Report - cinemaniacs.yoo7.com/t248-topic

Report Overview

Submitted URL
cinemaniacs.yoo7.com/t248-topic
IP
178.33.43.150
ASN
#16276 OVH SAS
Submitted
2022-09-07 18:57:26
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	4.1 kB	93.184.220.29
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	601 B	715 B	142.251.1.156
il-trc-events.taboola.com	22667	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	326 B	185.106.33.48
pushazam.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	712 B	40 kB	139.45.197.251
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	384 B	35 kB	142.250.74.74
js.cookieless-data.com	5008	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	744 B	518 B	51.158.29.12
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	507 B	694 B	142.250.74.3
static.criteo.net	652	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	1.5 kB	178.250.2.130
twemoji.maxcdn.com	9109	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	361 B	605 B	23.111.9.57
api.viglink.com	4397	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.2 kB	2.4 kB	176.34.209.96
images.taboola.com	1621	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	30 kB	151.101.85.44
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.115
cdn.viglink.com	4113	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	356 B	29 kB	104.16.163.13
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	338 B	944 B	54.230.245.100
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	656 B	1.9 kB	104.18.32.68
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	508 B	694 B	142.250.74.164
trc.taboola.com	602	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.2 kB	15 kB	151.101.85.44
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.160.51.228
bidder.criteo.com	750	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	960 B	666 B	178.250.2.131
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	54 kB	34.120.237.76
vidstat.taboola.com	1927	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	406 B	24 kB	151.101.85.44
15.taboola.com	1912	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	12 kB	151.101.85.44
cinemaniacs.yoo7.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	57 kB	178.33.44.177
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.6 kB	7.7 kB	142.250.74.3
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	742 B	79 kB	142.250.74.72
tzegilo.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	12 kB	172.67.205.240
connect.topicit.net	523065	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	366 B	943 B	104.21.90.171
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.9 kB	8.0 kB	23.36.77.32
cache.consentframework.com	35167	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	379 B	3.7 kB	104.26.5.102
cdn.taboola.com	1040	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	152 kB	151.101.85.44
my.rtmark.net	9054	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	955 B	1.5 kB	139.45.195.8
datatechonert.com	46154	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	491 B	488 B	139.45.195.253
illiweb.com	265462	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	3.3 kB	172.67.150.97
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.35
2img.net	212398	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	7.8 kB	104.21.235.175
choices.consentframework.com	31439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.3 kB	142 kB	212.129.3.112
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	365 B	21 kB	142.250.74.174
stootsou.net	145219	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.0 kB	37 kB	139.45.197.250
trc-events.taboola.com	1779	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	566 B	163 B	141.226.228.48
cdn.betgorebysson.club	149925	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.1 kB	139.45.195.8

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-07	medium	cdn.betgorebysson.club/apu.php?zoneid=3765907	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (47)

	URL	Size	First Seen	Last Seen
	cinemaniacs.yoo7.com/t248-topic	213 B	2023-03-07	2024-01-03
Pretty URL cinemaniacs.yoo7.com/t248-topic IP 178.33.44.177 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:51 Last Seen2024-01-03 03:33:38 Times Seen17 Hash 8dc99b1a979c478e061ff14e9670e8af 7550a0acc3765631761b58add79d56910907c5be bb17c405392717ddb4e72a8d66b94b269df6defb391f09fdfb60acc1403dd3c6 Loading...

	cinemaniacs.yoo7.com/t248-topic	322 B	2023-03-07	2024-01-03
Pretty URL cinemaniacs.yoo7.com/t248-topic IP 178.33.44.177 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:33 Last Seen2024-01-03 03:33:38 Times Seen34 Hash 9c1735e3df55bb348b1933b393c67c48 403dcbd4b806d5a2e34b6f8497bd030234ca658b 2e47dc28efa9586f4ce6e8db3258f7b8bd70bf0683c210aa2b135acfd38eefa4 Loading...

	cinemaniacs.yoo7.com/t248-topic	104 kB	2023-03-07	2023-03-17
Pretty URL cinemaniacs.yoo7.com/t248-topic IP 178.33.44.177 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:56:19 Last Seen2023-03-17 11:42:01 Times Seen1 Hash 7490898c0f490720a0c78dfc9ba92b45 079a6dee4b0a234194ec1efb256d48f29a98cb30 6fdc6b3c308eb3057e6c2e8481a66960e145163d6375b37d00e75be68ea50497 Loading...

	cinemaniacs.yoo7.com/t248-topic	112 B	2023-03-07	2023-04-05
Pretty URL cinemaniacs.yoo7.com/t248-topic IP 178.33.44.177 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:33 Last Seen2023-04-05 02:10:30 Times Seen82 Hash e47ee79f740c9eae02464288746f765d 9f2a84ab535d0c773c2d822221917b26446c6d46 24ca2d2952aa702f4191a162f59fbad191c648e851dae7876434baf548af95a7 Loading...

	www.googletagmanager.com/gtag/js?id=UA-144347007-1	108 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=UA-144347007-1 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:18 Last Seen2023-03-07 13:24:29 Times Seen1 Hash 7d1f12609fb3d93037da31bb0a64e1f6 36948b1b602536d8be99850e6a7a1b530f1f243e 9fffed2a30e86608115de25795c4bfe196c1bf2567860e48dfdf30078bdc23f5 Loading...

	cinemaniacs.yoo7.com/t248-topic	411 B	2023-03-07	2023-03-17
Pretty URL cinemaniacs.yoo7.com/t248-topic IP 178.33.44.177 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:33 Last Seen2023-03-17 12:40:57 Times Seen1 Hash d8793ee455d156d658f5f70e3ed7bcf8 dc25bbd1fd938f37c21f5b4bc71e0fa6034756f8 db00250066a0114b9d8ed5e81abea3156e2f3b49a94e8685fcafe28ea6f54201 Loading...

	cinemaniacs.yoo7.com/t248-topic	30 B	2023-03-07	2024-04-19
Pretty URL cinemaniacs.yoo7.com/t248-topic IP 178.33.44.177 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:33 Last Seen2024-04-19 17:26:26 Times Seen63 Hash 4ece280a19c04007f1c61ee38cfc055b c425f44785e505687647cd153db2f5d6e947b85c da7ba30ac2306369b237659657949a1d5fad24e99a97245319bac3b5a8bfddac Loading...

	cdn.viglink.com/api/vglnk.js	83 kB	2023-03-07	2023-03-17
Pretty URL cdn.viglink.com/api/vglnk.js IP 104.16.163.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:33 Last Seen2023-03-17 12:55:08 Times Seen1 Hash 00f6ad35e2ff4f8886dae67b1dd697e6 347d57d6b53509fd87982d06e9f6c3d350cf3f34 73073ed7160406dcfbe826dcabd7ec807cf2aa72afe0303424f518767120cf2e Loading...

	connect.topicit.net/button/light?id=topicit-connect-0&redirect=https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic&lang=ar&loc=https%3A%2F%2Fconnect.topicit.net%2F&login=https%3A%2F%2Fcinemaniacs.yoo7.com%2Ftopicit%2Findex.php%2Fconnect&version=1	2.3 kB	2023-03-07	2023-03-07
Pretty URL connect.topicit.net/button/light?id=topicit-connect-0&redirect=https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic&lang=ar&loc=https%3A%2F%2Fconnect.topicit.net%2F&login=https%3A%2F%2Fcinemaniacs.yoo7.com%2Ftopicit%2Findex.php%2Fconnect&version=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:29 Last Seen2023-03-07 13:24:29 Times Seen1 Hash 91274ba63bf20862234b911bd65e004a f68827f4a307dfd988f4fe5cf94cb8033eb034ef e2b9ecb3ba0f0c82b6201f05a3564d5370d2a0ea4f26a5f30d73e2ece6c97116 Loading...

	illiweb.com/rs3/62/frm/lang/ar.js	75 kB	2023-03-07	2023-03-17
Pretty URL illiweb.com/rs3/62/frm/lang/ar.js IP 172.67.150.97 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:33 Last Seen2023-03-17 10:38:30 Times Seen1 Hash de6d193e6de7c195d22898e5735eada5 b2b25ae4b5e98485528333f84f22a609d6ca1bef c5a00dca18139855625ef3a6ad35425016d0ca717fe2940d7dbf410e35d203d7 Loading...

	cinemaniacs.yoo7.com/t248-topic	488 B	2023-03-07	2023-03-07
Pretty URL cinemaniacs.yoo7.com/t248-topic IP 178.33.44.177 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:29 Last Seen2023-03-07 13:24:29 Times Seen1 Hash bfb7841295addc663e4a3b0e5471e957 f7a49ca53be73c8f704fb877174a5fdacef510f9 6f09d3a8e3d1ab3d0ccda45b185953b1a9d5cd2ee1862abe5f484067a3ce7111 Loading...

	www.googletagmanager.com/gtag/js?id=	91 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id= IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:29 Last Seen2023-03-07 13:43:56 Times Seen1 Hash e4b26ae1f91d9f62073b82e018b9cbfe 4f3f8d9b1859dc4f3bf3c7b37d18680de3e4e70b 75369a438c72c4db5d1c34effad9223b84e5cbd4cd926f8536c9566c089e46c8 Loading...

	cinemaniacs.yoo7.com/t248-topic	514 B	2023-03-07	2024-04-19
Pretty URL cinemaniacs.yoo7.com/t248-topic IP 178.33.44.177 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:33 Last Seen2024-04-19 17:26:25 Times Seen76 Hash 761d2d805f480411fa88e7662492769d c28ca142719025edf8996ac2897d036fc0c2a76e 0ee1b0b1b1b4667a2fd2983949d1c4b6aaaca435394712789388747cbe3d6d53 Loading...

	cinemaniacs.yoo7.com/t248-topic	12 kB	2023-03-07	2023-03-07
Pretty URL cinemaniacs.yoo7.com/t248-topic IP 178.33.44.177 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:29 Last Seen2023-03-07 13:24:29 Times Seen1 Hash c2af4abfb4d3ebed832c1732ffc9b28e f3ae92a3bcc24f53ac0f34f55298250cbf396d36 6c7e2f8d5e3adcf824e152e27f865e0e19c55327087964aa114ce24f44919342 Loading...

	cinemaniacs.yoo7.com/t248-topic	139 B	2023-03-07	2023-10-01
Pretty URL cinemaniacs.yoo7.com/t248-topic IP 178.33.44.177 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:33 Last Seen2023-10-01 10:50:16 Times Seen38 Hash 19e57056f1e5b06edac6b9654418f705 863dadea1e6158fea52bd8bfb1eab0cc13107c12 30f513144bf444457a7c1aadbe1e937ffe5d33eea89055ef9032f1aa9a2439eb Loading...

	cdn.betgorebysson.club/apu.php?zoneid=3765907	76 kB	2023-03-07	2023-03-07
Pretty URL cdn.betgorebysson.club/apu.php?zoneid=3765907 IP 139.45.195.8 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:29 Last Seen2023-03-07 13:24:29 Times Seen1 Hash acd8a80e792d283c8c8261e9d036aef9 95efa259c584f5cc49eeb5e38689e8774b863fe9 83c2f5d2498a856ab57d64b8169d224f7f31630c8e14dcd3904c286b12d933f6 Loading...

	twemoji.maxcdn.com/twemoji.min.js	15 kB	2023-03-07	2023-03-17
Pretty URL twemoji.maxcdn.com/twemoji.min.js IP 23.111.9.57 ASN #12989 StackPath LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:33 Last Seen2023-03-17 12:40:56 Times Seen1 Hash 0e7562d46a4d2db5e27e0d8ece11622a 038fc48367c0055aff024fb128062181f1b4413b 637282f23b8352c04ecc9dd7b4e1ffb23f8102517d010afaa447b2fb889b689e Loading...

	cinemaniacs.yoo7.com/t248-topic	857 B	2023-03-07	2023-03-13
Pretty URL cinemaniacs.yoo7.com/t248-topic IP 178.33.44.177 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:18 Last Seen2023-03-13 12:23:03 Times Seen1 Hash c7df5ed1b1e665c1825dfa59c7defe19 7f8a0a7748d6b24799360db43db0e8647dc6860f 78f5842d643b25974388619973379a78d73715ea80bb51ba9b449037e3690457 Loading...

	stootsou.net/pfe/current/tag.min.js?z=2308013	15 kB	2023-03-07	2023-03-17
Pretty URL stootsou.net/pfe/current/tag.min.js?z=2308013 IP 139.45.197.250 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:56:19 Last Seen2023-03-17 11:42:01 Times Seen1 Hash cc63ffb9d89c06962e77cf13c24d3ef1 caa98477427ff6b6d4f9dfcbddc32707f0f5e132 0bf6801ec18c86804afbf9afd9134b9b01735fb34500fc392c85b9ca48523c83 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-04-25
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-25 19:24:16 Times Seen842 Hash d40531c5e99a6f84e42535859476fe35 a901817d77b2fe5259c298c91bc65c54d7f8a1a9 a1925038db769477ab74b4df34350c35688a795bb718727b0f4292a4a78a6210 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js	95 kB	2023-03-07	2024-04-26
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:23 Last Seen2024-04-26 17:42:43 Times Seen13796 Hash b8d64d0bc142b3f670cc0611b0aebcae abcd2ba13348f178b17141b445bc99f1917d47af 47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4 Loading...

	tzegilo.com/stattag.js	32 kB	2023-03-07	2023-03-07
Pretty URL tzegilo.com/stattag.js IP 172.67.205.240 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:29 Last Seen2023-03-07 13:24:29 Times Seen1 Hash b410e86586eddcfd6a0b5cd2a13e798d 59f37109c2caab9c150ac8e1f5280a37e54675e1 e93e283324573852228006bd350126e77c4b4f6a56e2880fb9c7a57221811e2c Loading...

	cdn.taboola.com/libtrc/userx.20220907-23-RELEASE.es6.js	18 kB	2023-03-07	2023-03-07
Pretty URL cdn.taboola.com/libtrc/userx.20220907-23-RELEASE.es6.js IP 151.101.85.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:18 Last Seen2023-03-07 13:52:43 Times Seen1 Hash 2b6e0f6fba49246968783584040a9edc b232ad8f28938d79112d553f19297cf66805961a f0353f3abb2bcf03fc933abe8d4f3fdd2783c85b9f12cd2a0ee4924a41af3959 Loading...

	vidstat.taboola.com/lite-unit/1.4.0/UnitWidgetItemDesktop.min.js	81 kB	2023-03-07	2023-04-18
Pretty URL vidstat.taboola.com/lite-unit/1.4.0/UnitWidgetItemDesktop.min.js IP 151.101.85.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:17 Last Seen2023-04-18 00:38:47 Times Seen5 Hash b683c290896a82c974838a04b4ea4aff d13ad4fdab8d045822e96854f8f53438f3757ce8 e92552bc193c8bae835c7b6db6eea8a39593fa14fb75a227f738c415330cc84e Loading...

	connect.topicit.net/scripts/connect.js	3.5 kB	2023-03-07	2024-04-19
Pretty URL connect.topicit.net/scripts/connect.js IP 104.21.90.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:33 Last Seen2024-04-19 17:26:26 Times Seen93 Hash df06f0c81b83b4161d3a2c843e71de58 ac09970aca15ee03496cbe68c2a2f06914e19855 39ce845fc0203d4cb00559dff89d9448765e0ebd65ebbaf76623cc9850827542 Loading...

	illiweb.com/rs3/62/frm/jquery/cookie/jquery.cookie.js	1.0 kB	2023-03-07	2024-04-19
Pretty URL illiweb.com/rs3/62/frm/jquery/cookie/jquery.cookie.js IP 172.67.150.97 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:33 Last Seen2024-04-19 17:26:26 Times Seen152 Hash 12a485a250e60806fbe4ab8bd03dfbf8 ea48bc03bfb90a966f28d302992ec02fe55da978 6cf7880d67c712bb6f85f1dfa1d26ea5e0a7195130a3e42c8b441cdd1de77a90 Loading...

	cinemaniacs.yoo7.com/t248-topic	469 B	2023-03-07	2023-04-07
Pretty URL cinemaniacs.yoo7.com/t248-topic IP 178.33.44.177 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:33 Last Seen2023-04-07 01:16:28 Times Seen3 Hash 9ac8ef2d1a3bfa3853583ff63bf55fdc 320b3c290f614ea4d58c6380975f66643a86b0c8 2366434a4c7d47689d8eb6353e5bc3c9c50f94f0b7cea6ceba7023faa9d37c02 Loading...

	cinemaniacs.yoo7.com/t248-topic	474 B	2023-03-07	2024-04-19
Pretty URL cinemaniacs.yoo7.com/t248-topic IP 178.33.44.177 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:33 Last Seen2024-04-19 17:26:25 Times Seen76 Hash 5dc2d1991479eee96d79b825b4ed452f bc3983969f797596e3e7f3dd21c5fa6e6106991c 4f479e3c2a795d192a8b82d1ac992bb6a2e7e1f65b8bbd808d5e5a2ff0cebaff Loading...

	cinemaniacs.yoo7.com/t248-topic	172 B	2023-03-07	2024-01-03
Pretty URL cinemaniacs.yoo7.com/t248-topic IP 178.33.44.177 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:33 Last Seen2024-01-03 03:33:38 Times Seen36 Hash eac2977105f7afa338df42213637c7e8 b8da68cf1722f55c0013b2c642ff3315f8d03755 ee35e392c911a32615a69c87ae4dcf90dabcedb74b9b8f1df12010e4622e25a8 Loading...

	cinemaniacs.yoo7.com/t248-topic	70 B	2023-03-07	2024-04-19
Pretty URL cinemaniacs.yoo7.com/t248-topic IP 178.33.44.177 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:33 Last Seen2024-04-19 17:26:26 Times Seen60 Hash 7d95955272fc06a396db4bf66d9d6247 1a4b36a4b619d7f680909d4e7f574f15d3542ee7 b03b4f9d334c2b312ee05154d8eedbc5a64ca9764bd0a795920e73faf4d874db Loading...

	cdn.taboola.com/libtrc/forumotion-ar/loader.js	179 kB	2023-03-07	2023-03-07
Pretty URL cdn.taboola.com/libtrc/forumotion-ar/loader.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:18 Last Seen2023-03-07 13:52:43 Times Seen1 Hash d8cfbe286f079c4e2f61a0896ebb5e74 b87cfe2c1d5afbcd589afdb4dfa3d3ef53a8b61e 2d561c1d2514384e79c13e7eec89fa5ca6c13d428463c450117dcd9e10bd2d83 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 21:13:05 Times Seen37101095 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	static.criteo.net/js/ld/publishertag.js	123 kB	2023-03-07	2023-03-17
Pretty URL static.criteo.net/js/ld/publishertag.js IP 178.250.2.130 ASN #44788 Criteo SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:59 Last Seen2023-03-17 11:34:51 Times Seen1 Hash eb0492a90c937d2203e627fc22006b22 620ffff59ab471192d47b1783b693aae7a680053 c1668d86b5d7e7ed9f1dd299ba412d92b3fc92256887fb4c0e1d197aae5e037c Loading...

	illiweb.com/rs3/62/frm/embed/FA_Embed.js	277 B	2023-03-07	2024-01-20
Pretty URL illiweb.com/rs3/62/frm/embed/FA_Embed.js IP 172.67.150.97 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:33 Last Seen2024-01-20 22:09:05 Times Seen67 Hash 7c08b7f1da97c37b7680d6f879d7ed40 97f715f01a5bb9d07ec879e3b5e14a631b087740 432bb74f6f65f0b392e4b531804bf529db2f58fa1868537599097f408c02b481 Loading...

	cinemaniacs.yoo7.com/t248-topic	263 B	2023-03-07	2024-01-03
Pretty URL cinemaniacs.yoo7.com/t248-topic IP 178.33.44.177 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:33 Last Seen2024-01-03 03:33:38 Times Seen36 Hash ef8b50accfd60bbe469f135147911168 ff6c86cd05950889a2e4b1f70655e153c561577e 9a0d1233f8889ad529c9fdd86b379ba5a08dd71ba3939a2206f3e03659965d58 Loading...

	choices.consentframework.com/js/pa/24697/c/IxWav/cmp	510 kB	2023-03-07	2023-03-07
Pretty URL choices.consentframework.com/js/pa/24697/c/IxWav/cmp IP 212.129.3.112 ASN #12876 Online S.a.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:29 Last Seen2023-03-07 13:24:29 Times Seen1 Hash 044bf1a73309211a8eb3a62a35558a85 1249008c5ee2f2fc07b7bf6d10306010ee23e5a9 0f6abfe48e2d20e068f8871870909b8f3f1db7f08e7e7a302d303c73c248eb0d Loading...

	connect.topicit.net/button/light?id=topicit-connect-0&redirect=https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic&lang=ar&loc=https%3A%2F%2Fconnect.topicit.net%2F&login=https%3A%2F%2Fcinemaniacs.yoo7.com%2Ftopicit%2Findex.php%2Fconnect&version=1	371 B	2023-03-07	2023-03-07
Pretty URL connect.topicit.net/button/light?id=topicit-connect-0&redirect=https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic&lang=ar&loc=https%3A%2F%2Fconnect.topicit.net%2F&login=https%3A%2F%2Fcinemaniacs.yoo7.com%2Ftopicit%2Findex.php%2Fconnect&version=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:29 Last Seen2023-03-07 13:24:29 Times Seen1 Hash dfec6bbd61b15930495637ea1c1c6164 66753396a82b0390da37d1e37033c741d330c9b7 95ef17c40c14b7a47450a2be1973cf8637410c667e8f2e91df5ada2561a6d614 Loading...

	cinemaniacs.yoo7.com/t248-topic	102 B	2023-03-07	2023-03-07
Pretty URL cinemaniacs.yoo7.com/t248-topic IP 178.33.44.177 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:29 Last Seen2023-03-07 13:24:29 Times Seen1 Hash 7f131446ead0419d1152fde0ea653358 21218851206c401b881ada10bd24c2af6afdb9ae 5d3a1bd816ec821dd85a9348243557c136c83442d86b59b80ec6acc23724872d Loading...

	cache.consentframework.com/js/pa/24697/c/IxWav/stub	1.3 kB	2023-03-07	2023-06-07
Pretty URL cache.consentframework.com/js/pa/24697/c/IxWav/stub IP 104.26.5.102 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:33 Last Seen2023-06-07 17:18:07 Times Seen41 Hash ab35d2cdd19414da398078334df85194 6f823ba2429d56ede761a1e0a0a3545d36bd5a8b 9298971a5bdb7470b87aa2bf89d39c6b13fd2f486d38c87b057b94ce54eb98bc Loading...

		Size	First Seen	Last Seen
	#1 Eval - f7fef8930207b23ec9c04386f9a02c76	24 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:10 Last Seen2024-04-26 04:21:59 Times Seen9426 Hash f7fef8930207b23ec9c04386f9a02c76 146273d1c716700bb25aaa15e8595624b611ffdf 74867c5a2cf408b090752d3cb8767bb46fdb4a0529bc959d96f51aeb2607d7e3 Loading...

	#2 Eval - 37cd3bd2adbd29e7fafaf20f77f4bf43	18 B	2023-03-07	2024-04-15
Pretty Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-15 12:57:44 Times Seen656 Hash 37cd3bd2adbd29e7fafaf20f77f4bf43 d4a665f4bf3dc9a6f3ea3a55c50c5a37c6bd05f5 0f3342bc14063d9ed7a669eb067b50ea17b2cb7dcb51968939b72fa9ac862d91 Loading...

	#3 Eval - f5cc4eb3f229b45d282390cba730cc18	79 B	2023-03-07	2023-03-07
Pretty Observations First Seen2023-03-07 13:24:29 Last Seen2023-03-07 13:24:29 Times Seen1 Hash f5cc4eb3f229b45d282390cba730cc18 932c7c2129dc8a9ffdda4fe9636873cc02956325 4927fdb823ad112527c2c76906fd0fae91f8aba49d8e726edeeb1ee1f8f3fded Loading...

	#4 Eval - 73497a37c3561adbd8ce84e4f017b368	9 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:03:23 Last Seen2024-04-26 20:05:47 Times Seen2160 Hash 73497a37c3561adbd8ce84e4f017b368 9193ae73cb3dd2833be8c942714d5544bfb628c9 9312a1adbbf0a4c05fc296d158ec3bd39acfe50e9e98ff02688139aad6fc3351 Loading...

	#5 Eval - 53143a7b5a706e38e09cc446b8ec03b0	2.0 kB	2023-03-07	2023-03-07
Pretty Observations First Seen2023-03-07 13:24:29 Last Seen2023-03-07 13:24:29 Times Seen1 Hash 53143a7b5a706e38e09cc446b8ec03b0 7db749c60359865b50f8120cc29a4d742f0d8caa c7533fd52b1a3cc26f3703f0043335d5e3de71388fb61d067ca2c50b790b5d66 Loading...

	#6 Eval - e2cd17547ac950bd6862f3057e7f6422	2.0 kB	2023-03-07	2023-03-07
Pretty Observations First Seen2023-03-07 13:24:29 Last Seen2023-03-07 13:24:29 Times Seen1 Hash e2cd17547ac950bd6862f3057e7f6422 9adc9fd283e618907fb2ba14320ebd652b84e262 ed3d3aabb90bd8e121f6ff7b7c15b2ba22cf9eed42dcf945d77f15f9b3a017d7 Loading...

		Size	First Seen	Last Seen
	#1 Write - 90be6fababd84ead318f6ebd34f25269	104 B	2023-03-07	2023-10-01
Pretty Observations First Seen2023-03-07 01:40:33 Last Seen2023-10-01 10:50:16 Times Seen38 Hash 90be6fababd84ead318f6ebd34f25269 e689a91041b2214c8d0eb98e1b0b701a8134c830 147f74332da8a3a6025c02528aa92901c92553e8066a4924adf0b4d08a8439fc Loading...

	#2 Write - 2d6673eded37338627f4fc432783fc4d	759 B	2023-03-07	2023-05-06
Pretty Observations First Seen2023-03-07 12:04:33 Last Seen2023-05-06 00:14:31 Times Seen121 Hash 2d6673eded37338627f4fc432783fc4d bb226d552cec5533fb1d7fd8b486efa856d7f333 a7e9c7904cd65627b33964bbb90839a2fa154c33d9c353413da6dcdc4fba2295 Loading...

HTTP Transactions (115)

URL IP Response Size

cinemaniacs.yoo7.com/t248-topic

178.33.44.177

301 Moved Permanently

0 B

URL HTTP/1.1
cinemaniacs.yoo7.com/t248-topic
IP
178.33.44.177:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /t248-topic HTTP/1.1
Host: cinemaniacs.yoo7.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Wed, 07 Sep 2022 18:57:15 GMT
Content-Length: 0
Location: https://cinemaniacs.yoo7.com/t248-topic

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 07 Sep 2022 18:04:44 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7KqfN8lhuwGIeLTUDwP9PdBS_T96inVKM6-aazdb4p81O29bIEL4NA==
Age: 3151

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2524
Expires: Wed, 07 Sep 2022 19:39:19 GMT
Date: Wed, 07 Sep 2022 18:57:15 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.35

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 07 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: P0ZRUx4GKrb279kEZN1xK0-0nhYwv2ky1qOA9fbKTwdmq6V5XCC-oA==
age: 54641
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d1cf0a5161e859727c329d4c4ee9c1c5
38f64f9571955da0b8d5b223400232d18724fb20
ac40c4fb3f99cbb05f2ef4c45bc3db1390b5c9d05d90a892f02e3a95951af295

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC40C4FB3F99CBB05F2EF4C45BC3DB1390B5C9D05D90A892F02E3A95951AF295"
Last-Modified: Mon, 05 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7899
Expires: Wed, 07 Sep 2022 21:08:54 GMT
Date: Wed, 07 Sep 2022 18:57:15 GMT
Connection: keep-alive

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:15 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
de50d39318f58f490483c86aecd38e4c
f92177f493cb7bab9c5ce67f6b41f9214920907d
8bca037d0d46ddd72b4c1bbfc2829f96bc9e7bfb28724af3010f1441d14b7180

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 18:57:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
521428b0e694b41561bc2ed785219929
45bf3b914325f9d646879bd16bb01feb8f29f2d4
9e2c58593cb9b9baae14e338253ca44b199d965e106ddc70c700f66f0203465a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 18:57:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 18:57:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
999cd9a781a8d5cf382e0e74f5d0f88a
fc97dfcabd7074cb57df831ad9c5d788e0b286f7
1eaab414bf4a1afaa7cc21c3d234f3f22757a251d8e3ce26aa34393e1a180049

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6210
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 18:57:15 GMT
Last-Modified: Wed, 07 Sep 2022 17:13:45 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js

142.250.74.74

200 OK

34 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Size
34 kB (33845 bytes)
Hash
d989f35706c62ce4a5c561586c55566e
d32e7958e5765609bf08dcdefd0b2c2a8714ce34
375dfe942a03ee024b5cc827b3efda5550d13df7530281f50862ce3b33fcb716

HTTP Headers

GET /ajax/libs/jquery/1.7.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33845
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 04 Sep 2022 10:40:14 GMT
expires: Mon, 04 Sep 2023 10:40:14 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 289021
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

314 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
314 B (314 bytes)
Hash
fa52c0ceb13a1e1a34affc7499ac453b
eb8c2e5d4c2993ba6401bc7aad98882028ceabd1
788dd82e58466de4123564fa25341ffeeb363d08c22597c4ffb2ae01dc6cb666

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2660
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 18:57:15 GMT
Last-Modified: Wed, 07 Sep 2022 18:12:55 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 314

cinemaniacs.yoo7.com/0-rtl.css

178.33.115.32

200 OK

54 kB

URL HTTP/2
cinemaniacs.yoo7.com/0-rtl.css
IP
178.33.115.32:0
ASN
#16276 OVH SAS

File type
Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Size
54 kB (54421 bytes)
Hash
79514e5f7735c9a7152f808720fea0dd
4ca9a9d3ff8233200fca046731b8a3f578ab219c
5084e9b2359132dcf26b759e797104721a8d8a2966b0ee0f3b40f2b82f855cf1

HTTP Headers

GET /0-rtl.css HTTP/1.1
Host: cinemaniacs.yoo7.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/t248-topic
Cookie: exadd=166259
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Sep 2022 18:57:16 GMT
content-type: text/css
content-length: 54421
last-modified: Wed, 07 Sep 2022 00:00:00 GMT
content-security-policy: upgrade-insecure-requests
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache-ma: HIT
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=

142.250.74.72

200 OK

36 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1615)
Size
36 kB (35633 bytes)
Hash
672f7f97a8011130f124e5d2cfa14d41
6c7bb15cd6ba3c9a6b120c07ca31acec0f3e4b94
ecab643aeab3faf70b2f8cc6b517c77df71e1c8cbcba8727433a9fdf46b14cda

HTTP Headers

GET /gtag/js?id= HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Sep 2022 18:57:15 GMT
expires: Wed, 07 Sep 2022 18:57:15 GMT
cache-control: private, max-age=900
last-modified: Wed, 07 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 35633
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

2img.net/i/fa/revaz-blue/icon_mini_login.gif

104.21.235.175

200 OK

233 B

URL HTTP/2
2img.net/i/fa/revaz-blue/icon_mini_login.gif
IP
104.21.235.175:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 12 x 13\012- data
Size
233 B (233 bytes)
Hash
8b4d1d131bc9fd7e6cc7227a0590279a
c566e5d54df6f5ff4ebd4213145d0c50bbe8ec01
43948109d5e4a7b1bbaf5cf77b55648eff0eea3f1a61ae5e1265e50a7cfebe75

HTTP Headers

GET /i/fa/revaz-blue/icon_mini_login.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Sep 2022 18:57:15 GMT
content-type: image/gif
content-length: 233
last-modified: Sat, 01 Jan 2005 00:00:00 GMT
etag: "41d5e800-e9"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 651253
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BLxxg8Ce4Pm6dbXhFFnoqMmm%2BJ0USyjhEtkiIONRjTNFVzMiGX1EKj8OnA3ibVv59mt9BBJexDpCqn7AGDhpyRJ8VLLy0kTkAk454BDwbkpIXurhi3wihdTflQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7471ab49da78dcf3-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-144347007-1

142.250.74.72

200 OK

42 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-144347007-1
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1615)
Size
42 kB (41915 bytes)
Hash
35b01cdc689a2d9275d230ae3930e0b1
2802e3f5b7ebf66fffb6cbf61b3b0b00d9ed0ff0
f364d3b20cd7e736554b2e3d781e7669e208d2c3e366bac30b977899891aa567

HTTP Headers

GET /gtag/js?id=UA-144347007-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Sep 2022 18:57:15 GMT
expires: Wed, 07 Sep 2022 18:57:15 GMT
cache-control: private, max-age=900
last-modified: Wed, 07 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41915
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
485a552c0ef9c9af61505281425c1c05
baf0964ea47214dcca0aaa5ca10181dafd403ebe
e92a04fb287e8232efb85e540fc8fedf84188862a2e705da3279e8a2b2a2f5ff

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6227
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 18:57:15 GMT
Last-Modified: Wed, 07 Sep 2022 17:13:28 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

2img.net/i/empty.gif

104.21.235.175

200 OK

43 B

URL HTTP/2
2img.net/i/empty.gif
IP
104.21.235.175:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277

HTTP Headers

GET /i/empty.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Sep 2022 18:57:15 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 09 May 2016 08:45:50 GMT
etag: "57304e3e-2b"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 659096
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4iKIcOZEwaJPxYbyzCn6G31bVZwchv0rDJYn0YYMsRoBVVAPsY01nsjVQT7MJfdlOgnqKbsK2exrtmSm7QiNOCAs0aPWal5SSgXvXc1pbAoliCjtAgfsrbI7bA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7471ab49da80dcf3-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

2img.net/i/fa/subsilver/icon_gender_male.gif

104.21.235.175

200 OK

142 B

URL HTTP/2
2img.net/i/fa/subsilver/icon_gender_male.gif
IP
104.21.235.175:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 11 x 11\012- data
Size
142 B (142 bytes)
Hash
5ef7a6af0298d7e13a08a8e5afeb1228
78e2ddc2595b7a2975e9b11ef4852f5ac0616616
4bd253445eec78e6f29ec51cfbd53f3b52941a208a4237389209cba55cc7047d

HTTP Headers

GET /i/fa/subsilver/icon_gender_male.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Sep 2022 18:57:15 GMT
content-type: image/gif
content-length: 142
last-modified: Mon, 16 May 2016 11:01:55 GMT
etag: "5739a8a3-8e"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 2243
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nUuYwWKecBm7FMMwml%2BOl0smgAXGBBXD7Gj0EuDjQFn4066mVWFZYKmVK7SRVQK2vmyTgXCaLMxeR65LMlEuQICzB%2BtekveJvdRN5l3yzwBZtda%2Bgbeo%2Ft6McQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7471ab49da82dcf3-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

2img.net/i/fa/icon_minitime.gif

104.21.235.175

200 OK

298 B

URL HTTP/2
2img.net/i/fa/icon_minitime.gif
IP
104.21.235.175:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 12 x 9\012- data
Size
298 B (298 bytes)
Hash
71647c2ce78f706f8b4b0d84b3369cf5
18fe4a449c64acf98e9570486627f29d3884dff9
de0294a906e3fa470d188c8d596e3a5fc3efc59bab8080506015498db73c18e6

HTTP Headers

GET /i/fa/icon_minitime.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Sep 2022 18:57:15 GMT
content-type: image/gif
content-length: 298
last-modified: Sat, 01 Jan 2005 00:00:00 GMT
etag: "41d5e800-12a"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 1476
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZqAMIrNGpqvLuktm3IvQVD%2Bl78G%2FWlSLDUnFa2VvHtOz%2FoOuVSawqmPkoshTLclZn3N%2FKycdETCVDfd9ePrS6hmgWRdCtyJiMn6zWRAEGJYjsFlm%2BU3rTPgf0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7471ab49da86dcf3-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

2img.net/i/fa/revaz-blue/icon_mini_register.gif

104.21.235.175

200 OK

224 B

URL HTTP/2
2img.net/i/fa/revaz-blue/icon_mini_register.gif
IP
104.21.235.175:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 12 x 13\012- data
Size
224 B (224 bytes)
Hash
9ccf2a66475eb8d0bf03f18ef29718f6
8ae339aa72ba5d7c6b36f8b2037973c0faacaa66
65d0108f7aefca880b51c36a0d0800ba9c319c82f3e05db601ca8574d3daac9b

HTTP Headers

GET /i/fa/revaz-blue/icon_mini_register.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Sep 2022 18:57:15 GMT
content-type: image/gif
content-length: 224
last-modified: Sat, 01 Jan 2005 00:00:00 GMT
etag: "41d5e800-e0"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 652410
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6t%2BzbBCFZ0gWMZpjEGsojF2zVjOgUKJsePhAvjUHpnez5PVhptvsj2DEgxeRdtQc7XHS5OtI3Otqtrd95G5cUQwg6Ge3vVx7OofSXbr68BwH17bi951dQPgr1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7471ab49da7ddcf3-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

2img.net/i/fa/revaz-blue/icon_www.gif

104.21.235.175

200 OK

1.2 kB

URL HTTP/2
2img.net/i/fa/revaz-blue/icon_www.gif
IP
104.21.235.175:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 87a, 42 x 15\012- data
Size
1.2 kB (1248 bytes)
Hash
f49c1bc346b9d421be9a693e74973db7
e3edeff3a2048408c6356a8f6ee487288fc6e624
a2217b4ec193df56f1db571ae14493f81d8935439fbab9c5f4c64df3f52216f4

HTTP Headers

GET /i/fa/revaz-blue/icon_www.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Sep 2022 18:57:15 GMT
content-type: image/gif
content-length: 1248
last-modified: Mon, 16 May 2016 11:00:58 GMT
etag: "5739a86a-4e0"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QN%2F2PXmTJCbRdihan%2FnSmPjo2QKzihHebKqJfSLfdnJC2KLxrUiRhYDL13HZgOlV7QOhHHRPMwE8j%2BwYDhQK3gT9b%2FzqbqY26ApUURyPNbYpQncDoFId3xM5xQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7471ab49da87dcf3-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 07 Sep 2022 18:38:18 GMT
Expires: Wed, 07 Sep 2022 19:07:22 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Va_lRzEoDyJh4Lgnn2S8Ywok0Wa1Uzlv61fdA8sElXSjpU8BzhPDig==
Age: 1137

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
521428b0e694b41561bc2ed785219929
45bf3b914325f9d646879bd16bb01feb8f29f2d4
9e2c58593cb9b9baae14e338253ca44b199d965e106ddc70c700f66f0203465a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 18:57:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
de50d39318f58f490483c86aecd38e4c
f92177f493cb7bab9c5ce67f6b41f9214920907d
8bca037d0d46ddd72b4c1bbfc2829f96bc9e7bfb28724af3010f1441d14b7180

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 18:57:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

choices.consentframework.com/js/pa/24697/c/IxWav/cmp

212.129.3.112

200 OK

139 kB

URL HTTP/1.1
choices.consentframework.com/js/pa/24697/c/IxWav/cmp
IP
212.129.3.112:0
ASN
#12876 Online S.a.s.

File type
Unicode text, UTF-8 text, with very long lines (65512), with no line terminators
Size
139 kB (139031 bytes)
Hash
ee433dab5c393d0f8cecf681b0a043a3
ee931012e59fcc8a723edc6d7cb980638d94e77e
120552aa9c053a123d5a1b61b34925b7b0eff7d3c4c0ffa2b67bf1265cf6e8fd

HTTP Headers

GET /js/pa/24697/c/IxWav/cmp HTTP/1.1
Host: choices.consentframework.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Wed, 07 Sep 2022 18:57:15 GMT
Content-Type: text/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: private, max-age=3600
Set-Cookie: euconsent-v2=NO_CONSENT; Path=/; Domain=consentframework.com; Expires=Wed, 07 Sep 2022 19:02:15 GMT; Secure; SameSite=None
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload
Content-Encoding: gzip

cache.consentframework.com/js/pa/24697/c/IxWav/stub

104.26.5.102

200 OK

2.9 kB

URL HTTP/2
cache.consentframework.com/js/pa/24697/c/IxWav/stub
IP
104.26.5.102:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1309), with no line terminators
Size
2.9 kB (2929 bytes)
Hash
d694636ad379625f4fda7b6bdbb6ce25
c06ead4258ccbd1d30253b1aaf80c120405c62a3
f16d7402ca9907f1d9a9af6eb92c2eac724cae4c3e30f1d96629bcdeb7f10ac7

HTTP Headers

GET /js/pa/24697/c/IxWav/stub HTTP/1.1
Host: cache.consentframework.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 07 Sep 2022 18:57:15 GMT
content-type: text/javascript; charset=UTF-8
cache-control: max-age=3600
strict-transport-security: max-age=15724800; includeSubDomains; preload
cf-cache-status: HIT
age: 1627
last-modified: Wed, 07 Sep 2022 18:30:08 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KTFiAYRIstS%2BdBachHBUlXJopeGf99BTZfpKbRlXpvuBjQq9FnypcghiBO7Y8RiyTjTSSw7GhA%2B1fOAE24BJRSJa3uunBIDZaYlbscqrJKGDDLNtqGjiidtzWF6v%2BKkSNpkd4Q93yqBY0IgQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7471ab494ae1b52d-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a81b0f5b5d11bf95fc176833b2f6e808
5b194aa5a8bf3a6b0d117ccfd0f487f6db0587b5
8f6ae83f2b85db7174bbbc6553e2921617b5c8a401315e76082682949a0bd9cc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5458
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 18:57:16 GMT
Last-Modified: Wed, 07 Sep 2022 17:26:18 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
06e11f779530fd88c439e0cdb6cec98f
58c3642dc038b37d5a37ef6ed11ff6d02857b2ac
cacdaa348b3a3d140919e8f0953d72dd834c721ecc62759ebda619ebed853721

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACDAA348B3A3D140919E8F0953D72DD834C721ECC62759EBDA619EBED853721"
Last-Modified: Wed, 07 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8909
Expires: Wed, 07 Sep 2022 21:25:45 GMT
Date: Wed, 07 Sep 2022 18:57:16 GMT
Connection: keep-alive

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20006 bytes)
Hash
56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Wed, 07 Sep 2022 18:41:12 GMT
expires: Wed, 07 Sep 2022 20:41:12 GMT
cache-control: public, max-age=7200
age: 964
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

stootsou.net/pfe/current/tag.min.js?z=2308013

139.45.197.250

200 OK

31 kB

URL HTTP/2
stootsou.net/pfe/current/tag.min.js?z=2308013
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
C source, Unicode text, UTF-8 text, with very long lines (50593)
Size
31 kB (30960 bytes)
Hash
464e534942abc96231f5c3de37c5f73f
264031a3ab3eac42fbea2064b564c3b943a1b5eb
e90db666460f07eb59a94f62207d5ab37fb4039c933a7c6a13a70f1616f4924d

HTTP Headers

GET /pfe/current/tag.min.js?z=2308013 HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:16 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 12:32:41 GMT
etag: W/"6315ec69-3a38"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.viglink.com/api/vglnk.js

104.16.163.13

200 OK

29 kB

URL HTTP/2
cdn.viglink.com/api/vglnk.js
IP
104.16.163.13:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (693)
Size
29 kB (28567 bytes)
Hash
072eaf64a771815874455704fca9301b
6c6226d00f14bb800cd4390b3cd42df941be43b1
bb35c8c300bd1acfe7ed86eb988f74ff2e8d86a4fb0409c5d78a890f9fd14b8e

HTTP Headers

GET /api/vglnk.js HTTP/1.1
Host: cdn.viglink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 07 Sep 2022 18:57:16 GMT
content-type: text/javascript
content-length: 28567
x-amz-id-2: OeTetEsBasSxUsBOFuNvzYCJWwDeidt7U9Wf3wCp5zeJCK2HhBObfGX+N/Ko8tx+E9Zgff6jUt0=
x-amz-request-id: S1072JJNTPDX98ZC
last-modified: Wed, 02 Dec 2020 18:57:12 GMT
etag: "072eaf64a771815874455704fca9301b"
cache-control: public, max-age=604800
content-encoding: gzip
cf-cache-status: HIT
age: 760038
expires: Wed, 14 Sep 2022 18:57:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7471ab4d3b520afa-OSL
X-Firefox-Spdy: h2

choices.consentframework.com/api/v1/public/profile/check?origin=https://cinemaniacs.yoo7.com

212.129.3.112

200 OK

17 B

URL HTTP/1.1
choices.consentframework.com/api/v1/public/profile/check?origin=https://cinemaniacs.yoo7.com
IP
212.129.3.112:0
ASN
#12876 Online S.a.s.

File type
JSON data\012- , ASCII text, with no line terminators
Size
17 B (17 bytes)
Hash
0bd75264337702d501fe87ce0b52dc08
97cc20d9be99aab0ec65848e65d7e3b241788d73
ab140244cd2fd2892fec183c503c0f9522f9935f5e6c5ace01e92924a7e2e90e

HTTP Headers

GET /api/v1/public/profile/check?origin=https://cinemaniacs.yoo7.com HTTP/1.1
Host: choices.consentframework.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cinemaniacs.yoo7.com/
Origin: https://cinemaniacs.yoo7.com
Connection: keep-alive
Cookie: euconsent-v2=NO_CONSENT
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Wed, 07 Sep 2022 18:57:16 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 17
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Referer,Origin
Access-Control-Allow-Methods: GET,OPTIONS
Access-Control-Allow-Origin: https://cinemaniacs.yoo7.com
Cache-Control: private, max-age=86400
X-Xss-Protection: 0
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload

push.services.mozilla.com/

35.160.51.228

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.160.51.228:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Kt2oO3G2NOBA23Td5l8Tpg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: f/AL103ujmhxZQn7IgpFLeKazq8=

stootsou.net/zone?pub=0&zone_id=2308013&is_mobile=false&domain=cinemaniacs.yoo7.com&var=&ymid=&var_3=

139.45.197.250

200 OK

758 B

URL HTTP/2
stootsou.net/zone?pub=0&zone_id=2308013&is_mobile=false&domain=cinemaniacs.yoo7.com&var=&ymid=&var_3=
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (757)
Size
758 B (758 bytes)
Hash
ca477123debbeb58ce9dd6b10dee2c4c
ba1f5b7314104ae3c8159daa5f55552bd21e14de
a5d6409e33d4e4a0cc484179d31e845921596d7eb46a31171094745a40efff61

HTTP Headers

GET /zone?pub=0&zone_id=2308013&is_mobile=false&domain=cinemaniacs.yoo7.com&var=&ymid=&var_3= HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cinemaniacs.yoo7.com/
Origin: https://cinemaniacs.yoo7.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:16 GMT
content-type: application/json; charset=utf-8
content-length: 758
x-trace-id: f537e48f4a1ab7be8678c6661fcd590b
access-control-allow-origin: https://cinemaniacs.yoo7.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

cdn.taboola.com/libtrc/impl.20220907-23-RELEASE.js

151.101.85.44

200 OK

144 kB

URL HTTP/2
cdn.taboola.com/libtrc/impl.20220907-23-RELEASE.js
IP
151.101.85.44:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65508)
Size
144 kB (144476 bytes)
Hash
eefc048c9b6fc80b60f15eab8160f399
964af77055fe0f55d504e21eb6612d5d08b8a84c
bc860965a43c4d7fdb05dc9f6813fc9f63002ea336f11d41a301ac514717f863

HTTP Headers

GET /libtrc/impl.20220907-23-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: L+nZkulSI6zI0N4NMwbrBwSDHdisJ0dPVA3Z8ew0Po0i+HWEKoZvGIg6XSTbMf2pobsCGB9x5a0=
x-amz-request-id: 91CENBXWMZBX81R0
last-modified: Wed, 07 Sep 2022 14:36:57 GMT
etag: "eefc048c9b6fc80b60f15eab8160f399"
content-encoding: br
x-amz-version-id: KIlNoJgdy3aI8XCkRuwylYbMi9z8DWC2
content-type: application/javascript
accept-ranges: bytes
date: Wed, 07 Sep 2022 18:57:16 GMT
via: 1.1 varnish
age: 15614
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 9278
x-timer: S1662577037.601635,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 90
server: AmazonS3-br
content-length: 144476
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
977ef41ba9ac21a2128d012bd58ff480
385afd61e7fcf7fedbe43e013f6d113a59f1cc9b
ffa39f99f3a8a847112833792f684746f8c1d79e8b4683e59b328eb9f6578207

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 07 Sep 2022 18:57:16 GMT
Last-Modified: Wed, 07 Sep 2022 17:25:26 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: WPpWFe8Cy5HLAL3Dn1lW11Uo8TEpTim4mpN3KQX23iZbLkkbYtLIrA==
Age: 5510

choices.consentframework.com/api/v1/public/v2/tcstring

212.129.3.112

200 OK

25 B

URL HTTP/1.1
choices.consentframework.com/api/v1/public/v2/tcstring
IP
212.129.3.112:0
ASN
#12876 Online S.a.s.

File type
JSON data\012- , ASCII text, with no line terminators
Size
25 B (25 bytes)
Hash
1c7be6c2029fd0db7b831a9e8359395f
48818c4617f2dac593cc84c8f39244f24be3760e
6d24890b5608b6d182f02198897f50f220a40b66a08751a443ac714bf6f86602

HTTP Headers

GET /api/v1/public/v2/tcstring HTTP/1.1
Host: choices.consentframework.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cinemaniacs.yoo7.com/
Origin: https://cinemaniacs.yoo7.com
Connection: keep-alive
Cookie: euconsent-v2=NO_CONSENT
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Wed, 07 Sep 2022 18:57:16 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 25
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Referer,Origin
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: https://cinemaniacs.yoo7.com
X-Xss-Protection: 0
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c1437437047f21dec9a10a2ea619f302
2312d50c7870f3fee0f3b837ce466eac9f60d23a
81e03c89f4b0a326ef9784b89eff6bba41bc940a4d7b54957ad1964d01db3a79

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 18:57:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

api.viglink.com/api/ping

176.34.209.96

200 OK

260 B

URL HTTP/1.1
api.viglink.com/api/ping
IP
176.34.209.96:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
260 B (260 bytes)
Hash
5608e628ef036922e34e065b1ceeea6c
e239fcfa4d0d0448c483f37e709d56230ea82e2c
a18b7a817ca2eac01cd2287c4f70d72bb1f7157e5dbb6f57f6790384b78d62a1

HTTP Headers

POST /api/ping HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 139
Origin: https://cinemaniacs.yoo7.com
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://cinemaniacs.yoo7.com
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Date: Wed, 07 Sep 2022 18:57:16 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 260
Connection: keep-alive

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-144347007-1&cid=1936371198.1662577030&jid=1596159306&gjid=1521275098&_gid=813544892.1662577030&_u=YEBAAUAAAAAAAC~&z=555727762

142.251.1.156

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-144347007-1&cid=1936371198.1662577030&jid=1596159306&gjid=1521275098&_gid=813544892.1662577030&_u=YEBAAUAAAAAAAC~&z=555727762
IP
142.251.1.156:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-144347007-1&cid=1936371198.1662577030&jid=1596159306&gjid=1521275098&_gid=813544892.1662577030&_u=YEBAAUAAAAAAAC~&z=555727762 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://cinemaniacs.yoo7.com
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://cinemaniacs.yoo7.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 07 Sep 2022 18:57:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b71e8c67bf261558f8dccdc89a2d8cb1
cbb6ec9962a4aadbe3c044d883f912ba19fd6416
64e0a6d22efc79e0f7209188cd6d8a47d452fe009cd320fb0c64a78bd60b8694

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64E0A6D22EFC79E0F7209188CD6D8A47D452FE009CD320FB0C64A78BD60B8694"
Last-Modified: Wed, 07 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7942
Expires: Wed, 07 Sep 2022 21:09:38 GMT
Date: Wed, 07 Sep 2022 18:57:16 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c1437437047f21dec9a10a2ea619f302
2312d50c7870f3fee0f3b837ce466eac9f60d23a
81e03c89f4b0a326ef9784b89eff6bba41bc940a4d7b54957ad1964d01db3a79

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 18:57:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

choices.consentframework.com/api/v1/public/consent-string

212.129.3.112

200 OK

0 B

URL HTTP/1.1
choices.consentframework.com/api/v1/public/consent-string
IP
212.129.3.112:0
ASN
#12876 Online S.a.s.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/v1/public/consent-string HTTP/1.1
Host: choices.consentframework.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://cinemaniacs.yoo7.com/
Origin: https://cinemaniacs.yoo7.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Wed, 07 Sep 2022 18:57:17 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload

choices.consentframework.com/api/v1/public/user-action

212.129.3.112

200 OK

0 B

URL HTTP/1.1
choices.consentframework.com/api/v1/public/user-action
IP
212.129.3.112:0
ASN
#12876 Online S.a.s.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/v1/public/user-action HTTP/1.1
Host: choices.consentframework.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://cinemaniacs.yoo7.com/
Origin: https://cinemaniacs.yoo7.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Wed, 07 Sep 2022 18:57:17 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
bbe175f5ab023b4eb7e734fa1c22ed9b
361ed1e187618bec23f0b08aa254ab7620144b22
9aa59c5803e22b2c1f07ba49c2834a246b09f1f53b9de8a2b9eee8fd80cf9301

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3188
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 18:57:17 GMT
Last-Modified: Wed, 07 Sep 2022 18:04:09 GMT
Server: ECS (amb/6BB0)
X-Cache: HIT
Content-Length: 471

choices.consentframework.com/api/v1/public/consent-string

212.129.3.112

200 OK

248 B

URL HTTP/1.1
choices.consentframework.com/api/v1/public/consent-string
IP
212.129.3.112:0
ASN
#12876 Online S.a.s.

File type
JSON data\012- , ASCII text, with no line terminators
Size
248 B (248 bytes)
Hash
4acdcfa1c6d60676602530e9aed1cbd6
5f10ffa875e1942df10669235186ddee1e412403
f4769876f49b8166241374f6cfb5566f2dd0419d5b2ef93e05ff1258f3666be8

HTTP Headers

POST /api/v1/public/consent-string HTTP/1.1
Host: choices.consentframework.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cinemaniacs.yoo7.com/
Content-Type: application/json
Origin: https://cinemaniacs.yoo7.com
Content-Length: 321
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Wed, 07 Sep 2022 18:57:17 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 248
Connection: keep-alive
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload

choices.consentframework.com/api/v1/public/user-action

212.129.3.112

200 OK

0 B

URL HTTP/1.1
choices.consentframework.com/api/v1/public/user-action
IP
212.129.3.112:0
ASN
#12876 Online S.a.s.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/v1/public/user-action HTTP/1.1
Host: choices.consentframework.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cinemaniacs.yoo7.com/
Content-Type: application/json
Origin: https://cinemaniacs.yoo7.com
Content-Length: 159
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Wed, 07 Sep 2022 18:57:17 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload

stootsou.net/custom

139.45.197.250

200 OK

0 B

URL HTTP/2
stootsou.net/custom
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://cinemaniacs.yoo7.com/
Origin: https://cinemaniacs.yoo7.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:17 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://cinemaniacs.yoo7.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2

stootsou.net/custom

139.45.197.250

200 OK

0 B

URL HTTP/2
stootsou.net/custom
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://cinemaniacs.yoo7.com/
Origin: https://cinemaniacs.yoo7.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:17 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://cinemaniacs.yoo7.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2

stootsou.net/custom

139.45.197.250

200 OK

0 B

URL HTTP/2
stootsou.net/custom
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://cinemaniacs.yoo7.com/
Origin: https://cinemaniacs.yoo7.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:17 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://cinemaniacs.yoo7.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2

tzegilo.com/stattag.js

172.67.205.240

200 OK

12 kB

URL HTTP/2
tzegilo.com/stattag.js
IP
172.67.205.240:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, Unicode text, UTF-8 text, with very long lines (32205), with no line terminators
Size
12 kB (11627 bytes)
Hash
ee2e7505bbcd0d45144f7c86af454368
8b2e1efe724e670cb0dc59af381b93cfff0f2f8f
1655cc0137225bcae3ac00a87647b572f6e716242257e449ef79f81b6c3857d3

HTTP Headers

GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 07 Sep 2022 18:57:17 GMT
content-type: application/javascript
last-modified: Wed, 07 Sep 2022 18:54:39 GMT
etag: W/"6318e8ef-7dd1"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 121
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nnUvSi5s38C3YSfERFQBlVRw1hLHyMy9%2BOKTYl9xX65OVZaMXVGmWXADpgJQHS8ap%2BytqetmF5pPPJKsZ0%2BJ%2BF8qLjmcO3CpeLtidJEJm7IdxGEEra%2B82oH90blkhQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7471ab51caea0b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

stootsou.net/custom

139.45.197.250

200 OK

39 B

URL HTTP/2
stootsou.net/custom
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cinemaniacs.yoo7.com/
Content-Type: application/json
Origin: https://cinemaniacs.yoo7.com
Content-Length: 751
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:17 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 9bf52fdebe2d807740b3e6295a662c8c
access-control-allow-origin: https://cinemaniacs.yoo7.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

stootsou.net/custom

139.45.197.250

200 OK

39 B

URL HTTP/2
stootsou.net/custom
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cinemaniacs.yoo7.com/
Content-Type: application/json
Origin: https://cinemaniacs.yoo7.com
Content-Length: 466
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:17 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 71621a38cad4f3c5978519a5e8672eec
access-control-allow-origin: https://cinemaniacs.yoo7.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
912f9a32166cf6d4e458969545df501d
6cecdd7246361b80f2464910ba31ee1f4381ee7d
58d632863a6aab3b308ad380f47595e74120f4495f48e83e89647e4f42533fa3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 07 Sep 2022 18:57:17 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 05 Sep 2022 06:25:21 GMT
Expires: Mon, 12 Sep 2022 06:25:20 GMT
Etag: "6cecdd7246361b80f2464910ba31ee1f4381ee7d"
Cache-Control: max-age=386282,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7471ab525932b511-OSL

my.rtmark.net/gid.js?userId=e78196898d124b32a375ad60d757879d

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?userId=e78196898d124b32a375ad60d757879d
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
9534c58175c10dfd659722117a1dce8e
744499ef6d05b27ef6ba3add870cdad1e4163e9d
4a63ce54c244dcdc303fe4b037f5e248618598e06e813fc2272f1d0bc5eb91ca

HTTP Headers

GET /gid.js?userId=e78196898d124b32a375ad60d757879d HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cinemaniacs.yoo7.com
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:17 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://cinemaniacs.yoo7.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=e78196898d124b32a375ad60d757879d; expires=Thu, 07 Sep 2023 18:57:17 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

stootsou.net/custom

139.45.197.250

200 OK

39 B

URL HTTP/2
stootsou.net/custom
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cinemaniacs.yoo7.com/
Content-Type: application/json
Origin: https://cinemaniacs.yoo7.com
Content-Length: 395
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:17 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 8d1a6874c91658e8c370db400e69b75a
access-control-allow-origin: https://cinemaniacs.yoo7.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=49e31b8ef24a40718711f742671e75b1&zoneId=2308013&checkDuplicate=true&ymid=&var=

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=49e31b8ef24a40718711f742671e75b1&zoneId=2308013&checkDuplicate=true&ymid=&var=
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
9534c58175c10dfd659722117a1dce8e
744499ef6d05b27ef6ba3add870cdad1e4163e9d
4a63ce54c244dcdc303fe4b037f5e248618598e06e813fc2272f1d0bc5eb91ca

HTTP Headers

GET /gid.js?pub=0&userId=49e31b8ef24a40718711f742671e75b1&zoneId=2308013&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cinemaniacs.yoo7.com/
Origin: https://cinemaniacs.yoo7.com
Connection: keep-alive
Cookie: ID=e78196898d124b32a375ad60d757879d
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:17 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://cinemaniacs.yoo7.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=e78196898d124b32a375ad60d757879d; expires=Thu, 07 Sep 2023 18:57:17 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

js.cookieless-data.com/GS.d?pa=24697&uf_bday=&uf_gender=&cmp=0&u=https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic&r=&rand=1662577030056&gdpr=1&gdpr_consent=CPe7rYAPe7rYABcAIBENCfCgAAAAAH_AABpwIDwAAQHgagALAAeABUAC4AGQAOQAfACAAEkAMQAygBoAGoAPAAfQBEAEUAJgATwAxABmADmAH4AQgAjgBMAClAFvAMoAywB3AD9AIGAQgAi0BHAEdAKWAVcAuoBgQDRAGvANoAdUA8gB_wEegJiAU0AtQBeYDBAGGgMfAZIA4sBygDsAAA&globalscope=false&cookieless_optout=0&tbp=true

51.158.29.12

200 OK

0 B

URL HTTP/1.1
js.cookieless-data.com/GS.d?pa=24697&uf_bday=&uf_gender=&cmp=0&u=https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic&r=&rand=1662577030056&gdpr=1&gdpr_consent=CPe7rYAPe7rYABcAIBENCfCgAAAAAH_AABpwIDwAAQHgagALAAeABUAC4AGQAOQAfACAAEkAMQAygBoAGoAPAAfQBEAEUAJgATwAxABmADmAH4AQgAjgBMAClAFvAMoAywB3AD9AIGAQgAi0BHAEdAKWAVcAuoBgQDRAGvANoAdUA8gB_wEegJiAU0AtQBeYDBAGGgMfAZIA4sBygDsAAA&globalscope=false&cookieless_optout=0&tbp=true
IP
51.158.29.12:0
ASN
#12876 Online S.a.s.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /GS.d?pa=24697&uf_bday=&uf_gender=&cmp=0&u=https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic&r=&rand=1662577030056&gdpr=1&gdpr_consent=CPe7rYAPe7rYABcAIBENCfCgAAAAAH_AABpwIDwAAQHgagALAAeABUAC4AGQAOQAfACAAEkAMQAygBoAGoAPAAfQBEAEUAJgATwAxABmADmAH4AQgAjgBMAClAFvAMoAywB3AD9AIGAQgAi0BHAEdAKWAVcAuoBgQDRAGvANoAdUA8gB_wEegJiAU0AtQBeYDBAGGgMfAZIA4sBygDsAAA&globalscope=false&cookieless_optout=0&tbp=true HTTP/1.1
Host: js.cookieless-data.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Wed, 07 Sep 2022 18:57:17 GMT
Content-Length: 0
Connection: keep-alive
Expires: Tue, 01 Jan 2000 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
X-Xss-Protection: 0
Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
P3p: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
5431c571e352d86a0440c1f1b07afbe3
4c5bc75ca69d522ae90263adf3d9b81aea605e72
1031d2d3188c564b436f3ac0a85e5a13b7e3c7a91507638c3f6d4a3a05a6a19f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 07 Sep 2022 18:57:17 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 01:33:17 GMT
Expires: Tue, 13 Sep 2022 01:33:16 GMT
Etag: "4c5bc75ca69d522ae90263adf3d9b81aea605e72"
Cache-Control: max-age=455158,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7471ab532a64b511-OSL

api.viglink.com/api/sync.gif?key=74bad24252620514d1244cfba01f2ee2

176.34.209.96

200 OK

43 B

URL HTTP/1.1
api.viglink.com/api/sync.gif?key=74bad24252620514d1244cfba01f2ee2
IP
176.34.209.96:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7

HTTP Headers

GET /api/sync.gif?key=74bad24252620514d1244cfba01f2ee2 HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: image/gif;charset=UTF-8
Date: Wed, 07 Sep 2022 18:57:17 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 43
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f53ebd30fa3351f320ca2c8764734ff1
9205e35b1cef1602414af2350ba6205f4129234c
d486cc21bbc47eac5718644e1b280d12a5a4bc92ec97a0e88f184bf6422cb6f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 18:57:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
21d1b5be072df45253749eeb3290be82
4ac9978797c085289b9fcc2fe9a57b619e1c78c9
9ea779e1ad86a4a7c403b574908e2dc60d079b366ab1cf439b34c73c9a9c64c9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 18:57:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f

139.45.195.253

200 OK

12 B

URL HTTP/1.1
datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP
139.45.195.253:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed

HTTP Headers

POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cinemaniacs.yoo7.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://cinemaniacs.yoo7.com
Content-Length: 1518
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Wed, 07 Sep 2022 18:57:17 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://cinemaniacs.yoo7.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
7ddc6e0c8998c6173816250da95b0ee5
9153739906c8c8124460d3361e0403c1f85a313a
6799eb82f783dc511ba82cc08b9e182469e99a7f67f85073fd88c110930f26b9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5408
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 18:57:17 GMT
Last-Modified: Wed, 07 Sep 2022 17:27:09 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 313

api.viglink.com/api/domains

176.34.209.96

200 OK

41 B

URL HTTP/1.1
api.viglink.com/api/domains
IP
176.34.209.96:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
41 B (41 bytes)
Hash
c6a06a1bac5dc68caa2e6fe85c1d047c
83d78fb65804de71ba1a9140ae60a15b5f70a0da
b6b97f9bcae100ce3596fe43b76ad71c8a8992f3f40cc06941b4a5e1e2362b12

HTTP Headers

POST /api/domains HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 290
Origin: https://cinemaniacs.yoo7.com
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://cinemaniacs.yoo7.com
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Date: Wed, 07 Sep 2022 18:57:17 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 41
Connection: keep-alive

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-144347007-1&cid=1936371198.1662577030&jid=1596159306&_u=YEBAAUAAAAAAAC~&z=1531068753

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-144347007-1&cid=1936371198.1662577030&jid=1596159306&_u=YEBAAUAAAAAAAC~&z=1531068753
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-144347007-1&cid=1936371198.1662577030&jid=1596159306&_u=YEBAAUAAAAAAAC~&z=1531068753 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Sep 2022 18:57:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-144347007-1&cid=1936371198.1662577030&jid=1596159306&_u=YEBAAUAAAAAAAC~&z=1531068753

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-144347007-1&cid=1936371198.1662577030&jid=1596159306&_u=YEBAAUAAAAAAAC~&z=1531068753
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-144347007-1&cid=1936371198.1662577030&jid=1596159306&_u=YEBAAUAAAAAAAC~&z=1531068753 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 07 Sep 2022 18:57:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e4a401d8bdc2cdd6ac368bb2e48299a3
c9363e3a61debb8b753577ccaa56c5aa82074b2f
9260c2db15c94023fdce9abf1325e65ec4e349f6cd75eb72ab118863ca2609d6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9260C2DB15C94023FDCE9ABF1325E65EC4E349F6CD75EB72AB118863CA2609D6"
Last-Modified: Wed, 07 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13228
Expires: Wed, 07 Sep 2022 22:37:45 GMT
Date: Wed, 07 Sep 2022 18:57:17 GMT
Connection: keep-alive

bidder.criteo.com/cdb?ptv=129&profileId=206&cb=54378302724

178.250.2.131

204 No Content

0 B

URL HTTP/2
bidder.criteo.com/cdb?ptv=129&profileId=206&cb=54378302724
IP
178.250.2.131:0
ASN
#44788 Criteo SA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdb?ptv=129&profileId=206&cb=54378302724 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 779
Origin: https://cinemaniacs.yoo7.com
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Wed, 07 Sep 2022 18:57:16 GMT
vary: Origin
server: Finatra
timing-allow-origin: *
access-control-allow-origin: https://cinemaniacs.yoo7.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

trc-events.taboola.com/forumotion-ar/log/2/debug?tim=18%3A57%3A09.996&type=usage&msg=rtus&llvl=2&id=7962&cv=20220907-23-RELEASE&lt=deflated&file=rtus.js&method=injectRtus&position=gdprV2notTriggerRtus&extraData=%7B%7D

141.226.228.48

204 No Content

0 B

URL HTTP/2
trc-events.taboola.com/forumotion-ar/log/2/debug?tim=18%3A57%3A09.996&type=usage&msg=rtus&llvl=2&id=7962&cv=20220907-23-RELEASE&lt=deflated&file=rtus.js&method=injectRtus&position=gdprV2notTriggerRtus&extraData=%7B%7D
IP
141.226.228.48:0
ASN
#200478 Taboola.com ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /forumotion-ar/log/2/debug?tim=18%3A57%3A09.996&type=usage&msg=rtus&llvl=2&id=7962&cv=20220907-23-RELEASE&lt=deflated&file=rtus.js&method=injectRtus&position=gdprV2notTriggerRtus&extraData=%7B%7D HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx
date: Wed, 07 Sep 2022 18:57:17 GMT
x-fastly-to-nlb-rtt: 22897
access-control-allow-credentials: true
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f53ebd30fa3351f320ca2c8764734ff1
9205e35b1cef1602414af2350ba6205f4129234c
d486cc21bbc47eac5718644e1b280d12a5a4bc92ec97a0e88f184bf6422cb6f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 18:57:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

api.viglink.com/api/sync.js?key=74bad24252620514d1244cfba01f2ee2

176.34.209.96

200 OK

43 B

URL HTTP/1.1
api.viglink.com/api/sync.js?key=74bad24252620514d1244cfba01f2ee2
IP
176.34.209.96:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7

HTTP Headers

GET /api/sync.js?key=74bad24252620514d1244cfba01f2ee2 HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: image/gif;charset=UTF-8
Date: Wed, 07 Sep 2022 18:57:17 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 43
Connection: keep-alive

static.criteo.net/images/pixel.gif?ch=2

178.250.2.130

200 OK

43 B

URL HTTP/2
static.criteo.net/images/pixel.gif?ch=2
IP
178.250.2.130:0
ASN
#44788 Criteo SA

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /images/pixel.gif?ch=2 HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:17 GMT
content-type: image/gif
content-length: 43
last-modified: Tue, 09 Dec 2008 16:52:36 GMT
etag: "493ea254-2b"
expires: Sat, 02 Sep 2023 18:57:17 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8fc7316fab55e89a81536e926eab6f83
7fcab743b176312e76999b39a1b2a3b97dbeb10f
8178b9805611209f5c47dce32da555117870a90648e026d08cc691a4103169a7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Sep 2022 18:57:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

static.criteo.net/images/pixel.gif?ch=1

178.250.2.130

200 OK

43 B

URL HTTP/2
static.criteo.net/images/pixel.gif?ch=1
IP
178.250.2.130:0
ASN
#44788 Criteo SA

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /images/pixel.gif?ch=1 HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:17 GMT
content-type: image/gif
content-length: 43
last-modified: Tue, 09 Dec 2008 16:52:36 GMT
etag: "493ea254-2b"
expires: Sat, 02 Sep 2023 18:57:17 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6015
Expires: Wed, 07 Sep 2022 20:37:32 GMT
Date: Wed, 07 Sep 2022 18:57:17 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6015
Expires: Wed, 07 Sep 2022 20:37:32 GMT
Date: Wed, 07 Sep 2022 18:57:17 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6015
Expires: Wed, 07 Sep 2022 20:37:32 GMT
Date: Wed, 07 Sep 2022 18:57:17 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12661 bytes)
Hash
79f4356c488498012cc7fc03be21e3df
dd9cd9b711d7112efa85eff8a798346dbd7d5f5f
ebd84bf1db6b39b92be1020c7ea5c32eaa23dfb347ec83941d5bc56e80855ebc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12661
x-amzn-requestid: 71ef9e09-ccf1-4930-865d-665ece4bf3a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3hXnFnXIAMFqKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312e296-627daf7c7ad3e23a60b183cd;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 05:13:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: xwunW741LulZXvM0har5nqrcCiyYoUwvhCWiPsEvs5P2VKSe476_Cw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:38:56 GMT
etag: "dd9cd9b711d7112efa85eff8a798346dbd7d5f5f"
content-type: image/jpeg
age: 73101
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6214 bytes)
Hash
f922505178de0cea92eedcfda85a9f67
50f1459de01174e594e03e7df4dfaa8eb1798672
981cd58768d6ad841673add855ddcc7106fbc85de05db9a1bd2d6bc8928b4c2c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 05:10:03 GMT
age: 49634
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4805 bytes)
Hash
4f29d8aaae2d67c27c58001e7553dea7
5200b601017ce86614783b76fd2a775c1c48d4e9
6b55c4d692cf584e0319b07251d9845749fe8954062dab66e003dd2706451504

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4805
x-amzn-requestid: 6db42fa4-5a04-4368-b5cb-ea8f70d83ead
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XmxSRFp7oAMFb3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630c2f41-1df42bd2265554de5f47932e;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 03:15:13 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KQ1yb69_uETJJlEIcwsR165zqZuiklGuj3Nn-tyta0e_q8BGqs3cXg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:51:24 GMT
age: 75953
etag: "5200b601017ce86614783b76fd2a775c1c48d4e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0766520-2dbc-4f52-b0e2-1a908af4cd29.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11778 bytes)
Hash
1462b0c8fff091f29c7c5145031c08aa
55154c3878e9650f463805c3829f03a1603f14c1
62f913a6498b21da33451e7cf0e37c5fdef565324bcd35d93cb536527394a3d5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0766520-2dbc-4f52-b0e2-1a908af4cd29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11778
x-amzn-requestid: 2956f23c-8907-48de-b82a-73da9ae1d75e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDqYVHnLoAMFo5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bdce-5d76bbe82dc2823407fe67f3;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:38:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6tTqfG7yRrMw0cMwiQFlu9XuRzxlK7uzTXL-cAMFmrrDrKL9Rd3zqA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:41:20 GMT
age: 76557
etag: "55154c3878e9650f463805c3829f03a1603f14c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fc5baf3-df02-4e98-9312-7ed0ef0b8638.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.6 kB (3604 bytes)
Hash
932f4d99fb1927aae3010e00472b38c3
b95ee99dafca1695d6b86763fce0ceb058f40ef3
da9dbade65f50c1f9ca10956dc863759dd1e0cdf7e28721c79831c288d3ae24e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fc5baf3-df02-4e98-9312-7ed0ef0b8638.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3604
x-amzn-requestid: 31a6c427-a073-4c25-88b1-6ba40a48c359
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDrvyGg6oAMFhDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bffe-36dd49416c62f3811167173d;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:47:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: hNtG651fpAOKjZluawZlbXYFfBUojeSyqB9UMRsAg1Ooxc95mudq7A==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:51:27 GMT
etag: "b95ee99dafca1695d6b86763fce0ceb058f40ef3"
content-type: image/jpeg
age: 75950
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8462 bytes)
Hash
70c964498818242b742575cfa1769b67
cde85fbe83c9e29618edf4e05002bd623e3ab965
bdb0e76fe216f742789ba5a77645c640fe0c7f207707181e618fa31d4cf58605

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b220c7c-ed68-4f56-82a7-5748d044635a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8462
x-amzn-requestid: d75d69c1-87be-47e2-8684-3c9a25edee2f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDqYpFL-IAMFukQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bdd0-1c6d025672cc490734bb54e4;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:38:24 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yzw88Z7aubNEll7UXkvaIWbftL95Y0UDTMnOEh_uhKqWgNycBA9Adw==
via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:41:22 GMT
age: 76555
etag: "cde85fbe83c9e29618edf4e05002bd623e3ab965"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

stootsou.net/event

139.45.197.250

200 OK

0 B

URL HTTP/2
stootsou.net/event
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /event HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://cinemaniacs.yoo7.com/
Origin: https://cinemaniacs.yoo7.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:17 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://cinemaniacs.yoo7.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2

stootsou.net/event

139.45.197.250

200 OK

94 B

URL HTTP/2
stootsou.net/event
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
94 B (94 bytes)
Hash
8098a4e66bed4cf91e45df11f4424a87
dbcf4cc5a1216aa2d25ee1bd1fb6e0374f01d64c
217dd6bc18043fef93edfd96cd375dc12fd3b21c47cce9bbb5ef28878c9fc6b4

HTTP Headers

POST /event HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cinemaniacs.yoo7.com/
Content-Type: application/json
Origin: https://cinemaniacs.yoo7.com
Content-Length: 433
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:17 GMT
content-type: application/json; charset=utf-8
content-length: 94
x-trace-id: 11330f422ce4412fa745eb75f18fdf31
access-control-allow-origin: https://cinemaniacs.yoo7.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

bidder.criteo.com/csm/events

178.250.2.131

204 No Content

0 B

URL HTTP/2
bidder.criteo.com/csm/events
IP
178.250.2.131:0
ASN
#44788 Criteo SA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /csm/events HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 370
Origin: https://cinemaniacs.yoo7.com
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
date: Wed, 07 Sep 2022 18:57:17 GMT
vary: Origin
server: Finatra
timing-allow-origin: *
access-control-allow-origin: https://cinemaniacs.yoo7.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

illiweb.com/rs3/62/frm/jquery/cookie/jquery.cookie.js

172.67.150.97

200 OK

613 B

URL HTTP/2
illiweb.com/rs3/62/frm/jquery/cookie/jquery.cookie.js
IP
172.67.150.97:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1011), with no line terminators
Size
613 B (613 bytes)
Hash
012d5be465263382e0f68d8a2a740dd3
d01ba00376f2b51c8680e066a3927c6438c3dcbd
cf65b48e0f9ec64046935e4ef7c3d5eefc6c8f8c00459aea49c2f0fc840efa41

HTTP Headers

GET /rs3/62/frm/jquery/cookie/jquery.cookie.js HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 07 Sep 2022 18:57:15 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
expires: Wed, 02 Aug 2023 13:50:22 GMT
last-modified: Wed, 09 Sep 2020 09:40:28 GMT
x-cache-ne: HIT
x-cache-pr: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 3128813
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C0T2UOKCx87dkdhDSjMNJbSjHeEvoFUGAPnEn2vM7LtrvwgkDNqw7SKHTSqLGiQmD2%2FeFCvniAPuP7HdrPBhhx0WgobmYMMhSwzKEnZYhJ4eY%2B0ulJUiqGiIhJiKdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7471ab494f1e0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.taboola.com/libtrc/userx.20220907-23-RELEASE.es6.js

151.101.85.44

200 OK

5.4 kB

URL HTTP/2
cdn.taboola.com/libtrc/userx.20220907-23-RELEASE.es6.js
IP
151.101.85.44:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (17842)
Size
5.4 kB (5399 bytes)
Hash
2341d195b17a21019990e98752f1f578
117393a3bfc8defd82db3a72d509529fe7f17333
27ec66ece2d4a6b3f8de0e23a6ab9cbf2237b875ab29bee3eb9ff2a5d3ea86f2

HTTP Headers

GET /libtrc/userx.20220907-23-RELEASE.es6.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://cinemaniacs.yoo7.com/
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
x-amz-id-2: Dmc3IiDYyMAP8MstKNvRsatJ5RKA5bhit5cbzSWOf1zzeoOlVB5Y2/Al8SQW20l5LaDYUEa7t68=
x-amz-request-id: ES0YXNBKDT39W58X
x-amz-replication-status: PENDING
last-modified: Wed, 07 Sep 2022 15:06:38 GMT
etag: "2b6e0f6fba49246968783584040a9edc"
x-amz-version-id: qNNbRs86TjVPoFU6c8MTw77ivMCHfCwE
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 07 Sep 2022 18:57:22 GMT
via: 1.1 varnish
age: 13838
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 1659
x-timer: S1662577042.313804,VS0,VE0
cache-control: private,max-age=14400
vary: Accept-Encoding
abp: 90
content-length: 5399
X-Firefox-Spdy: h2

vidstat.taboola.com/lite-unit/1.4.0/UnitWidgetItemDesktop.min.js

151.101.85.44

200 OK

24 kB

URL HTTP/2
vidstat.taboola.com/lite-unit/1.4.0/UnitWidgetItemDesktop.min.js
IP
151.101.85.44:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
24 kB (23743 bytes)
Hash
b06a94b265b5ec3739dab4b38308709c
de2336288983f78217a4cc83755366e583c5920a
066de7eb0d351eda7686b2479b069a600405fed39d38c7b9163a1d3cda84e992

HTTP Headers

GET /lite-unit/1.4.0/UnitWidgetItemDesktop.min.js HTTP/1.1
Host: vidstat.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://cinemaniacs.yoo7.com/
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 31 Mar 2020 13:14:35 GMT
etag: "b683c290896a82c974838a04b4ea4aff"
server: AmazonS3
via: 1.1 ab5e2ae728dfa6338273a7f7bcdc636c.cloudfront.net (CloudFront), 1.1 varnish
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: MZIweMh6K_2wPOZPKtFWYe8OtGrE6VITejN1Z3ieCNY5TY-txAyeXg==
cache-control: public, max-age=2592000
content-encoding: gzip
accept-ranges: bytes
date: Wed, 07 Sep 2022 18:57:22 GMT
age: 1364146
x-served-by: cache-bma1671-BMA
x-cache: Hit from cloudfront, HIT
x-cache-hits: 2775
x-timer: S1662577042.334031,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-headers: *
content-length: 23743
X-Firefox-Spdy: h2

images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_200%2Cw_240%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f80/12/17/34/08/66666610.jpg

151.101.85.44

200 OK

5.5 kB

URL HTTP/2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_200%2Cw_240%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f80/12/17/34/08/66666610.jpg
IP
151.101.85.44:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image\012- data
Size
5.5 kB (5506 bytes)
Hash
932804abcf9bcf2a492bd4be6ce4641c
e19313c2b293b65e5ad611abf89f9c8da46bf7d9
c32351bdd1e948a7e4c03e32926d136a9248f65c8941466c4e2ab8ae9fdb38fc

HTTP Headers

GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_200%2Cw_240%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f80/12/17/34/08/66666610.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://cinemaniacs.yoo7.com/
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 563781716583543293034707868436540449182,378603099105430713408637329582199312940,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 563781716583543293034707868436540449182,378603099105430713408637329582199312940,29ecf9b93bbf306179626feeda1fab70
etag: "8788b5e2f2c56c936894a476a79b01b8"
expiration: expiry-date="Sun, 10 Jul 2022 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Thu, 09 Jun 2022 03:42:14 GMT
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 674
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb801
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 07 Sep 2022 18:57:22 GMT
age: 5622254
x-served-by: cache-iad-kjyo7100129-IAD, cache-iad-kjyo7100090-IAD, cache-lga21938-LGA, cache-iad-kjyo7100074-IAD, cache-bma1671-BMA
x-cache: HIT, HIT, MISS, HIT, HIT
x-cache-hits: 1, 1, 0, 1, 1
x-timer: S1662577042.333998,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_200%2Cw_240%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f80/12/17/34/08/66666610.jpg
x-vcl-time-ms: 1
content-length: 5506
X-Firefox-Spdy: h2

trc.taboola.com/forumotion-ar/trc/3/json?tim=18%3A57%3A14.908&lti=deflated&data=%7B%22id%22%3A630%2C%22ii%22%3A%22%2Ft248-topic%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1662563290549%2C%22vi%22%3A1662577034906%2C%22cv%22%3A%2220220907-23-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22cmps%22%3A0%2C%22ga%22%3Atrue%2C%22tcs%22%3A%22CPe7rYAPe7rYABcAIBENCfCgAAAAAH_AABpwIDwAAQHgagALAAeABUAC4AGQAOQAfACAAEkAMQAygBoAGoAPAAfQBEAEUAJgATwAxABmADmAH4AQgAjgBMAClAFvAMoAywB3AD9AIGAQgAi0BHAEdAKWAVcAuoBgQDRAGvANoAdUA8gB_wEegJiAU0AtQBeYDBAGGgMfAZIA4sBygDsAAA%22%2C%22gwto%22%3Atrue%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic%22%2C%22vpi%22%3A%22%2Ft248-topic%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A1280%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A939%2C%22dw%22%3A1280%2C%22dh%22%3A19950%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A1%2C%22uim%22%3A%22thumbnails-728x90%3Aabp%3D0%22%2C%22uip%22%3A%22728x90%20Thumbnails%22%2C%22orig_uip%22%3A%22728x90%20Thumbnails%22%2C%22cd%22%3A116.89999389648438%2C%22mw%22%3A0%7D%2C%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A5%2C%22uim%22%3A%22thumbnails-desktop-a%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22cd%22%3A19911.400390625%2C%22mw%22%3A1000%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Ft248-topic%2C728x90%20Thumbnails%3Dthumbnails-728x90%3Aabp%3D0%2C%2CBelow%20Desktop%20Forum%20Thumbnails%3Dthumbnails-desktop-a%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2

151.101.85.44

200 OK

14 kB

URL HTTP/2
trc.taboola.com/forumotion-ar/trc/3/json?tim=18%3A57%3A14.908&lti=deflated&data=%7B%22id%22%3A630%2C%22ii%22%3A%22%2Ft248-topic%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1662563290549%2C%22vi%22%3A1662577034906%2C%22cv%22%3A%2220220907-23-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22cmps%22%3A0%2C%22ga%22%3Atrue%2C%22tcs%22%3A%22CPe7rYAPe7rYABcAIBENCfCgAAAAAH_AABpwIDwAAQHgagALAAeABUAC4AGQAOQAfACAAEkAMQAygBoAGoAPAAfQBEAEUAJgATwAxABmADmAH4AQgAjgBMAClAFvAMoAywB3AD9AIGAQgAi0BHAEdAKWAVcAuoBgQDRAGvANoAdUA8gB_wEegJiAU0AtQBeYDBAGGgMfAZIA4sBygDsAAA%22%2C%22gwto%22%3Atrue%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic%22%2C%22vpi%22%3A%22%2Ft248-topic%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A1280%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A939%2C%22dw%22%3A1280%2C%22dh%22%3A19950%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A1%2C%22uim%22%3A%22thumbnails-728x90%3Aabp%3D0%22%2C%22uip%22%3A%22728x90%20Thumbnails%22%2C%22orig_uip%22%3A%22728x90%20Thumbnails%22%2C%22cd%22%3A116.89999389648438%2C%22mw%22%3A0%7D%2C%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A5%2C%22uim%22%3A%22thumbnails-desktop-a%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22cd%22%3A19911.400390625%2C%22mw%22%3A1000%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Ft248-topic%2C728x90%20Thumbnails%3Dthumbnails-728x90%3Aabp%3D0%2C%2CBelow%20Desktop%20Forum%20Thumbnails%3Dthumbnails-desktop-a%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2
IP
151.101.85.44:0
ASN
#54113 FASTLY

File type
data
Size
14 kB (14307 bytes)
Hash
baadf54da714565a880662007f1871df
6b718796a2c1f3444f5d48a3b27cbd47730c5bf2
c2d1e0e7f26f192402268bdd59c2f8873cd47ba554f3515570cc40862948e251

HTTP Headers

GET /forumotion-ar/trc/3/json?tim=18%3A57%3A14.908&lti=deflated&data=%7B%22id%22%3A630%2C%22ii%22%3A%22%2Ft248-topic%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1662563290549%2C%22vi%22%3A1662577034906%2C%22cv%22%3A%2220220907-23-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22cmps%22%3A0%2C%22ga%22%3Atrue%2C%22tcs%22%3A%22CPe7rYAPe7rYABcAIBENCfCgAAAAAH_AABpwIDwAAQHgagALAAeABUAC4AGQAOQAfACAAEkAMQAygBoAGoAPAAfQBEAEUAJgATwAxABmADmAH4AQgAjgBMAClAFvAMoAywB3AD9AIGAQgAi0BHAEdAKWAVcAuoBgQDRAGvANoAdUA8gB_wEegJiAU0AtQBeYDBAGGgMfAZIA4sBygDsAAA%22%2C%22gwto%22%3Atrue%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic%22%2C%22vpi%22%3A%22%2Ft248-topic%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A1280%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A939%2C%22dw%22%3A1280%2C%22dh%22%3A19950%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A1%2C%22uim%22%3A%22thumbnails-728x90%3Aabp%3D0%22%2C%22uip%22%3A%22728x90%20Thumbnails%22%2C%22orig_uip%22%3A%22728x90%20Thumbnails%22%2C%22cd%22%3A116.89999389648438%2C%22mw%22%3A0%7D%2C%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A5%2C%22uim%22%3A%22thumbnails-desktop-a%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22cd%22%3A19911.400390625%2C%22mw%22%3A1000%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Ft248-topic%2C728x90%20Thumbnails%3Dthumbnails-728x90%3Aabp%3D0%2C%2CBelow%20Desktop%20Forum%20Thumbnails%3Dthumbnails-desktop-a%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://cinemaniacs.yoo7.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://cinemaniacs.yoo7.com/
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://cinemaniacs.yoo7.com
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Wed, 07 Sep 2022 18:57:22 GMT
via: 1.1 varnish
x-served-by: cache-bma1671-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1662577042.782573,VS0,VE318
vary: Accept-Encoding
x-vcl-time-ms: 318
X-Firefox-Spdy: h2

images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_200%2Cw_240%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//hitsk.in/t/16/13/46/i_logo.png

151.101.85.44

200 OK

13 kB

URL HTTP/2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_200%2Cw_240%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//hitsk.in/t/16/13/46/i_logo.png
IP
151.101.85.44:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image\012- data
Size
13 kB (13336 bytes)
Hash
672a18b1f7ac0e98d494774e97ee6eca
d2bf36e86372dc869cc6db7c51e017424c07c1a4
9b689f55ab2df9487fcd903769d19cf578e60eae9ceec8eec9dd23e8be59fdbd

HTTP Headers

GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_200%2Cw_240%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//hitsk.in/t/16/13/46/i_logo.png HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://cinemaniacs.yoo7.com/
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 300655712052199171545574879548997087647,440009874943970692176080915478359259825,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 300655712052199171545574879548997087647,440009874943970692176080915478359259825,29ecf9b93bbf306179626feeda1fab70
etag: "34ecfb149365bf77309df36056fe2549"
expiration: expiry-date="Sat, 27 Aug 2022 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Wed, 27 Jul 2022 23:40:48 GMT
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 183
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb804
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 07 Sep 2022 18:57:22 GMT
age: 3219642
x-served-by: cache-iad-kiad7000143-IAD, cache-iad-kjyo7100104-IAD, cache-lga21957-LGA, cache-iad-kjyo7100094-IAD, cache-bma1671-BMA
x-cache: MISS, MISS, HIT, HIT, HIT
x-cache-hits: 0, 0, 1, 1, 1
x-timer: S1662577042.389426,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_200%2Cw_240%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//hitsk.in/t/16/13/46/i_logo.png
x-vcl-time-ms: 1
content-length: 13336
X-Firefox-Spdy: h2

15.taboola.com/tb?oid=15&pubnm=forumotion-ar&unitType=226&tbloc=&pageType=text&pstn=Below%20Desktop%20Forum%20Thumbnails&uuip=&cisrf=&cirf=https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic&encoded=1&uid=f25d8ce4-4e5b-4337-a6bc-1a652ecac31d-tucta126f11&variant=-100|1786174634&callback=TRC.videoTagCallbacks.videoCallback2&cb=1662577035335&tagid=&cntry=NO&platform=1&sesid=c02a4cf09580d49aea987a1c6fda6471&itemid=/t248-topic&viewid=1662577034906&geolat=&geoing=&deviceifa=&appid=&sd=v2_c02a4cf09580d49aea987a1c6fda6471_f25d8ce4-4e5b-4337-a6bc-1a652ecac31d-tucta126f11_1662577041_1662577041_CNawjgYQ3pxDGJqNwcqxMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gBYABo_9iV8p6d99_dAXAA&ri=db1f8735e61b48e2b4d1f57895166afb&appname=&cdb=CPe7rYAPe7rYABcAIBENCfCgAAAAAH_AABpwIDwAAQHgagALAAeABUAC4AGQAOQAfACAAEkAMQAygBoAGoAPAAfQBEAEUAJgATwAxABmADmAH4AQgAjgBMAClAFvAMoAywB3AD9AIGAQgAi0BHAEdAKWAVcAuoBgQDRAGvANoAdUA8gB_wEegJiAU0AtQBeYDBAGGgMfAZIA4sBygDsAAA&gdprApplies=true&rid=&sii=-2656123835087220291&oee=true&tpubid=1101406&uis=2&fagg=1&ccpaDns=false&ccpaPrivacy=&region=03&hasGDPRConsent=false&tcfVersion=2&cmpStatus=0&tnetid=1037540&prcnt=&layer=&normp=7&gvv=8351

151.101.85.44

200 OK

12 kB

URL HTTP/2
15.taboola.com/tb?oid=15&pubnm=forumotion-ar&unitType=226&tbloc=&pageType=text&pstn=Below%20Desktop%20Forum%20Thumbnails&uuip=&cisrf=&cirf=https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic&encoded=1&uid=f25d8ce4-4e5b-4337-a6bc-1a652ecac31d-tucta126f11&variant=-100|1786174634&callback=TRC.videoTagCallbacks.videoCallback2&cb=1662577035335&tagid=&cntry=NO&platform=1&sesid=c02a4cf09580d49aea987a1c6fda6471&itemid=/t248-topic&viewid=1662577034906&geolat=&geoing=&deviceifa=&appid=&sd=v2_c02a4cf09580d49aea987a1c6fda6471_f25d8ce4-4e5b-4337-a6bc-1a652ecac31d-tucta126f11_1662577041_1662577041_CNawjgYQ3pxDGJqNwcqxMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gBYABo_9iV8p6d99_dAXAA&ri=db1f8735e61b48e2b4d1f57895166afb&appname=&cdb=CPe7rYAPe7rYABcAIBENCfCgAAAAAH_AABpwIDwAAQHgagALAAeABUAC4AGQAOQAfACAAEkAMQAygBoAGoAPAAfQBEAEUAJgATwAxABmADmAH4AQgAjgBMAClAFvAMoAywB3AD9AIGAQgAi0BHAEdAKWAVcAuoBgQDRAGvANoAdUA8gB_wEegJiAU0AtQBeYDBAGGgMfAZIA4sBygDsAAA&gdprApplies=true&rid=&sii=-2656123835087220291&oee=true&tpubid=1101406&uis=2&fagg=1&ccpaDns=false&ccpaPrivacy=&region=03&hasGDPRConsent=false&tcfVersion=2&cmpStatus=0&tnetid=1037540&prcnt=&layer=&normp=7&gvv=8351
IP
151.101.85.44:0
ASN
#54113 FASTLY

File type
data
Size
12 kB (11618 bytes)
Hash
0d04c9b25961883de777223708c50b0b
61e7c5ae06a8da5890f87c07ab0d2de922fb8e7a
3b11a5f3998bb853633bef135c92a85233677f8c99b6af840a8811dd6399ff5c

HTTP Headers

GET /tb?oid=15&pubnm=forumotion-ar&unitType=226&tbloc=&pageType=text&pstn=Below%20Desktop%20Forum%20Thumbnails&uuip=&cisrf=&cirf=https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic&encoded=1&uid=f25d8ce4-4e5b-4337-a6bc-1a652ecac31d-tucta126f11&variant=-100|1786174634&callback=TRC.videoTagCallbacks.videoCallback2&cb=1662577035335&tagid=&cntry=NO&platform=1&sesid=c02a4cf09580d49aea987a1c6fda6471&itemid=/t248-topic&viewid=1662577034906&geolat=&geoing=&deviceifa=&appid=&sd=v2_c02a4cf09580d49aea987a1c6fda6471_f25d8ce4-4e5b-4337-a6bc-1a652ecac31d-tucta126f11_1662577041_1662577041_CNawjgYQ3pxDGJqNwcqxMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gBYABo_9iV8p6d99_dAXAA&ri=db1f8735e61b48e2b4d1f57895166afb&appname=&cdb=CPe7rYAPe7rYABcAIBENCfCgAAAAAH_AABpwIDwAAQHgagALAAeABUAC4AGQAOQAfACAAEkAMQAygBoAGoAPAAfQBEAEUAJgATwAxABmADmAH4AQgAjgBMAClAFvAMoAywB3AD9AIGAQgAi0BHAEdAKWAVcAuoBgQDRAGvANoAdUA8gB_wEegJiAU0AtQBeYDBAGGgMfAZIA4sBygDsAAA&gdprApplies=true&rid=&sii=-2656123835087220291&oee=true&tpubid=1101406&uis=2&fagg=1&ccpaDns=false&ccpaPrivacy=&region=03&hasGDPRConsent=false&tcfVersion=2&cmpStatus=0&tnetid=1037540&prcnt=&layer=&normp=7&gvv=8351 HTTP/1.1
Host: 15.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://cinemaniacs.yoo7.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://cinemaniacs.yoo7.com/
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/html;charset=ISO-8859-1
machineid: 1484
link: <https://am-wf.taboola.com>; rel=preconnect
xvid-debug: mrmr - :
pragma: no-cache
cache-control: no-cache,must-revalidate,no-store,max-age=0,s-maxage=0
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: https://cinemaniacs.yoo7.com
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Wed, 07 Sep 2022 18:57:22 GMT
via: 1.1 varnish
x-served-by: cache-bma1671-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1662577042.334009,VS0,VE26
vary: Accept-Encoding
X-Firefox-Spdy: h2

images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_200%2Cw_240%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f18/18/76/87/71/10441110.jpg

151.101.85.44

200 OK

6.6 kB

URL HTTP/2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_200%2Cw_240%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f18/18/76/87/71/10441110.jpg
IP
151.101.85.44:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image\012- data
Size
6.6 kB (6598 bytes)
Hash
895a214bddd88917cf24a7a5a1134ecc
bbece246b3c2d67d1ade903ed89ba64b42beb0cf
65cd0defed038c783a224fa3d2a85d9542d2d550852b5045cf835dd3973b7070

HTTP Headers

GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_200%2Cw_240%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f18/18/76/87/71/10441110.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://cinemaniacs.yoo7.com/
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 409007793272519477888960907609700542045,440009874943970692176080915478359259825,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 409007793272519477888960907609700542045,440009874943970692176080915478359259825,29ecf9b93bbf306179626feeda1fab70
etag: "bb76fc9979910c2e224c4922a82e49ce"
expiration: expiry-date="Mon, 12 Sep 2022 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Fri, 12 Aug 2022 20:35:12 GMT
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 785
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb202
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 07 Sep 2022 18:57:22 GMT
age: 1247295
x-served-by: cache-iad-kjyo7100080-IAD, cache-iad-kjyo7100134-IAD, cache-sna10736-LGB, cache-iad-kcgs7200119-IAD, cache-bma1671-BMA
x-cache: HIT, MISS, MISS, HIT, HIT
x-cache-hits: 1, 0, 0, 1, 1
x-timer: S1662577042.389760,VS0,VE2
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_200%2Cw_240%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f18/18/76/87/71/10441110.jpg
x-vcl-time-ms: 2
content-length: 6598
X-Firefox-Spdy: h2

api.viglink.com/api/domains

176.34.209.96

200 OK

42 B

URL HTTP/1.1
api.viglink.com/api/domains
IP
176.34.209.96:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
42 B (42 bytes)
Hash
a0957c9c60acdf52e6d9f21052f5fd5d
f5a0ce019b0d5724dfda2237d9e640e582836fff
8262a24c1cf263db9dec00f6a6a60bcb1c55dac397915f98c6d0faf205a69afa

HTTP Headers

POST /api/domains HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 301
Origin: https://cinemaniacs.yoo7.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://cinemaniacs.yoo7.com/
Connection: keep-alive

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://cinemaniacs.yoo7.com
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Date: Wed, 07 Sep 2022 18:57:21 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 42
Connection: keep-alive

il-trc-events.taboola.com/forumotion-ar/log/2/debug?tim=18%3A57%3A15.484&type=warn&msg=TRC.TranslationsManager%20-%20missing%20feature%20in%20translationMap%3A%20userx.&llvl=2&id=4917&cv=20220907-23-RELEASE&lt=deflated&pct=1

185.106.33.48

204 No Content

0 B

URL HTTP/2
il-trc-events.taboola.com/forumotion-ar/log/2/debug?tim=18%3A57%3A15.484&type=warn&msg=TRC.TranslationsManager%20-%20missing%20feature%20in%20translationMap%3A%20userx.&llvl=2&id=4917&cv=20220907-23-RELEASE&lt=deflated&pct=1
IP
185.106.33.48:0
ASN
#200478 Taboola.com ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /forumotion-ar/log/2/debug?tim=18%3A57%3A15.484&type=warn&msg=TRC.TranslationsManager%20-%20missing%20feature%20in%20translationMap%3A%20userx.&llvl=2&id=4917&cv=20220907-23-RELEASE&lt=deflated&pct=1 HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://cinemaniacs.yoo7.com/
Connection: keep-alive

HTTP/2 204 No Content
server: nginx
date: Wed, 07 Sep 2022 18:57:22 GMT
x-fastly-to-nlb-rtt: 80793
access-control-allow-credentials: true
X-Firefox-Spdy: h2

il-trc-events.taboola.com/forumotion-ar/log/2/debug?tim=18%3A57%3A15.563&type=warn&msg=video%20tag%20loader%20-%20didn%27t%20find%20enough%20sponsored%20items%20for%20integrated%20widget%20replacement&llvl=2&id=4777&cv=20220907-23-RELEASE&lt=deflated&pct=1

185.106.33.48

204 No Content

0 B

URL HTTP/2
il-trc-events.taboola.com/forumotion-ar/log/2/debug?tim=18%3A57%3A15.563&type=warn&msg=video%20tag%20loader%20-%20didn%27t%20find%20enough%20sponsored%20items%20for%20integrated%20widget%20replacement&llvl=2&id=4777&cv=20220907-23-RELEASE&lt=deflated&pct=1
IP
185.106.33.48:0
ASN
#200478 Taboola.com ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /forumotion-ar/log/2/debug?tim=18%3A57%3A15.563&type=warn&msg=video%20tag%20loader%20-%20didn%27t%20find%20enough%20sponsored%20items%20for%20integrated%20widget%20replacement&llvl=2&id=4777&cv=20220907-23-RELEASE&lt=deflated&pct=1 HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://cinemaniacs.yoo7.com/
Connection: keep-alive

HTTP/2 204 No Content
server: nginx
date: Wed, 07 Sep 2022 18:57:22 GMT
x-fastly-to-nlb-rtt: 80793
access-control-allow-credentials: true
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e4a401d8bdc2cdd6ac368bb2e48299a3
c9363e3a61debb8b753577ccaa56c5aa82074b2f
9260c2db15c94023fdce9abf1325e65ec4e349f6cd75eb72ab118863ca2609d6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9260C2DB15C94023FDCE9ABF1325E65EC4E349F6CD75EB72AB118863CA2609D6"
Last-Modified: Wed, 07 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13223
Expires: Wed, 07 Sep 2022 22:37:45 GMT
Date: Wed, 07 Sep 2022 18:57:22 GMT
Connection: keep-alive

cinemaniacs.yoo7.com/sw.js?v=3.1.392&o=e78196898d124b32a375ad60d757879d&pub=0&p=2308013

178.33.115.32

304 Not Modified

0 B

URL HTTP/2
cinemaniacs.yoo7.com/sw.js?v=3.1.392&o=e78196898d124b32a375ad60d757879d&pub=0&p=2308013
IP
178.33.115.32:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sw.js?v=3.1.392&o=e78196898d124b32a375ad60d757879d&pub=0&p=2308013 HTTP/1.1
Host: cinemaniacs.yoo7.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: exadd=166259; _fa-screen=%7B%22w%22%3A1280%2C%22h%22%3A939%7D; _ga=GA1.2.1936371198.1662577030; _gid=GA1.2.813544892.1662577030; _gat_gtag_UA_144347007_1=1; prefetchAd_3765907=true
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
If-Modified-Since: Tue, 27 Aug 2019 13:54:01 GMT
If-None-Match: W/"5d6535f9-1554"
Cache-Control: max-age=0
TE: trailers

HTTP/2 304 Not Modified
date: Wed, 07 Sep 2022 18:57:23 GMT
last-modified: Tue, 27 Aug 2019 13:54:01 GMT
etag: "5d6535f9-1554"
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
X-Firefox-Spdy: h2

pushazam.com/ntfc.php?p=2308013&r=sw

139.45.197.251

200 OK

40 kB

URL HTTP/2
pushazam.com/ntfc.php?p=2308013&r=sw
IP
139.45.197.251:0
ASN
#9002 RETN Limited

File type
ASCII text, with very long lines (65536), with no line terminators
Size
40 kB (39601 bytes)
Hash
38321660ae0b4824b1bed85eecebbe71
3ab32bd81548b337a50bcd3d8f4eba86974b1bd6
3c3f95cfc4e69f8f62eb9cce57e4a10d9662325c04e81511e0b8e60dacc49da8

HTTP Headers

GET /ntfc.php?p=2308013&r=sw HTTP/1.1
Host: pushazam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:22 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 12:32:41 GMT
etag: W/"6315ec69-1d310"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.taboola.com/libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png

151.101.85.44

200 OK

254 B

URL HTTP/2
cdn.taboola.com/libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png
IP
151.101.85.44:0
ASN
#54113 FASTLY

File type
PNG image data, 12 x 12, 8-bit gray+alpha, non-interlaced\012- data
Size
254 B (254 bytes)
Hash
dfa7b52c86e56bd67fa4002f6ed19854
7df722645482433c2b5c8d8ab4272a9874592f27
f68019eb4b4e5933301d4ee75969e0cb94ed8333bf514630fa749eb9c3e483c9

HTTP Headers

GET /libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://cinemaniacs.yoo7.com/
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
x-amz-id-2: c3AK0F63Rmz1U+ZkwDZRH6hJiJRTGpZB8kTBPWz0vwbg9siBxtMOH8aEqr1NtVeNHtLhLAVUR9E=
x-amz-request-id: 4JKSR0YA3KVH073N
x-amz-replication-status: COMPLETED
last-modified: Wed, 24 Jun 2015 07:14:11 GMT
etag: "dfa7b52c86e56bd67fa4002f6ed19854"
x-amz-meta-s3cmd-attrs: uid:0/gname:root/uname:root/gid:0/mode:33188/mtime:1377415166/atime:1435052450/md5:dfa7b52c86e56bd67fa4002f6ed19854/ctime:1422381567
x-amz-version-id: hL.cyLD7Q4TL5ceY.7JQwF9m5IYI8mkC
content-type: image/png
server: AmazonS3
accept-ranges: bytes
date: Wed, 07 Sep 2022 18:57:23 GMT
via: 1.1 varnish
age: 12438
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 1350
x-timer: S1662577043.360994,VS0,VE0
cache-control: private,max-age=31536000
abp: 90
content-length: 254
X-Firefox-Spdy: h2

cinemaniacs.yoo7.com/t248-topic

178.33.115.32

200 OK

0 B

URL HTTP/2
cinemaniacs.yoo7.com/t248-topic
IP
178.33.115.32:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /t248-topic HTTP/1.1
Host: cinemaniacs.yoo7.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Wed, 07 Sep 2022 18:57:15 GMT
content-type: text/html; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-cache
pragma: no-cache
expires: Wed, 07 Sep 2022 00:00:00 GMT
last-modified: Wed, 07 Sep 2022 18:57:13 GMT
vary: User-Agent
set-cookie: exadd=166259; expires=Wed, 07-Sep-2022 22:57:13 GMT; Max-Age=14400
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

connect.topicit.net/scripts/connect.js

104.21.90.171

200 OK

0 B

URL HTTP/2
connect.topicit.net/scripts/connect.js
IP
104.21.90.171:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /scripts/connect.js HTTP/1.1
Host: connect.topicit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 07 Sep 2022 18:57:16 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=5437
access-control-allow-origin: *
etag: W/"5d653880-153d"
last-modified: Tue, 27 Aug 2019 14:04:48 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=86400
cf-cache-status: HIT
age: 6834
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BWhkQI0YeHn5VW7SvCLh8a%2Brr5ei%2FKDxTq2IZ5%2FvSnIEv0MBsE6ERcX8PkP93rqi9LN4Qw01Oq9LtKf7u6C6DW9%2BU6%2FcUc0Do5psozXAyQE9Kjr2kIv9YbnfyAaB%2F4%2BfActrIK4J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7471ab4d69ed0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.betgorebysson.club/apu.php?zoneid=3765907

139.45.195.8

200 OK

0 B

URL HTTP/2
cdn.betgorebysson.club/apu.php?zoneid=3765907
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /apu.php?zoneid=3765907 HTTP/1.1
Host: cdn.betgorebysson.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:16 GMT
content-type: application/javascript
x-trace-id: ec1d6b4988ddfb8b3d53f3374169990a
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=e78196898d124b32a375ad60d757879d; expires=Thu, 07 Sep 2023 18:57:16 GMT; path=/; secure; SameSite=None
oaidts=1662577036; expires=Thu, 07 Sep 2023 18:57:16 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

illiweb.com/rs3/62/frm/embed/FA_Embed.js

172.67.150.97

200 OK

0 B

URL HTTP/2
illiweb.com/rs3/62/frm/embed/FA_Embed.js
IP
172.67.150.97:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /rs3/62/frm/embed/FA_Embed.js HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 07 Sep 2022 18:57:15 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
expires: Wed, 02 Aug 2023 13:50:22 GMT
last-modified: Tue, 20 Apr 2021 14:17:00 GMT
x-cache-ne: HIT
x-cache-pr: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 3128813
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pNbe2K4I%2F3LgKs8GGZqRHKsYJiUCZMZUM%2F6Q2Wmq1HOFIyVOwFS1BbISwsvkDAo%2BVdICjlylJ9WWIyO4gTVvOIhjAZm23LTe90iDc28heCgMZTbbkBw8qfVQvYQzWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7471ab494f1d0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

illiweb.com/rs3/62/frm/lang/ar.js

172.67.150.97

200 OK

0 B

URL HTTP/2
illiweb.com/rs3/62/frm/lang/ar.js
IP
172.67.150.97:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /rs3/62/frm/lang/ar.js HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 07 Sep 2022 18:57:15 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=74831
access-control-allow-origin: *
expires: Wed, 02 Aug 2023 13:57:26 GMT
last-modified: Mon, 01 Aug 2022 14:50:40 GMT
x-cache-ne: EXPIRED
x-cache-pr: EXPIRED
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 3128389
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1MP2zRqdxbY2%2BrXm2g%2Fhz1xFZWLDoLtwMhIsrQTaQO3h0IDHOtLjNhKrTVlWn3mlZyiRUyXsPM5dfG5VzvdcSqOO2ds0Se7ceWU3V9J2bGWcO%2Fyfz24oh5TO%2Br3QYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7471ab494f210b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.criteo.net/js/ld/publishertag.js

178.250.2.130

200 OK

0 B

URL HTTP/2
static.criteo.net/js/ld/publishertag.js
IP
178.250.2.130:0
ASN
#44788 Criteo SA

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/ld/publishertag.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:15 GMT
content-type: text/javascript
last-modified: Wed, 31 Aug 2022 21:49:04 GMT
etag: W/"630fd750-1e137"
expires: Thu, 08 Sep 2022 18:57:15 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

cinemaniacs.yoo7.com/serviceworker.js

178.33.115.32

200 OK

0 B

URL HTTP/2
cinemaniacs.yoo7.com/serviceworker.js
IP
178.33.115.32:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /serviceworker.js HTTP/1.1
Host: cinemaniacs.yoo7.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: exadd=166259; _fa-screen=%7B%22w%22%3A1280%2C%22h%22%3A939%7D
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Sep 2022 18:57:16 GMT
content-type: application/javascript
last-modified: Thu, 25 Feb 2021 14:30:57 GMT
etag: W/"6037b4a1-b0d"
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.betgorebysson.club/?rb=QNHz2Mgd-_fC81A0209IxkLPUkDDlpdaWM8pYNXwInDm8OjaEMooUJGv9Io4jy3TyrtVPW1WiE7cibuUCz4hZ9KP54lsDE7fQJrd_jS5K_45ldvQGFFcbQhelfVEV99HdDJ97fGD0s2mnakvncKhAFBst5oqI9qpBQMgfs6978E_6SK1JtIlVJLkDpHHw0DDWaUkCAcc4l3WEidU1LLUKOrNeVCzwQbxUpU4ZA%3D%3D&request_ab2=0&zoneid=3765907&js_build=iclick-v1.424.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.424.0&bs=21aa0626-f4f9-444b-a2d4-6eb090bd0d37&userId=e78196898d124b32a375ad60d757879d&m=link

139.45.195.8

200 OK

0 B

URL HTTP/2
cdn.betgorebysson.club/?rb=QNHz2Mgd-_fC81A0209IxkLPUkDDlpdaWM8pYNXwInDm8OjaEMooUJGv9Io4jy3TyrtVPW1WiE7cibuUCz4hZ9KP54lsDE7fQJrd_jS5K_45ldvQGFFcbQhelfVEV99HdDJ97fGD0s2mnakvncKhAFBst5oqI9qpBQMgfs6978E_6SK1JtIlVJLkDpHHw0DDWaUkCAcc4l3WEidU1LLUKOrNeVCzwQbxUpU4ZA%3D%3D&request_ab2=0&zoneid=3765907&js_build=iclick-v1.424.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.424.0&bs=21aa0626-f4f9-444b-a2d4-6eb090bd0d37&userId=e78196898d124b32a375ad60d757879d&m=link
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /?rb=QNHz2Mgd-_fC81A0209IxkLPUkDDlpdaWM8pYNXwInDm8OjaEMooUJGv9Io4jy3TyrtVPW1WiE7cibuUCz4hZ9KP54lsDE7fQJrd_jS5K_45ldvQGFFcbQhelfVEV99HdDJ97fGD0s2mnakvncKhAFBst5oqI9qpBQMgfs6978E_6SK1JtIlVJLkDpHHw0DDWaUkCAcc4l3WEidU1LLUKOrNeVCzwQbxUpU4ZA%3D%3D&request_ab2=0&zoneid=3765907&js_build=iclick-v1.424.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fcinemaniacs.yoo7.com%2Ft248-topic&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.424.0&bs=21aa0626-f4f9-444b-a2d4-6eb090bd0d37&userId=e78196898d124b32a375ad60d757879d&m=link HTTP/1.1
Host: cdn.betgorebysson.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cinemaniacs.yoo7.com/
Origin: https://cinemaniacs.yoo7.com
Connection: keep-alive
Cookie: OAID=e78196898d124b32a375ad60d757879d; oaidts=1662577036
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:17 GMT
content-type: application/json
x-trace-id: 7a4f45a1758f7d704a175bc6cb1bc4e9
access-control-allow-origin: https://cinemaniacs.yoo7.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=e78196898d124b32a375ad60d757879d; expires=Thu, 07 Sep 2023 18:57:17 GMT; path=/; secure; SameSite=None
oaidts=1662577037; expires=Thu, 07 Sep 2023 18:57:17 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Wed, 14 Sep 2022 18:57:17 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

twemoji.maxcdn.com/twemoji.min.js

23.111.9.57

200 OK

0 B

URL HTTP/2
twemoji.maxcdn.com/twemoji.min.js
IP
23.111.9.57:0
ASN
#12989 StackPath LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /twemoji.min.js HTTP/1.1
Host: twemoji.maxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 07 Sep 2022 18:57:15 GMT
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 31 Mar 2022 03:24:15 GMT
access-control-allow-origin: *
etag: W/"62451edf-3bc8"
expires: Fri, 07 Oct 2022 18:57:15 GMT
cache-control: max-age=2592000
x-proxy-cache: MISS
x-github-request-id: 0ABA:25E6:BEFB7:C66AA:63179B03
vary: Accept-Encoding
x-fastly-request-id: 0a98234bb389a2dda5c78fa1dad361c4ff87e38d
server: NetDNA-cache/2.2
powered-by: MaxCDN
x-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

cinemaniacs.yoo7.com/sw.js

178.33.115.32

200 OK

0 B

URL HTTP/2
cinemaniacs.yoo7.com/sw.js
IP
178.33.115.32:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sw.js HTTP/1.1
Host: cinemaniacs.yoo7.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cinemaniacs.yoo7.com/t248-topic
Connection: keep-alive
Cookie: exadd=166259; _fa-screen=%7B%22w%22%3A1280%2C%22h%22%3A939%7D; _ga=GA1.2.1936371198.1662577030; _gid=GA1.2.813544892.1662577030; _gat_gtag_UA_144347007_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 07 Sep 2022 18:57:17 GMT
content-type: application/javascript
last-modified: Tue, 27 Aug 2019 13:54:01 GMT
etag: W/"5d6535f9-1554"
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2

stootsou.net/pfe/current/universal.min.js?v=3.1.392

139.45.197.250

200 OK

0 B

URL HTTP/2
stootsou.net/pfe/current/universal.min.js?v=3.1.392
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /pfe/current/universal.min.js?v=3.1.392 HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cinemaniacs.yoo7.com/
Origin: https://cinemaniacs.yoo7.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:16 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 12:32:41 GMT
etag: W/"6315ec69-20481"
access-control-allow-origin: https://cinemaniacs.yoo7.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

pushazam.com/ntfc.php?p=2308013&r=sw

139.45.197.251

200 OK

0 B

URL HTTP/2
pushazam.com/ntfc.php?p=2308013&r=sw
IP
139.45.197.251:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /ntfc.php?p=2308013&r=sw HTTP/1.1
Host: pushazam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cinemaniacs.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 07 Sep 2022 18:57:17 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 12:32:41 GMT
etag: W/"6315ec69-1d310"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (47)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations