31416-pravda-ili-deistvie.kinogo.ru.net/
200 OK 4.7 kB URL HTTP/1.1 31416-pravda-ili-deistvie.kinogo.ru.net/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1016)
Hash d308573576b0ef7711e0aa91a8393f38
f3d7f5a44c98ca1d2263baca5d5ee97817fe5cb1
3d7d1064039ae6a625ae3de000cb31ec1fad17d251ab6cc477b9d2ff85ca1b6e
GET / HTTP/1.1
Host: 31416-pravda-ili-deistvie.kinogo.ru.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:55 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding, Host
X-Powered-By: PHP/7.0.33
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8286265a56e3e10efd41b41618a54071
5f10ac9a050e15f5598674dc7ee3865b325d01a8
2da2fa0b2b86ccc4029d0baa4e9c5b21a6433228b84b451b72b1d318561d4ef2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2DA2FA0B2B86CCC4029D0BAA4E9C5B21A6433228B84B451B72B1D318561D4EF2"
Last-Modified: Sat, 05 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8528
Expires: Sun, 06 Nov 2022 13:37:03 GMT
Date: Sun, 06 Nov 2022 11:14:55 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 72c64df35304c35cd95e4ed6e101e795
a39287987854d644a8da295da536fb31de8b44c1
a9bf0da57e0f108b376781ede4b9762ae1b0d088910d26fb7be98c2d03e69092
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6085
Cache-Control: max-age=86254
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 11:14:55 GMT
Etag: "63662d58-1d7"
Expires: Mon, 07 Nov 2022 11:12:29 GMT
Last-Modified: Sat, 05 Nov 2022 09:31:04 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9f3527f898221f8ba6b5015f6decc100
ead93baa0e9d3a6297be3377dc3a624e5a3f509a
73a068f907cc50dd60af18d545b4264dd44bc4b9f40bf9adfceea157fdc33099
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "73A068F907CC50DD60AF18D545B4264DD44BC4B9F40BF9ADFCEEA157FDC33099"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2185
Expires: Sun, 06 Nov 2022 11:51:20 GMT
Date: Sun, 06 Nov 2022 11:14:55 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: uiFekk3PYMVc7E9twvhbbXsjL+qJVdfjcxRxDaWPg4xTGadFcu8nvGgDWdDp40wODPZJmjCzAms=
x-amz-request-id: EG6GXAWNYQC2KRG7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 06 Nov 2022 10:47:36 GMT
age: 1639
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 7bb75cda180838bb141d84bc6237047c
3bfc21e05d99392259a744b8b6246c4e87c121f4
97b56f9370203a7d906a51562dc75f23414138e8d82423410bce14ac5c1fcca2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4374
Cache-Control: max-age=158353
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 11:14:55 GMT
Etag: "63674daa-117"
Expires: Tue, 08 Nov 2022 07:14:08 GMT
Last-Modified: Sun, 06 Nov 2022 06:01:14 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 278 B IP
Hash 009610744be028066bafcdd49b2a2a67
dcf0f0cf967557c3f45870fadb3360546459b534
0e210fde1b0684291ea586775a271e3829d195f6e269ffb4003878e0c2b2cb17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4291
Cache-Control: max-age=93475
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 11:14:55 GMT
Etag: "6366508f-116"
Expires: Mon, 07 Nov 2022 13:12:50 GMT
Last-Modified: Sat, 05 Nov 2022 12:01:19 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 278
styles.kinogo.ru.net/styles.css?v=2
200 OK 8.9 kB URL HTTP/1.1 styles.kinogo.ru.net/styles.css?v=2
IP
File type Unicode text, UTF-8 text, with very long lines (371)
Hash 9e684254b61799aa2510553f2f97f26d
da15100b00ad7b0fe4ff6168f69a7641b43b5581
0e57d8c6b4e457cc6f37dcaf0d2edf6c84fc3f92ad8b5df3d4df66eb560a265a
GET /styles.css?v=2 HTTP/1.1
Host: styles.kinogo.ru.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:55 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Last-Modified: Fri, 04 Nov 2022 14:55:15 GMT
ETag: W/"968f-5eca642eee901"
Content-Encoding: gzip
styles.kinogo.ru.net/engine.css
200 OK 8.8 kB URL HTTP/1.1 styles.kinogo.ru.net/engine.css
IP
File type ASCII text, with very long lines (12780)
Hash 42119c6f27aa30498f7881e58cbdaba8
f5ac31b40d83a6b63e169d629e045a41096370b8
a537392ab9f1dbf3da79917ef4a56666f09a985a06e65b27c58a08cc9854ff5d
GET /engine.css HTTP/1.1
Host: styles.kinogo.ru.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:55 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Last-Modified: Fri, 04 Nov 2022 14:55:14 GMT
ETag: W/"57fc-5eca642e9573b"
Content-Encoding: gzip
js.kinogo.ru.net/jquery.cookie.js
200 OK 1.5 kB URL HTTP/1.1 js.kinogo.ru.net/jquery.cookie.js
IP
Hash c3c0b2b73c71bc979836850078b8dd55
822ef574ca5b8382df2abcb3cf517a7fb0fa0b5b
dd0945498e5e2dc4ce026d57a11bf1e52acc2bac1dc16a8b41e68cd48a83ca5c
GET /jquery.cookie.js HTTP/1.1
Host: js.kinogo.ru.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Last-Modified: Fri, 04 Nov 2022 14:55:11 GMT
ETag: W/"1096-5eca642afe445"
Content-Encoding: gzip
js.kinogo.ru.net/libs.js
200 OK 12 kB IP
File type ASCII text, with very long lines (9724)
Hash 656b78706d4f72aef346cb7d1e7a066e
b5062a78c2e4bcf735bbb8d3b63150f2840bcb81
19d0f7a8b1fb48c08935362d61aa5cea18bdb251281fb142b958d16f0a7bcf98
GET /libs.js HTTP/1.1
Host: js.kinogo.ru.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Last-Modified: Fri, 04 Nov 2022 14:55:12 GMT
ETag: W/"9fba-5eca642c27df7"
Content-Encoding: gzip
js.kinogo.ru.net/dle_js.js
200 OK 6.6 kB URL HTTP/1.1 js.kinogo.ru.net/dle_js.js
IP
File type HTML document, ASCII text, with very long lines (602)
Hash bdd3d214f52f5a18f26b638c5fa4ad65
ad0b8396c6094e5c4069b26640cac5a11497e485
67e40f2a150a6115ef6e61dc4c06845ef361beb28f710e8142d8be88bff898a6
GET /dle_js.js HTTP/1.1
Host: js.kinogo.ru.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Last-Modified: Fri, 04 Nov 2022 14:55:10 GMT
ETag: W/"6f92-5eca642ab5c1e"
Content-Encoding: gzip
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 11:14:55 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
js.kinogo.ru.net/jquery.js
200 OK 33 kB URL HTTP/1.1 js.kinogo.ru.net/jquery.js
IP
File type ASCII text, with very long lines (32038)
Hash 17edf746df3aa29160211e52ca786fc5
2bf194df0e45ebf047e60ebd143cf7f665ff61b1
f7e0131bb3f6b858ee1adf09af3912a8a385e3d075545f1793b0883d329a0e50
GET /jquery.js HTTP/1.1
Host: js.kinogo.ru.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Last-Modified: Fri, 04 Nov 2022 14:55:11 GMT
ETag: W/"176d5-5eca642b63d43"
Content-Encoding: gzip
js.kinogo.ru.net/jqueryui.js
200 OK 26 kB URL HTTP/1.1 js.kinogo.ru.net/jqueryui.js
IP
File type ASCII text, with very long lines (18446)
Hash 6c67df4c6a7aa42e10407247948e9c25
8847bc0273e97ca42bdcede97623884cd2e61a2e
bc97c7f1cc4700920debece0a31b32dda745e13573e8255a281cb6579edca3a8
GET /jqueryui.js HTTP/1.1
Host: js.kinogo.ru.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Last-Modified: Fri, 04 Nov 2022 14:55:11 GMT
ETag: W/"16f9d-5eca642bca1f9"
Content-Encoding: gzip
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
200 OK 7.3 kB URL HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
File type ASCII text, with very long lines (30837)
Hash 5272ae083fdfd8f229ea22640f0c0e13
96454c2e92790b5771235cbf432ef4800f1ec9dc
2ec03c29ae69aa096deed61a031d0ebe6faaed570c42d2d7437a4bbf470ad819
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 06 Nov 2022 11:14:55 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/15/2021 21:49:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 2729ae8f2fc6c761bdc17d91cc795f58
cdn-cache: HIT
cf-cache-status: HIT
age: 13180049
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 765d688bd9a50b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 009610744be028066bafcdd49b2a2a67
dcf0f0cf967557c3f45870fadb3360546459b534
0e210fde1b0684291ea586775a271e3829d195f6e269ffb4003878e0c2b2cb17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4292
Cache-Control: max-age=93475
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 11:14:56 GMT
Etag: "6366508f-116"
Expires: Mon, 07 Nov 2022 13:12:51 GMT
Last-Modified: Sat, 05 Nov 2022 12:01:19 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 278
pictures.kinogo.ru.net/android.png
200 OK 1.6 kB URL HTTP/1.1 pictures.kinogo.ru.net/android.png
IP
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 95fa2411ba5f87e6975533d128d86fd9
344eb25657e38bcd3a98a9529f52c02102188b1e
fa0906871dc8fe44cd0e50efafd67571e970237865bc7fc82b6d88d44c1e8e80
GET /android.png HTTP/1.1
Host: pictures.kinogo.ru.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: image/png
Content-Length: 1642
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 04 Nov 2022 15:09:07 GMT
ETag: "66a-5eca67484bdc9"
Accept-Ranges: bytes
pictures.kinogo.ru.net/proverka.png
200 OK 1.4 kB URL HTTP/1.1 pictures.kinogo.ru.net/proverka.png
IP
File type PNG image data, 30 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 8ccf0d92cc68925300e3de8bef45eedd
28f883fcc4f21596321faa52f86be26ea1c29ca5
64224269f1b5f8be16be6063db3c21bb843093aeb23f52e32616f1581185cdb3
GET /proverka.png HTTP/1.1
Host: pictures.kinogo.ru.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: image/png
Content-Length: 1355
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 04 Nov 2022 15:09:09 GMT
ETag: "54b-5eca674a70716"
Accept-Ranges: bytes
pictures.kinogo.ru.net/poster/31416-pravda-ili-deistvie.jpg
200 OK 33 kB URL HTTP/1.1 pictures.kinogo.ru.net/poster/31416-pravda-ili-deistvie.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, description=kinopoisk.ru], baseline, precision 8, 250x375, components 3\012- data
Hash a2539cddda083d8f71664f4501849dd2
ea9779d8a9fcbc373a5bac33e8d3d7a4d994ff65
ed224adf5a1d17381b6a716c27006808ad8de02606f0ee3d9e8bcfcdaee99105
GET /poster/31416-pravda-ili-deistvie.jpg HTTP/1.1
Host: pictures.kinogo.ru.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: image/jpeg
Content-Length: 32976
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 04 Nov 2022 16:01:48 GMT
ETag: "80d0-5eca730f1b1e8"
Accept-Ranges: bytes
pictures.kinogo.ru.net/logo.png
200 OK 5.0 kB URL HTTP/1.1 pictures.kinogo.ru.net/logo.png
IP
File type PNG image data, 250 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash b18d0d408f6f6337c7f7fc32ccf6c8f0
983a2882f0f62488a9461f8cae44f3a8677205b5
08049768319f7905def961209933f2c44807b6906447e367a5bdbcec7555ecda
GET /logo.png HTTP/1.1
Host: pictures.kinogo.ru.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://styles.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: image/png
Content-Length: 5019
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 04 Nov 2022 15:09:08 GMT
ETag: "139b-5eca6749a87e2"
Accept-Ranges: bytes
vak345.com/s.js?v=017a8ed34404eabe8b3513789c2b0929
200 OK 9.2 kB URL HTTP/2 vak345.com/s.js?v=017a8ed34404eabe8b3513789c2b0929
IP
File type ASCII text, with very long lines (3641)
Hash 1f3fc27c22a3fee7c0af6274d233e6e7
7e4e1ed800d7537784a2af4799b703107241edac
eb989d14dc99e6f933f0c110b22a4824c7b3953d8e4d39d21c503987ff655100
GET /s.js?v=017a8ed34404eabe8b3513789c2b0929 HTTP/1.1
Host: vak345.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 06 Nov 2022 11:14:56 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-movieads-country: NO
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GD3ndB8HUeN1R9kKe1742CL80WgZcjbW7f7GRtmlAxhhif0z5UbzR%2BbjsTo2cU%2FFfP1fcpQv%2FEQMIvzygnD7i1zepYKXvJ0uWZpnrw2R4iCzldyu%2BSU58a0joRqD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 765d688bfd7db503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
videopleer.kinogo.ru.net/?id=31416
200 OK 1.2 kB URL HTTP/1.1 videopleer.kinogo.ru.net/?id=31416
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (423)
Hash f29dfb901523f332d9b92594106ade54
29efe77d28f9ea82ad9b5f5ca4e92b727307e77f
14d106abd97122ea777d039b878cfe7f90ace2bcacdeb20ad5b18bf544985cef
GET /?id=31416 HTTP/1.1
Host: videopleer.kinogo.ru.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
X-Powered-By: PHP/7.0.33
Content-Encoding: gzip
pictures.kinogo.ru.net/favicon.ico
200 OK 1.2 kB URL HTTP/1.1 pictures.kinogo.ru.net/favicon.ico
IP
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 3046d91b91c5e0f9b3bc5e49b92731e0
96a7aee4716e6f1beae93f1dbc6f1e81b7421588
23311d6c7ad91c4e489b55e6faaa187a16e192744645da5043624ae77dda175e
GET /favicon.ico HTTP/1.1
Host: pictures.kinogo.ru.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 1150
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 04 Nov 2022 15:09:07 GMT
ETag: "47e-5eca6748e3b76"
Accept-Ranges: bytes
styles.kinogo.ru.net/styles.css?v=1
200 OK 8.9 kB URL HTTP/1.1 styles.kinogo.ru.net/styles.css?v=1
IP
Hash f44c21d2e65578976c43e1eeff6f8ad5
874278e7f603daeddf4c8b4b3c6a1bd7858dcbd2
292edef09e7c18ac0a9b74ef1dc59650b317f3afb9c091228829cd2c30e6cb52
GET /styles.css?v=1 HTTP/1.1
Host: styles.kinogo.ru.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Last-Modified: Fri, 04 Nov 2022 14:55:15 GMT
ETag: W/"968f-5eca642eee901"
Content-Encoding: gzip
counter.yadro.ru/hit;kinogo-ru-net?t45.3;r;s1280*1024*24;uhttp%3A//31416-pravda-ili-deistvie.kinogo.ru.net/;h%u041F%u0440%u0430%u0432%u0434%u0430%20%u0438%u043B%u0438%20%u0434%u0435%u0439%u0441%u0442%u0432%u0438%u0435%20/%20Truth%20or%20Dare%20%282018%29%20%u041A%u0438%u043D%u043E%u0413%u043E%20%u043E%u043D%u043B%u0430%u0439%u043D.;0.13498267825779553
302 Moved Temporarily 32 B URL HTTP/1.1 counter.yadro.ru/hit;kinogo-ru-net?t45.3;r;s1280*1024*24;uhttp%3A//31416-pravda-ili-deistvie.kinogo.ru.net/;h%u041F%u0440%u0430%u0432%u0434%u0430%20%u0438%u043B%u0438%20%u0434%u0435%u0439%u0441%u0442%u0432%u0438%u0435%20/%20Truth%20or%20Dare%20%282018%29%20%u041A%u0438%u043D%u043E%u0413%u043E%20%u043E%u043D%u043B%u0430%u0439%u043D.;0.13498267825779553
IP
ASN #39134 United Network LLC
File type HTML document, ASCII text
Hash 3e9c09a8c5a87f266e047a596f48578c
07d7b1940b7e3f9a3db43197458f9b8ef18a6bce
57fad7ae62012ff4a38ecb6045ac6e8e3a070a33bbd033b21ab6cad3566d9254
GET /hit;kinogo-ru-net?t45.3;r;s1280*1024*24;uhttp%3A//31416-pravda-ili-deistvie.kinogo.ru.net/;h%u041F%u0440%u0430%u0432%u0434%u0430%20%u0438%u043B%u0438%20%u0434%u0435%u0439%u0441%u0442%u0432%u0438%u0435%20/%20Truth%20or%20Dare%20%282018%29%20%u041A%u0438%u043D%u043E%u0413%u043E%20%u043E%u043D%u043B%u0430%u0439%u043D.;0.13498267825779553 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
HTTP/1.1 302 Moved Temporarily
Date: Sun, 06 Nov 2022 11:14:56 GMT
Server: 0W/0.8c
Content-Type: text/html
Location: https://counter.yadro.ru/hit;kinogo-ru-net?t45.3;r;s1280*1024*24;uhttp%3A//31416-pravda-ili-deistvie.kinogo.ru.net/;h%u041F%u0440%u0430%u0432%u0434%u0430%20%u0438%u043B%u0438%20%u0434%u0435%u0439%u0441%u0442%u0432%u0438%u0435%20/%20Truth%20or%20Dare%20%282018%29%20%u041A%u0438%u043D%u043E%u0413%u043E%20%u043E%u043D%u043B%u0430%u0439%u043D.;0.13498267825779553
Content-Length: 32
Expires: Fri, 05 Nov 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
partnercoll.github.io/actualize.js
200 OK 1.5 kB URL HTTP/2 partnercoll.github.io/actualize.js
IP
Hash 428862708a363e6c3d8ecfaa3f5ba5f9
123447813223bffad7e8eb9e71fe05d777ca18a0
82a085fb20b7e3c3ecb2a1258eec0a6875f1f8e22a3d6c8b324bb4e353711bdf
GET /actualize.js HTTP/1.1
Host: partnercoll.github.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
last-modified: Mon, 20 Sep 2021 11:32:00 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: W/"61487130-bb2"
expires: Tue, 11 Oct 2022 03:03:22 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 0801:78B0:695405:6C6D93:6344DAA2
accept-ranges: bytes
date: Sun, 06 Nov 2022 11:14:56 GMT
via: 1.1 varnish
age: 447
x-served-by: cache-bma1655-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1667733296.338692,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 6d7573596ff1ecc01e7780db66a78ea68ff6abaf
content-length: 1463
X-Firefox-Spdy: h2
pictures.kinogo.ru.net/loading.gif
200 OK 6.8 kB URL HTTP/1.1 pictures.kinogo.ru.net/loading.gif
IP
File type GIF image data, version 89a, 66 x 66\012- data
Hash 4541efce638d04a7cc00aa56c996b85b
850aed089a4ded8baa79d66c94ed3a08c166649e
49529f9580087fb28110d6383c3f5de6f426a82acc59ede6f1b56ba317d09bfe
GET /loading.gif HTTP/1.1
Host: pictures.kinogo.ru.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: image/gif
Content-Length: 6820
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 04 Nov 2022 15:09:08 GMT
ETag: "1aa4-5eca674990143"
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c566edc2ce7816d4690ec551cfe69a82
c67035c55154bbebd1965574afc80ce74cf7743a
bf1721615d4c59beffbedba5683cc459260f56bca95ede062e888f25bfd9e938
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF1721615D4C59BEFFBEDBA5683CC459260F56BCA95EDE062E888F25BFD9E938"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2677
Expires: Sun, 06 Nov 2022 11:59:33 GMT
Date: Sun, 06 Nov 2022 11:14:56 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 498a93ef6474e78f5c7b8ec391786b1c
2fdbd636d3ec6c2476c2ac34697ba171eecdb768
ab9705c42b3e1f2c2cc005974f4dd27f75c27a053bd29e81d2a99824200dcef7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5216
Cache-Control: max-age=149799
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 11:14:56 GMT
Etag: "636728f7-1d7"
Expires: Tue, 08 Nov 2022 04:51:35 GMT
Last-Modified: Sun, 06 Nov 2022 03:24:39 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
videosmor.com/player/
200 OK 39 kB IP
ASN #44066 diva-e Datacenters GmbH
File type ASCII text, with very long lines (32032)
Hash 7fd1e29ebed2d11836975a5d4720b4d4
a12ebf7ff4cdba09793e81f32f22b031e71daac9
9f7cd092ad00bfac3674bc39c2b8b2c5ed72ef805eaf4284afa8d937c39b7dc0
GET /player/ HTTP/1.1
Host: videosmor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Hostname: dsde382.rotator.viboom.com
ETag: W/"1f70a-yfG6IBt8uGAGm9rdITStig"
Vary: Accept-Encoding
Content-Encoding: gzip
stats.myangular.life/player?hit=script&sub=actualize&host=videopleer.kinogo.ru.net
200 OK 0 B URL HTTP/1.1 stats.myangular.life/player?hit=script&sub=actualize&host=videopleer.kinogo.ru.net
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player?hit=script&sub=actualize&host=videopleer.kinogo.ru.net HTTP/1.1
Host: stats.myangular.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
ocsp2.globalsign.com/gsorganizationvalsha2g2
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
Hash efe74e2a52439fc686b3dde7a9592007
a783b0e4f4150b18278e297e581d93e0fbfa28b4
7a385f1ad729256954951fa698c8925e3ee1ffe7b1514fc82c635632b673aaf4
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 10 Nov 2022 08:05:02 GMT
ETag: "a783b0e4f4150b18278e297e581d93e0fbfa28b4"
Last-Modified: Sun, 06 Nov 2022 08:05:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 529
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 765d688f4e7db50c-OSL
graph.facebook.com/fql?q=SELECT+total_count+FROM+link_stat+WHERE+url%3D%22http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F%22&callback=jQuery11130679516287653233_1667733294163&_=1667733294164
200 OK 302 B URL HTTP/2 graph.facebook.com/fql?q=SELECT+total_count+FROM+link_stat+WHERE+url%3D%22http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F%22&callback=jQuery11130679516287653233_1667733294163&_=1667733294164
IP
Hash 16015c0a4c240d89fc6fcb747573c4a6
74ade4df28aae1ce95c27b1107f4b7bb8fdddea0
46c779ccd8239a4db4857841db0ddd7d0ee09b8b0f73418b07337782630173c4
GET /fql?q=SELECT+total_count+FROM+link_stat+WHERE+url%3D%22http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F%22&callback=jQuery11130679516287653233_1667733294163&_=1667733294164 HTTP/1.1
Host: graph.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
vary: Origin, Accept-Encoding
access-control-allow-origin: *
x-fb-rlafr: 0
content-type: text/javascript; charset=UTF-8
www-authenticate: OAuth "Facebook Platform" "invalid_request" "Unsupported get request. Object with ID 'fql' does not exist, cannot be loaded due to missing permissions, or does not support this operation. Please read the Graph API documentation at https://developers.facebook.com/docs/graph-api"
facebook-api-version: v8.0
strict-transport-security: max-age=15552000; preload
pragma: no-cache
cache-control: no-store
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-fb-request-id: Aw0Ut2gamZEX5sVN4LqrLes
x-fb-trace-id: DR9avf0Mbqo
x-fb-rev: 1006554273
x-fb-debug: m729fA7T5G+V5s6oCdTRmn8LwNosqSgmxHasOlUiPmPOBcjP6bI2aozQxyGGYP1elJNpb6fUqfSZT7cr+pJa/A==
content-length: 302
date: Sun, 06 Nov 2022 11:14:56 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash 21cdcc65a088843b2309097787f1213b
c9f6fe7de3104086b272e9535f6d2fe2663f11b2
f081b18fef235a3d0ad10364bfe63cd25877a21c340de1146d91b65db74dcbed
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Thu, 10 Nov 2022 09:15:45 GMT
ETag: "c9f6fe7de3104086b272e9535f6d2fe2663f11b2"
Last-Modified: Sun, 06 Nov 2022 09:15:46 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 84
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 765d688f8ec8b50c-OSL
connect.ok.ru/dk?st.cmd=extLike&ref=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&uid=0&_=1667733294167
301 0 B URL HTTP/1.1 connect.ok.ru/dk?st.cmd=extLike&ref=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&uid=0&_=1667733294167
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dk?st.cmd=extLike&ref=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&uid=0&_=1667733294167 HTTP/1.1
Host: connect.ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
HTTP/1.1 301
Server: Apache
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Length: 0
Connection: keep-alive
Location: https://connect.ok.ru/dk?st.cmd=extLike&ref=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&uid=0&_=1667733294167
counter.yadro.ru/hit;kinogo-ru-net?t45.3;r;s1280*1024*24;uhttp%3A//31416-pravda-ili-deistvie.kinogo.ru.net/;h%u041F%u0440%u0430%u0432%u0434%u0430%20%u0438%u043B%u0438%20%u0434%u0435%u0439%u0441%u0442%u0432%u0438%u0435%20/%20Truth%20or%20Dare%20%282018%29%20%u041A%u0438%u043D%u043E%u0413%u043E%20%u043E%u043D%u043B%u0430%u0439%u043D.;0.13498267825779553
200 OK 112 B URL HTTP/1.1 counter.yadro.ru/hit;kinogo-ru-net?t45.3;r;s1280*1024*24;uhttp%3A//31416-pravda-ili-deistvie.kinogo.ru.net/;h%u041F%u0440%u0430%u0432%u0434%u0430%20%u0438%u043B%u0438%20%u0434%u0435%u0439%u0441%u0442%u0432%u0438%u0435%20/%20Truth%20or%20Dare%20%282018%29%20%u041A%u0438%u043D%u043E%u0413%u043E%20%u043E%u043D%u043B%u0430%u0439%u043D.;0.13498267825779553
IP
ASN #39134 United Network LLC
File type GIF image data, version 89a, 31 x 31\012- data
Hash da215654865aa0929cb6e6b9b8a530b6
29b2aa780e793c7a410257c9c7a5c29b79c8ed63
2a4db33bc3012541239e266c12136f1c93ca3e072148085fcf87acd84aafc7b3
GET /hit;kinogo-ru-net?t45.3;r;s1280*1024*24;uhttp%3A//31416-pravda-ili-deistvie.kinogo.ru.net/;h%u041F%u0440%u0430%u0432%u0434%u0430%20%u0438%u043B%u0438%20%u0434%u0435%u0439%u0441%u0442%u0432%u0438%u0435%20/%20Truth%20or%20Dare%20%282018%29%20%u041A%u0438%u043D%u043E%u0413%u043E%20%u043E%u043D%u043B%u0430%u0439%u043D.;0.13498267825779553 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: image/gif
Content-Length: 112
Connection: keep-alive
Expires: Fri, 05 Nov 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
ocsp.digicert.com/
200 OK 471 B IP
Hash 498a93ef6474e78f5c7b8ec391786b1c
2fdbd636d3ec6c2476c2ac34697ba171eecdb768
ab9705c42b3e1f2c2cc005974f4dd27f75c27a053bd29e81d2a99824200dcef7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5216
Cache-Control: max-age=149799
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 11:14:56 GMT
Etag: "636728f7-1d7"
Expires: Tue, 08 Nov 2022 04:51:35 GMT
Last-Modified: Sun, 06 Nov 2022 03:24:39 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
vk.com/share.php?act=count&url=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&index=0&_=1667733294162
200 OK 41 B URL HTTP/2 vk.com/share.php?act=count&url=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&index=0&_=1667733294162
IP
File type ASCII text, with no line terminators
Hash 6de86497641c67868bfddcbf5a8bf434
6065bb53c9addbda818a6b172597326ebc31e8dc
51d446e1b704e289975e53c6945dee986d432bb439d02a2afcee7ce1b5bddcf8
GET /share.php?act=count&url=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&index=0&_=1667733294162 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Sun, 06 Nov 2022 11:14:56 GMT
content-type: text/html; charset=windows-1251
content-length: 41
x-powered-by: KPHP/7.4.112586
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Fri, 03 Nov 2023 02:05:37 GMT; path=/; domain=.vk.com
remixstlid=9082718830595033049_6PbzYup2MJQ4CC3zevGnkZrK2qDwTxVqYfyRHm5Gzc4; expires=Mon, 06 Nov 2023 11:14:56 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-encoding: gzip
x-frontend: front609304
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
videosmor.com/video.css
200 OK 5.6 kB IP
ASN #44066 diva-e Datacenters GmbH
File type ASCII text, with very long lines (26797), with no line terminators
Hash 07b90f3792316ea4e189a91fd0378a38
b94691949b490d273ce9285dd83018af914b63c3
f2bc18cf5718b860c7996d96cc909a2c24275e58009ae604468975d09b61c46f
GET /video.css HTTP/1.1
Host: videosmor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Hostname: dsde382.rotator.viboom.com
ETag: W/"68ad-W2r8yRMfH+wcSK3E+5LzTg"
Vary: Accept-Encoding
Content-Encoding: gzip
www.googletagmanager.com/gtag/js?id=UA-57015589-1&l=viboomGa
302 Found 269 B URL HTTP/1.1 www.googletagmanager.com/gtag/js?id=UA-57015589-1&l=viboomGa
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash e817de2485504430d67bb8beee1b51f4
8eda9470e23e20e2adbe8480e21c9ebfff8e2118
d8dde6566a0bb05ebe5d28347033d02628ea8d5b1ca47e291cbd725a8397fded
GET /gtag/js?id=UA-57015589-1&l=viboomGa HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtag/js?id=UA-57015589-1&l=viboomGa
Cross-Origin-Resource-Policy: cross-origin
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 269
X-XSS-Protection: 0
level1cdn.com/uid/?uid=false
200 OK 34 B URL HTTP/1.1 level1cdn.com/uid/?uid=false
IP
ASN #44066 diva-e Datacenters GmbH
File type ASCII text, with no line terminators
Hash f54b5a00f0ea71cb8fe785c533f8d8ce
038eae5db199d65b4be82632f676ad3c875c8575
588b8bbd5d57b3f9fd03b5bf53c99b9fadd4c156769974a74508ce66490db600
GET /uid/?uid=false HTTP/1.1
Host: level1cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://videopleer.kinogo.ru.net
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 34
Connection: keep-alive
X-Hostname: dsde382.rotator.viboom.com
Access-Control-Allow-Origin: http://videopleer.kinogo.ru.net
Access-Control-Allow-Credentials: true
Set-Cookie: UID=5dad1d5784f093011742dc0bf23b7277; Max-Age=16070400; Path=/; Expires=Thu, 11 May 2023 11:14:56 GMT; HttpOnly
ETag: W/"22-9UtaAPDqccuP54XFM/jYzg"
Vary: Accept-Encoding
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e13e65ad7f6f12300b12d6cd6936d621
575faf606b5c5e39e0fbbef59998bcd3625aa141
10787f99c02b63d52b9b74fcec9497108d67c56c4a9436e0e3c9a7129d727dda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 11:14:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
200 OK 471 B IP
Hash b2106532351f41457059568e42470eea
6f2e5a4984120973a956b170a4a53e921e6b5983
7c498d4477009a240dc73066884e26c7bef86841d6d4596e92e346c4aec0bf18
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 03 Nov 2022 21:26:28 GMT
Expires: Thu, 10 Nov 2022 21:26:27 GMT
Etag: "6f2e5a4984120973a956b170a4a53e921e6b5983"
Cache-Control: max-age=381690,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 765d688f2b8bfab8-OSL
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash c4fd5470b73b63ea5aa9ef4ccdc22e0f
2790404869893d2104f0946d4fb81bdd3e803f29
c68f4a42f0e5cfa98eb5cb907d392436ab9b01dbe897c5110654849773c18f16
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Thu, 10 Nov 2022 08:16:26 GMT
ETag: "2790404869893d2104f0946d4fb81bdd3e803f29"
Last-Modified: Sun, 06 Nov 2022 08:16:27 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1750
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 765d68908eb01c02-OSL
www.googletagmanager.com/gtag/js?id=UA-57015589-1&l=viboomGa
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-57015589-1&l=viboomGa
IP
File type ASCII text, with very long lines (1921)
Hash a8df2b5e3d5268c8c32d167f250756a7
dc985eaaedcfdcf180c0dc950e170114aab66c7d
5bf5ad8ba4ac1984db8da50cb82e430466eae4a66f6fd4836276f95506c71ccb
GET /gtag/js?id=UA-57015589-1&l=viboomGa HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://videopleer.kinogo.ru.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 06 Nov 2022 11:14:56 GMT
expires: Sun, 06 Nov 2022 11:14:56 GMT
cache-control: private, max-age=900
last-modified: Sun, 06 Nov 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43599
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
test.takedwn.ws/ping
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /ping HTTP/1.1
Host: test.takedwn.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://videopleer.kinogo.ru.net/
Origin: http://videopleer.kinogo.ru.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e13e65ad7f6f12300b12d6cd6936d621
575faf606b5c5e39e0fbbef59998bcd3625aa141
10787f99c02b63d52b9b74fcec9497108d67c56c4a9436e0e3c9a7129d727dda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 11:14:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash d862f992e9902530594e7aca425f129b
25b414fe833d30b52928535d659a1ee281b82e3a
0c6286152fe8bb5fdf1505f2001d530a65ee53aa6d9601bbb1eecb683036071d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4149
Cache-Control: max-age=169264
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 11:14:56 GMT
Etag: "6367792b-1d7"
Expires: Tue, 08 Nov 2022 10:16:00 GMT
Last-Modified: Sun, 06 Nov 2022 09:06:51 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 40300058759099c00f300169f40ae9bb
67faafcdfea7fabfad9110243a45c9bb30b58a59
0d2ff551ad8b4e775ca253959fbfeca96790ebcdbd7910403243dc82ef0c2f73
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 11:14:56 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Thu, 10 Nov 2022 09:44:47 GMT
ETag: "67faafcdfea7fabfad9110243a45c9bb30b58a59"
Last-Modified: Sun, 06 Nov 2022 09:44:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 17
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 765d68915f661c02-OSL
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 06 Nov 2022 10:41:09 GMT
expires: Sun, 06 Nov 2022 12:41:09 GMT
cache-control: public, max-age=7200
age: 2027
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/watch.js
200 OK 58 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (586)
Hash 7b111c54e4ca74c6afb01dccb16a6011
4348abbb3e927a3d20291a71a5e019bbd93923a3
3ad93d272b1bd1296c76105a47276b028046efb94daf54f6b9bef537626a381c
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 57770
date: Sun, 06 Nov 2022 11:14:56 GMT
access-control-allow-origin: *
etag: "63575841-e1aa"
expires: Sun, 06 Nov 2022 12:14:56 GMT
last-modified: Tue, 25 Oct 2022 06:30:09 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4jSvu3EYG1Eo6Q6aXfbxxQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YZBLOB+ExRSakaKeThgd0pPNU5w=
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3ebbd65a2bdd5c6f3dea5a6b99b25f0d
484be27b25b736a7e7e2b1d5ef9760aecdcec01b
5616e6c097b0b7680eeee193b58950faa38c9792e8793c16c315e2554a34cdd1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 11:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kinchik.allohalive.com/js/ch.js?v=1.31
200 OK 52 kB URL HTTP/2 kinchik.allohalive.com/js/ch.js?v=1.31
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5544cf6307cadc5c1614a34d2e951168
05ab5ce3b8aa3d1c289872da5143b0f270fb209b
eaca0d91ca17a478cdff5d80baaca035049e590f8dc07e0d0c1cc18318bc1efa
Analyzer Verdict Alert fortinet Phishing
GET /js/ch.js?v=1.31 HTTP/1.1
Host: kinchik.allohalive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinchik.allohalive.com/?token_movie=08d95b9916aeed13c0e78dafa54dc4&token=54e4f1b52d15f9f39add8c724b1631
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 11:14:57 GMT
content-type: application/javascript
last-modified: Wed, 06 Oct 2021 23:48:10 GMT
etag: W/"615e35ba-33fdd"
expires: Sun, 29 Jan 2023 10:51:54 GMT
cache-control: max-age=7776000
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3ebbd65a2bdd5c6f3dea5a6b99b25f0d
484be27b25b736a7e7e2b1d5ef9760aecdcec01b
5616e6c097b0b7680eeee193b58950faa38c9792e8793c16c315e2554a34cdd1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 11:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kinchik.allohalive.com/style/style.css?v=1.761
200 OK 2.8 kB URL HTTP/2 kinchik.allohalive.com/style/style.css?v=1.761
IP
Hash 35a8f0a48e68f1f442f3b4a41ad2f3f3
82a088e75d1621ef3a24db6eaed4c85b080f961c
367f055a71e7cb24c8023f1519b201bd30046fa04ef1b7a05a97d2e3603f4bc0
GET /style/style.css?v=1.761 HTTP/1.1
Host: kinchik.allohalive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinchik.allohalive.com/?token_movie=08d95b9916aeed13c0e78dafa54dc4&token=54e4f1b52d15f9f39add8c724b1631
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 11:14:56 GMT
content-type: text/css
last-modified: Wed, 01 Dec 2021 21:13:41 GMT
etag: W/"61a7e585-1c52"
expires: Sun, 29 Jan 2023 10:51:09 GMT
cache-control: max-age=7776000
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
kinchik.allohalive.com/js/iife.min.js?v=1
200 OK 16 kB URL HTTP/2 kinchik.allohalive.com/js/iife.min.js?v=1
IP
Hash f9fa05e64f656732d36ace457e654f5c
1aa9d2f621a8041f1ff2f782b0b1038a0c0f5a9d
171347f0f4e232234a848018271c9a16300fd5aff775a8ac6e754565a265a79a
Analyzer Verdict Alert fortinet Phishing
GET /js/iife.min.js?v=1 HTTP/1.1
Host: kinchik.allohalive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinchik.allohalive.com/?token_movie=08d95b9916aeed13c0e78dafa54dc4&token=54e4f1b52d15f9f39add8c724b1631
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 11:14:57 GMT
content-type: application/javascript
last-modified: Fri, 30 Sep 2022 10:04:02 GMT
etag: W/"6336bf12-974f"
expires: Thu, 29 Dec 2022 10:04:22 GMT
cache-control: max-age=7776000
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 62a8ce6a2338913103618edb2f4a9dbe
0e0850b1aef6ed524d119a41145112b84c257687
51d11b07f58551b5864fb55d4560d8a2237c2351036de0af7e25c81816763b31
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 11:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kinchik.allohalive.com/js/baron.js?v=1.931
200 OK 11 kB URL HTTP/2 kinchik.allohalive.com/js/baron.js?v=1.931
IP
Hash acbb571ee202cb23175008259be40826
3922f06efce143353453a8a1aea1da6284efea7d
24ea5e666e363e2e44b693d1771b96b5b323e77a4cf798407bfb6156ed673b47
Analyzer Verdict Alert fortinet Phishing
GET /js/baron.js?v=1.931 HTTP/1.1
Host: kinchik.allohalive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinchik.allohalive.com/?token_movie=08d95b9916aeed13c0e78dafa54dc4&token=54e4f1b52d15f9f39add8c724b1631
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 11:14:56 GMT
content-type: application/javascript
last-modified: Fri, 24 Sep 2021 19:37:42 GMT
etag: W/"614e2906-7728"
expires: Sun, 29 Jan 2023 10:51:09 GMT
cache-control: max-age=7776000
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
videosmor.com/video/get/?platformId=66850&format=3&overrollType=embeded&sig=0b3dd1d19a7888bd&data=%7B%22shown%22%3A%5B%5D%2C%22errors%22%3A%5B%5D%2C%22dimentions%22%3A%7B%7D%2C%22referer%22%3A%22http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416%22%2C%22origReferer%22%3A%22http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416%22%2C%22location%22%3A%22http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F%22%2C%22n%22%3A1%2C%22ifr%22%3A1%2C%22top_blocked%22%3A1%2C%22lang%22%3A%22en-US%22%2C%22title%22%3A%22%22%7D&vbmuid=239f934beb6a2c5f932101eddc6f42ef
200 OK 692 B URL HTTP/1.1 videosmor.com/video/get/?platformId=66850&format=3&overrollType=embeded&sig=0b3dd1d19a7888bd&data=%7B%22shown%22%3A%5B%5D%2C%22errors%22%3A%5B%5D%2C%22dimentions%22%3A%7B%7D%2C%22referer%22%3A%22http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416%22%2C%22origReferer%22%3A%22http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416%22%2C%22location%22%3A%22http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F%22%2C%22n%22%3A1%2C%22ifr%22%3A1%2C%22top_blocked%22%3A1%2C%22lang%22%3A%22en-US%22%2C%22title%22%3A%22%22%7D&vbmuid=239f934beb6a2c5f932101eddc6f42ef
IP
ASN #44066 diva-e Datacenters GmbH
File type HTML document, ASCII text, with very long lines (692), with no line terminators
Hash 211fa79663aa8c4a061a6c9f72f35e1d
65bed32daac08474faf32d7686de1e6e6a2396bd
95bf9180e1198e0bcfba22f6fac42aef7cb02a2a4de02c54421fc9577752336d
GET /video/get/?platformId=66850&format=3&overrollType=embeded&sig=0b3dd1d19a7888bd&data=%7B%22shown%22%3A%5B%5D%2C%22errors%22%3A%5B%5D%2C%22dimentions%22%3A%7B%7D%2C%22referer%22%3A%22http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416%22%2C%22origReferer%22%3A%22http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416%22%2C%22location%22%3A%22http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F%22%2C%22n%22%3A1%2C%22ifr%22%3A1%2C%22top_blocked%22%3A1%2C%22lang%22%3A%22en-US%22%2C%22title%22%3A%22%22%7D&vbmuid=239f934beb6a2c5f932101eddc6f42ef HTTP/1.1
Host: videosmor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:57 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 692
Connection: keep-alive
X-Hostname: dsde382.rotator.viboom.com
Set-Cookie: vbmuid=239f934beb6a2c5f932101eddc6f42ef; Max-Age=16070400; Path=/; Expires=Thu, 11 May 2023 11:14:57 GMT; HttpOnly
Rotator-message: video: no campaignAccess, code: 0, msg: undefined, format: 3, platformId: 66850, rtrCampaignId: false
ETag: W/"2b4-IR+nlmOqjEoGGmyfcvNeHQ"
Vary: Accept-Encoding
connect.ok.ru/dk?st.cmd=extLike&ref=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&uid=0&_=1667733294167
200 OK 29 B URL HTTP/2 connect.ok.ru/dk?st.cmd=extLike&ref=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&uid=0&_=1667733294167
IP
File type ASCII text, with no line terminators
Hash ef742b5cdac84847f8676c355c8c4b4b
2400ffe2ed97e517d12a5ff486a169fe73005f09
942c534d6d1cfb09dcc03ec2cac44dd2a8980f5cd953c513cb2d3b3eebea8cb7
GET /dk?st.cmd=extLike&ref=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&uid=0&_=1667733294167 HTTP/1.1
Host: connect.ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://31416-pravda-ili-deistvie.kinogo.ru.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: apache
date: Sun, 06 Nov 2022 11:14:56 GMT
content-type: application/javascript;charset=UTF-8
vary: Accept-Encoding
set-cookie: bci=-5021311743242353178; Domain=.ok.ru; Expires=Fri, 24-Nov-2090 14:29:03 GMT; Path=/; Secure; HttpOnly
_statid=b65f85d2-ad1b-4a14-995b-f24f05a0d81e; Domain=.ok.ru; Expires=Fri, 24-Nov-2090 14:29:03 GMT; Path=/; Secure; HttpOnly
landref=31416-pravda-ili-deistvie.kinogo.ru.net; Domain=.ok.ru; Path=/; Secure
content-security-policy: default-src data: 'self' 'unsafe-inline' 'unsafe-eval' ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me wss://ad.mail.ru *.mail.ru *.imgsmail.ru *.mradx.net *.serving-sys.com *.googleapis.com *.gstatic.com www.google.com https://api-maps.yandex.ru yastatic.net yandex.st *.doubleverify.com *.adsafeprotected.com https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://football.sportmail.ru *.google.ru *.google.com *.googlesyndication.com *.yandex.ru blob:; script-src 'unsafe-inline' 'unsafe-eval' *.mail.ru https://*.mail.ru *.imgsmail.ru *.mradx.net ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me mc.yandex.ru an.yandex.ru yastatic.net yandex.st *.google-analytics.com api-maps.yandex.ru https://api-maps.yandex.ru https://clck.yandex.ru *.googleapis.com *.gstatic.com www.google.com www.youtube.com https://www.youtube.com *.ytimg.com https://*.ytimg.com *.doubleverify.com *.dvtps.com *.doubleclick.net *.googletagservices.com *.googlesyndication.com *.googleadservices.com *.goodgame.ru https://*.goodgame.ru https://*.moatads.com *.adlooxtracking.com *.adlooxtracking.ru *.adsafeprotected.com *.serving-sys.com *.serving-sys.ru *.weborama.fr *.weborama-tech.ru https://enterprise.api-maps.yandex.ru https://suggest-maps.yandex.ru https://*.hit.gemius.pl https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://gum.criteo.com https://football.sportmail.ru *.googletagmanager.com connect.facebook.net *.google.ru *.google.com *.googlesyndication.com yandex.ru; worker-src blob: 'self'; connect-src * wss: blob:; font-src * data: blob:; frame-src * blob: 'self'; img-src * data: blob: about:; media-src * data: blob:; object-src *; report-uri /csp/report;
content-security-policy-report-only: default-src data: blob: about: 'self' 'unsafe-inline' 'unsafe-eval' https: wss:; report-uri /csp/report?always;
cache-control: no-cache, no-store
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000;includeSubdomains;preload
access-control-allow-origin: *
access-control-allow-credentials: true
rendered-blocks: WidgetExtLike
content-encoding: br
X-Firefox-Spdy: h2
www.gstatic.com/cv/js/sender/v1/cast_sender.js?loadCastFramework=1
200 OK 2.0 kB URL HTTP/2 www.gstatic.com/cv/js/sender/v1/cast_sender.js?loadCastFramework=1
IP
File type ASCII text, with very long lines (1143)
Hash c439f328a6d5a2f9cba8f719b4a0c39b
c91a5d5bce3629fa350f8bed6a6693ab477a0f99
79dc7857f15689c75f5126726ad2b5894d3a43018928420482eba684b800f193
GET /cv/js/sender/v1/cast_sender.js?loadCastFramework=1 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinchik.allohalive.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/cloudview
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="cloudview"
report-to: {"group":"cloudview","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/cloudview"}]}
content-length: 2007
date: Sun, 06 Nov 2022 11:14:57 GMT
expires: Sun, 06 Nov 2022 11:14:57 GMT
cache-control: private, max-age=3000
last-modified: Tue, 16 Feb 2021 23:57:06 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c72-a89-1045g0.streamalloha.live/subs/22/1667754896/EAyoe5QtCxPjDupOGfsKNg/528/14528/index.php
200 OK 122 B URL HTTP/1.1 c72-a89-1045g0.streamalloha.live/subs/22/1667754896/EAyoe5QtCxPjDupOGfsKNg/528/14528/index.php
IP
ASN #202984 Chernyshov Aleksandr Aleksandrovich
File type ASCII text, with no line terminators
Hash a9639929a39d9872eea02ccfe683648d
13355e41862c3d61b0c272487816744215f18566
1c64af2f14cdfe95a5d790dd421f6be78258063e12589c45aeb277f7eb737a06
GET /subs/22/1667754896/EAyoe5QtCxPjDupOGfsKNg/528/14528/index.php HTTP/1.1
Host: c72-a89-1045g0.streamalloha.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kinchik.allohalive.com
Connection: keep-alive
Referer: https://kinchik.allohalive.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.4
Date: Sun, 06 Nov 2022 11:14:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.24
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 62a8ce6a2338913103618edb2f4a9dbe
0e0850b1aef6ed524d119a41145112b84c257687
51d11b07f58551b5864fb55d4560d8a2237c2351036de0af7e25c81816763b31
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 11:14:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kinchik.allohalive.com/js/jquery.min.js?v=3.6.0
200 OK 32 kB URL HTTP/2 kinchik.allohalive.com/js/jquery.min.js?v=3.6.0
IP
File type ASCII text, with very long lines (65447)
Hash 8f0e5d0e1e8fa76794549a30dad52e9f
94ea3f85e8be0b9774015f5e38ab394149971a64
01b0293db4ae5e44d412137276be99095633b45c96a7ca6c9822f5dd085d17ce
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.min.js?v=3.6.0 HTTP/1.1
Host: kinchik.allohalive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinchik.allohalive.com/?token_movie=08d95b9916aeed13c0e78dafa54dc4&token=54e4f1b52d15f9f39add8c724b1631
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 11:14:56 GMT
content-type: application/javascript
last-modified: Sat, 09 Oct 2021 21:07:16 GMT
etag: W/"61620484-15d9d"
expires: Sun, 29 Jan 2023 10:51:09 GMT
cache-control: max-age=7776000
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
kinchik.allohalive.com/js/playerjs-alloha-new.js?v=16.14.2
200 OK 251 kB URL HTTP/2 kinchik.allohalive.com/js/playerjs-alloha-new.js?v=16.14.2
IP
Size 251 kB (251046 bytes)
Hash f9b8708c454f00cbaa1108cf0ca51473
e30f58e8698e1dc9e211f8459c7a375f6e1abec9
a29c55b36d21b386f6bdc154d4d5b577b76310ca8ed9b9076888d0fde0ad8cdf
Analyzer Verdict Alert fortinet Phishing
GET /js/playerjs-alloha-new.js?v=16.14.2 HTTP/1.1
Host: kinchik.allohalive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinchik.allohalive.com/?token_movie=08d95b9916aeed13c0e78dafa54dc4&token=54e4f1b52d15f9f39add8c724b1631
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 11:14:56 GMT
content-type: application/javascript
last-modified: Sun, 10 Jul 2022 20:50:13 GMT
etag: W/"62cb3b85-b1d67"
expires: Fri, 06 Jan 2023 20:51:49 GMT
cache-control: max-age=7776000
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
ytimgg.com/oO/rotator?align=1&height=390&width=640&key=db210fb66625ebacf2c3c1c594f74deb&adaptive=1&pid=40507&tmpv=49c863bde3900a50ac27e2ab0e86e26a&tmpt=5&tmpo=1&csid=1667733296697-vseed
200 OK 3.3 kB URL HTTP/1.1 ytimgg.com/oO/rotator?align=1&height=390&width=640&key=db210fb66625ebacf2c3c1c594f74deb&adaptive=1&pid=40507&tmpv=49c863bde3900a50ac27e2ab0e86e26a&tmpt=5&tmpo=1&csid=1667733296697-vseed
IP
ASN #49505 OOO Network of data-centers Selectel
File type ASCII text, with very long lines (3258)
Hash c79be6b4e8f2d0b8006aa07e9cd22338
4b677a75fd8d4b1ffdbf2d4e4a2b07eb5938eda5
5032ac64b91aa47fd6b0e48b38e366a3d4aa76a1c6618f9fb456e21d930f97a0
GET /oO/rotator?align=1&height=390&width=640&key=db210fb66625ebacf2c3c1c594f74deb&adaptive=1&pid=40507&tmpv=49c863bde3900a50ac27e2ab0e86e26a&tmpt=5&tmpo=1&csid=1667733296697-vseed HTTP/1.1
Host: ytimgg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.6
Content-Type: text/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache
Date: Sun, 06 Nov 2022 11:14:57 GMT
x01.aidata.io/pixel.js?pixel=VIBOOM&id=239f934beb6a2c5f932101eddc6f42ef&v=1667733295922&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&is_js_referrer=1&origin_referrer=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&is_js_cookie=1&bounce=1&__upin=
200 OK 4.9 kB URL HTTP/1.1 x01.aidata.io/pixel.js?pixel=VIBOOM&id=239f934beb6a2c5f932101eddc6f42ef&v=1667733295922&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&is_js_referrer=1&origin_referrer=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&is_js_cookie=1&bounce=1&__upin=
IP
ASN #197695 Domain names registrar REG.RU, Ltd
File type ASCII text, with very long lines (365)
Hash c43738d6d54e5f22e3707bc42d816d75
8e2d1b3049c9d779543ceaa4865e3a5493e6923a
25170e7e3026d4f7cee089a875e34dc894f4623acfdc6d8357a61bc309a8fba6
GET /pixel.js?pixel=VIBOOM&id=239f934beb6a2c5f932101eddc6f42ef&v=1667733295922&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&is_js_referrer=1&origin_referrer=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&is_js_cookie=1&bounce=1&__upin= HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 11:14:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sun, 06 Nov 2022 11:14:56 GMT
Access-Control-Allow-Methods: GET, POST
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Last-Modified: Sun, 06 Nov 2022 11:14:56 GMT
Set-Cookie: livin=1;path=/;expires=Wed, 9 Nov 2022 11:14:58 GMT;max-age=259200;SameSite=None
__upin=DUFNgMtEUJkSRcurhrnVIA;domain=.aidata.io;path=/;max-age=63072000;SameSite=None
__upints=1667733298;domain=.aidata.io;path=/;max-age=63072000;SameSite=None
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
Content-Encoding: gzip
mc.yandex.ru/metrika/advert.gif
200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sun, 06 Nov 2022 11:14:58 GMT
access-control-allow-origin: *
etag: "63575841-2b"
expires: Sun, 06 Nov 2022 12:14:58 GMT
accept-ranges: bytes
last-modified: Tue, 25 Oct 2022 06:30:09 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
x01.aidata.io/stats?pixel=VIBOOM&v=1667733295922&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&is_js_referrer=1&origin_referrer=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&is_js_cookie=1&bounce=1&__upin=&pid=VIBOOM&js=1&sid=cb95bc87fa024f2fa162c46ef242e2d6&__upin=DUFNgMtEUJkSRcurhrnVIA&id=239f934beb6a2c5f932101eddc6f42ef&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&payload=%7B%22event%22%3A%22referrer%22%2C%22type%22%3A%22referrer%22%2C%22data%22%3A%7B%22value%22%3A%22http%3A//31416-pravda-ili-deistvie.kinogo.ru.net/%22%7D%7D
204 No Content 0 B URL HTTP/1.1 x01.aidata.io/stats?pixel=VIBOOM&v=1667733295922&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&is_js_referrer=1&origin_referrer=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&is_js_cookie=1&bounce=1&__upin=&pid=VIBOOM&js=1&sid=cb95bc87fa024f2fa162c46ef242e2d6&__upin=DUFNgMtEUJkSRcurhrnVIA&id=239f934beb6a2c5f932101eddc6f42ef&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&payload=%7B%22event%22%3A%22referrer%22%2C%22type%22%3A%22referrer%22%2C%22data%22%3A%7B%22value%22%3A%22http%3A//31416-pravda-ili-deistvie.kinogo.ru.net/%22%7D%7D
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stats?pixel=VIBOOM&v=1667733295922&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&is_js_referrer=1&origin_referrer=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&is_js_cookie=1&bounce=1&__upin=&pid=VIBOOM&js=1&sid=cb95bc87fa024f2fa162c46ef242e2d6&__upin=DUFNgMtEUJkSRcurhrnVIA&id=239f934beb6a2c5f932101eddc6f42ef&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&payload=%7B%22event%22%3A%22referrer%22%2C%22type%22%3A%22referrer%22%2C%22data%22%3A%7B%22value%22%3A%22http%3A//31416-pravda-ili-deistvie.kinogo.ru.net/%22%7D%7D HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 204 No Content
Server: nginx
Date: Sun, 06 Nov 2022 11:14:58 GMT
Connection: keep-alive
counter.yadro.ru/id-redir/aidata.gif?back=STOP
302 Moved Temporarily 323 B URL HTTP/1.1 counter.yadro.ru/id-redir/aidata.gif?back=STOP
IP
ASN #39134 United Network LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash cef58fa6e457b5bc86b1cc3aa5d31329
14d1c24aa7a35fb3cefb92b16754062bc3be3e41
8b21aacb6c2b880dc8fc3807a6dd7f1540eb404c0459e0bdc0b3d1e2171aa770
GET /id-redir/aidata.gif?back=STOP HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 302 Moved Temporarily
Date: Sun, 06 Nov 2022 11:14:58 GMT
Server: 0W/0.8c
Content-Type: text/html; charset=iso-8859-1
Location: http://x01.aidata.io/0.gif?pid=LIVE&id=&back=STOP
Content-Length: 323
x01.aidata.io/0.gif?pid=LIVE&id=&back=STOP
302 Found 0 B URL HTTP/1.1 x01.aidata.io/0.gif?pid=LIVE&id=&back=STOP
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0.gif?pid=LIVE&id=&back=STOP HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 302 Found
Server: nginx
Date: Sun, 06 Nov 2022 11:14:58 GMT
Content-Length: 0
Connection: keep-alive
Location: http://x01.aidata.io/0.gif?pid=LIVE&id=&back=STOP&bounce=1
Expires: Sun, 06 Nov 2022 11:14:57 GMT
Access-Control-Allow-Methods: GET, POST
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Last-Modified: Sun, 06 Nov 2022 11:14:57 GMT
Set-Cookie: __upin=wOEqJm5FfOOSYYKkruOHSQ;domain=.aidata.io;path=/;max-age=63072000;SameSite=None
__upints=1667733298;domain=.aidata.io;path=/;max-age=63072000;SameSite=None
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
x01.aidata.io/0.gif?pid=LIVE&id=&back=STOP&bounce=1
204 No Content 0 B URL HTTP/1.1 x01.aidata.io/0.gif?pid=LIVE&id=&back=STOP&bounce=1
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0.gif?pid=LIVE&id=&back=STOP&bounce=1 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 204 No Content
Server: nginx
Date: Sun, 06 Nov 2022 11:14:58 GMT
Connection: keep-alive
Expires: Sun, 06 Nov 2022 11:14:57 GMT
Access-Control-Allow-Methods: GET, POST
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Last-Modified: Sun, 06 Nov 2022 11:14:57 GMT
Set-Cookie: __upin=2WNpK0BEmhuqpgaJmSv79Q;domain=.aidata.io;path=/;max-age=63072000;SameSite=None
__upints=1667733298;domain=.aidata.io;path=/;max-age=63072000;SameSite=None
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3bf1a5e65cd048b761eac5cb0b52048a
f64cface851717dee160a5c6fad975cc34fe4cd2
8b849bbe5d73c02bd82c39e5970ef02d46bf36ccfed31b51db437d85d12c004b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B849BBE5D73C02BD82C39E5970EF02D46BF36CCFED31B51DB437D85D12C004B"
Last-Modified: Sat, 05 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10714
Expires: Sun, 06 Nov 2022 14:13:32 GMT
Date: Sun, 06 Nov 2022 11:14:58 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3bf1a5e65cd048b761eac5cb0b52048a
f64cface851717dee160a5c6fad975cc34fe4cd2
8b849bbe5d73c02bd82c39e5970ef02d46bf36ccfed31b51db437d85d12c004b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B849BBE5D73C02BD82C39E5970EF02D46BF36CCFED31B51DB437D85D12C004B"
Last-Modified: Sat, 05 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10714
Expires: Sun, 06 Nov 2022 14:13:32 GMT
Date: Sun, 06 Nov 2022 11:14:58 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3bf1a5e65cd048b761eac5cb0b52048a
f64cface851717dee160a5c6fad975cc34fe4cd2
8b849bbe5d73c02bd82c39e5970ef02d46bf36ccfed31b51db437d85d12c004b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B849BBE5D73C02BD82C39E5970EF02D46BF36CCFED31B51DB437D85D12C004B"
Last-Modified: Sat, 05 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10714
Expires: Sun, 06 Nov 2022 14:13:32 GMT
Date: Sun, 06 Nov 2022 11:14:58 GMT
Connection: keep-alive
ocsp.sectigo.com/
200 OK 471 B IP
Hash 7a58e9850fa7c2cdf0067e65d79f5dec
f630622815273ff5ae1c17d213f83f9907c643b3
a01bc96b3e9922fcc60d9b954759f16d058a3265f755906ea1c3d3ccf6e834de
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 11:14:58 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 05 Nov 2022 02:18:44 GMT
Expires: Sat, 12 Nov 2022 02:18:43 GMT
Etag: "f630622815273ff5ae1c17d213f83f9907c643b3"
Cache-Control: max-age=485624,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 765d68999ba3fab8-OSL
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 6dc7dc5c-88e9-4550-abf0-f16965ab7cd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bF_38GKXoAMFwSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636579cc-28ea4125437c31cc34683fb7;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 20:45:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cLOqm36ioY751X1yA1WcQpaXiFYuvzFn8xLQ56MyDTpvi1J4Ruvc9Q==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 06:27:59 GMT
age: 17219
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff56714e2-704b-4327-92b2-54e71d0c4d40.webp
200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff56714e2-704b-4327-92b2-54e71d0c4d40.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dcc79e66d1e21452efb26d26650f6739
1f727a7ea032082658944cf4041686446fb6b5f2
af1fe8de442a365a108d5c03f0d3ae8b0beb1abb4f267a46979f9c885ee026c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff56714e2-704b-4327-92b2-54e71d0c4d40.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8961
x-amzn-requestid: 3a50374d-d90e-452e-bb89-82ca14c94b52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJarpGtqIAMFkPg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d7e3-55c356475fb64e6625a338c7;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:38:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Ry_OKFFZDdDoVya2hTxnFlDGtgoSw0JRqieDnCO4mSNFbgV-AuLE5Q==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 21:44:33 GMT
age: 48625
etag: "1f727a7ea032082658944cf4041686446fb6b5f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8df47f1e-c13a-452f-b0e2-28c141dbb191.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8df47f1e-c13a-452f-b0e2-28c141dbb191.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b18a8c9f5539ce33476f843f5811e01d
11d1f2ce72d2aa6686c79f777cd0bdb4ddeb681b
fc20e507eedccb52078979f2132434b11b9d50d917cab512d8e0c99515b1236c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8df47f1e-c13a-452f-b0e2-28c141dbb191.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7573
x-amzn-requestid: d56e7b27-f2cb-4cd3-9f67-ba18d1bfe270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bDkhGHmjoAMFxxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364813a-3a1c18b13c41f38673890b00;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 03:04:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: c-u9tBFoIve3sEwtbUvIFZoPu6eudy3ZFQi8j2m9mTPNEarihTvddw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 05:31:43 GMT
age: 20595
etag: "11d1f2ce72d2aa6686c79f777cd0bdb4ddeb681b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78f88d98-b52b-4ad1-8cfc-e60fd17b46e0.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78f88d98-b52b-4ad1-8cfc-e60fd17b46e0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b370c4e3b01be9fbbc3e310e6958cd55
cc22e90a0b476215f2fd864d84c9b00dded100a6
f54d90c5854b6f140b63dad3aa92bd858b8f360b8c77d50fdf344e813e9385c5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78f88d98-b52b-4ad1-8cfc-e60fd17b46e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11535
x-amzn-requestid: 0a1d9895-e2e3-4070-921a-736d8c6f254e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJatPGwjoAMFx8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d7ee-101a7f3a2b834d0b411c9de0;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:38:54 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: j0I2JcPIptLTJZlwg8QG7kkTE1eCvZiBDzi6j2YYqNwvawJ6k2CqHQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 21:48:50 GMT
age: 48368
etag: "cc22e90a0b476215f2fd864d84c9b00dded100a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3420191-fa21-4db2-9043-c0adac7b0820.jpeg
200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3420191-fa21-4db2-9043-c0adac7b0820.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 39ac4f41f6bbdba85b2afeb7b011db5f
8e7a2be19b5c7682e86aec81907f6026d14d7313
fbd813af4eb335e1aefa6fb78b672bf89f8606ef688c98d3bd38ffdb77abfba3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3420191-fa21-4db2-9043-c0adac7b0820.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8160
x-amzn-requestid: 31cf0571-0ef2-4c99-a6be-afd806b7f449
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJaroFHhoAMF26g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d7e3-269b7bcc1bcb8bdc4aa51dc9;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:38:43 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: J2pyEM7n1b_j4vS7S_K8aiJ-Jj01PtPk7Qb7rEOblKaz-isZtSqo1g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 21:44:33 GMT
age: 48625
etag: "8e7a2be19b5c7682e86aec81907f6026d14d7313"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4dd82c6-5260-42a1-b9dd-3fadf975bc74.jpeg
200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4dd82c6-5260-42a1-b9dd-3fadf975bc74.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 551796a02f4aaaa3665290e79bf3ce07
6bf2e0fabc3fa8140c81b72424dcf9d31180bf6b
43f8a845006da27ad3aaa6f898ed2f6de13ee3819f548f939c110e9f900c52ad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4dd82c6-5260-42a1-b9dd-3fadf975bc74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7950
x-amzn-requestid: 706197c6-9e07-439f-8043-a44dc764cd77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJabbEsaIAMFQgg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d77c-22c4d5632b6a8d013c858293;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:37:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UTajFS74mA4CEbGfHX7yyvx6_FpuFezaDwBrVA7MBSygLmoPrZcKrQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 21:49:01 GMT
age: 48357
etag: "6bf2e0fabc3fa8140c81b72424dcf9d31180bf6b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
x01.aidata.io/pixel.js?pixel=VIBOOM&id=239f934beb6a2c5f932101eddc6f42ef&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&v=1667733296154&is_js_referrer=1&es_name=YM&es_uid=1667733295262816073
302 Found 0 B URL HTTP/2 x01.aidata.io/pixel.js?pixel=VIBOOM&id=239f934beb6a2c5f932101eddc6f42ef&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&v=1667733296154&is_js_referrer=1&es_name=YM&es_uid=1667733295262816073
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.js?pixel=VIBOOM&id=239f934beb6a2c5f932101eddc6f42ef&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&v=1667733296154&is_js_referrer=1&es_name=YM&es_uid=1667733295262816073 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sun, 06 Nov 2022 11:14:58 GMT
content-length: 0
location: https://x01.aidata.io/pixel.js?pixel=VIBOOM&id=239f934beb6a2c5f932101eddc6f42ef&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&v=1667733296154&is_js_referrer=1&es_name=YM&es_uid=1667733295262816073&pid=VIBOOM&js=1&bounce=1
expires: Sun, 06 Nov 2022 11:14:57 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sun, 06 Nov 2022 11:14:57 GMT
set-cookie: __upin=dPy+YedIlON/2JKKj8H58A;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1667733298;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 7a58e9850fa7c2cdf0067e65d79f5dec
f630622815273ff5ae1c17d213f83f9907c643b3
a01bc96b3e9922fcc60d9b954759f16d058a3265f755906ea1c3d3ccf6e834de
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 11:14:58 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 05 Nov 2022 02:18:44 GMT
Expires: Sat, 12 Nov 2022 02:18:43 GMT
Etag: "f630622815273ff5ae1c17d213f83f9907c643b3"
Cache-Control: max-age=485624,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 765d68999cc9b4ee-OSL
x01.aidata.io/pixel.js?pixel=VIBOOM&id=239f934beb6a2c5f932101eddc6f42ef&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&v=1667733296153&is_js_referrer=1&es_name=GA&es_uid=1362224260.1667733295
302 Found 0 B URL HTTP/2 x01.aidata.io/pixel.js?pixel=VIBOOM&id=239f934beb6a2c5f932101eddc6f42ef&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&v=1667733296153&is_js_referrer=1&es_name=GA&es_uid=1362224260.1667733295
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.js?pixel=VIBOOM&id=239f934beb6a2c5f932101eddc6f42ef&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&v=1667733296153&is_js_referrer=1&es_name=GA&es_uid=1362224260.1667733295 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sun, 06 Nov 2022 11:14:58 GMT
content-length: 0
location: https://x01.aidata.io/pixel.js?pixel=VIBOOM&id=239f934beb6a2c5f932101eddc6f42ef&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&v=1667733296153&is_js_referrer=1&es_name=GA&es_uid=1362224260.1667733295&pid=VIBOOM&js=1&bounce=1
expires: Sun, 06 Nov 2022 11:14:57 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sun, 06 Nov 2022 11:14:57 GMT
set-cookie: __upin=hOlotKBFAXazgSy5mxhpRQ;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1667733298;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f996586e78e2416f4ff65258a4bb2d92
14df0ac5609f6f2764d4d0aefb029785f331e336
8748d8c6ee34f345a6f760ae595c7a713ffd07f6e9747b94c20c7b9d854d14c5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8748D8C6EE34F345A6F760AE595C7A713FFD07F6E9747B94C20C7B9D854D14C5"
Last-Modified: Fri, 04 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15290
Expires: Sun, 06 Nov 2022 15:29:50 GMT
Date: Sun, 06 Nov 2022 11:15:00 GMT
Connection: keep-alive
x01.aidata.io/pixel.js?pixel=VIBOOM&id=239f934beb6a2c5f932101eddc6f42ef&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&v=1667733296154&is_js_referrer=1&es_name=YM&es_uid=1667733295262816073&pid=VIBOOM&js=1&bounce=1
200 OK 661 B URL HTTP/2 x01.aidata.io/pixel.js?pixel=VIBOOM&id=239f934beb6a2c5f932101eddc6f42ef&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&v=1667733296154&is_js_referrer=1&es_name=YM&es_uid=1667733295262816073&pid=VIBOOM&js=1&bounce=1
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash 1e9a061d13cc35149848d97db5af7cf2
a611b46dbe2d304ca1cecfcd4afd3d083a8ee77d
25c7fc25cfa49001b1c80bc4f72acb79935b26cd5a0734d094aae80c1209edb4
GET /pixel.js?pixel=VIBOOM&id=239f934beb6a2c5f932101eddc6f42ef&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&v=1667733296154&is_js_referrer=1&es_name=YM&es_uid=1667733295262816073&pid=VIBOOM&js=1&bounce=1 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 11:14:58 GMT
content-type: application/javascript
expires: Sun, 06 Nov 2022 11:14:57 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sun, 06 Nov 2022 11:14:57 GMT
set-cookie: __upin=KUHSGLtBkXH0MP+dc7y4Sg;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1667733298;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
content-encoding: gzip
X-Firefox-Spdy: h2
z9mx.streamalloha.live/4Em7.txt
200 OK 12 B URL HTTP/2 z9mx.streamalloha.live/4Em7.txt
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d
GET /4Em7.txt HTTP/1.1
Host: z9mx.streamalloha.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kinchik.allohalive.com
Connection: keep-alive
Referer: https://kinchik.allohalive.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 11:15:00 GMT
content-type: text/plain
content-length: 12
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
mc.yandex.ru/watch/36124145/1?wmode=7&page-url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&page-ref=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaydspl3nlyays9y07x84%3Afp%3A266%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A921%3Acn%3A1%3Adp%3A0%3Als%3A552013672607%3Ahid%3A439825781%3Az%3A0%3Ai%3A20221106111458%3Aet%3A1667733298%3Ac%3A1%3Arn%3A567195445%3Arqn%3A1%3Au%3A1667733295262816073%3Aw%3A750x570%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C190%2C6%2C1926%2C1926%2C1%2C263%3Ans%3A1667733294183%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1667733298%3At%3A&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
200 OK 419 B URL HTTP/2 mc.yandex.ru/watch/36124145/1?wmode=7&page-url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&page-ref=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaydspl3nlyays9y07x84%3Afp%3A266%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A921%3Acn%3A1%3Adp%3A0%3Als%3A552013672607%3Ahid%3A439825781%3Az%3A0%3Ai%3A20221106111458%3Aet%3A1667733298%3Ac%3A1%3Arn%3A567195445%3Arqn%3A1%3Au%3A1667733295262816073%3Aw%3A750x570%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C190%2C6%2C1926%2C1926%2C1%2C263%3Ans%3A1667733294183%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1667733298%3At%3A&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Hash 9fe4f3fd6b08c95123964c4dc81ff066
d74619390eebff6eee6999cc0e7179cecac79178
c3d334559994872e6d326f87372290189908a40344d13649734c1514e3002f70
GET /watch/36124145/1?wmode=7&page-url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&page-ref=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaydspl3nlyays9y07x84%3Afp%3A266%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A921%3Acn%3A1%3Adp%3A0%3Als%3A552013672607%3Ahid%3A439825781%3Az%3A0%3Ai%3A20221106111458%3Aet%3A1667733298%3Ac%3A1%3Arn%3A567195445%3Arqn%3A1%3Au%3A1667733295262816073%3Aw%3A750x570%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C190%2C6%2C1926%2C1926%2C1%2C263%3Ans%3A1667733294183%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1667733298%3At%3A&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://videopleer.kinogo.ru.net
Referer: http://videopleer.kinogo.ru.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 419
date: Sun, 06 Nov 2022 11:15:00 GMT
x-content-type-options: nosniff
access-control-allow-origin: http://videopleer.kinogo.ru.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 06-Nov-2022 11:15:00 GMT
last-modified: Sun, 06-Nov-2022 11:15:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
x01.aidata.io/pixel.js?pixel=VIBOOM&id=239f934beb6a2c5f932101eddc6f42ef&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&v=1667733296153&is_js_referrer=1&es_name=GA&es_uid=1362224260.1667733295&pid=VIBOOM&js=1&bounce=1
200 OK 661 B URL HTTP/2 x01.aidata.io/pixel.js?pixel=VIBOOM&id=239f934beb6a2c5f932101eddc6f42ef&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&v=1667733296153&is_js_referrer=1&es_name=GA&es_uid=1362224260.1667733295&pid=VIBOOM&js=1&bounce=1
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash c05f8b5eea532b5e75ee658a96776677
733bf1a458dbaa88c34d418645d7dd9c6b27e7ab
f86c98e951fdbf7a9543e6c26c979e332f8b16994a78c381ad474a25340ccf8b
GET /pixel.js?pixel=VIBOOM&id=239f934beb6a2c5f932101eddc6f42ef&url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&v=1667733296153&is_js_referrer=1&es_name=GA&es_uid=1362224260.1667733295&pid=VIBOOM&js=1&bounce=1 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 11:14:58 GMT
content-type: application/javascript
expires: Sun, 06 Nov 2022 11:14:57 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sun, 06 Nov 2022 11:14:57 GMT
set-cookie: __upin=+/Q6bSRDyoOpqsW1T1dJ+Q;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1667733298;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
content-encoding: gzip
X-Firefox-Spdy: h2
z9mx.streamalloha.live/4Em7.txt
200 OK 12 B URL HTTP/2 z9mx.streamalloha.live/4Em7.txt
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d
GET /4Em7.txt HTTP/1.1
Host: z9mx.streamalloha.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kinchik.allohalive.com
Connection: keep-alive
Referer: https://kinchik.allohalive.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 11:15:01 GMT
content-type: text/plain
content-length: 12
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
z9mx.streamalloha.live/4Em7.txt
200 OK 12 B URL HTTP/2 z9mx.streamalloha.live/4Em7.txt
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d
GET /4Em7.txt HTTP/1.1
Host: z9mx.streamalloha.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kinchik.allohalive.com
Connection: keep-alive
Referer: https://kinchik.allohalive.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 11:15:02 GMT
content-type: text/plain
content-length: 12
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
z9mx.streamalloha.live/4Em7.txt
200 OK 12 B URL HTTP/2 z9mx.streamalloha.live/4Em7.txt
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d
GET /4Em7.txt HTTP/1.1
Host: z9mx.streamalloha.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kinchik.allohalive.com
Connection: keep-alive
Referer: https://kinchik.allohalive.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 11:15:03 GMT
content-type: text/plain
content-length: 12
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
kinchik.allohalive.com/?token_movie=08d95b9916aeed13c0e78dafa54dc4&token=54e4f1b52d15f9f39add8c724b1631
200 OK 0 B URL HTTP/2 kinchik.allohalive.com/?token_movie=08d95b9916aeed13c0e78dafa54dc4&token=54e4f1b52d15f9f39add8c724b1631
IP
GET /?token_movie=08d95b9916aeed13c0e78dafa54dc4&token=54e4f1b52d15f9f39add8c724b1631 HTTP/1.1
Host: kinchik.allohalive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 11:14:56 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.13
cache-control: max-age=60
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
mc.yandex.ru/watch/36124145?wmode=7&page-url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&page-ref=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaydspl3nlyays9y07x84%3Afp%3A266%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A921%3Acn%3A1%3Adp%3A0%3Als%3A552013672607%3Ahid%3A439825781%3Az%3A0%3Ai%3A20221106111458%3Aet%3A1667733298%3Ac%3A1%3Arn%3A567195445%3Arqn%3A1%3Au%3A1667733295262816073%3Aw%3A750x570%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C190%2C6%2C1926%2C1926%2C1%2C263%3Ans%3A1667733294183%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1667733298%3At%3A&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/36124145?wmode=7&page-url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&page-ref=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaydspl3nlyays9y07x84%3Afp%3A266%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A921%3Acn%3A1%3Adp%3A0%3Als%3A552013672607%3Ahid%3A439825781%3Az%3A0%3Ai%3A20221106111458%3Aet%3A1667733298%3Ac%3A1%3Arn%3A567195445%3Arqn%3A1%3Au%3A1667733295262816073%3Aw%3A750x570%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C190%2C6%2C1926%2C1926%2C1%2C263%3Ans%3A1667733294183%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1667733298%3At%3A&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
IP
GET /watch/36124145?wmode=7&page-url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&page-ref=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaydspl3nlyays9y07x84%3Afp%3A266%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A921%3Acn%3A1%3Adp%3A0%3Als%3A552013672607%3Ahid%3A439825781%3Az%3A0%3Ai%3A20221106111458%3Aet%3A1667733298%3Ac%3A1%3Arn%3A567195445%3Arqn%3A1%3Au%3A1667733295262816073%3Aw%3A750x570%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C190%2C6%2C1926%2C1926%2C1%2C263%3Ans%3A1667733294183%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1667733298%3At%3A&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://videopleer.kinogo.ru.net
Connection: keep-alive
Referer: http://videopleer.kinogo.ru.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/36124145/1?wmode=7&page-url=http%3A%2F%2Fvideopleer.kinogo.ru.net%2F%3Fid%3D31416&page-ref=http%3A%2F%2F31416-pravda-ili-deistvie.kinogo.ru.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaydspl3nlyays9y07x84%3Afp%3A266%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A921%3Acn%3A1%3Adp%3A0%3Als%3A552013672607%3Ahid%3A439825781%3Az%3A0%3Ai%3A20221106111458%3Aet%3A1667733298%3Ac%3A1%3Arn%3A567195445%3Arqn%3A1%3Au%3A1667733295262816073%3Aw%3A750x570%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C190%2C6%2C1926%2C1926%2C1%2C263%3Ans%3A1667733294183%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1667733298%3At%3A&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
date: Sun, 06 Nov 2022 11:15:00 GMT
access-control-allow-origin: http://videopleer.kinogo.ru.net
set-cookie: yandexuid=3102090921667733300; Expires=Mon, 06-Nov-2023 11:15:00 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=3102090921667733300; Expires=Mon, 06-Nov-2023 11:15:00 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=580692811667733300; Path=/; SameSite=None; Secure
i=Ub07ElHCzAqoVmFSOl7TUe4Cc5rIudVToWBhIOn5ONYlOa6YktVqdjKHVMZkaXsjh4zk6ZWFnnRUKGccfMCUhFvpwlc=; Expires=Wed, 03-Nov-2032 11:14:55 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1699269300.yrts.1667733300#1699269300.yrtsi.1667733300; Expires=Mon, 06-Nov-2023 11:15:00 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sun, 06-Nov-2022 11:15:00 GMT
last-modified: Sun, 06-Nov-2022 11:15:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kinchik.allohalive.com/js/default-dist.js?v=4.16
200 OK 0 B URL HTTP/2 kinchik.allohalive.com/js/default-dist.js?v=4.16
IP
GET /js/default-dist.js?v=4.16 HTTP/1.1
Host: kinchik.allohalive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinchik.allohalive.com/?token_movie=08d95b9916aeed13c0e78dafa54dc4&token=54e4f1b52d15f9f39add8c724b1631
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 11:14:56 GMT
content-type: application/javascript
last-modified: Fri, 22 Jul 2022 12:10:13 GMT
etag: W/"62da93a5-6a22"
expires: Wed, 18 Jan 2023 12:10:35 GMT
cache-control: max-age=7776000
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
185.51.247.207
104.21.81.250
87.240.129.133
52.38.227.80
144.76.91.58
141.95.45.78
23.36.76.226
93.184.220.29
31.13.72.8