Hash a61c516080fe10f05c780f7cd7c1806b
84cdf9513ffca4491317fdce8d64a16af1d6588f
324c4e0812347c161b36ce12d50e93bad22decfdd3293ffc27390e4a0833e608
Analyzer Verdict Alert fortinet Phishing
GET /js/playerjs-alloha-new.js?v=16.14.2 HTTP/1.1
Host: kinchik.allohalive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinchik.allohalive.com/?token_movie=fe6ebc9592a115fc635e92d1ca7c5c&token=54e4f1b52d15f9f39add8c724b1631
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 11:25:19 GMT
content-type: application/javascript
last-modified: Sun, 10 Jul 2022 20:50:13 GMT
etag: W/"62cb3b85-b1d67"
expires: Sat, 08 Oct 2022 20:51:36 GMT
cache-control: max-age=7776000
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
imasdk.googleapis.com/j30v7k
404 Not Found 0 B URL HTTP/2 imasdk.googleapis.com/j30v7k
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /j30v7k HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kinchik.allohalive.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 03 Sep 2022 11:25:20 GMT
server: sffe
content-length: 1567
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 93793f058ced995eaea80a3f47c3b58f
b6f1052bb624c4c9378e99ee05fbae0cc05d5a41
316477c9eb3a9e6cd2eb58d46970e0bc9925e535ba37f52b101f5efb73610c37
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 11:25:20 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 31 Aug 2022 20:43:05 GMT
Expires: Wed, 07 Sep 2022 20:43:04 GMT
Etag: "b6f1052bb624c4c9378e99ee05fbae0cc05d5a41"
Cache-Control: max-age=378463,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 744e1fc2db97b50f-OSL
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 11:25:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/cv/js/sender/v1/cast_sender.js?loadCastFramework=1
200 OK 2.0 kB URL HTTP/2 www.gstatic.com/cv/js/sender/v1/cast_sender.js?loadCastFramework=1
IP
File type ASCII text, with very long lines (1143)
Hash c439f328a6d5a2f9cba8f719b4a0c39b
c91a5d5bce3629fa350f8bed6a6693ab477a0f99
79dc7857f15689c75f5126726ad2b5894d3a43018928420482eba684b800f193
GET /cv/js/sender/v1/cast_sender.js?loadCastFramework=1 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinchik.allohalive.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/cloudview
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="cloudview"
report-to: {"group":"cloudview","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/cloudview"}]}
content-length: 2007
date: Sat, 03 Sep 2022 11:25:20 GMT
expires: Sat, 03 Sep 2022 11:25:20 GMT
cache-control: private, max-age=3000
last-modified: Tue, 16 Feb 2021 23:57:06 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP
Hash 19c675a0c24d0293095483720c8db8f0
6794f48bb0fe424377a425dd17a6616742735d2f
056440c1235e6dbddcd8f012ee0123cdeb08861da03a98e6d499988801179522
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 11:25:20 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Thu, 01 Sep 2022 04:20:29 GMT
Expires: Thu, 08 Sep 2022 04:20:28 GMT
Etag: "6794f48bb0fe424377a425dd17a6616742735d2f"
Cache-Control: max-age=405907,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 744e1fcb1af80b39-OSL
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 11:25:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
9bc-a3e-2200g0.streamalloha.live/subs/20/1662225919/EGp5JoeO665CIHeqVI5_NA/302/2302/index.php
200 OK 363 B URL HTTP/1.1 9bc-a3e-2200g0.streamalloha.live/subs/20/1662225919/EGp5JoeO665CIHeqVI5_NA/302/2302/index.php
IP
File type ASCII text, with very long lines (363), with no line terminators
Hash 967d438a0aaa6dce6a7ae495072b9829
47ace9ae324981c230bbc52de7b374ea6ffb987c
5767094175b4b2ac870e2f107e1bcd3f2a3913db0478ff5ea4d09f0e6525b2a7
GET /subs/20/1662225919/EGp5JoeO665CIHeqVI5_NA/302/2302/index.php HTTP/1.1
Host: 9bc-a3e-2200g0.streamalloha.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kinchik.allohalive.com
Connection: keep-alive
Referer: https://kinchik.allohalive.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sat, 03 Sep 2022 11:25:20 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.24
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
mc.yandex.ru/watch/58424476/1?wmode=7&page-url=http%3A%2F%2Fkodik.info%2Fvideo%2F41167%2F4509cc271da1e4cb695ed0bede4aeeb4%2F720p&page-ref=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F&charset=utf-8&site-info=%7B%22iframe%22%3Atrue%2C%22a%22%3Atrue%2C%22adult%22%3Afalse%2C%22double_a%22%3Afalse%2C%22partnership%22%3Afalse%2C%22share_link%22%3Atrue%2C%22c_a%22%3A%22on%22%2C%22c_a_bool%22%3Atrue%2C%22b_a%22%3A%22on%22%2C%22b_a_bool%22%3Atrue%2C%22y_a%22%3A%22on%22%2C%22y_a_bool%22%3Atrue%2C%22domain%22%3A%22videopleer.kinogo.ru.net%22%7D&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbet5rlk%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A1333814400644%3Ahid%3A868967424%3Az%3A0%3Ai%3A20220903112517%3Aet%3A1662204318%3Arn%3A980676776%3Arqn%3A1%3Au%3A1662204318120753342%3Aw%3A0x0%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662204316757%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C568%2C16%2C%2C%2C%2C814%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-a81f3b9bcdd80a361c14af38dc09b309-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662204318%3At%3AKodik%20Player&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
200 OK 419 B URL HTTP/2 mc.yandex.ru/watch/58424476/1?wmode=7&page-url=http%3A%2F%2Fkodik.info%2Fvideo%2F41167%2F4509cc271da1e4cb695ed0bede4aeeb4%2F720p&page-ref=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F&charset=utf-8&site-info=%7B%22iframe%22%3Atrue%2C%22a%22%3Atrue%2C%22adult%22%3Afalse%2C%22double_a%22%3Afalse%2C%22partnership%22%3Afalse%2C%22share_link%22%3Atrue%2C%22c_a%22%3A%22on%22%2C%22c_a_bool%22%3Atrue%2C%22b_a%22%3A%22on%22%2C%22b_a_bool%22%3Atrue%2C%22y_a%22%3A%22on%22%2C%22y_a_bool%22%3Atrue%2C%22domain%22%3A%22videopleer.kinogo.ru.net%22%7D&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbet5rlk%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A1333814400644%3Ahid%3A868967424%3Az%3A0%3Ai%3A20220903112517%3Aet%3A1662204318%3Arn%3A980676776%3Arqn%3A1%3Au%3A1662204318120753342%3Aw%3A0x0%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662204316757%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C568%2C16%2C%2C%2C%2C814%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-a81f3b9bcdd80a361c14af38dc09b309-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662204318%3At%3AKodik%20Player&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Hash 50c436bfc2e134400da1b0123d9624a6
a7b90594b8af49aafb81100e34ca41316a44ebf9
613716ca85ccda690640226a1ebcfd00aef91d48ea3b27d110514bae1e423c99
GET /watch/58424476/1?wmode=7&page-url=http%3A%2F%2Fkodik.info%2Fvideo%2F41167%2F4509cc271da1e4cb695ed0bede4aeeb4%2F720p&page-ref=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F&charset=utf-8&site-info=%7B%22iframe%22%3Atrue%2C%22a%22%3Atrue%2C%22adult%22%3Afalse%2C%22double_a%22%3Afalse%2C%22partnership%22%3Afalse%2C%22share_link%22%3Atrue%2C%22c_a%22%3A%22on%22%2C%22c_a_bool%22%3Atrue%2C%22b_a%22%3A%22on%22%2C%22b_a_bool%22%3Atrue%2C%22y_a%22%3A%22on%22%2C%22y_a_bool%22%3Atrue%2C%22domain%22%3A%22videopleer.kinogo.ru.net%22%7D&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbet5rlk%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A1333814400644%3Ahid%3A868967424%3Az%3A0%3Ai%3A20220903112517%3Aet%3A1662204318%3Arn%3A980676776%3Arqn%3A1%3Au%3A1662204318120753342%3Aw%3A0x0%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662204316757%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C568%2C16%2C%2C%2C%2C814%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-a81f3b9bcdd80a361c14af38dc09b309-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662204318%3At%3AKodik%20Player&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://kodik.info
Referer: http://kodik.info/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 419
date: Sat, 03 Sep 2022 11:25:20 GMT
x-content-type-options: nosniff
access-control-allow-origin: http://kodik.info
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 03-Sep-2022 11:25:20 GMT
last-modified: Sat, 03-Sep-2022 11:25:20 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2817
Expires: Sat, 03 Sep 2022 12:12:17 GMT
Date: Sat, 03 Sep 2022 11:25:20 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2817
Expires: Sat, 03 Sep 2022 12:12:17 GMT
Date: Sat, 03 Sep 2022 11:25:20 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2817
Expires: Sat, 03 Sep 2022 12:12:17 GMT
Date: Sat, 03 Sep 2022 11:25:20 GMT
Connection: keep-alive
kinchik.allohalive.com/js/jquery.min.js?v=3.6.0
200 OK 32 kB URL HTTP/2 kinchik.allohalive.com/js/jquery.min.js?v=3.6.0
IP
Hash 8325a5afd0ca4609959374ad93c099dc
c56dc64a2bf78546b20890d9b9cf15657c7ff628
bc2d623e83e9749dd8bd0e2b74f566e62035e2702eba26c4a8120a560996cc3c
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.min.js?v=3.6.0 HTTP/1.1
Host: kinchik.allohalive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinchik.allohalive.com/?token_movie=fe6ebc9592a115fc635e92d1ca7c5c&token=54e4f1b52d15f9f39add8c724b1631
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 11:25:19 GMT
content-type: application/javascript
last-modified: Sat, 09 Oct 2021 21:07:16 GMT
etag: W/"61620484-15d9d"
expires: Mon, 31 Oct 2022 10:51:05 GMT
cache-control: max-age=7776000
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2817
Expires: Sat, 03 Sep 2022 12:12:17 GMT
Date: Sat, 03 Sep 2022 11:25:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg
200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c199f7fc2a2857dec134bfdb2673e28c
af3989072b658e2de119d006ae4ca1703468913d
e57411ba0221f6ffa7baf7c374ec790959a66d6a683fad40883ef01cf67e35c3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6976
x-amzn-requestid: da379546-9525-4e13-b9f0-a6446839df66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eNeG7kIAMF4-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63127722-37399f67565b06e7111095cd;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5SORUPJgJ_gKKs4hSa4EzCCQA6B1dmyO1EC-gCBvFKl2R2hV0mYTeA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:39:01 GMT
age: 45979
etag: "af3989072b658e2de119d006ae4ca1703468913d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg
200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23b580e2b673257d24b9c2e80c4c48ce
f3a3d835a37f9b23e7458f9b7bc721bc415b61cc
c0e3559fde3dd08cdbd360f39dddcc98dd7c1b3aebd0861cc07105872a116d11
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7501
x-amzn-requestid: bf297fc4-9164-45ee-bfab-06761a52e3ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eMJEP1IAMFdpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312771a-6b3e6416133d67a83d8a1469;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: datd5eYK6nOAUdEpy_y4gcqsVmCqjP4qhzTnlJ9pSrquoYk2PPugTA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:02:34 GMT
age: 48166
etag: "f3a3d835a37f9b23e7458f9b7bc721bc415b61cc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
videosmor.com/video/get/?platformId=66850&format=3&overrollType=embeded&sig=0b3dd1d19a7888bd&data=%7B%22shown%22%3A%5B%5D%2C%22errors%22%3A%5B%5D%2C%22dimentions%22%3A%7B%7D%2C%22referer%22%3A%22http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548%22%2C%22origReferer%22%3A%22http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548%22%2C%22location%22%3A%22http%3A%2F%2F33548-parazit.kinogo.ru.net%2F%22%2C%22n%22%3A0%2C%22ifr%22%3A1%2C%22top_blocked%22%3A1%2C%22lang%22%3A%22en-US%22%2C%22title%22%3A%22%22%7D&vbmuid=d8516c9a685c98639841fbd84ecc60af
200 OK 692 B URL HTTP/1.1 videosmor.com/video/get/?platformId=66850&format=3&overrollType=embeded&sig=0b3dd1d19a7888bd&data=%7B%22shown%22%3A%5B%5D%2C%22errors%22%3A%5B%5D%2C%22dimentions%22%3A%7B%7D%2C%22referer%22%3A%22http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548%22%2C%22origReferer%22%3A%22http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548%22%2C%22location%22%3A%22http%3A%2F%2F33548-parazit.kinogo.ru.net%2F%22%2C%22n%22%3A0%2C%22ifr%22%3A1%2C%22top_blocked%22%3A1%2C%22lang%22%3A%22en-US%22%2C%22title%22%3A%22%22%7D&vbmuid=d8516c9a685c98639841fbd84ecc60af
IP
ASN #44066 diva-e Datacenters GmbH
File type HTML document, ASCII text, with very long lines (692), with no line terminators
Hash 211fa79663aa8c4a061a6c9f72f35e1d
65bed32daac08474faf32d7686de1e6e6a2396bd
95bf9180e1198e0bcfba22f6fac42aef7cb02a2a4de02c54421fc9577752336d
GET /video/get/?platformId=66850&format=3&overrollType=embeded&sig=0b3dd1d19a7888bd&data=%7B%22shown%22%3A%5B%5D%2C%22errors%22%3A%5B%5D%2C%22dimentions%22%3A%7B%7D%2C%22referer%22%3A%22http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548%22%2C%22origReferer%22%3A%22http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548%22%2C%22location%22%3A%22http%3A%2F%2F33548-parazit.kinogo.ru.net%2F%22%2C%22n%22%3A0%2C%22ifr%22%3A1%2C%22top_blocked%22%3A1%2C%22lang%22%3A%22en-US%22%2C%22title%22%3A%22%22%7D&vbmuid=d8516c9a685c98639841fbd84ecc60af HTTP/1.1
Host: videosmor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:20 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 692
Connection: keep-alive
X-Hostname: dsde382.rotator.viboom.com
Set-Cookie: vbmuid=d8516c9a685c98639841fbd84ecc60af; Max-Age=16070400; Path=/; Expires=Wed, 08 Mar 2023 11:25:20 GMT; HttpOnly
Rotator-message: video: no campaignAccess, code: 0, msg: undefined, format: 3, platformId: 66850, rtrCampaignId: false
ETag: W/"2b4-IR+nlmOqjEoGGmyfcvNeHQ"
Vary: Accept-Encoding
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd91ab4da-b2c8-4694-8888-dbef16ff0822.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd91ab4da-b2c8-4694-8888-dbef16ff0822.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ac5cedb16d42137f0da53ffa29c68640
f5b2ed7f99ce2149cdc7ca905bead01cb12fe8ab
9ceae944314eae39f0af8fa5abd17515b9fd32771cececb0c7321a7bfbf4645f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd91ab4da-b2c8-4694-8888-dbef16ff0822.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9468
x-amzn-requestid: 326b8125-dc3d-4ca8-bdda-50464d1cfc61
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X0DjwHbqIAMFeww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117fb1-2a1151c94cf19ba05c4b47ee;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:59:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Z4GlrY5n1_Kg3lQ2aRf3-BmbSu0Z89by_oXrzDwlvEQ5HVS2vIer0Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:02:30 GMT
age: 61092
etag: "f5b2ed7f99ce2149cdc7ca905bead01cb12fe8ab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg
200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60769237af4f32c663d494d91a672d08
31305131f340191799484f212e15513bd1204e88
6df36e459f3a2d0271732b645009b116e6671363f6c3050d22bbfe2d911a77bd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4994
x-amzn-requestid: de39357f-d378-4bb8-b4d9-7dd4f82fbb58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xgj-kEHvoAMFyBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309b390-119fa01e254e89cb39a1b794;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 06:02:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1yjBt3dqEztIRHo4yR3ZzI67J4lWUMS8R44-PpkeDJ4KNdCTPkmh-w==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 04:45:35 GMT
age: 23985
etag: "31305131f340191799484f212e15513bd1204e88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8846.svetacdn.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 03 Sep 2022 11:25:20 GMT
access-control-allow-origin: *
etag: "6312122a-2b"
expires: Sat, 03 Sep 2022 12:25:20 GMT
accept-ranges: bytes
last-modified: Fri, 02 Sep 2022 17:24:42 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7032eb34-1355-4f64-91db-2c4fd70139b1.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7032eb34-1355-4f64-91db-2c4fd70139b1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85bb0a09818a7c5f9e92e5b0faa057a4
ceb9a1d4efc578ad2bbcd8f99e8bf69e7dbe7aa3
d7e1901bdae487d1c4f4d0c8fdfd090f8f0baff719f319666395f91dc147d250
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7032eb34-1355-4f64-91db-2c4fd70139b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12612
x-amzn-requestid: c89164ee-6194-4a96-9a7f-b8c03478ef15
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xihm-GiPIAMFglA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a7c92-7def0f7964f7f0d336810aae;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 20:20:34 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fEeJ_Zw9Egt6gQYinki1fMzvqdQgixv0iBio2G4KsMppWkYhEB_SCg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 03:02:45 GMT
age: 30155
etag: "ceb9a1d4efc578ad2bbcd8f99e8bf69e7dbe7aa3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d78cbff83c152b84864606781a29563d
8bdbc6e135be6e582d0e23754399422e3792777b
3c385de9ade05e1652ccc386e73aaccc4c223a07b81af4c5fdf3f73a166909f7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14061
x-amzn-requestid: 43535b37-15c9-4a28-a7c0-f43482948382
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqlhGFX4IAMF9oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630db606-77bd935d4364050f230ba5da;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 07:02:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: y_-knSwUodyBxS8I8PAoUexT6Z4o0Aq7m62v7HrRjm7vV-jP0VuCpw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 06:26:07 GMT
age: 17953
etag: "8bdbc6e135be6e582d0e23754399422e3792777b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mc.yandex.ru/watch/58424476/1?page-url=http%3A%2F%2Fkodik.info%2Fvideo%2F41167%2F4509cc271da1e4cb695ed0bede4aeeb4%2F720p&charset=utf-8&hittoken=1662204320_6490b09774fb0a065d11172c0b589863bd3994b4e2bf5e59aa7ce084ddebc099&browser-info=pa%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbet5rlk%3Afu%3A1%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A1333814400644%3Ahid%3A868967424%3Az%3A0%3Ai%3A20220903112518%3Aet%3A1662204318%3Arn%3A836567156%3Arqn%3A2%3Au%3A1662204318120753342%3Aw%3A0x0%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Apri%3A1%3Aeu%3A1%3Ans%3A1662204316757%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C%2C1580%2C1580%2C2%2C%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-a81f3b9bcdd80a361c14af38dc09b309-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662204319&t=gdpr(14)mc(p-1)clc(0-0-0)aw(1)rqnt(2)fip(1)rqnl(1)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/58424476/1?page-url=http%3A%2F%2Fkodik.info%2Fvideo%2F41167%2F4509cc271da1e4cb695ed0bede4aeeb4%2F720p&charset=utf-8&hittoken=1662204320_6490b09774fb0a065d11172c0b589863bd3994b4e2bf5e59aa7ce084ddebc099&browser-info=pa%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbet5rlk%3Afu%3A1%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A1333814400644%3Ahid%3A868967424%3Az%3A0%3Ai%3A20220903112518%3Aet%3A1662204318%3Arn%3A836567156%3Arqn%3A2%3Au%3A1662204318120753342%3Aw%3A0x0%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Apri%3A1%3Aeu%3A1%3Ans%3A1662204316757%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C%2C1580%2C1580%2C2%2C%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-a81f3b9bcdd80a361c14af38dc09b309-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662204319&t=gdpr(14)mc(p-1)clc(0-0-0)aw(1)rqnt(2)fip(1)rqnl(1)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/58424476/1?page-url=http%3A%2F%2Fkodik.info%2Fvideo%2F41167%2F4509cc271da1e4cb695ed0bede4aeeb4%2F720p&charset=utf-8&hittoken=1662204320_6490b09774fb0a065d11172c0b589863bd3994b4e2bf5e59aa7ce084ddebc099&browser-info=pa%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbet5rlk%3Afu%3A1%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A1333814400644%3Ahid%3A868967424%3Az%3A0%3Ai%3A20220903112518%3Aet%3A1662204318%3Arn%3A836567156%3Arqn%3A2%3Au%3A1662204318120753342%3Aw%3A0x0%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Apri%3A1%3Aeu%3A1%3Ans%3A1662204316757%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C%2C1580%2C1580%2C2%2C%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-a81f3b9bcdd80a361c14af38dc09b309-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662204319&t=gdpr(14)mc(p-1)clc(0-0-0)aw(1)rqnt(2)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 93
Origin: http://kodik.info
Connection: keep-alive
Referer: http://kodik.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 03 Sep 2022 11:25:20 GMT
access-control-allow-origin: http://kodik.info
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 03-Sep-2022 11:25:20 GMT
last-modified: Sat, 03-Sep-2022 11:25:20 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/48329336/1?wmode=7&page-url=https%3A%2F%2Fkinchik.allohalive.com%2F%3Ftoken_movie%3Dfe6ebc9592a115fc635e92d1ca7c5c%26token%3D54e4f1b52d15f9f39add8c724b1631&page-ref=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A1437%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A341620818108%3Ahid%3A944143747%3Az%3A0%3Ai%3A20220903112518%3Aet%3A1662204318%3Arn%3A338314515%3Arqn%3A1%3Au%3A1662204318450135438%3Aw%3A710x400%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662204316756%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C664%2C1%2C%2C%2C%2C1091%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662204318%3At%3APlayer&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
200 OK 419 B URL HTTP/2 mc.yandex.ru/watch/48329336/1?wmode=7&page-url=https%3A%2F%2Fkinchik.allohalive.com%2F%3Ftoken_movie%3Dfe6ebc9592a115fc635e92d1ca7c5c%26token%3D54e4f1b52d15f9f39add8c724b1631&page-ref=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A1437%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A341620818108%3Ahid%3A944143747%3Az%3A0%3Ai%3A20220903112518%3Aet%3A1662204318%3Arn%3A338314515%3Arqn%3A1%3Au%3A1662204318450135438%3Aw%3A710x400%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662204316756%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C664%2C1%2C%2C%2C%2C1091%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662204318%3At%3APlayer&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Hash dc4dd117ba1a8c6dafcb8d54e8db9a29
9607f08fa1f5aef8403e59c05f5522f39ec16fa1
df5491c1df769d2987d3cdea6cc879e51f392a811f0ce333e8c1ff39af7a4a3c
GET /watch/48329336/1?wmode=7&page-url=https%3A%2F%2Fkinchik.allohalive.com%2F%3Ftoken_movie%3Dfe6ebc9592a115fc635e92d1ca7c5c%26token%3D54e4f1b52d15f9f39add8c724b1631&page-ref=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A1437%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A341620818108%3Ahid%3A944143747%3Az%3A0%3Ai%3A20220903112518%3Aet%3A1662204318%3Arn%3A338314515%3Arqn%3A1%3Au%3A1662204318450135438%3Aw%3A710x400%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662204316756%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C664%2C1%2C%2C%2C%2C1091%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662204318%3At%3APlayer&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kinchik.allohalive.com
Referer: https://kinchik.allohalive.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 419
date: Sat, 03 Sep 2022 11:25:20 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://kinchik.allohalive.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 03-Sep-2022 11:25:20 GMT
last-modified: Sat, 03-Sep-2022 11:25:20 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/36124145/1?wmode=7&page-url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&page-ref=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ocpriggyfyr946elviuuw%3Afp%3A354%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A137506541139%3Ahid%3A61866327%3Az%3A0%3Ai%3A20220903112518%3Aet%3A1662204318%3Ac%3A1%3Arn%3A53175692%3Arqn%3A1%3Au%3A1662204318464026574%3Aw%3A750x570%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662204316415%3Ads%3A0%2C0%2C0%2C%2C1%2C0%2C%2C112%2C8%2C%2C%2C%2C349%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662204318%3At%3A&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
200 OK 419 B URL HTTP/2 mc.yandex.ru/watch/36124145/1?wmode=7&page-url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&page-ref=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ocpriggyfyr946elviuuw%3Afp%3A354%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A137506541139%3Ahid%3A61866327%3Az%3A0%3Ai%3A20220903112518%3Aet%3A1662204318%3Ac%3A1%3Arn%3A53175692%3Arqn%3A1%3Au%3A1662204318464026574%3Aw%3A750x570%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662204316415%3Ads%3A0%2C0%2C0%2C%2C1%2C0%2C%2C112%2C8%2C%2C%2C%2C349%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662204318%3At%3A&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Hash 8e627723e1800b3e9d720c963ec55382
0b5bff274b7f7b0ecad5eee254c6225b396bc659
27dc848f4bd32f9a1173c7f30f2d1bccb7ef29ce03a029f5198cb41d758e7fa2
GET /watch/36124145/1?wmode=7&page-url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&page-ref=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ocpriggyfyr946elviuuw%3Afp%3A354%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A137506541139%3Ahid%3A61866327%3Az%3A0%3Ai%3A20220903112518%3Aet%3A1662204318%3Ac%3A1%3Arn%3A53175692%3Arqn%3A1%3Au%3A1662204318464026574%3Aw%3A750x570%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662204316415%3Ads%3A0%2C0%2C0%2C%2C1%2C0%2C%2C112%2C8%2C%2C%2C%2C349%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662204318%3At%3A&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://videopleer.kinogo.ru.net
Referer: http://videopleer.kinogo.ru.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 419
date: Sat, 03 Sep 2022 11:25:20 GMT
x-content-type-options: nosniff
access-control-allow-origin: http://videopleer.kinogo.ru.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 03-Sep-2022 11:25:20 GMT
last-modified: Sat, 03-Sep-2022 11:25:20 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
x01.aidata.io/pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&v=1662204318438
302 Found 0 B URL HTTP/1.1 x01.aidata.io/pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&v=1662204318438
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&v=1662204318438 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 03 Sep 2022 11:25:20 GMT
Content-Length: 0
Connection: keep-alive
Location: http://x01.aidata.io/pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&v=1662204318438&pid=VIBOOM&js=1&show_js_referer=1&bounce=1
Expires: Sat, 03 Sep 2022 11:25:19 GMT
Access-Control-Allow-Methods: GET, POST
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Last-Modified: Sat, 03 Sep 2022 11:25:19 GMT
Set-Cookie: __upin=4uHKKSdHiFkB5dCInqhhrw;domain=.aidata.io;path=/;max-age=63072000;SameSite=None
__upints=1662204320;domain=.aidata.io;path=/;max-age=63072000;SameSite=None
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0f5975960919609e9b0ec9bbd04bda8c
27c71fa8c415b4ead8f3da4c26f59dbaf9cf9245
294133f675f42d24c0d5f0e995e2b2ac0631bdb1985f62ad01a63ceeb6747a8d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "294133F675F42D24C0D5F0E995E2B2AC0631BDB1985F62AD01A63CEEB6747A8D"
Last-Modified: Thu, 01 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3920
Expires: Sat, 03 Sep 2022 12:30:40 GMT
Date: Sat, 03 Sep 2022 11:25:20 GMT
Connection: keep-alive
x01.aidata.io/pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&v=1662204318438&pid=VIBOOM&js=1&show_js_referer=1&bounce=1
200 OK 618 B URL HTTP/1.1 x01.aidata.io/pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&v=1662204318438&pid=VIBOOM&js=1&show_js_referer=1&bounce=1
IP
ASN #197695 Domain names registrar REG.RU, Ltd
File type ASCII text, with very long lines (301)
Hash 7e74b5b786f273683526d586533556a7
ff5dfd29fd48ce63cfa8de15fa273638719ef62b
2a2313b92ebe7d96b4609362d64d794465d6d298188932efbdca6418a0ff5541
GET /pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&v=1662204318438&pid=VIBOOM&js=1&show_js_referer=1&bounce=1 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://videopleer.kinogo.ru.net/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:21 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sat, 03 Sep 2022 11:25:20 GMT
Access-Control-Allow-Methods: GET, POST
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Last-Modified: Sat, 03 Sep 2022 11:25:20 GMT
Set-Cookie: __upin=X0xcqxJHJJSxgq6tLhoYZQ;domain=.aidata.io;path=/;max-age=63072000;SameSite=None
__upints=1662204321;domain=.aidata.io;path=/;max-age=63072000;SameSite=None
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
Content-Encoding: gzip
ytimgg.com/oO/rotator?align=1&height=390&width=640&key=db210fb66625ebacf2c3c1c594f74deb&adaptive=1&pid=40507&tmpv=49c863bde3900a50ac27e2ab0e86e26a&tmpt=5&tmpo=1&csid=1662204319480-vseed
200 OK 3.3 kB URL HTTP/1.1 ytimgg.com/oO/rotator?align=1&height=390&width=640&key=db210fb66625ebacf2c3c1c594f74deb&adaptive=1&pid=40507&tmpv=49c863bde3900a50ac27e2ab0e86e26a&tmpt=5&tmpo=1&csid=1662204319480-vseed
IP
ASN #49505 OOO Network of data-centers Selectel
File type ASCII text, with very long lines (3258)
Hash 0c6aba4b27d7dac09be2889997c799b0
a3d3064053452086917735b4e77592dc0e9f1f47
114880e5ccdd3d29befe213681d2dc79b88f7ba010c4e4daf6c18fb9a52eafe5
GET /oO/rotator?align=1&height=390&width=640&key=db210fb66625ebacf2c3c1c594f74deb&adaptive=1&pid=40507&tmpv=49c863bde3900a50ac27e2ab0e86e26a&tmpt=5&tmpo=1&csid=1662204319480-vseed HTTP/1.1
Host: ytimgg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.6
Content-Type: text/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache
Date: Sat, 03 Sep 2022 11:25:21 GMT
x01.aidata.io/pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&v=1662204318797&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&is_js_referrer=1&origin_referrer=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&is_js_cookie=1&bounce=1&__upin=
200 OK 4.9 kB URL HTTP/1.1 x01.aidata.io/pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&v=1662204318797&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&is_js_referrer=1&origin_referrer=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&is_js_cookie=1&bounce=1&__upin=
IP
ASN #197695 Domain names registrar REG.RU, Ltd
File type ASCII text, with very long lines (353)
Hash dccd6750b31942f9d5b790c98a8801ef
111be2543ac24f05a3b9a90b387599e1ab7c7212
a76c1cbf6d051d6b622dd5de62738cb7070dfe8bf9d2c297a5c02041d2114b26
GET /pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&v=1662204318797&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&is_js_referrer=1&origin_referrer=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&is_js_cookie=1&bounce=1&__upin= HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 11:25:21 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: mts=1;path=/;expires=Tue, 6 Sep 2022 11:25:21 GMT;max-age=259200;SameSite=None
livin=1;path=/;expires=Tue, 6 Sep 2022 11:25:21 GMT;max-age=259200;SameSite=None
__upin=W5UeoJBMJ0lEDFGyCiDhoQ;domain=.aidata.io;path=/;max-age=63072000;SameSite=None
__upints=1662204321;domain=.aidata.io;path=/;max-age=63072000;SameSite=None
Expires: Sat, 03 Sep 2022 11:25:20 GMT
Access-Control-Allow-Methods: GET, POST
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Last-Modified: Sat, 03 Sep 2022 11:25:20 GMT
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
Content-Encoding: gzip
x01.aidata.io/stats?pixel=VIBOOM&v=1662204318797&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&is_js_referrer=1&origin_referrer=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&is_js_cookie=1&bounce=1&__upin=&pid=VIBOOM&js=1&sid=662e2cc889264f1c84bb7ba36e753ef4&__upin=W5UeoJBMJ0lEDFGyCiDhoQ&id=d8516c9a685c98639841fbd84ecc60af&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&payload=%7B%22event%22%3A%22referrer%22%2C%22type%22%3A%22referrer%22%2C%22data%22%3A%7B%22value%22%3A%22http%3A//33548-parazit.kinogo.ru.net/%22%7D%7D
204 No Content 0 B URL HTTP/1.1 x01.aidata.io/stats?pixel=VIBOOM&v=1662204318797&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&is_js_referrer=1&origin_referrer=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&is_js_cookie=1&bounce=1&__upin=&pid=VIBOOM&js=1&sid=662e2cc889264f1c84bb7ba36e753ef4&__upin=W5UeoJBMJ0lEDFGyCiDhoQ&id=d8516c9a685c98639841fbd84ecc60af&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&payload=%7B%22event%22%3A%22referrer%22%2C%22type%22%3A%22referrer%22%2C%22data%22%3A%7B%22value%22%3A%22http%3A//33548-parazit.kinogo.ru.net/%22%7D%7D
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stats?pixel=VIBOOM&v=1662204318797&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&is_js_referrer=1&origin_referrer=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&is_js_cookie=1&bounce=1&__upin=&pid=VIBOOM&js=1&sid=662e2cc889264f1c84bb7ba36e753ef4&__upin=W5UeoJBMJ0lEDFGyCiDhoQ&id=d8516c9a685c98639841fbd84ecc60af&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&payload=%7B%22event%22%3A%22referrer%22%2C%22type%22%3A%22referrer%22%2C%22data%22%3A%7B%22value%22%3A%22http%3A//33548-parazit.kinogo.ru.net/%22%7D%7D HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 204 No Content
Server: nginx
Date: Sat, 03 Sep 2022 11:25:21 GMT
Connection: keep-alive
counter.yadro.ru/id-redir/aidata.gif?back=STOP
302 Moved Temporarily 323 B URL HTTP/1.1 counter.yadro.ru/id-redir/aidata.gif?back=STOP
IP
ASN #39134 United Network LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash cef58fa6e457b5bc86b1cc3aa5d31329
14d1c24aa7a35fb3cefb92b16754062bc3be3e41
8b21aacb6c2b880dc8fc3807a6dd7f1540eb404c0459e0bdc0b3d1e2171aa770
GET /id-redir/aidata.gif?back=STOP HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 302 Moved Temporarily
Date: Sat, 03 Sep 2022 11:25:21 GMT
Server: 0W/0.8c
Content-Type: text/html; charset=iso-8859-1
Location: http://x01.aidata.io/0.gif?pid=LIVE&id=&back=STOP
Content-Length: 323
x01.aidata.io/0.gif?pid=LIVE&id=&back=STOP
302 Found 0 B URL HTTP/1.1 x01.aidata.io/0.gif?pid=LIVE&id=&back=STOP
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0.gif?pid=LIVE&id=&back=STOP HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 03 Sep 2022 11:25:21 GMT
Content-Length: 0
Connection: keep-alive
Location: http://x01.aidata.io/0.gif?pid=LIVE&id=&back=STOP&bounce=1
Expires: Sat, 03 Sep 2022 11:25:20 GMT
Access-Control-Allow-Methods: GET, POST
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Last-Modified: Sat, 03 Sep 2022 11:25:20 GMT
Set-Cookie: __upin=3vU5ss9IbsZUXQ2g8Sghow;domain=.aidata.io;path=/;max-age=63072000;SameSite=None
__upints=1662204321;domain=.aidata.io;path=/;max-age=63072000;SameSite=None
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
x01.aidata.io/0.gif?pid=LIVE&id=&back=STOP&bounce=1
204 No Content 0 B URL HTTP/1.1 x01.aidata.io/0.gif?pid=LIVE&id=&back=STOP&bounce=1
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0.gif?pid=LIVE&id=&back=STOP&bounce=1 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 204 No Content
Server: nginx
Date: Sat, 03 Sep 2022 11:25:21 GMT
Connection: keep-alive
Expires: Sat, 03 Sep 2022 11:25:20 GMT
Access-Control-Allow-Methods: GET, POST
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Last-Modified: Sat, 03 Sep 2022 11:25:20 GMT
Set-Cookie: __upin=m6HPwOJDhNHsZPyrp6gybA;domain=.aidata.io;path=/;max-age=63072000;SameSite=None
__upints=1662204321;domain=.aidata.io;path=/;max-age=63072000;SameSite=None
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
ocsp.sectigo.com/
200 OK 471 B IP
Hash d3a0b609ec3ac23a9c38275a8ab6425c
c2c1e22603501e67107cf4bc18fca511235bddbd
c86dec0ff38738b6a63f17c5977d737fc8c503b85cd8d1864eaaff0b56da8f29
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 11:25:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 02:18:46 GMT
Expires: Sat, 10 Sep 2022 02:18:45 GMT
Etag: "c2c1e22603501e67107cf4bc18fca511235bddbd"
Cache-Control: max-age=571403,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 744e1fcffbbeb50f-OSL
x01.aidata.io/pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&v=1662204318901&is_js_referrer=1&es_name=YM&es_uid=1662204318464026574
302 Found 0 B URL HTTP/2 x01.aidata.io/pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&v=1662204318901&is_js_referrer=1&es_name=YM&es_uid=1662204318464026574
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&v=1662204318901&is_js_referrer=1&es_name=YM&es_uid=1662204318464026574 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 03 Sep 2022 11:25:21 GMT
content-length: 0
location: https://x01.aidata.io/pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&v=1662204318901&is_js_referrer=1&es_name=YM&es_uid=1662204318464026574&pid=VIBOOM&js=1&bounce=1
expires: Sat, 03 Sep 2022 11:25:20 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sat, 03 Sep 2022 11:25:20 GMT
set-cookie: __upin=KLeCQfZPQo7e8SGx6fV53Q;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1662204321;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2
sm.rtb.mts.ru/p?ssp=aidata&id=W5UeoJBMJ0lEDFGyCiDhoQ
301 Moved Permanently 0 B URL HTTP/1.1 sm.rtb.mts.ru/p?ssp=aidata&id=W5UeoJBMJ0lEDFGyCiDhoQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=aidata&id=W5UeoJBMJ0lEDFGyCiDhoQ HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 03 Sep 2022 11:25:21 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: http://sm.rtb.mts.ru/match/second?ssp=51&exu=W5UeoJBMJ0lEDFGyCiDhoQ
Set-Cookie: dspid=0608c0cb-f4a1-4e33-9900-996664c5d653; expires=Fri, 25 Aug 2023 11:25:21 GMT; domain=.mts.ru; path=/; secure; SameSite=None
sm.rtb.mts.ru/match/second?ssp=51&exu=W5UeoJBMJ0lEDFGyCiDhoQ
301 Moved Permanently 0 B URL HTTP/1.1 sm.rtb.mts.ru/match/second?ssp=51&exu=W5UeoJBMJ0lEDFGyCiDhoQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/second?ssp=51&exu=W5UeoJBMJ0lEDFGyCiDhoQ HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 03 Sep 2022 11:25:21 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: http://tech.rtb.mts.ru/
ocsp.sectigo.com/
200 OK 471 B IP
Hash d3a0b609ec3ac23a9c38275a8ab6425c
c2c1e22603501e67107cf4bc18fca511235bddbd
c86dec0ff38738b6a63f17c5977d737fc8c503b85cd8d1864eaaff0b56da8f29
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 11:25:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 02:18:46 GMT
Expires: Sat, 10 Sep 2022 02:18:45 GMT
Etag: "c2c1e22603501e67107cf4bc18fca511235bddbd"
Cache-Control: max-age=571403,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 744e1fd00fecb51b-OSL
x01.aidata.io/pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&v=1662204318900&is_js_referrer=1&es_name=GA&es_uid=1555957015.1662204318
302 Found 0 B URL HTTP/2 x01.aidata.io/pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&v=1662204318900&is_js_referrer=1&es_name=GA&es_uid=1555957015.1662204318
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&v=1662204318900&is_js_referrer=1&es_name=GA&es_uid=1555957015.1662204318 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 03 Sep 2022 11:25:21 GMT
content-length: 0
location: https://x01.aidata.io/pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&v=1662204318900&is_js_referrer=1&es_name=GA&es_uid=1555957015.1662204318&pid=VIBOOM&js=1&bounce=1
expires: Sat, 03 Sep 2022 11:25:20 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sat, 03 Sep 2022 11:25:20 GMT
set-cookie: __upin=stlsgkFH8bZWF8aa4sdlEg;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1662204321;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 32dfed8a829e1a15333d31ba3adcef51
9ab399ebcd66e5bdca206069846e5065c0cbbb49
9d3ec47256f5ec7cebca6beece84a1a1fe8f656750d4ebb13ac89df2d019eed4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9D3EC47256F5EC7CEBCA6BEECE84A1A1FE8F656750D4EBB13AC89DF2D019EED4"
Last-Modified: Fri, 02 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=889
Expires: Sat, 03 Sep 2022 11:40:10 GMT
Date: Sat, 03 Sep 2022 11:25:21 GMT
Connection: keep-alive
x01.aidata.io/pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&v=1662204318901&is_js_referrer=1&es_name=YM&es_uid=1662204318464026574&pid=VIBOOM&js=1&bounce=1
200 OK 650 B URL HTTP/2 x01.aidata.io/pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&v=1662204318901&is_js_referrer=1&es_name=YM&es_uid=1662204318464026574&pid=VIBOOM&js=1&bounce=1
IP
ASN #197695 Domain names registrar REG.RU, Ltd
File type ASCII text, with very long lines (313)
Hash 8511a3de86d993c8bf404fdeadbe0498
2f8cafd8d971d7bcfdb0dc51d944d43acf31ff7e
2492e4ee1de5c7e6580164f06a2f512840871e95429463a3ca71e9f4c13bb2f7
GET /pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&v=1662204318901&is_js_referrer=1&es_name=YM&es_uid=1662204318464026574&pid=VIBOOM&js=1&bounce=1 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 11:25:21 GMT
content-type: application/javascript
expires: Sat, 03 Sep 2022 11:25:20 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sat, 03 Sep 2022 11:25:20 GMT
set-cookie: __upin=+vKABWFO/Qv2EJuzfro5lg;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1662204321;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
content-encoding: gzip
X-Firefox-Spdy: h2
z9mx.streamalloha.live/4Em7.txt
200 OK 12 B URL HTTP/2 z9mx.streamalloha.live/4Em7.txt
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d
GET /4Em7.txt HTTP/1.1
Host: z9mx.streamalloha.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kinchik.allohalive.com
Connection: keep-alive
Referer: https://kinchik.allohalive.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 11:25:21 GMT
content-type: text/plain
content-length: 12
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
connect.ok.ru/dk?st.cmd=extLike&ref=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&uid=0&_=1662204316398
200 OK 29 B URL HTTP/2 connect.ok.ru/dk?st.cmd=extLike&ref=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&uid=0&_=1662204316398
IP
File type ASCII text, with no line terminators
Hash ef742b5cdac84847f8676c355c8c4b4b
2400ffe2ed97e517d12a5ff486a169fe73005f09
942c534d6d1cfb09dcc03ec2cac44dd2a8980f5cd953c513cb2d3b3eebea8cb7
GET /dk?st.cmd=extLike&ref=http%3A%2F%2F33548-parazit.kinogo.ru.net%2F&uid=0&_=1662204316398 HTTP/1.1
Host: connect.ok.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://33548-parazit.kinogo.ru.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: apache
date: Sat, 03 Sep 2022 11:25:19 GMT
content-type: application/javascript;charset=UTF-8
vary: Accept-Encoding
set-cookie: bci=-5388973116431859218; Domain=.ok.ru; Expires=Thu, 21-Sep-2090 14:39:26 GMT; Path=/; Secure; HttpOnly
_statid=f2f8f302-37de-4d0b-9401-5290d3625701; Domain=.ok.ru; Expires=Thu, 21-Sep-2090 14:39:26 GMT; Path=/; Secure; HttpOnly
landref=33548-parazit.kinogo.ru.net; Domain=.ok.ru; Path=/; Secure
content-security-policy: default-src data: 'self' 'unsafe-inline' 'unsafe-eval' ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me wss://ad.mail.ru *.mail.ru *.imgsmail.ru *.mradx.net *.serving-sys.com *.googleapis.com *.gstatic.com www.google.com https://api-maps.yandex.ru yastatic.net yandex.st *.doubleverify.com *.adsafeprotected.com https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://football.sportmail.ru *.google.ru *.google.com *.googlesyndication.com *.yandex.ru blob:; script-src 'unsafe-inline' 'unsafe-eval' *.mail.ru https://*.mail.ru *.imgsmail.ru *.mradx.net ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me mc.yandex.ru an.yandex.ru yastatic.net yandex.st *.google-analytics.com api-maps.yandex.ru https://api-maps.yandex.ru https://clck.yandex.ru *.googleapis.com *.gstatic.com www.google.com www.youtube.com https://www.youtube.com *.ytimg.com https://*.ytimg.com *.doubleverify.com *.dvtps.com *.doubleclick.net *.googletagservices.com *.googlesyndication.com *.googleadservices.com *.goodgame.ru https://*.goodgame.ru https://*.moatads.com *.adlooxtracking.com *.adlooxtracking.ru *.adsafeprotected.com *.serving-sys.com *.serving-sys.ru *.weborama.fr *.weborama-tech.ru https://enterprise.api-maps.yandex.ru https://suggest-maps.yandex.ru https://*.hit.gemius.pl https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://gum.criteo.com https://football.sportmail.ru *.googletagmanager.com connect.facebook.net *.google.ru *.google.com *.googlesyndication.com yandex.ru; worker-src blob: 'self'; connect-src * wss: blob:; font-src * data: blob:; frame-src * blob: 'self'; img-src * data: blob: about:; media-src * data: blob:; object-src *; report-uri /csp/report;
content-security-policy-report-only: default-src data: blob: about: 'self' 'unsafe-inline' 'unsafe-eval' https: wss:; report-uri /csp/report?always;
cache-control: no-cache, no-store
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000;includeSubdomains;preload
access-control-allow-origin: *
access-control-allow-credentials: true
rendered-blocks: WidgetExtLike
content-encoding: br
X-Firefox-Spdy: h2
cloud.kodik-cdn.com/e9a0997385002f383a67679c174f45ad:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb003.jpg
302 Found 0 B URL HTTP/1.1 cloud.kodik-cdn.com/e9a0997385002f383a67679c174f45ad:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb003.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /e9a0997385002f383a67679c174f45ad:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb003.jpg HTTP/1.1
Host: cloud.kodik-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kodik.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.18.0
Date: Sat, 03 Sep 2022 11:25:21 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: https://lipsium.cloud.kodik-cdn.com/e9a0997385002f383a67679c174f45ad:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb003.jpg
X-Routing: sh
cloud.kodik-cdn.com/1eff4a4488970f3304dbfd3487f94b0e:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb001.jpg
302 Found 0 B URL HTTP/1.1 cloud.kodik-cdn.com/1eff4a4488970f3304dbfd3487f94b0e:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb001.jpg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1eff4a4488970f3304dbfd3487f94b0e:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb001.jpg HTTP/1.1
Host: cloud.kodik-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kodik.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.18.0
Date: Sat, 03 Sep 2022 11:25:21 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: https://flash.cloud.kodik-cdn.com/1eff4a4488970f3304dbfd3487f94b0e:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb001.jpg
X-Routing: sh
allvideometrika.com/f.php?sid=212400
200 OK 1 B URL HTTP/2 allvideometrika.com/f.php?sid=212400
IP
Hash eccbc87e4b5ce2fe28308fd9f2a7baf3
77de68daecd823babbb58edb1c8e14d7106e83bb
4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce
GET /f.php?sid=212400 HTTP/1.1
Host: allvideometrika.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8846.svetacdn.in/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 11:25:19 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.1.33
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
x-robots-tag: noindex
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AhxM%2FIE%2BmswBTtg9eUmHIEzDna2hQF5jlLKWymBUjVdkzdCwjJJRyA6L2gtYYeqUlC5%2FVdXgGeFkfD7SfwUweIywDEQ5WRdxNh3NBhpkZzqKZ9hn3PpTdLdozKk65oocn49JFDQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 744e1fc5cd47b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
cloud.kodik-cdn.com/49b7231cd735e1b72431e52c7138c40c:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb004.jpg
302 Found 50 kB URL HTTP/1.1 cloud.kodik-cdn.com/49b7231cd735e1b72431e52c7138c40c:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb004.jpg
IP
Hash 73277b2e3bfb81191e0d180acaf35d64
044c7eeae0fbb428da76c0a067b6d2cc307ff0dd
76447c0a14ad908ddbba1e0a62cb8c149f3d2a61d299387ebe2aae78ddc5113f
GET /49b7231cd735e1b72431e52c7138c40c:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb004.jpg HTTP/1.1
Host: cloud.kodik-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kodik.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.18.0
Date: Sat, 03 Sep 2022 11:25:21 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: https://nuceria.cloud.kodik-cdn.com/49b7231cd735e1b72431e52c7138c40c:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb004.jpg
X-Routing: sh
francium.cloud.kodik-cdn.com/2225815131d2cc8dd220937f98ea7a41:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb005.jpg
200 OK 83 kB URL HTTP/1.1 francium.cloud.kodik-cdn.com/2225815131d2cc8dd220937f98ea7a41:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb005.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc56.26.100", baseline, precision 8, 1920x1080, components 3\012- data
Hash 9007f3a0318ed7f44b8d4333ad22361b
2b0a041f0b1ce64ffee1db38125231fdcc1c6dc6
9c944eb534ff5248cd5cbd5b762e401507db6a3c0cb3269ff0dd953f62959f60
GET /2225815131d2cc8dd220937f98ea7a41:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb005.jpg HTTP/1.1
Host: francium.cloud.kodik-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kodik.info/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 03 Sep 2022 11:25:22 GMT
Content-Type: image/jpeg
Content-Length: 82949
Last-Modified: Sat, 10 Jul 2021 03:51:01 GMT
Connection: keep-alive
ETag: "60e91925-14405"
Accept-Ranges: bytes, bytes
flash.cloud.kodik-cdn.com/1eff4a4488970f3304dbfd3487f94b0e:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb001.jpg
200 OK 73 kB URL HTTP/1.1 flash.cloud.kodik-cdn.com/1eff4a4488970f3304dbfd3487f94b0e:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb001.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc56.26.100", baseline, precision 8, 1920x1080, components 3\012- data
Hash 444c223272d9bc7c9ce448f87c402120
e3efceb7e297b895ccc8cf341876195bad81707d
a1ae73ff7e35dad2eb69320e9ea6ba87eac02eecdd476ceca88988b7f80fff38
GET /1eff4a4488970f3304dbfd3487f94b0e:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb001.jpg HTTP/1.1
Host: flash.cloud.kodik-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kodik.info/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 03 Sep 2022 11:25:22 GMT
Content-Type: image/jpeg
Content-Length: 72792
Last-Modified: Sat, 18 Sep 2021 00:19:10 GMT
Connection: keep-alive
ETag: "6145307e-11c58"
Accept-Ranges: bytes, bytes
nuceria.cloud.kodik-cdn.com/49b7231cd735e1b72431e52c7138c40c:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb004.jpg
200 OK 92 kB URL HTTP/1.1 nuceria.cloud.kodik-cdn.com/49b7231cd735e1b72431e52c7138c40c:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb004.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc56.26.100", baseline, precision 8, 1920x1080, components 3\012- data
Hash 66582fe8eb26e002cb584fda4e01dc19
6516bb311b756d363144f651deaf7ba254ad1483
95fd97e113aa4005cd2c406111f2218c72879653464baa3cc27e36ec759ed354
GET /49b7231cd735e1b72431e52c7138c40c:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb004.jpg HTTP/1.1
Host: nuceria.cloud.kodik-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kodik.info/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 03 Sep 2022 11:25:22 GMT
Content-Type: image/jpeg
Content-Length: 91673
Last-Modified: Wed, 26 Jan 2022 00:46:36 GMT
Connection: keep-alive
ETag: "61f099ec-16619"
Accept-Ranges: bytes, bytes
lipsium.cloud.kodik-cdn.com/e9a0997385002f383a67679c174f45ad:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb003.jpg
200 OK 112 kB URL HTTP/1.1 lipsium.cloud.kodik-cdn.com/e9a0997385002f383a67679c174f45ad:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb003.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc56.26.100", baseline, precision 8, 1920x1080, components 3\012- data
Size 112 kB (111998 bytes)
Hash 43cfc334156812f197ac8de3092902b5
7041c8cfae59d6d7dee2aa706d014f0af517b976
9a305ab553f7c77df070beb033293f3428dd36ee6aa65e1d7e159b9cba7cbcb3
GET /e9a0997385002f383a67679c174f45ad:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb003.jpg HTTP/1.1
Host: lipsium.cloud.kodik-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kodik.info/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 03 Sep 2022 11:25:22 GMT
Content-Type: image/jpeg
Content-Length: 111998
Last-Modified: Sat, 01 May 2021 01:32:26 GMT
Connection: keep-alive
ETag: "608cafaa-1b57e"
Accept-Ranges: bytes, bytes
acheron.cloud.kodik-cdn.com/4c9bea2d06c4765522612c5b7b6d5866:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb002.jpg
200 OK 117 kB URL HTTP/1.1 acheron.cloud.kodik-cdn.com/4c9bea2d06c4765522612c5b7b6d5866:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb002.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc56.26.100", baseline, precision 8, 1920x1080, components 3\012- data
Size 117 kB (116561 bytes)
Hash 00f7b6e523f69f733dbe0dec91190ff1
56aeb5340c1481ed065fa77b037bacb8749f7302
4c95d2f99964f0d1e9ee5d86bf9d34a853589986fa1e28df8ce9d78f45e08217
GET /4c9bea2d06c4765522612c5b7b6d5866:2022090323/movies/ec59ff7c9450e7cb0564aa13370bd0bb7fad2c38/thumb002.jpg HTTP/1.1
Host: acheron.cloud.kodik-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kodik.info/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 03 Sep 2022 11:25:22 GMT
Content-Type: image/jpeg
Content-Length: 116561
Last-Modified: Thu, 04 Feb 2021 00:39:54 GMT
Connection: keep-alive
ETag: "601b425a-1c751"
Accept-Ranges: bytes, bytes
z9mx.streamalloha.live/4Em7.txt
200 OK 12 B URL HTTP/2 z9mx.streamalloha.live/4Em7.txt
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d
GET /4Em7.txt HTTP/1.1
Host: z9mx.streamalloha.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kinchik.allohalive.com
Connection: keep-alive
Referer: https://kinchik.allohalive.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 11:25:22 GMT
content-type: text/plain
content-length: 12
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
z9mx.streamalloha.live/4Em7.txt
200 OK 12 B URL HTTP/2 z9mx.streamalloha.live/4Em7.txt
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d
GET /4Em7.txt HTTP/1.1
Host: z9mx.streamalloha.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kinchik.allohalive.com
Connection: keep-alive
Referer: https://kinchik.allohalive.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 11:25:23 GMT
content-type: text/plain
content-length: 12
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
z9mx.streamalloha.live/4Em7.txt
200 OK 12 B URL HTTP/2 z9mx.streamalloha.live/4Em7.txt
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d
GET /4Em7.txt HTTP/1.1
Host: z9mx.streamalloha.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kinchik.allohalive.com
Connection: keep-alive
Referer: https://kinchik.allohalive.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 11:25:24 GMT
content-type: text/plain
content-length: 12
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
z9mx.streamalloha.live/4Em7.txt
200 OK 12 B URL HTTP/2 z9mx.streamalloha.live/4Em7.txt
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d
GET /4Em7.txt HTTP/1.1
Host: z9mx.streamalloha.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kinchik.allohalive.com
Connection: keep-alive
Referer: https://kinchik.allohalive.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 11:25:25 GMT
content-type: text/plain
content-length: 12
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
kinchik.allohalive.com/js/default-dist.js?v=4.16
200 OK 0 B URL HTTP/2 kinchik.allohalive.com/js/default-dist.js?v=4.16
IP
GET /js/default-dist.js?v=4.16 HTTP/1.1
Host: kinchik.allohalive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinchik.allohalive.com/?token_movie=fe6ebc9592a115fc635e92d1ca7c5c&token=54e4f1b52d15f9f39add8c724b1631
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 11:25:19 GMT
content-type: application/javascript
last-modified: Fri, 22 Jul 2022 12:10:13 GMT
etag: W/"62da93a5-6a22"
expires: Thu, 20 Oct 2022 12:10:33 GMT
cache-control: max-age=7776000
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
200 OK 0 B URL HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://33548-parazit.kinogo.ru.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 11:25:18 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/15/2021 21:49:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 2729ae8f2fc6c761bdc17d91cc795f58
cdn-cache: HIT
cf-cache-status: HIT
age: 7651072
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 744e1fbd98130b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kinchik.allohalive.com/js/baron.js?v=1.931
200 OK 0 B URL HTTP/2 kinchik.allohalive.com/js/baron.js?v=1.931
IP
Analyzer Verdict Alert fortinet Phishing
GET /js/baron.js?v=1.931 HTTP/1.1
Host: kinchik.allohalive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinchik.allohalive.com/?token_movie=fe6ebc9592a115fc635e92d1ca7c5c&token=54e4f1b52d15f9f39add8c724b1631
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 11:25:19 GMT
content-type: application/javascript
last-modified: Fri, 24 Sep 2021 19:37:42 GMT
etag: W/"614e2906-7728"
expires: Mon, 31 Oct 2022 10:51:05 GMT
cache-control: max-age=7776000
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
kinchik.allohalive.com/js/iife.min.js
200 OK 0 B URL HTTP/2 kinchik.allohalive.com/js/iife.min.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /js/iife.min.js HTTP/1.1
Host: kinchik.allohalive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinchik.allohalive.com/?token_movie=fe6ebc9592a115fc635e92d1ca7c5c&token=54e4f1b52d15f9f39add8c724b1631
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 11:25:20 GMT
content-type: application/javascript
last-modified: Mon, 14 Feb 2022 21:09:58 GMT
etag: W/"620ac526-a083"
expires: Mon, 31 Oct 2022 10:51:49 GMT
cache-control: max-age=7776000
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
x01.aidata.io/pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&v=1662204318900&is_js_referrer=1&es_name=GA&es_uid=1555957015.1662204318&pid=VIBOOM&js=1&bounce=1
200 OK 0 B URL HTTP/2 x01.aidata.io/pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&v=1662204318900&is_js_referrer=1&es_name=GA&es_uid=1555957015.1662204318&pid=VIBOOM&js=1&bounce=1
IP
ASN #197695 Domain names registrar REG.RU, Ltd
GET /pixel.js?pixel=VIBOOM&id=d8516c9a685c98639841fbd84ecc60af&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D33548&v=1662204318900&is_js_referrer=1&es_name=GA&es_uid=1555957015.1662204318&pid=VIBOOM&js=1&bounce=1 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 11:25:21 GMT
content-type: application/javascript
expires: Sat, 03 Sep 2022 11:25:20 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sat, 03 Sep 2022 11:25:20 GMT
set-cookie: __upin=LZfPBFBJO/1ra2yj52MaKw;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1662204321;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
content-encoding: gzip
X-Firefox-Spdy: h2
mc.yandex.ru/watch/48329336?wmode=7&page-url=https%3A%2F%2Fkinchik.allohalive.com%2F%3Ftoken_movie%3Dfe6ebc9592a115fc635e92d1ca7c5c%26token%3D54e4f1b52d15f9f39add8c724b1631&page-ref=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A1437%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A341620818108%3Ahid%3A944143747%3Az%3A0%3Ai%3A20220903112518%3Aet%3A1662204318%3Arn%3A338314515%3Arqn%3A1%3Au%3A1662204318450135438%3Aw%3A710x400%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662204316756%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C664%2C1%2C%2C%2C%2C1091%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662204318%3At%3APlayer&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/48329336?wmode=7&page-url=https%3A%2F%2Fkinchik.allohalive.com%2F%3Ftoken_movie%3Dfe6ebc9592a115fc635e92d1ca7c5c%26token%3D54e4f1b52d15f9f39add8c724b1631&page-ref=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A1437%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A341620818108%3Ahid%3A944143747%3Az%3A0%3Ai%3A20220903112518%3Aet%3A1662204318%3Arn%3A338314515%3Arqn%3A1%3Au%3A1662204318450135438%3Aw%3A710x400%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662204316756%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C664%2C1%2C%2C%2C%2C1091%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662204318%3At%3APlayer&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
IP
GET /watch/48329336?wmode=7&page-url=https%3A%2F%2Fkinchik.allohalive.com%2F%3Ftoken_movie%3Dfe6ebc9592a115fc635e92d1ca7c5c%26token%3D54e4f1b52d15f9f39add8c724b1631&page-ref=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A1437%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A341620818108%3Ahid%3A944143747%3Az%3A0%3Ai%3A20220903112518%3Aet%3A1662204318%3Arn%3A338314515%3Arqn%3A1%3Au%3A1662204318450135438%3Aw%3A710x400%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662204316756%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C664%2C1%2C%2C%2C%2C1091%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662204318%3At%3APlayer&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kinchik.allohalive.com
Connection: keep-alive
Referer: https://kinchik.allohalive.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/48329336/1?wmode=7&page-url=https%3A%2F%2Fkinchik.allohalive.com%2F%3Ftoken_movie%3Dfe6ebc9592a115fc635e92d1ca7c5c%26token%3D54e4f1b52d15f9f39add8c724b1631&page-ref=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A1437%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A341620818108%3Ahid%3A944143747%3Az%3A0%3Ai%3A20220903112518%3Aet%3A1662204318%3Arn%3A338314515%3Arqn%3A1%3Au%3A1662204318450135438%3Aw%3A710x400%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662204316756%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C664%2C1%2C%2C%2C%2C1091%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662204318%3At%3APlayer&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
date: Sat, 03 Sep 2022 11:25:20 GMT
access-control-allow-origin: https://kinchik.allohalive.com
set-cookie: yandexuid=5647128991662204320; Expires=Sun, 03-Sep-2023 11:25:20 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=5647128991662204320; Expires=Sun, 03-Sep-2023 11:25:20 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=168770751662204320; Path=/; SameSite=None; Secure
i=BdxFF1GK2IwafsPMN7WSH6u7u5/j1esHOeK+9Nw5KFSrv/Hgl1qCju27bWRGDJ5BrQLOF+FXCgsfiRzjJfneOn47PCs=; Expires=Tue, 31-Aug-2032 11:25:19 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1693740320.yrts.1662204320#1693740320.yrtsi.1662204320; Expires=Sun, 03-Sep-2023 11:25:20 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 03-Sep-2022 11:25:20 GMT
last-modified: Sat, 03-Sep-2022 11:25:20 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ls.player-cname-domain.com/local-storage.min.js
200 OK 0 B URL HTTP/2 ls.player-cname-domain.com/local-storage.min.js
IP
ASN #49981 WorldStream B.V.
GET /local-storage.min.js HTTP/1.1
Host: ls.player-cname-domain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ls.player-cname-domain.com/storage.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 11:25:20 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 03 Dec 2020 13:06:09 GMT
vary: Accept-Encoding
etag: W/"5fc8e2c1-2f7"
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700&subset=cyrillic
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700&subset=cyrillic
IP
GET /css?family=Open+Sans:400,700&subset=cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kodikcdn.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Sep 2022 11:25:19 GMT
date: Sat, 03 Sep 2022 11:25:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kinchik.allohalive.com/js/ch.js?v=1.31
200 OK 0 B URL HTTP/2 kinchik.allohalive.com/js/ch.js?v=1.31
IP
Analyzer Verdict Alert fortinet Phishing
GET /js/ch.js?v=1.31 HTTP/1.1
Host: kinchik.allohalive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinchik.allohalive.com/?token_movie=fe6ebc9592a115fc635e92d1ca7c5c&token=54e4f1b52d15f9f39add8c724b1631
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 11:25:20 GMT
content-type: application/javascript
last-modified: Wed, 06 Oct 2021 23:48:10 GMT
etag: W/"615e35ba-33fdd"
expires: Mon, 31 Oct 2022 10:51:49 GMT
cache-control: max-age=7776000
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
45.150.67.242
91.228.155.126
190.115.16.16
151.101.85.229
141.95.45.78
34.117.237.239
104.18.21.226
93.184.220.29
176.58.48.48
23.36.76.226
5.45.75.15