| rutor.is/torrent/970410e | 193.46.255.26 | | 8.0 kB |
IP193.46.255.26:0
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1055), with CRLF, LF line terminators Hash74ad260060fa05c9d5e8a642b3ccd92d 389b1b8008dddedef1d343a7e787f1316a3413ad bed8ea05e1c07a5f52197e70eef2857a403b971f9543ad7cb955bf0dcc03266c
GET /torrent/970410e HTTP/1.1
Host: rutor.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Wed, 24 Apr 2024 13:45:55 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 7972
Connection: keep-alive
Content-Encoding: gzip
Age: 9730
Accept-Ranges: bytes
X-Debug: 14400.000 12 v
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js | 142.250.74.170 | | 25 kB |
URL ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js IP142.250.74.170:0
File typeJavaScript source, ASCII text, with very long lines (820) Hash10092eee563dec2dca82b77d2cf5a1ae 65cbff4e9d95d47a6f31d96ab4ea361c1f538a7b e23a2a4e2d7c2b41ebcdd8ffc0679df7140eb7f52e1eebabf827a88182643c59
GET /ajax/libs/jquery/1.4.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 24715
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:49:45 GMT
expires: Fri, 18 Apr 2025 02:49:45 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 557770
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| receivedachest.com/services/?id=144655 | 193.200.64.24 | | 1.6 kB |
URL receivedachest.com/services/?id=144655 IP193.200.64.24:0 ASN#6681 Giveme Cloud Sp Z O O
File typeJavaScript source, ASCII text, with very long lines (1596), with no line terminators Hash758878cac577cd1005c5892cad3573c6 127907d8a22138e89d97204a45e64815755686eb d4e2825d8e4c318f3d8e5b74a0c31669d7a3010c3702eded7fb5dc41e1077290
GET /services/?id=144655 HTTP/1.1
Host: receivedachest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 1596
Connection: keep-alive
|
|
| cdnbunny.org/t/functions.js | 77.91.100.49 | 200 OK | 3.9 kB |
URL GET HTTP/1.1cdnbunny.org/t/functions.js IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint5F:3F:E5:94:94:38:04:8B:81:0D:0A:70:32:1E:E0:2C:DF:22:2A:62 ValidityWed, 13 Mar 2024 06:51:34 GMT - Tue, 11 Jun 2024 06:51:33 GMT
File typeUnicode text, UTF-8 text, with very long lines (318) Hashacee02196e40649c575ccf4848b623d8 152193c0a635fdd111253397d32f52392bcf8c52 c787a40d68005890630932870e5b79587360d9eb1c2a4c0323ed5da897690801
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /t/functions.js HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: application/javascript
Content-Length: 3862
Connection: keep-alive
Last-Modified: Wed, 06 Jan 2016 14:43:48 GMT
ETag: "568d2824-f16"
Cache-Control: max-age=604800
Age: 542320
X-Debug: 604800.000 1761575
Accept-Ranges: bytes
|
|
| cdnbunny.org/jquery.cookie-min.js | 77.91.100.49 | 200 OK | 732 B |
URL GET HTTP/1.1cdnbunny.org/jquery.cookie-min.js IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint5F:3F:E5:94:94:38:04:8B:81:0D:0A:70:32:1E:E0:2C:DF:22:2A:62 ValidityWed, 13 Mar 2024 06:51:34 GMT - Tue, 11 Jun 2024 06:51:33 GMT
File typeJavaScript source, ASCII text, with very long lines (732), with no line terminators Hashce56bb0d2daafc993b2866ccc1af86fc fe46733587f81da245f6b3e16d6bbbd8a1cb2fea 874d19eae19d9f20a884d976ccca6092c91da6ee8c71d8be1c5c893acbad9159
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jquery.cookie-min.js HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: application/javascript
Content-Length: 732
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 17:05:24 GMT
ETag: "4ebea754-2dc"
Cache-Control: max-age=604800
Age: 542320
X-Debug: 604800.000 1788007
Accept-Ranges: bytes
|
|
| i3.imageban.ru/thumbs/2024.02.20/dada4ab5f65ca67e9ce77d0b341d698b.png | 82.146.61.17 | 200 OK | 10 kB |
URL GET HTTP/2i3.imageban.ru/thumbs/2024.02.20/dada4ab5f65ca67e9ce77d0b341d698b.png IP82.146.61.17:443
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerGlobalSign nv-sa Subject*.imageban.ru FingerprintCB:12:16:F2:20:B4:01:49:C4:B4:8C:9F:62:A2:0E:AE:B2:22:F0:96 ValidityMon, 18 Sep 2023 10:25:55 GMT - Sat, 19 Oct 2024 10:25:54 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 200x84, components 3 Hash76f52e2de6ef003729734279567626f3 be772d910316c0d71aec3dc782c837f08694a58e 9a6a793ae1269be0601e2dd7058cb256544f4bfaacb4497d498d454401ecea0e
GET /thumbs/2024.02.20/dada4ab5f65ca67e9ce77d0b341d698b.png HTTP/1.1
Host: i3.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 13:45:56 GMT
content-type: image/png
content-length: 10274
last-modified: Tue, 20 Feb 2024 06:06:55 GMT
etag: "65d4417f-2822"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i3.imageban.ru/out/2024/02/20/6a6ccb90dcc2ba1fbf03f0cadbdc9097.jpg | 82.146.61.17 | | 225 kB |
URL i3.imageban.ru/out/2024/02/20/6a6ccb90dcc2ba1fbf03f0cadbdc9097.jpg IP82.146.61.17:0
CertificateIssuerGlobalSign nv-sa Subject*.imageban.ru FingerprintCB:12:16:F2:20:B4:01:49:C4:B4:8C:9F:62:A2:0E:AE:B2:22:F0:96 ValidityMon, 18 Sep 2023 10:25:55 GMT - Sat, 19 Oct 2024 10:25:54 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=10, height=1350, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1080], baseline, precision 8, 625x830, components 3 Size225 kB (224838 bytes) Hash74128cf8d6250766f42c12bc635f3a56 ae8e40e8d75bb545ca3a862490299dd939c6dfc6 638f277afd8795c06277aba029b39fa32886dff058707a63c20c5bbc5b6d917e
GET /out/2024/02/20/6a6ccb90dcc2ba1fbf03f0cadbdc9097.jpg HTTP/1.1
Host: i3.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 13:45:56 GMT
content-type: image/jpeg
content-length: 224838
last-modified: Tue, 20 Feb 2024 06:09:03 GMT
etag: "65d441ff-36e46"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdnbunny.org/css.css | 77.91.100.49 | | 24 kB |
IP77.91.100.49:0 ASN#44477 Stark Industries Solutions Ltd
CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint5F:3F:E5:94:94:38:04:8B:81:0D:0A:70:32:1E:E0:2C:DF:22:2A:62 ValidityWed, 13 Mar 2024 06:51:34 GMT - Tue, 11 Jun 2024 06:51:33 GMT
File typeASCII text, with very long lines (3877), with CRLF line terminators Hash751ab231b9980ced48191df03db9999a 36bd22d3521f2dfd5530d74796082fc276160c99 581b656ce90c82bb602f30470c75abbd2eb9d68d26cfc8f2d7a975f0ca0675a3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css.css HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: text/css
Content-Length: 23547
Connection: keep-alive
Last-Modified: Sun, 17 May 2015 18:55:35 GMT
ETag: "5558e427-5bfb"
Cache-Control: max-age=604800
Age: 542320
X-Debug: 604800.000 1759157
Accept-Ranges: bytes
|
|
| cdnbunny.org/t/top.gif | 77.91.100.49 | | 612 B |
IP77.91.100.49:0 ASN#44477 Stark Industries Solutions Ltd
CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint5F:3F:E5:94:94:38:04:8B:81:0D:0A:70:32:1E:E0:2C:DF:22:2A:62 ValidityWed, 13 Mar 2024 06:51:34 GMT - Tue, 11 Jun 2024 06:51:33 GMT
File typeGIF image data, version 89a, 24 x 24 Hashab3755cddb40723270164fa84b8f0362 a7e6700d02578c03bd76b217b23c55b4fba997ea 79df9f5b18cac4dbaec0808448c15e094b5fe20d04aabfe7bed9e6ae07739dfd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /t/top.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: image/gif
Content-Length: 612
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:31:17 GMT
ETag: "4ebe9145-264"
Cache-Control: max-age=604800
Age: 542320
X-Debug: 604800.000 1660471
Accept-Ranges: bytes
|
|
| cdnbunny.org/i/com.gif | 77.91.100.49 | | 295 B |
IP77.91.100.49:0 ASN#44477 Stark Industries Solutions Ltd
CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint5F:3F:E5:94:94:38:04:8B:81:0D:0A:70:32:1E:E0:2C:DF:22:2A:62 ValidityWed, 13 Mar 2024 06:51:34 GMT - Tue, 11 Jun 2024 06:51:33 GMT
File typeGIF image data, version 89a, 11 x 9 Hashe91f48c29a8f6285ade898585e58f8ad c171b970bbdb33210c1e9714bc7fa96e42bdb0bf 30bacf9c5db02b0b5fdbe670c15301ec8231d2e526ab20ea5f8dfb8692e02f17
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /i/com.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: image/gif
Content-Length: 295
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:28:29 GMT
ETag: "4ebe909d-127"
Cache-Control: max-age=604800
Age: 542321
X-Debug: 604800.000 1739424
Accept-Ranges: bytes
|
|
| cdnbunny.org/i/forum.gif | 77.91.100.49 | | 4.4 kB |
IP77.91.100.49:0 ASN#44477 Stark Industries Solutions Ltd
CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint5F:3F:E5:94:94:38:04:8B:81:0D:0A:70:32:1E:E0:2C:DF:22:2A:62 ValidityWed, 13 Mar 2024 06:51:34 GMT - Tue, 11 Jun 2024 06:51:33 GMT
File typeGIF image data, version 89a, 250 x 42 Hash48ae00889ff3baa47dafe9d6d0977019 8c08f0f6ee7fd93f40679bea8d3ceb7be01b3e2c 790a5e6e4ff054d64eca66bd8cfe77b7f379695366e3e5f1f35d5b702e39506c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /i/forum.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: image/gif
Content-Length: 4367
Connection: keep-alive
Last-Modified: Sun, 03 Jan 2016 20:49:57 GMT
ETag: "56898975-110f"
Cache-Control: max-age=604800
Age: 542319
X-Debug: 604800.000 1660808
Accept-Ranges: bytes
|
|
| i73.fastpic.ru/big/2016/0324/de/bbc9e9d07685078479d83aa7f8e923de.gif | 51.77.200.203 | | 162 B |
URL i73.fastpic.ru/big/2016/0324/de/bbc9e9d07685078479d83aa7f8e923de.gif IP51.77.200.203:0
File typeHTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /big/2016/0324/de/bbc9e9d07685078479d83aa7f8e923de.gif HTTP/1.1
Host: i73.fastpic.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx/1.22.0 (Ubuntu)
date: Wed, 24 Apr 2024 13:45:56 GMT
content-type: text/html
content-length: 162
location: http://i73.fastpic.org/big/2016/0324/de/bbc9e9d07685078479d83aa7f8e923de.gif
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
|
|
| cdnbunny.org/i/d.gif | 77.91.100.49 | | 359 B |
IP77.91.100.49:0 ASN#44477 Stark Industries Solutions Ltd
CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint5F:3F:E5:94:94:38:04:8B:81:0D:0A:70:32:1E:E0:2C:DF:22:2A:62 ValidityWed, 13 Mar 2024 06:51:34 GMT - Tue, 11 Jun 2024 06:51:33 GMT
File typeGIF image data, version 89a, 13 x 13 Hash3def66024a583b6ca763e249acb3c426 82f2f897d3e2746181b889811ac675565dcaf0fa 7d4fb7d5a9e681b2313ca88338e3255364aa452f243d6397aa905783e98bfca0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /i/d.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: image/gif
Content-Length: 359
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:28:29 GMT
ETag: "4ebe909d-167"
Cache-Control: max-age=604800
Age: 542321
X-Debug: 604800.000 1919944
Accept-Ranges: bytes
|
|
| cdnbunny.org/t/down.png | 77.91.100.49 | | 4.6 kB |
IP77.91.100.49:0 ASN#44477 Stark Industries Solutions Ltd
CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint5F:3F:E5:94:94:38:04:8B:81:0D:0A:70:32:1E:E0:2C:DF:22:2A:62 ValidityWed, 13 Mar 2024 06:51:34 GMT - Tue, 11 Jun 2024 06:51:33 GMT
File typePNG image data, 27 x 27, 8-bit/color RGBA, interlaced Hash7c13d91e67d4debe5cc1469495197d9d e58a04673dd493302d7e6f1198b68ffdce39ebc2 d2e05bd0c1f904da109ba2558bcc76c84c48e3de9a2cece178ceba790c6d2bb4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /t/down.png HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: image/png
Content-Length: 4603
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:31:05 GMT
ETag: "4ebe9139-11fb"
Cache-Control: max-age=604800
Age: 542320
X-Debug: 604800.000 1123334
Accept-Ranges: bytes
|
|
| s.rutor.info/imdb/pic/6495056.gif | 193.46.255.28 | | 1.8 kB |
URL s.rutor.info/imdb/pic/6495056.gif IP193.46.255.28:0
File typeGIF image data, version 87a, 102 x 38 Hashe96326f746c95986608858bd092dfdeb 08dd0198a9caf3bbc2c6ec6a04840e725ac5c6dd 17f0f87604f91a536da5afe75aac8abac1de3af8e40bd969e59a99c0521f8ad9
GET /imdb/pic/6495056.gif HTTP/1.1
Host: s.rutor.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: image/gif
Content-Length: 1802
Connection: keep-alive
Last-Modified: Wed, 17 Apr 2024 12:52:23 GMT
ETag: "661fc607-70a"
Cache-Control: max-age=86400
Age: 88819
Accept-Ranges: bytes
X-Debug: 172800.000 292
|
|
| cdnbunny.org/t/arrowup.gif | 77.91.100.49 | | 52 B |
URL cdnbunny.org/t/arrowup.gif IP77.91.100.49:0 ASN#44477 Stark Industries Solutions Ltd
CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint5F:3F:E5:94:94:38:04:8B:81:0D:0A:70:32:1E:E0:2C:DF:22:2A:62 ValidityWed, 13 Mar 2024 06:51:34 GMT - Tue, 11 Jun 2024 06:51:33 GMT
File typeGIF image data, version 89a, 5 x 8 Hash7cbfc089fd0b0d261187a0c1ef0826af 1583fd0ccdd6a7dcb24ef670761ab01387cf87cf b88cfd011c972f65586f207621005b8b3336773a252e2a309ddbd9b7dda7b8b9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /t/arrowup.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: image/gif
Content-Length: 52
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:30:59 GMT
ETag: "4ebe9133-34"
Cache-Control: max-age=604800
Age: 542321
X-Debug: 604800.000 1858308
Accept-Ranges: bytes
|
|
| i7.imageban.ru/thumbs/2024.02.20/6715bced31080102e494e6bbf264698f.png | 62.109.19.95 | | 6.5 kB |
URL i7.imageban.ru/thumbs/2024.02.20/6715bced31080102e494e6bbf264698f.png IP62.109.19.95:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 200x84, components 3 Hash6bbc8ac459a7c14b8e1332d24f63947f dc52e1eac1a7fe2bdabe63b11cde2340171586c1 4220245f04880a95b271d5a402d1f48fb63d7d5aeb39b22a329651c83f8e10ac
GET /thumbs/2024.02.20/6715bced31080102e494e6bbf264698f.png HTTP/1.1
Host: i7.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 13:45:56 GMT
content-type: image/png
content-length: 6544
last-modified: Tue, 20 Feb 2024 06:07:01 GMT
etag: "65d44185-1990"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdnbunny.org/i/magnet.gif | 77.91.100.49 | 200 OK | 796 B |
URL GET HTTP/1.1cdnbunny.org/i/magnet.gif IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint5F:3F:E5:94:94:38:04:8B:81:0D:0A:70:32:1E:E0:2C:DF:22:2A:62 ValidityWed, 13 Mar 2024 06:51:34 GMT - Tue, 11 Jun 2024 06:51:33 GMT
File typeGIF image data, version 89a, 30 x 30 Hash1a31398a96af2ae3e63de5055912daec 55d558e163c634baeae650b15000f513753f29a8 7c92fab95800728d3ab74659b56bdc267928496ec422f03954679ebe0155cf9a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /i/magnet.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: image/gif
Content-Length: 796
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:28:27 GMT
ETag: "4ebe909b-31c"
Cache-Control: max-age=604800
Age: 542320
X-Debug: 604800.000 1120700
Accept-Ranges: bytes
|
|
| i7.imageban.ru/thumbs/2024.02.20/54a76812ccd5d31f1c73701e71c3a079.png | 62.109.19.95 | 200 OK | 10 kB |
URL GET HTTP/2i7.imageban.ru/thumbs/2024.02.20/54a76812ccd5d31f1c73701e71c3a079.png IP62.109.19.95:443
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerGlobalSign nv-sa Subject*.imageban.ru FingerprintCB:12:16:F2:20:B4:01:49:C4:B4:8C:9F:62:A2:0E:AE:B2:22:F0:96 ValidityMon, 18 Sep 2023 10:25:55 GMT - Sat, 19 Oct 2024 10:25:54 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 200x84, components 3 Hashe4bc9168b6429d403008bb8f47c3fe5a 1a510ffbdef8277dbb7fb34bd8cc2c52a3bae450 208b282fb20b9024238bfee7ebf75d61627fef125e0f3d33f4c6e16e6d0b6400
GET /thumbs/2024.02.20/54a76812ccd5d31f1c73701e71c3a079.png HTTP/1.1
Host: i7.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 13:45:56 GMT
content-type: image/png
content-length: 10150
last-modified: Tue, 20 Feb 2024 06:06:58 GMT
etag: "65d44182-27a6"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdnbunny.org/i/m.png | 77.91.100.49 | | 656 B |
IP77.91.100.49:0 ASN#44477 Stark Industries Solutions Ltd
CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint5F:3F:E5:94:94:38:04:8B:81:0D:0A:70:32:1E:E0:2C:DF:22:2A:62 ValidityWed, 13 Mar 2024 06:51:34 GMT - Tue, 11 Jun 2024 06:51:33 GMT
File typePNG image data, 13 x 13, 8-bit/color RGBA, non-interlaced Hash1c923e4247dd2fbbc7e407beecf6028c 37a7cd424c135206071cad59df92511df4fb6e5e efb2d84b9882f1e58d07b358cb77ad0b67fcce154bc7dc70086532abe8f57fff
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /i/m.png HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: image/png
Content-Length: 656
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:28:36 GMT
ETag: "4ebe90a4-290"
Cache-Control: max-age=604800
Age: 542321
X-Debug: 604800.000 1890154
Accept-Ranges: bytes
|
|
| cdnbunny.org/i/lupa.gif | 77.91.100.49 | | 3.1 kB |
IP77.91.100.49:0 ASN#44477 Stark Industries Solutions Ltd
CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint5F:3F:E5:94:94:38:04:8B:81:0D:0A:70:32:1E:E0:2C:DF:22:2A:62 ValidityWed, 13 Mar 2024 06:51:34 GMT - Tue, 11 Jun 2024 06:51:33 GMT
File typeGIF image data, version 89a, 55 x 56 Hashe2c8f8537818f7880be3ae505852b9ff 2a1f5572e6f4c9efc1700f34d6c6969bedbd8535 6946c64a41b61a1e8708b7bcf8274274c71cdc23932aab32da5b868d19212b3a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /i/lupa.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: image/gif
Content-Length: 3079
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:28:36 GMT
ETag: "4ebe90a4-c07"
Cache-Control: max-age=604800
Age: 542316
X-Debug: 604800.000 1659114
Accept-Ranges: bytes
|
|
| i2.imageban.ru/thumbs/2024.02.20/33b9257b562b845ba98abe293fc2d8db.png | 62.109.31.142 | | 8.1 kB |
URL i2.imageban.ru/thumbs/2024.02.20/33b9257b562b845ba98abe293fc2d8db.png IP62.109.31.142:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 200x84, components 3 Hash5d263ae875f89edc1016dd0dd1f95a95 de429e0ee780a0ed5eb3712d770129f693b58e9b 44c5a1e4bdaa682b6d0bb570c02c1894fda4e5fde8b9072d0c0a96ebd8487167
GET /thumbs/2024.02.20/33b9257b562b845ba98abe293fc2d8db.png HTTP/1.1
Host: i2.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 13:45:56 GMT
content-type: image/png
content-length: 8089
last-modified: Tue, 20 Feb 2024 06:07:02 GMT
etag: "65d44186-1f99"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdnbunny.org/t/arrowdown.gif | 77.91.100.49 | | 51 B |
URL cdnbunny.org/t/arrowdown.gif IP77.91.100.49:0 ASN#44477 Stark Industries Solutions Ltd
CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint5F:3F:E5:94:94:38:04:8B:81:0D:0A:70:32:1E:E0:2C:DF:22:2A:62 ValidityWed, 13 Mar 2024 06:51:34 GMT - Tue, 11 Jun 2024 06:51:33 GMT
File typeGIF image data, version 89a, 5 x 8 Hashfe98a58fe6509fb7cb897d25228329d3 34d9e63fe61d4b543f84003c70d0473b6893926f a045e7b1f5ceaefbab2ef782b86b12de0a41fc2ca34c43cbf6b8b8a107d339ff
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /t/arrowdown.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: image/gif
Content-Length: 51
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:30:58 GMT
ETag: "4ebe9132-33"
Cache-Control: max-age=604800
Age: 542320
X-Debug: 604800.000 1815437
Accept-Ranges: bytes
|
|
| i2.imageban.ru/thumbs/2024.02.20/94836aeec50e391d3872a54ca9dbca2b.png | 62.109.31.142 | 200 OK | 6.8 kB |
URL GET HTTP/2i2.imageban.ru/thumbs/2024.02.20/94836aeec50e391d3872a54ca9dbca2b.png IP62.109.31.142:443
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerGlobalSign nv-sa Subject*.imageban.ru FingerprintCB:12:16:F2:20:B4:01:49:C4:B4:8C:9F:62:A2:0E:AE:B2:22:F0:96 ValidityMon, 18 Sep 2023 10:25:55 GMT - Sat, 19 Oct 2024 10:25:54 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 200x84, components 3 Hash0ff9513ad6bb9fd63aab9d114b786f65 a14ac0c9006b2fb869f9f892616d63b6e83b3c33 c36bad68edf1537160d7b263787bb999048aec29e1c0bb0d26c5db668549e027
GET /thumbs/2024.02.20/94836aeec50e391d3872a54ca9dbca2b.png HTTP/1.1
Host: i2.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 13:45:56 GMT
content-type: image/png
content-length: 6755
last-modified: Tue, 20 Feb 2024 06:06:59 GMT
etag: "65d44183-1a63"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| i2.imageban.ru/thumbs/2024.02.20/38ec74cb64bde31adec0d8d1f268427a.png | 62.109.31.142 | 200 OK | 7.4 kB |
URL GET HTTP/2i2.imageban.ru/thumbs/2024.02.20/38ec74cb64bde31adec0d8d1f268427a.png IP62.109.31.142:443
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerGlobalSign nv-sa Subject*.imageban.ru FingerprintCB:12:16:F2:20:B4:01:49:C4:B4:8C:9F:62:A2:0E:AE:B2:22:F0:96 ValidityMon, 18 Sep 2023 10:25:55 GMT - Sat, 19 Oct 2024 10:25:54 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 200x84, components 3 Hashb4cf631ce24fe230e4cccb39943065e6 f620ea8e5c26cd1e8cd381b7be81359a8b7633a3 c61b84c8a8f9c5c8264bf6cc26c5ccad2652824974af329dfb50337d4e394bbd
GET /thumbs/2024.02.20/38ec74cb64bde31adec0d8d1f268427a.png HTTP/1.1
Host: i2.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 13:45:56 GMT
content-type: image/png
content-length: 7382
last-modified: Tue, 20 Feb 2024 06:06:57 GMT
etag: "65d44181-1cd6"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdnbunny.org/i/poisk_bg.gif | 77.91.100.49 | | 2.0 kB |
URL cdnbunny.org/i/poisk_bg.gif IP77.91.100.49:0 ASN#44477 Stark Industries Solutions Ltd
CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint5F:3F:E5:94:94:38:04:8B:81:0D:0A:70:32:1E:E0:2C:DF:22:2A:62 ValidityWed, 13 Mar 2024 06:51:34 GMT - Tue, 11 Jun 2024 06:51:33 GMT
File typeGIF image data, version 89a, 46 x 56 Hash76118a48fd5ae4b926e34f4edb427386 4aa5f228e3f511bf626afa6703488d1d7c6df5e0 4912841156c4582948d016867a6c71845a0221f1dd6419ea911f6f83bbc431d7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /i/poisk_bg.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: image/gif
Content-Length: 1998
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:28:37 GMT
ETag: "4ebe90a5-7ce"
Cache-Control: max-age=604800
Age: 542321
X-Debug: 604800.000 1013681
Accept-Ranges: bytes
|
|
| i4.imageban.ru/out/2022/08/19/1ecb84907b6ddd53f253a8637e45d302.gif | 37.230.117.113 | | 98 kB |
URL i4.imageban.ru/out/2022/08/19/1ecb84907b6ddd53f253a8637e45d302.gif IP37.230.117.113:0
File typeGIF image data, version 89a, 88 x 31 Hash5b7bbc17aae338bb89e8a38d30b58261 1725cfe259bcd61f0e90885c7d94d2add6ea0db7 5b2c2e82560055ff16556a8895687c54a3a944392acce9095094e2284bb74dda
GET /out/2022/08/19/1ecb84907b6ddd53f253a8637e45d302.gif HTTP/1.1
Host: i4.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 24 Apr 2024 13:45:56 GMT
content-type: image/gif
content-length: 98467
last-modified: Fri, 19 Aug 2022 04:16:09 GMT
etag: "62ff0e89-180a3"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdnbunny.org/logo.jpg | 77.91.100.49 | | 45 kB |
IP77.91.100.49:0 ASN#44477 Stark Industries Solutions Ltd
CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint5F:3F:E5:94:94:38:04:8B:81:0D:0A:70:32:1E:E0:2C:DF:22:2A:62 ValidityWed, 13 Mar 2024 06:51:34 GMT - Tue, 11 Jun 2024 06:51:33 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=120, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=450], baseline, precision 8, 420x110, components 3 Hashdc4a948f3ccf35b2c39269cde1aad6f3 1b952aa88121ee56b0648e0e2476a0dacc39da5e eabb9097a448d6066ceac9b449f2a3759776e14aea3d574208495af12ed84f56
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /logo.jpg HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: image/jpeg
Content-Length: 44893
Connection: keep-alive
Last-Modified: Wed, 23 Jan 2019 21:57:36 GMT
ETag: "5c48e350-af5d"
Cache-Control: max-age=604800
Age: 542316
X-Debug: 604800.000 1697972
Accept-Ranges: bytes
|
|
| cdnbunny.org/i/zaiti.gif | 77.91.100.49 | | 3.1 kB |
IP77.91.100.49:0 ASN#44477 Stark Industries Solutions Ltd
CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint5F:3F:E5:94:94:38:04:8B:81:0D:0A:70:32:1E:E0:2C:DF:22:2A:62 ValidityWed, 13 Mar 2024 06:51:34 GMT - Tue, 11 Jun 2024 06:51:33 GMT
File typeGIF image data, version 89a, 99 x 30 Hash9815ec4cdd376b7d71df61b74a7ce6c6 962c557ce627cc0332bc6ee175914946ff4bd2a1 a1d3e2383ecd387242844341a7200834f5cf3517ab846f17d276a2adc0286421
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /i/zaiti.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: image/gif
Content-Length: 3070
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:28:40 GMT
ETag: "4ebe90a8-bfe"
Cache-Control: max-age=604800
Age: 542320
X-Debug: 604800.000 1129990
Accept-Ranges: bytes
|
|
| i73.fastpic.org/big/2016/0324/de/bbc9e9d07685078479d83aa7f8e923de.gif | 164.132.225.66 | 200 OK | 89 kB |
URL GET HTTP/2i73.fastpic.org/big/2016/0324/de/bbc9e9d07685078479d83aa7f8e923de.gif IP164.132.225.66:443
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerLet's Encrypt Subjectfastpic.org Fingerprint28:89:73:18:40:37:E7:78:6A:1C:55:49:E7:B1:13:3A:EC:FA:4C:EC ValidityThu, 14 Mar 2024 20:44:46 GMT - Wed, 12 Jun 2024 20:44:45 GMT
File typeGIF image data, version 89a, 88 x 31 Hash35154a7c377da1da67c29cdd724d40ff 75f02aff28909c70028633abce59c753ef128543 b85e8db3187f5d8b438fb8fd62ff4f7a9c6fd2ef0348606d95d18ad600844add
GET /big/2016/0324/de/bbc9e9d07685078479d83aa7f8e923de.gif HTTP/1.1
Host: i73.fastpic.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Wed, 24 Apr 2024 13:45:56 GMT
content-type: image/gif
content-length: 89098
last-modified: Thu, 24 Mar 2016 19:32:55 GMT
etag: "56f440e7-15c0a"
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: https://fastpic.org
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdnbunny.org/favicon.ico | 77.91.100.49 | 200 OK | 894 B |
IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint5F:3F:E5:94:94:38:04:8B:81:0D:0A:70:32:1E:E0:2C:DF:22:2A:62 ValidityWed, 13 Mar 2024 06:51:34 GMT - Tue, 11 Jun 2024 06:51:33 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 24 bits/pixel Hashab55f59a775976829d8352a7a0584d3e e4b29ec4ac46d97ea15c582d61d02c523dd0485b e68d4b7f22b5027fef4672cc5ba884fb52ac248fd1ca4648c9ac89d95b0e58f4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 24 Apr 2024 13:45:56 GMT
Content-Type: image/x-icon
Content-Length: 894
Connection: keep-alive
Last-Modified: Fri, 08 Feb 2013 21:57:36 GMT
ETag: "511574d0-37e"
Cache-Control: max-age=604800
Age: 542320
X-Debug: 604800.000 1030833
Accept-Ranges: bytes
|
|
| www.kinopoisk.ru/rating/4878248.gif | 213.180.199.9 | 301 Moved Permanently | 178 B |
URL GET HTTP/2www.kinopoisk.ru/rating/4878248.gif IP213.180.199.9:443
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerGlobalSign nv-sa Subject*.kinopoisk.ru Fingerprint60:65:F8:10:D8:3A:62:4C:14:01:40:39:D4:CF:BD:67:36:B0:A8:D3 ValidityThu, 23 Nov 2023 21:12:48 GMT - Thu, 23 May 2024 20:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashcd2e0e43980a00fb6a2742d3afd803b8 81ffbd1712afe8cdf138b570c0fc9934742c33c1 bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /rating/4878248.gif HTTP/1.1
Host: www.kinopoisk.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
content-length: 178
location: https://rating.kinopoisk.ru/4878248.gif
date: Wed, 24 Apr 2024 13:45:56 GMT
nel: {"report_to": "neldrlog", "max_age": 200, "success_fraction": 0.01, "failure_fraction": 1}
set-cookie: _yasc=YunX/VStHKBYLFtbnIlMqJnxbCuL5ZDSvXqUBDVR0MNhhJazlTW4H1SkSXRhbGoC; domain=.kinopoisk.ru; path=/; expires=Sat, 22 Apr 2034 13:45:56 GMT; secure
i=x6QZYfOPy5lRHDDxqGj8yOHaye5kO1mimUUzikEUO7ee9dBwFOb+dAGr3fqB1QnQPKkdRl7vJkwQMsa8cfsplDmqiA8=; Expires=Fri, 24-Apr-2026 13:45:56 GMT; Domain=.kinopoisk.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=4185084051713966356; Expires=Fri, 24-Apr-2026 13:45:56 GMT; Domain=.kinopoisk.ru; Path=/; Secure; SameSite=None
yashr=2392001011713966356; Path=/; Domain=.kinopoisk.ru; Expires=Thu, 24 Apr 2025 13:45:56 GMT; SameSite=None; Secure; HttpOnly
x-request-id: 1713966356884821-13565465797350013368
report-to: {"group": "neldrlog", "max_age": 200, "endpoints": [{"url": "https://dr.yandex.net/kinopoisk/nel", "priority": 1}, {"url": "https://dr2.yandex.net/kinopoisk/nel", "priority": 2}]}
content-type: text/html
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=btwcookie&rnd=1713966356 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=btwcookie&rnd=1713966356 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=btwcookie&rnd=1713966356 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 24 Apr 2024 13:45:56 GMT
content-length: 0
location: https://ads.betweendigital.com/match?bidder_id=34348&callback_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbtwcookie%26bid%3D%24%7BUSER_ID%7D
set-cookie: sky_uuid=c58b7cea-8342-d003-d100-f0a7a26aecac; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=ohmybid&rnd=1713966356 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=ohmybid&rnd=1713966356 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=ohmybid&rnd=1713966356 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 24 Apr 2024 13:45:56 GMT
content-length: 0
location: https://match.ohmy.bid/cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D
set-cookie: sky_uuid=7a85334a-b13f-8f74-ed62-719bc089d48a; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1713966356 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1713966356 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=hbrdcookie2&rnd=1713966356 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 24 Apr 2024 13:45:56 GMT
content-length: 0
location: https://dm-eu.hybrid.ai/match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D
set-cookie: sky_uuid=19adcd20-c05d-ba84-2bba-fb01080ad503; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=otmbid&rnd=1713966356 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=otmbid&rnd=1713966356 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otmbid&rnd=1713966356 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 24 Apr 2024 13:45:56 GMT
content-length: 0
location: https://sync.dmp.otm-r.com/match/skyadvert
set-cookie: sky_uuid=0ec01a32-d2e3-5a16-d0ee-850d1ac6232d; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1713966356 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1713966356 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=bzcookie&rnd=1713966356 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 24 Apr 2024 13:45:56 GMT
content-length: 0
location: https://exchange.buzzoola.com/cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D
set-cookie: sky_uuid=021de8fb-9ded-2cfe-ff03-4c2c25b2f771; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1713966356 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1713966356 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gonetbid&rnd=1713966356 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 24 Apr 2024 13:45:56 GMT
content-length: 0
location: https://sync.gonet-ads.com/match/SkyAdvert?id=f4f286f5-e4fb-d945-7f3d-546b27d57431
set-cookie: sky_uuid=f4f286f5-e4fb-d945-7f3d-546b27d57431; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=solta&rnd=1713966356 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=solta&rnd=1713966356 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=solta&rnd=1713966356 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 24 Apr 2024 13:45:56 GMT
content-length: 0
location: https://kimberlite.io/rtb/sync/skyadvert?u=9bf42376-b11a-dc2e-8c09-c2d8a1f8c7e7
set-cookie: sky_uuid=9bf42376-b11a-dc2e-8c09-c2d8a1f8c7e7; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=gtnt&rnd=1713966356 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=gtnt&rnd=1713966356 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gtnt&rnd=1713966356 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 24 Apr 2024 13:45:56 GMT
content-length: 0
location: https://px.adhigh.net/p/cm/skyadvert?u=89d6cbc5-c592-d812-3cef-30770becdd14
set-cookie: sky_uuid=89d6cbc5-c592-d812-3cef-30770becdd14; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=sapecookie&rnd=1713966356 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=sapecookie&rnd=1713966356 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=sapecookie&rnd=1713966356 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 24 Apr 2024 13:45:56 GMT
content-length: 0
location: https://www.acint.net/rmatch?dp=167&euid=c0625788-7f00-7fc7-c76f-cf4d751f93a0&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D
set-cookie: sky_uuid=c0625788-7f00-7fc7-c76f-cf4d751f93a0; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=dgm2&rnd=1713966356 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=dgm2&rnd=1713966356 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=dgm2&rnd=1713966356 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 24 Apr 2024 13:45:56 GMT
content-length: 0
location: https://sync.opendsp.ru/match/MovieAds?id=714c17c9-9b81-1b67-735c-c56da7360641
set-cookie: sky_uuid=714c17c9-9b81-1b67-735c-c56da7360641; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1713966356 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1713966356 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otclkbid&rnd=1713966356 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 24 Apr 2024 13:45:56 GMT
content-length: 0
location: https://otclick-adv.ru/core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D
set-cookie: sky_uuid=f580e8f3-6083-233d-4ad1-e4605f6ed0cd; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=prgmtc&rnd=1713966356 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=prgmtc&rnd=1713966356 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=prgmtc&rnd=1713966356 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 24 Apr 2024 13:45:56 GMT
content-length: 0
location: https://sync.programmatica.com/match/SkyAdvert?id=54c719e7-4329-fa93-2583-c033f54556e8
set-cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| www.acint.net/rmatch?dp=167&euid=c0625788-7f00-7fc7-c76f-cf4d751f93a0&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D | 193.3.184.139 | | 154 B |
URL www.acint.net/rmatch?dp=167&euid=c0625788-7f00-7fc7-c76f-cf4d751f93a0&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D IP193.3.184.139:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=167&euid=c0625788-7f00-7fc7-c76f-cf4d751f93a0&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: text/html
content-length: 154
location: /rmatch?r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D&dp=167&tc=1&euid=c0625788-7f00-7fc7-c76f-cf4d751f93a0
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Wed, 24-Apr-24 13:55:57 GMT
aid=fwAAAmYpDRVJ8C/9PNwFAv20jMo5ZmZcfTTnWZmm5TVsb8W8; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| www.acint.net/mc/?dp=167 | 193.3.184.139 | | 154 B |
IP193.3.184.139:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /mc/?dp=167 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: openresty
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: text/html
content-length: 154
location: /mc/?dp=167&tc=1
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Wed, 24-Apr-24 13:55:57 GMT
aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| dm-eu.hybrid.ai/match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D | 37.230.131.21 | | 0 B |
URL dm-eu.hybrid.ai/match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D IP37.230.131.21:0 ASN#200197 Hybrid Adtech Sp.z.o.o.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 24 Apr 2024 13:45:57 GMT
content-length: 0
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
location: https://code.moviead55.ru/go/csync?cn=hbrdcookie2&bid=efb0ab642581b4586944
set-cookie: vid=efb0ab642581b4586944; Expires=Thu, 24 Apr 2025 13:45:57 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 569
x-xss-protection: 1; mode=block
access-control-allow-origin: https://rutor.is
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
|
|
| st.kinopoisk.ru/images/sm_actor/3022906.jpg | 213.180.199.9 | | 154 B |
URL st.kinopoisk.ru/images/sm_actor/3022906.jpg IP213.180.199.9:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /images/sm_actor/3022906.jpg HTTP/1.1
Host: st.kinopoisk.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://avatars.mds.yandex.net/get-kinopoisk-image/1946459/47bfd927-22f9-4595-86d7-ea81d1289f2b/52
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
date: Wed, 24 Apr 2024 13:45:56 GMT
access-control-allow-origin: *
set-cookie: _yasc=G484BUAbM5zgLlajnLO8i/9leEpxYobtf80chLj3aa4U1vsl+h+6cq35OQ8XGEoD+w==; domain=.kinopoisk.ru; path=/; expires=Sat, 22 Apr 2034 13:45:56 GMT; secure
i=w6d3BGmPN/sEeAkMqwR4r9x2LLK1UdMkCqano7pHdUyaSsFfL07VFXvlM5Irxs4AzS1rI7d+toyNctUElCw2bG8pO7I=; Expires=Fri, 24-Apr-2026 13:45:56 GMT; Domain=.kinopoisk.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=3814323691713966356; Expires=Fri, 24-Apr-2026 13:45:56 GMT; Domain=.kinopoisk.ru; Path=/; Secure; SameSite=None
yashr=723087541713966356; Path=/; Domain=.kinopoisk.ru; Expires=Thu, 24 Apr 2025 13:45:56 GMT; SameSite=None; Secure; HttpOnly
x-request-id: 1713966356893693-13114873934240973103
expires: Wed, 24 Apr 2024 13:55:56 GMT
x-response-request-id: 1713966356893693-13114873934240973103
cache-control: max-age=600
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| clpeachcod.com/bens/vinos.js?24105&u=null&a=0.2148016113988419 | 193.200.65.68 | | 78 kB |
URL clpeachcod.com/bens/vinos.js?24105&u=null&a=0.2148016113988419 IP193.200.65.68:0 ASN#6681 Giveme Cloud Sp Z O O
File typeJavaScript source, ASCII text, with very long lines (699) Hashb7d697eeb42fe9332e3ebe926e15283b 771bccb06f95354713bc66ae874f441e5c86a4f5 d96d39bc271ac237a95ce92904269ceb85f269122f7b2e8b6afece5dcdd9a0ec
GET /bens/vinos.js?24105&u=null&a=0.2148016113988419 HTTP/1.1
Host: clpeachcod.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 13:45:57 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NON DSP COR CURa TIA"
Set-Cookie: uuid=17139663121532635802; expires=Fri, 24-Apr-2026 13:45:57 GMT; Max-Age=63072000; path=/; samesite=None; domain=.clpeachcod.com; secure
|
|
| otclick-adv.ru/core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D | 139.45.228.134 | | 124 B |
URL otclick-adv.ru/core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D IP139.45.228.134:0
File typeHTML document, ASCII text, with CRLF line terminators Hashc73e35f73ed5c795c70cf66e99088b7c 63a9ffe5d0e5b4070819b95ef564a58d8a3a3a1c 80034a9712f07e6b0577c7e5bf6d5d718736593e7d21c81dd1a3cbdb4eb860de
GET /core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D HTTP/1.1
Host: otclick-adv.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.24.0
date: Wed, 24 Apr 2024 13:45:57 GMT
content-length: 124
location: https://code.moviead55.ru/go/csync?cn=otclkbid&bid=VU0cO9fZFTbYzyf
p3p: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
cache-control: no-cache, max-age=0, must-revalidate, no-store
pragma: no-cache
expires: Thursday, 01-Jan-1970 00:00:00 GMT
set-cookie: idntfy=VU0cO9fZFTbYzyf; expires=Sat, 22-Apr-2034 13:45:57 GMT; domain=otclick-adv.ru; path=/core; SameSite=None; Secure
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| exchange.buzzoola.com/cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D | 195.201.198.232 | | 114 B |
URL exchange.buzzoola.com/cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D IP195.201.198.232:0 ASN#24940 Hetzner Online GmbH
File typeHTML document, ASCII text Hash358f7e04e8237f1bb782ad52fcb11c2c 401e2a57e0787b9d58763b3dd4519387d7d601e8 91f9ed49b1d8e4d97ce2fcc9b36949c00327882604f0890ec70670400e45d545
GET /cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: text/html; charset=utf-8
content-length: 114
location: https://code.moviead55.ru/go/csync?cn=bzcookie&bid=b532de35-9400-48ba-78bd-5db5cc175cb3
serverid: TODO
X-Firefox-Spdy: h2
|
|
| sp.ohmy.bid/cmf?0.37586755356062007 | 167.235.9.235 | | 0 B |
URL sp.ohmy.bid/cmf?0.37586755356062007 IP167.235.9.235:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cmf?0.37586755356062007 HTTP/1.1
Host: sp.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx
date: Wed, 24 Apr 2024 13:45:57 GMT
bidder: bid-22 1.1531.0cf371f1
set-cookie: uid=b330bf7e-39a2-43a1-b529-c6ff6176a261.66290d15.102aabea0a873bee; domain=.ohmy.bid; path=/; expires=Fri, 24-May-2024 13:45:57 GMT; SameSite=None; Secure;
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| match.ohmy.bid/cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D | 167.235.14.51 | | 0 B |
URL match.ohmy.bid/cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D IP167.235.14.51:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%24%7BUUID%7D HTTP/1.1
Host: match.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Wed, 24 Apr 2024 13:45:57 GMT
content-length: 0
bidder: bid-03 1.1531.0cf371f
location: https://code.moviead55.ru/go/csync?cn=ohmybid&bid=97b584c1-f2b8-439d-b0f7-679d83e7dc41
set-cookie: uid=97b584c1-f2b8-439d-b0f7-679d83e7dc41.66290d15.b4a875d5b3ba3156; domain=.ohmy.bid; path=/; expires=Fri, 24-May-2024 13:45:57 GMT; SameSite=None; Secure;
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| sync.gonet-ads.com/match/SkyAdvert?id=f4f286f5-e4fb-d945-7f3d-546b27d57431 | 188.42.105.236 | | 43 B |
URL sync.gonet-ads.com/match/SkyAdvert?id=f4f286f5-e4fb-d945-7f3d-546b27d57431 IP188.42.105.236:0
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/SkyAdvert?id=f4f286f5-e4fb-d945-7f3d-546b27d57431 HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
|
|
| logger.moviead55.ru/logger.php?t=player_frame_loaded_new&c=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&a=&m=0&v=ea59f7a89d04d570fbb4ef98a8a1693c&o= | 193.200.65.146 | | 1.7 kB |
URL logger.moviead55.ru/logger.php?t=player_frame_loaded_new&c=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&a=&m=0&v=ea59f7a89d04d570fbb4ef98a8a1693c&o= IP193.200.65.146:0 ASN#6681 Giveme Cloud Sp Z O O
File typegzip compressed data, from Unix Hashcd425a9568d55a4cbf865563f4ceb521 03041468aa77d8e99db32d45d674e324e6517c13 635f078f59e5afa27ed412edfa5d8a867f8804ef9af3997b9cdfd99242a66ce3
GET /logger.php?t=player_frame_loaded_new&c=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&a=&m=0&v=ea59f7a89d04d570fbb4ef98a8a1693c&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:56 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| avatars.mds.yandex.net/get-kinopoisk-image/1777765/2ebc0b2b-b4b1-45df-a348-c357ac6a3124/52 | 87.250.247.181 | | 1.5 kB |
URL avatars.mds.yandex.net/get-kinopoisk-image/1777765/2ebc0b2b-b4b1-45df-a348-c357ac6a3124/52 IP87.250.247.181:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 52x82, Scaling: [none]x[none], YUV color, decoders should clamp Hash7c78910a655822d096a101a87f18a174 c340adbc26d8d19bca1c56ed69ba3173c04bf28e 5d359372d9cc3da19d1df85276160b6a00d63fb63fd239f1b0650fb811ecf5fd
GET /get-kinopoisk-image/1777765/2ebc0b2b-b4b1-45df-a348-c357ac6a3124/52 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: image/webp
content-length: 1544
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Fri, 19 Jun 2020 09:05:03 GMT
cache-control: max-age=604800,immutable
x-request-id: a6e7f41a45c58261
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=SAS"}]}
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| sync.opendsp.ru/match/MovieAds?id=714c17c9-9b81-1b67-735c-c56da7360641 | 82.148.20.186 | | 43 B |
URL sync.opendsp.ru/match/MovieAds?id=714c17c9-9b81-1b67-735c-c56da7360641 IP82.148.20.186:0 ASN#50340 OOO Network of data-centers Selectel
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/MovieAds?id=714c17c9-9b81-1b67-735c-c56da7360641 HTTP/1.1
Host: sync.opendsp.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| avatars.mds.yandex.net/get-kinopoisk-image/4716873/a15357e2-9669-43a2-bd86-bf9656d11e90/52 | 87.250.247.181 | | 1.6 kB |
URL avatars.mds.yandex.net/get-kinopoisk-image/4716873/a15357e2-9669-43a2-bd86-bf9656d11e90/52 IP87.250.247.181:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 52x80, Scaling: [none]x[none], YUV color, decoders should clamp Hashbd228ec216a3f4633ccafa438249c328 0b11324c74babe9c96faea2facf518e6c42ce920 32ce76b5f7ed6e35ac82182f3b486858e73f0257de8e92cb0044b55afc7c3ad9
GET /get-kinopoisk-image/4716873/a15357e2-9669-43a2-bd86-bf9656d11e90/52 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: image/webp
content-length: 1556
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Wed, 06 Mar 2024 10:45:59 GMT
cache-control: max-age=604800,immutable
x-request-id: ed8a6d922fe7d77f
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=SAS"}]}
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| sync.programmatica.com/match/SkyAdvert?id=54c719e7-4329-fa93-2583-c033f54556e8 | 158.160.128.78 | | 43 B |
URL sync.programmatica.com/match/SkyAdvert?id=54c719e7-4329-fa93-2583-c033f54556e8 IP158.160.128.78:0 ASN#200350 Yandex.Cloud LLC
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/SkyAdvert?id=54c719e7-4329-fa93-2583-c033f54556e8 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| vak345.com/s.js?v=ea59f7a89d04d570fbb4ef98a8a1693c | 104.21.69.38 | 200 OK | 3.7 kB |
URL GET HTTP/2vak345.com/s.js?v=ea59f7a89d04d570fbb4ef98a8a1693c IP104.21.69.38:443
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerGoogle Trust Services LLC Subjectvak345.com Fingerprint24:4A:87:25:20:E4:20:04:34:86:6B:9B:53:2A:57:5F:39:1D:94:22 ValiditySun, 07 Apr 2024 00:32:34 GMT - Sat, 06 Jul 2024 00:32:33 GMT
File typeJavaScript source, ASCII text, with very long lines (3890) Hash44ebda2b671c5e2f699dfb03c49d9f19 7f620755035f65bc1bb5b6b3708c7d0ee246beb2 67cb4ca55019f441edc51b70fe6c6610e335f4a86f281fa46819d22b053806f0
GET /s.js?v=ea59f7a89d04d570fbb4ef98a8a1693c HTTP/1.1
Host: vak345.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 13:45:56 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-movieads-country: NO
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Glc2CtXrzLtGimK4XMXIwmawT%2BGBEBvG4kHer%2B%2FlAFJi6k1%2BBXZthYjB75M4bA95JBOuKCVTHjX1d%2FDTedBuWdpTRrKG4MH6Io%2FduL9mfgLa5xeRe0tiU84sgXlu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8796895cf8a956af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| videotoday.site/frndnp.php?ver=1&autoplay=1&v=ea59f7a89d04d570fbb4ef98a8a1693c&cb=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&fclose=false&jh=cpzse3jqpizzc4mfcf1dkpjqqj4o&sth=qp4gn7djcczg455spf1sn3bigwz8r7e&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=32&r=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&frnd=true | 172.67.218.218 | | 33 kB |
URL videotoday.site/frndnp.php?ver=1&autoplay=1&v=ea59f7a89d04d570fbb4ef98a8a1693c&cb=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&fclose=false&jh=cpzse3jqpizzc4mfcf1dkpjqqj4o&sth=qp4gn7djcczg455spf1sn3bigwz8r7e&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=32&r=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&frnd=true IP172.67.218.218:0
File typeASCII text, with very long lines (65518) Hash4fab1ba49f0662be61740087f542a2ef 1f4ccc4fc30b4ab8a4db522358bc363d51e22c5d aa7688a0205685100e6f6ea45bc5fcf636201db1a5f05921afef231897f51944
GET /frndnp.php?ver=1&autoplay=1&v=ea59f7a89d04d570fbb4ef98a8a1693c&cb=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&fclose=false&jh=cpzse3jqpizzc4mfcf1dkpjqqj4o&sth=qp4gn7djcczg455spf1sn3bigwz8r7e&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=32&r=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&frnd=true HTTP/1.1
Host: videotoday.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 13:45:56 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-cache: Yac
x-movieads-country: NO
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WXGk1pTva0WWRJAgM9pz7wuVeuJl6dH7S6wE6sqZwGiBlBVksB7mJ6rmrwkn6k7ceIxzeODNCc70UM6DAmtzFLVLKieAXoYDpKQJR9hGHxvqBHTWourtG0Y%2FE471TcNwfYs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879689617d6856a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| st.kinopoisk.ru/images/sm_actor/31163.jpg | 213.180.199.9 | | 1.4 kB |
URL st.kinopoisk.ru/images/sm_actor/31163.jpg IP213.180.199.9:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 52x82, Scaling: [none]x[none], YUV color, decoders should clamp Hash339969820228d12ca5d6b84a1633b338 ead57f1cc44e423f60298504b1728dfebbb13bee 350aa81d65a256a88c682fed0750c6710237b12f8a086dc59a6b2231614165a3
GET /images/sm_actor/31163.jpg HTTP/1.1
Host: st.kinopoisk.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://avatars.mds.yandex.net/get-kinopoisk-image/4483445/55a0edcc-525e-4b47-83b0-5079c6b1c7b0/52
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
date: Wed, 24 Apr 2024 13:45:56 GMT
access-control-allow-origin: *
set-cookie: _yasc=I4lxz4k4m6pB+02ZdPT6LywybbmQtAS2yYNz2p/QBt9YqWEtnz8rZ7QUCA7rzTromQ==; domain=.kinopoisk.ru; path=/; expires=Sat, 22 Apr 2034 13:45:56 GMT; secure
i=l1yaW59byfW5xTG9+1nSL7jLVtqvc8T6xW+a/8mxnZ+VL5Fg8qjBo/TJQIYBY+vUXjcvRAkJcEw3HEtuNt6ix4OCZSU=; Expires=Fri, 24-Apr-2026 13:45:56 GMT; Domain=.kinopoisk.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=8532239881713966356; Expires=Fri, 24-Apr-2026 13:45:56 GMT; Domain=.kinopoisk.ru; Path=/; Secure; SameSite=None
yashr=6240424621713966356; Path=/; Domain=.kinopoisk.ru; Expires=Thu, 24 Apr 2025 13:45:56 GMT; SameSite=None; Secure; HttpOnly
x-request-id: 1713966356863674-7487230437501777651
expires: Wed, 24 Apr 2024 13:55:56 GMT
x-response-request-id: 1713966356863674-7487230437501777651
cache-control: max-age=600
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| avatars.mds.yandex.net/get-kinopoisk-image/1777765/ccaa0be2-1a89-4fcb-ae4d-ac726ed8ed11/52 | 87.250.247.181 | 200 OK | 1.6 kB |
URL GET HTTP/2avatars.mds.yandex.net/get-kinopoisk-image/1777765/ccaa0be2-1a89-4fcb-ae4d-ac726ed8ed11/52 IP87.250.247.181:443
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerGlobalSign nv-sa Subject*.avatars.mds.yandex.net FingerprintBA:3A:F2:3D:C9:8F:4B:5C:E1:4D:48:8E:47:FD:3B:F8:C3:BE:0A:A2 ValidityWed, 20 Mar 2024 15:21:04 GMT - Sun, 20 Oct 2024 15:21:04 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 52x82, Scaling: [none]x[none], YUV color, decoders should clamp Hashaab65706dc16f43de69a5a0df7313945 ca1de8c07b40c599916b912d55f1e59496c501f9 e7e0f80799379c3912aa56617eea4dad2ef7e8a6d4f86beb5a2f994811d66c28
GET /get-kinopoisk-image/1777765/ccaa0be2-1a89-4fcb-ae4d-ac726ed8ed11/52 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: image/webp
content-length: 1648
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Fri, 19 Jun 2020 09:57:35 GMT
cache-control: max-age=604800,immutable
x-request-id: 90e73977d9c4ed9a
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=SAS"}]}
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| avatars.mds.yandex.net/get-kinopoisk-image/4483445/55a0edcc-525e-4b47-83b0-5079c6b1c7b0/52 | 87.250.247.181 | | 1.9 kB |
URL avatars.mds.yandex.net/get-kinopoisk-image/4483445/55a0edcc-525e-4b47-83b0-5079c6b1c7b0/52 IP87.250.247.181:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 52x82, Scaling: [none]x[none], YUV color, decoders should clamp Hashcfbae52bbdb364b620819970261bc3d1 393fece3afceff61f3d93f8511f8be5ab452a0bf ac264c3db40acebc2cde4c5188b6f122bae0f5a8f4b2111d5cfada9f9e7873e8
GET /get-kinopoisk-image/4483445/55a0edcc-525e-4b47-83b0-5079c6b1c7b0/52 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: image/webp
content-length: 1856
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Wed, 06 Mar 2024 12:33:22 GMT
cache-control: max-age=604800,immutable
x-request-id: 4b9dcfd18c3f6e5b
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=SAS"}]}
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| kimberlite.io/rtb/sync/skyadvert?u=9bf42376-b11a-dc2e-8c09-c2d8a1f8c7e7 | 217.199.220.43 | | 0 B |
URL kimberlite.io/rtb/sync/skyadvert?u=9bf42376-b11a-dc2e-8c09-c2d8a1f8c7e7 IP217.199.220.43:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/skyadvert?u=9bf42376-b11a-dc2e-8c09-c2d8a1f8c7e7 HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Wed, 24 Apr 2024 13:45:57 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: u=ZikNFZI_zBc~cwP-f7xSvAPyEzQDkxdZT32lCsw; path=/; max-age=7776000; samesite=none; httponly; secure
as=hPJ_CGYpDRU; max-age=604800; samesite=none; httponly; secure
f=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsolta%26bid%3DZikNFZI_zBc; max-age=30; samesite=none; httponly; secure
n=1; max-age=30; samesite=none; httponly; secure
location: https://sync.dsp.solta.io/match/kimberlite?id=ZikNFZI_zBc
referrer-policy: no-referrer
server-timing: app;srv=0;dur=0.0002
|
|
| sync.dmp.otm-r.com/match/skyadvert | 194.55.244.177 | | 61 B |
URL sync.dmp.otm-r.com/match/skyadvert IP194.55.244.177:0
File typeHTML document, ASCII text Hash4a54511672a3c9a7b58dc6e029b1813f 74ab0435b97e68a5a496ff4c5187e6fb1a715716 985a9cb85b88767a772c2cc00bbba7948776c44e9328fe4b7c434eda621af0c6
GET /match/skyadvert HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.23.2
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: text/html; charset=utf-8
content-length: 61
access-control-allow-origin: *
location: /match/skyadvert?otcm_check=1713966357
set-cookie: mpid=NjYyOTBkMTUwMTRiOGU2Yw==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/csync?cn=hbrdcookie2&bid=efb0ab642581b4586944 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/csync?cn=hbrdcookie2&bid=efb0ab642581b4586944 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=hbrdcookie2&bid=efb0ab642581b4586944 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: image/jpeg
content-length: 0
set-cookie: hbrdcookie2=efb0ab642581b4586944; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/csync?cn=otclkbid&bid=VU0cO9fZFTbYzyf | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/csync?cn=otclkbid&bid=VU0cO9fZFTbYzyf IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=otclkbid&bid=VU0cO9fZFTbYzyf HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8; hbrdcookie2=efb0ab642581b4586944
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: image/jpeg
content-length: 0
set-cookie: otclkbid=VU0cO9fZFTbYzyf; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/csync?cn=bzcookie&bid=b532de35-9400-48ba-78bd-5db5cc175cb3 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/csync?cn=bzcookie&bid=b532de35-9400-48ba-78bd-5db5cc175cb3 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=bzcookie&bid=b532de35-9400-48ba-78bd-5db5cc175cb3 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8; hbrdcookie2=efb0ab642581b4586944
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: image/jpeg
content-length: 0
set-cookie: bzcookie=b532de35-9400-48ba-78bd-5db5cc175cb3; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/csync?cn=ohmybid&bid=97b584c1-f2b8-439d-b0f7-679d83e7dc41 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/csync?cn=ohmybid&bid=97b584c1-f2b8-439d-b0f7-679d83e7dc41 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=ohmybid&bid=97b584c1-f2b8-439d-b0f7-679d83e7dc41 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8; hbrdcookie2=efb0ab642581b4586944
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: image/jpeg
content-length: 0
set-cookie: ohmybid=97b584c1-f2b8-439d-b0f7-679d83e7dc41; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| rating.kinopoisk.ru/4878248.gif | 213.180.199.9 | | 898 B |
URL rating.kinopoisk.ru/4878248.gif IP213.180.199.9:0
File typeGIF image data, version 87a, 102 x 38 Hash96866d564060eb70ec365334b3586dfc 34508fae3f678ef0fcba98a25445a98f7b7ecafb f7cbe5cd3bc7566b98041f73c2a6512f6643a26d101a2163b6b25e97660497ae
GET /4878248.gif HTTP/1.1
Host: rating.kinopoisk.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 13:45:57 GMT
x-partial-components-secret: YTJlNDdhZmI5MjEyNjc1M2Q0OTEzODU2
x-content-type-options: nosniff
set-cookie: _yasc=59IFu+YauCqAZt5xmYYRBxpYcpyzCUM/5aNYK4DvLZn+ZlYTQvn/a+M3d84I/N9p; domain=.kinopoisk.ru; path=/; expires=Sat, 22 Apr 2034 13:45:57 GMT; secure
i=Vs2X84RHMOJd1dTdKEqd9MFisoXsGonhq98DcaiBLSFpTlRVvSCEDWEEg+0GkUnHjU5kidQVS9bBXbLLBLYs2UQv97o=; Expires=Fri, 24-Apr-2026 13:45:57 GMT; Domain=.kinopoisk.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=5025187591713966357; Expires=Fri, 24-Apr-2026 13:45:57 GMT; Domain=.kinopoisk.ru; Path=/; Secure; SameSite=None
yashr=8336422931713966357; Path=/; Domain=.kinopoisk.ru; Expires=Thu, 24 Apr 2025 13:45:57 GMT; SameSite=None; Secure; HttpOnly
x-request-id: 1713966357227956-15883920516146783512
x-frame-options: DENY
expires: Wed, 24 Apr 2024 13:38:42 GMT
cache-control: max-age=300, must-revalidate, no-cache, private
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| dm-eu.hybrid.ai/match?id=106&vid=0A00007F150D2966E32F104702A44A3F | 37.230.131.21 | | 0 B |
URL dm-eu.hybrid.ai/match?id=106&vid=0A00007F150D2966E32F104702A44A3F IP37.230.131.21:0 ASN#200197 Hybrid Adtech Sp.z.o.o.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=106&vid=0A00007F150D2966E32F104702A44A3F HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: vid=efb0ab642581b4586944
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Wed, 24 Apr 2024 13:45:57 GMT
content-length: 0
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
location: https://pixel.onaudience.com/?partner=207&mapped=efb0ab642581b4586944&noredirect=1
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 565
x-xss-protection: 1; mode=block
access-control-allow-origin: https://www.acint.net
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
|
|
| ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D | 193.3.184.213 | | 142 B |
URL ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D IP193.3.184.213:0
File typeHTML document, ASCII text, with CRLF line terminators Hash82c98e8e012b79c922655461171cc2fa 0828d79135573276005b04be42d79a8a3291292b 745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Wed, 24 Apr 2024 13:45:57 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=3B03420A150D2966420006AF02B45473
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=CkIDO2YpDRWvBgBCc1S0AspqnxnPz5wz0NwLhxPPaKxoWkzw; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None
|
|
| sync.gonet-ads.com/match/sape.js?id=0A00007F150D2966E32F104702A44A3F | 188.42.105.236 | | 43 B |
URL sync.gonet-ads.com/match/sape.js?id=0A00007F150D2966E32F104702A44A3F IP188.42.105.236:0
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape.js?id=0A00007F150D2966E32F104702A44A3F HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
|
|
| exchange.buzzoola.com/cookiesync/dsp/sape-banner?uid=0A00007F150D2966E32F104702A44A3F&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 | 195.201.198.232 | | 269 B |
URL exchange.buzzoola.com/cookiesync/dsp/sape-banner?uid=0A00007F150D2966E32F104702A44A3F&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 IP195.201.198.232:0 ASN#24940 Hetzner Online GmbH
File typeHTML document, ASCII text Hashd729ade90c27039e54a22bd8cfb88678 ddf5a2d2b0193672580a87d186c3b803091b93d1 57d3dc8205bb3f171620b6c61a8ccaf1dfc200ca3b28a4a8dc78a9b33b92ef0f
GET /cookiesync/dsp/sape-banner?uid=0A00007F150D2966E32F104702A44A3F&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 307 Temporary Redirect
server: nginx
date: Wed, 24 Apr 2024 13:46:01 GMT
content-type: text/html; charset=utf-8
content-length: 269
location: /cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0A00007F150D2966E32F104702A44A3F&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126
set-cookie: uuid=80862cfc-e5e3-41c5-57af-eba4c1d7543a; Path=/; Domain=buzzoola.com; Expires=Fri, 24 May 2024 13:46:01 GMT; Max-Age=2592000; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2
|
|
| match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D | 167.235.14.51 | | 0 B |
URL match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D IP167.235.14.51:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D HTTP/1.1
Host: match.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: uid=97b584c1-f2b8-439d-b0f7-679d83e7dc41.66290d15.b4a875d5b3ba3156
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 24 Apr 2024 13:45:57 GMT
content-length: 0
bidder: bid-20 1.1531.0cf371f1
location: https://mc.acint.net/match?dp=217&euid=97b584c1-f2b8-439d-b0f7-679d83e7dc41
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| sync.dmp.otm-r.com/match/sape?id=0A00007F150D2966E32F104702A44A3F | 194.55.244.177 | | 94 B |
URL sync.dmp.otm-r.com/match/sape?id=0A00007F150D2966E32F104702A44A3F IP194.55.244.177:0
File typeHTML document, ASCII text Hashc9b84dddea7bc8d5bbd3f0a5bebc7918 30f3c525755842d9f27a227e21488cb4d74455ae 914e337e4e9dd9f457e946144803ec02aede3bd783beee4df1d09bbcc6c19cad
GET /match/sape?id=0A00007F150D2966E32F104702A44A3F HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: mpid=NjYyOTBkMTUwMTRiOGU2Yw==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.23.2
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: text/html; charset=utf-8
content-length: 94
access-control-allow-origin: *
location: https://www.acint.net/match?dp=68&euid=NjYyOTBkMTUwMTRiOGU2Yw%3D%3D
set-cookie: mpid=NjYyOTBkMTUwMTRiOGU2Yw==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| sync.programmatica.com/match/01 | 158.160.128.78 | | 43 B |
URL sync.programmatica.com/match/01 IP158.160.128.78:0 ASN#200350 Yandex.Cloud LLC
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/01 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| kimberlite.io/rtb/sync/sape2?u=0A00007F150D2966E32F104702A44A3F | 217.199.220.43 | | 0 B |
URL kimberlite.io/rtb/sync/sape2?u=0A00007F150D2966E32F104702A44A3F IP217.199.220.43:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/sape2?u=0A00007F150D2966E32F104702A44A3F HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: as=hPJ_CGYpDRU; f=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsolta%26bid%3DZikNFZI_zBc; n=1; u=ZikNFZI_zBc~cwP-f7xSvAPyEzQDkxdZT32lCsw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Wed, 24 Apr 2024 13:45:58 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: as=hPJ_CGYpDRX5atR4ZikNFQ; max-age=604800; samesite=none; httponly; secure
n=2; max-age=30; samesite=none; httponly; secure
location: https://solta-sync.rutarget.ru/sync
referrer-policy: no-referrer
server-timing: app;srv=0;dur=0.0003
|
|
| a.utraff.com/sync?ssp=8&id=0A00007F150D2966E32F104702A44A3F | 104.26.7.189 | | 0 B |
URL a.utraff.com/sync?ssp=8&id=0A00007F150D2966E32F104702A44A3F IP104.26.7.189:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=8&id=0A00007F150D2966E32F104702A44A3F HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Fri, 24 May 2024 16:45:58 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Fri, 24 May 2024 16:45:58 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=InrHyRdKYdMlnDI0IQ9fICkxR%2F0b6oWtSsh0O3j6tFcHDagjE1CpZLCPboXCIAhT0hh2ynmvPAl03H6fjTksFrHuLDH1S1pLBCbf5jL%2BAGRwrRDoXRxN4Eu5kfdf7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879689697e065695-OSL
X-Firefox-Spdy: h2
|
|
| sync.dmp.otm-r.com/match/skyadvert?otcm_check=1713966357 | 194.55.244.177 | | 104 B |
URL sync.dmp.otm-r.com/match/skyadvert?otcm_check=1713966357 IP194.55.244.177:0
File typeHTML document, ASCII text Hashc197e8991f53c8ad2dcf8199d762e520 7db3200993118eb6463978bfaf250198994217c3 4ddf0bff039039533c9fd438b79c5053604c0e1affda1b154fa613da4fd9b83c
GET /match/skyadvert?otcm_check=1713966357 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: mpid=NjYyOTBkMTUwMTRiOGU2Yw==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.23.2
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: text/html; charset=utf-8
content-length: 104
access-control-allow-origin: *
location: https://code.moviead55.ru/go/csync?cn=otmbid&bid=NjYyOTBkMTUwMTRiOGU2Yw%3D%3D
set-cookie: mpid=NjYyOTBkMTUwMTRiOGU2Yw==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| s.uuidksinc.net/match/396/?remote_uid=0A00007F150D2966E32F104702A44A3F | 31.220.27.134 | | 0 B |
URL s.uuidksinc.net/match/396/?remote_uid=0A00007F150D2966E32F104702A44A3F IP31.220.27.134:0 ASN#39572 DataWeb Global Group B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/396/?remote_uid=0A00007F150D2966E32F104702A44A3F HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.23.2
date: Wed, 24 Apr 2024 13:45:58 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=uTxE2nMrVrW8Qpdb5G5m
set-cookie: jcsuuid=uTxE2nMrVrW8Qpdb5G5m; expires=Thu, 24 Apr 2025 13:45:58 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| sync.bumlam.com/?src=sap1&uid=0A00007F150D2966E32F104702A44A3F | 31.172.81.159 | | 0 B |
URL sync.bumlam.com/?src=sap1&uid=0A00007F150D2966E32F104702A44A3F IP31.172.81.159:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&uid=0A00007F150D2966E32F104702A44A3F HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Wed, 24 Apr 2024 13:45:58 GMT
Content-Length: 0
Connection: close
Set-Cookie: suuid3=IiRmYWQzZDFhZS0wMjQwLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Tue, 19 Apr 2044 13:45:58 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARiWmqSxBmIgMEEwMDAwN0YxNTBEMjk2NkUzMkYxMDQ3MDJBNDRBM0aiARD609GuAkAR74bgACWQwGR8
ETag: fad3d1ae-0240-11ef-86e0-002590c0647c
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
|
|
| exchange.buzzoola.com/cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0A00007F150D2966E32F104702A44A3F&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 | 195.201.198.232 | | 156 B |
URL exchange.buzzoola.com/cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0A00007F150D2966E32F104702A44A3F&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 IP195.201.198.232:0 ASN#24940 Hetzner Online GmbH
File typeHTML document, ASCII text Hash977e65ca3d75a7ae003b8f71f82f15ec 57dba13de8f98cf3c591e5747001e8d8c2ee9a0d 83043e0fdf9909183afd7625533fe2c899282bda7b18e5b1a4de359b2d7bc508
GET /cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0A00007F150D2966E32F104702A44A3F&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: uuid=80862cfc-e5e3-41c5-57af-eba4c1d7543a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: text/html; charset=utf-8
content-length: 156
location: https://mc.acint.net/rmatch?dp=126&euid=80862cfc-e5e3-41c5-57af-eba4c1d7543a&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126
serverid: TODO
X-Firefox-Spdy: h2
|
|
| www.acint.net/match?dp=68&euid=NjYyOTBkMTUwMTRiOGU2Yw%3D%3D | 193.3.184.139 | | 43 B |
URL www.acint.net/match?dp=68&euid=NjYyOTBkMTUwMTRiOGU2Yw%3D%3D IP193.3.184.139:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=68&euid=NjYyOTBkMTUwMTRiOGU2Yw%3D%3D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; cSyncDp14v4=1713966357; cSyncDp14v6=1713966357; cSyncDp17v2=1713966357; cSyncDp45v5=1713966357; cSyncDp53v5=1713966357; cSyncDp62v2=1713966357; cSyncDp67v3=1713966357; cSyncDp68v3=1713966357; cSyncDp71v2=1713966357; cSyncDp80v2=1713966357; cSyncDp85v2=1713966357; cSyncDp95v4=1713966357; cSyncDp98v3=1713966357; cSyncDp104v2=1713966357; cSyncDp107v2=1713966357; cSyncDp110v3=1713966357; cSyncDp125v4=1713966357; cSyncDp126v3=1713966357; cSyncDp127v2=1713966357; cSyncDp129v2=1713966357; cSyncDp136v3=1713966357; cSyncDp146v2=1713966357; cSyncDp148v2=1713966357; cSyncDp149v3=1713966357; cSyncDp151v2=1713966357; cSyncDp251v1=1713966357; cSyncDp186v2=1713966357; cSyncDp217v2=1713966357; cSyncDp235v2=1713966357; cSyncDp239v2=1713966357; cSyncDp243v2=1713966357; cSyncDp260v2=1713966357; cSyncDp244v2=1713966357; cSyncDp248v2=1713966357; cSyncDp261v1=1713966357; cSyncDp289v2=1713966357; cSyncDp293v1=1713966357; cSyncDp296v2=1713966357
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| pixel.dsp.onetarget.ru/sape/pixel?id=0A00007F150D2966E32F104702A44A3F | 130.193.53.230 | | 0 B |
URL pixel.dsp.onetarget.ru/sape/pixel?id=0A00007F150D2966E32F104702A44A3F IP130.193.53.230:0 ASN#200350 Yandex.Cloud LLC
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/pixel?id=0A00007F150D2966E32F104702A44A3F HTTP/1.1
Host: pixel.dsp.onetarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 24 Apr 2024 13:45:58 GMT
content-length: 0
location: https://x01.aidata.io/0.gif?pid=5813217&id=f29bdff0-01dc-4cc7-b0a3-68902fe198ee
set-cookie: USER_ID=f29bdff0-01dc-4cc7-b0a3-68902fe198ee;max-age=2147483647;Secure;HttpOnly;SameSite=None
SAPE_USER_ID=0A00007F150D2966E32F104702A44A3F;max-age=30758400;Secure;HttpOnly;SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/csync?cn=otmbid&bid=NjYyOTBkMTUwMTRiOGU2Yw%3D%3D | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/csync?cn=otmbid&bid=NjYyOTBkMTUwMTRiOGU2Yw%3D%3D IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=otmbid&bid=NjYyOTBkMTUwMTRiOGU2Yw%3D%3D HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8; hbrdcookie2=efb0ab642581b4586944; otclkbid=VU0cO9fZFTbYzyf; bzcookie=b532de35-9400-48ba-78bd-5db5cc175cb3; ohmybid=97b584c1-f2b8-439d-b0f7-679d83e7dc41
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: image/jpeg
content-length: 0
set-cookie: otmbid=NjYyOTBkMTUwMTRiOGU2Yw==; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| acint.net/match?dp=14&euid=3B03420A150D2966420006AF02B45473 | 193.3.184.139 | | 43 B |
URL acint.net/match?dp=14&euid=3B03420A150D2966420006AF02B45473 IP193.3.184.139:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=14&euid=3B03420A150D2966420006AF02B45473 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; cSyncDp14v4=1713966357; cSyncDp14v6=1713966357; cSyncDp17v2=1713966357; cSyncDp45v5=1713966357; cSyncDp53v5=1713966357; cSyncDp62v2=1713966357; cSyncDp67v3=1713966357; cSyncDp68v3=1713966357; cSyncDp71v2=1713966357; cSyncDp80v2=1713966357; cSyncDp85v2=1713966357; cSyncDp95v4=1713966357; cSyncDp98v3=1713966357; cSyncDp104v2=1713966357; cSyncDp107v2=1713966357; cSyncDp110v3=1713966357; cSyncDp125v4=1713966357; cSyncDp126v3=1713966357; cSyncDp127v2=1713966357; cSyncDp129v2=1713966357; cSyncDp136v3=1713966357; cSyncDp146v2=1713966357; cSyncDp148v2=1713966357; cSyncDp149v3=1713966357; cSyncDp151v2=1713966357; cSyncDp251v1=1713966357; cSyncDp186v2=1713966357; cSyncDp217v2=1713966357; cSyncDp235v2=1713966357; cSyncDp239v2=1713966357; cSyncDp243v2=1713966357; cSyncDp260v2=1713966357; cSyncDp244v2=1713966357; cSyncDp248v2=1713966357; cSyncDp261v1=1713966357; cSyncDp289v2=1713966357; cSyncDp293v1=1713966357; cSyncDp296v2=1713966357
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| acint.net/rmatch?dp=14&euid=2A03420A150D29664200310602953DBA&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D | 193.3.184.139 | | 154 B |
URL acint.net/rmatch?dp=14&euid=2A03420A150D29664200310602953DBA&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D IP193.3.184.139:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=14&euid=2A03420A150D29664200310602953DBA&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: test_cookie=CheckForPermission; aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; cSyncDp14v4=1713966357; cSyncDp14v6=1713966357; cSyncDp17v2=1713966357; cSyncDp45v5=1713966357; cSyncDp53v5=1713966357; cSyncDp62v2=1713966357; cSyncDp67v3=1713966357; cSyncDp68v3=1713966357; cSyncDp71v2=1713966357; cSyncDp80v2=1713966357; cSyncDp85v2=1713966357; cSyncDp95v4=1713966357; cSyncDp98v3=1713966357; cSyncDp104v2=1713966357; cSyncDp107v2=1713966357; cSyncDp110v3=1713966357; cSyncDp125v4=1713966357; cSyncDp126v3=1713966357; cSyncDp127v2=1713966357; cSyncDp129v2=1713966357; cSyncDp136v3=1713966357; cSyncDp146v2=1713966357; cSyncDp148v2=1713966357; cSyncDp149v3=1713966357; cSyncDp151v2=1713966357; cSyncDp251v1=1713966357; cSyncDp186v2=1713966357; cSyncDp217v2=1713966357; cSyncDp235v2=1713966357; cSyncDp239v2=1713966357; cSyncDp243v2=1713966357; cSyncDp260v2=1713966357; cSyncDp244v2=1713966357; cSyncDp248v2=1713966357; cSyncDp261v1=1713966357; cSyncDp289v2=1713966357; cSyncDp293v1=1713966357; cSyncDp296v2=1713966357
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: text/html
content-length: 154
location: https://code.moviead55.ru/go/csync?cn=sapecookie&bid=0A00007F150D2966E32F104702A44A3F
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| mc.acint.net/match?dp=217&euid=97b584c1-f2b8-439d-b0f7-679d83e7dc41 | 193.3.184.139 | | 43 B |
URL mc.acint.net/match?dp=217&euid=97b584c1-f2b8-439d-b0f7-679d83e7dc41 IP193.3.184.139:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=217&euid=97b584c1-f2b8-439d-b0f7-679d83e7dc41 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; cSyncDp14v4=1713966357; cSyncDp14v6=1713966357; cSyncDp17v2=1713966357; cSyncDp45v5=1713966357; cSyncDp53v5=1713966357; cSyncDp62v2=1713966357; cSyncDp67v3=1713966357; cSyncDp68v3=1713966357; cSyncDp71v2=1713966357; cSyncDp80v2=1713966357; cSyncDp85v2=1713966357; cSyncDp95v4=1713966357; cSyncDp98v3=1713966357; cSyncDp104v2=1713966357; cSyncDp107v2=1713966357; cSyncDp110v3=1713966357; cSyncDp125v4=1713966357; cSyncDp126v3=1713966357; cSyncDp127v2=1713966357; cSyncDp129v2=1713966357; cSyncDp136v3=1713966357; cSyncDp146v2=1713966357; cSyncDp148v2=1713966357; cSyncDp149v3=1713966357; cSyncDp151v2=1713966357; cSyncDp251v1=1713966357; cSyncDp186v2=1713966357; cSyncDp217v2=1713966357; cSyncDp235v2=1713966357; cSyncDp239v2=1713966357; cSyncDp243v2=1713966357; cSyncDp260v2=1713966357; cSyncDp244v2=1713966357; cSyncDp248v2=1713966357; cSyncDp261v1=1713966357; cSyncDp289v2=1713966357; cSyncDp293v1=1713966357; cSyncDp296v2=1713966357
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| sync.adspend.space/sape?uid=0A00007F150D2966E32F104702A44A3F | 5.189.234.227 | | 149 B |
URL sync.adspend.space/sape?uid=0A00007F150D2966E32F104702A44A3F IP5.189.234.227:0 ASN#50340 OOO Network of data-centers Selectel
File typeHTML document, ASCII text Hash42b4c6457ff1f83032a307d32fa552ad c9eb1adb1af3cf48c3a15b1446693126c68ae1a6 70d5ae8664eb1ecef2c61d82c072944ed90e10a9c13ed260011ead38e1df2bae
GET /sape?uid=0A00007F150D2966E32F104702A44A3F HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.22.1
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: text/html; charset=utf-8
content-length: 149
location: https://sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Ddd70b512-ceec-49be-97a5-0031ba19dfe8
set-cookie: as-user=dd70b512-ceec-49be-97a5-0031ba19dfe8; Path=/; Max-Age=31536000; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.acint.net/match?dp=127&euid=uTxE2nMrVrW8Qpdb5G5m | 193.3.184.139 | | 43 B |
URL www.acint.net/match?dp=127&euid=uTxE2nMrVrW8Qpdb5G5m IP193.3.184.139:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=127&euid=uTxE2nMrVrW8Qpdb5G5m HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; cSyncDp14v4=1713966357; cSyncDp14v6=1713966357; cSyncDp17v2=1713966357; cSyncDp45v5=1713966357; cSyncDp53v5=1713966357; cSyncDp62v2=1713966357; cSyncDp67v3=1713966357; cSyncDp68v3=1713966357; cSyncDp71v2=1713966357; cSyncDp80v2=1713966357; cSyncDp85v2=1713966357; cSyncDp95v4=1713966357; cSyncDp98v3=1713966357; cSyncDp104v2=1713966357; cSyncDp107v2=1713966357; cSyncDp110v3=1713966357; cSyncDp125v4=1713966357; cSyncDp126v3=1713966357; cSyncDp127v2=1713966357; cSyncDp129v2=1713966357; cSyncDp136v3=1713966357; cSyncDp146v2=1713966357; cSyncDp148v2=1713966357; cSyncDp149v3=1713966357; cSyncDp151v2=1713966357; cSyncDp251v1=1713966357; cSyncDp186v2=1713966357; cSyncDp217v2=1713966357; cSyncDp235v2=1713966357; cSyncDp239v2=1713966357; cSyncDp243v2=1713966357; cSyncDp260v2=1713966357; cSyncDp244v2=1713966357; cSyncDp248v2=1713966357; cSyncDp261v1=1713966357; cSyncDp289v2=1713966357; cSyncDp293v1=1713966357; cSyncDp296v2=1713966357
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| logger.moviead55.ru/logger.php?t=target_country_load&c=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&a=&m=%7B%22browser%22%3A%22%7B%5C%22name%5C%22%3A%5C%22firefox%5C%22%2C%5C%22version%5C%22%3A%5C%2296%5C%22%7D%22%2C%22isMobile%22%3Afalse%2C%22format%22%3A%22new%22%7D&v=ea59f7a89d04d570fbb4ef98a8a1693c&o=undefined | 193.200.65.146 | | 81 B |
URL logger.moviead55.ru/logger.php?t=target_country_load&c=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&a=&m=%7B%22browser%22%3A%22%7B%5C%22name%5C%22%3A%5C%22firefox%5C%22%2C%5C%22version%5C%22%3A%5C%2296%5C%22%7D%22%2C%22isMobile%22%3Afalse%2C%22format%22%3A%22new%22%7D&v=ea59f7a89d04d570fbb4ef98a8a1693c&o=undefined IP193.200.65.146:0 ASN#6681 Giveme Cloud Sp Z O O
File typePNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced Hashb357a19c87624c7c4d131aeeb4ae677f c7a9c45fd419815a5ab1998503a9f03514c0e229 497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?t=target_country_load&c=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&a=&m=%7B%22browser%22%3A%22%7B%5C%22name%5C%22%3A%5C%22firefox%5C%22%2C%5C%22version%5C%22%3A%5C%2296%5C%22%7D%22%2C%22isMobile%22%3Afalse%2C%22format%22%3A%22new%22%7D&v=ea59f7a89d04d570fbb4ef98a8a1693c&o=undefined HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:56 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| match.new-programmatic.com/userbind?src=sape&id=0A00007F150D2966E32F104702A44A3F | 217.65.2.150 | | 0 B |
URL match.new-programmatic.com/userbind?src=sape&id=0A00007F150D2966E32F104702A44A3F IP217.65.2.150:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0A00007F150D2966E32F104702A44A3F HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Wed, 24 Apr 2024 13:45:58 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
|
|
| pix.bumlam.com/sync/sape/check?sspuid=0A00007F150D2966E32F104702A44A3F | 31.172.81.158 | | 0 B |
URL pix.bumlam.com/sync/sape/check?sspuid=0A00007F150D2966E32F104702A44A3F IP31.172.81.158:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/check?sspuid=0A00007F150D2966E32F104702A44A3F HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 24 Apr 2024 13:45:58 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.bumlam.com/?src=sape
|
|
| nr.bidderstack.com/sape/cm?user_id=0A00007F150D2966E32F104702A44A3F | 142.132.211.137 | | 0 B |
URL nr.bidderstack.com/sape/cm?user_id=0A00007F150D2966E32F104702A44A3F IP142.132.211.137:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/cm?user_id=0A00007F150D2966E32F104702A44A3F HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 24 Apr 2024 13:45:58 GMT
Content-Length: 0
Connection: keep-alive
Location: /sape/cm?user_id=0A00007F150D2966E32F104702A44A3F&pupa=1
Set-Cookie: pupa=187da8a4-5e7b-8768-ed39-68cc113f0aec; domain=.bidderstack.com; path=/; expires=Thu, 24-Apr-2025 13:45:58 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
|
|
| sync.dsp.solta.io/match/kimberlite?id=ZikNFZI_zBc | 217.199.220.72 | | 43 B |
URL sync.dsp.solta.io/match/kimberlite?id=ZikNFZI_zBc IP217.199.220.72:0
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/kimberlite?id=ZikNFZI_zBc HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| sync.dsp.solta.io/match/sape?id=0A00007F150D2966E32F104702A44A3F | 217.199.220.72 | | 43 B |
URL sync.dsp.solta.io/match/sape?id=0A00007F150D2966E32F104702A44A3F IP217.199.220.72:0
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape?id=0A00007F150D2966E32F104702A44A3F HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D95%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D95%26euid%3D | 83.222.96.170 | | 126 B |
URL ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D95%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D95%26euid%3D IP83.222.96.170:0
File typeHTML document, ASCII text Hash54d0318aef7059811767b4c66480ace1 c72795a94571a099696f9f61c110591597f39fb4 3bb66179c9195c1215954beb904b21a564982d4d2f2172c82a81795ce7938f10
GET /sspmatch?url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D95%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.22.0
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: text/html; charset=utf-8
content-length: 126
location: https://mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=UGKSORRT
set-cookie: uid=UGKSORRT; Expires=Sat, 22 Apr 2034 13:45:58 GMT
X-Firefox-Spdy: h2
|
|
| adx.com.ru/sape-sync?uid=0A00007F150D2966E32F104702A44A3F | 83.222.117.2 | | 169 B |
URL adx.com.ru/sape-sync?uid=0A00007F150D2966E32F104702A44A3F IP83.222.117.2:0
File typeHTML document, ASCII text, with CRLF line terminators Hash3456231c174fb2d76d51f73b828635a7 49c43f133ee881851becd78c2e9e885ebaad005e 02a097cad2b1a9db6797fdb73c0dcd0d66d8ae7d4b5f906658bb45a502c2c106
GET /sape-sync?uid=0A00007F150D2966E32F104702A44A3F HTTP/1.1
Host: adx.com.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 429 Too Many Requests
server: nginx/1.22.0
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: text/html
content-length: 169
X-Firefox-Spdy: h2
|
|
| cs.agency2.ru/p?ssp=sp&uid=0A00007F150D2966E32F104702A44A3F | 23.111.107.44 | | 0 B |
URL cs.agency2.ru/p?ssp=sp&uid=0A00007F150D2966E32F104702A44A3F IP23.111.107.44:0 ASN#39134 Edinaya Set Limited Liability Company
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&uid=0A00007F150D2966E32F104702A44A3F HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 24 Apr 2024 13:45:58 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=1fb9204c-2dc1-4a0d-b687-f5423cb2fd82
Set-Cookie: uuid=1fb9204c-2dc1-4a0d-b687-f5423cb2fd82; expires=Tue, 15 Apr 2025 13:45:58 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
|
|
| mc.acint.net/rmatch?dp=126&euid=80862cfc-e5e3-41c5-57af-eba4c1d7543a&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126 | 193.3.184.139 | | 154 B |
URL mc.acint.net/rmatch?dp=126&euid=80862cfc-e5e3-41c5-57af-eba4c1d7543a&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126 IP193.3.184.139:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=126&euid=80862cfc-e5e3-41c5-57af-eba4c1d7543a&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; cSyncDp14v4=1713966357; cSyncDp14v6=1713966357; cSyncDp17v2=1713966357; cSyncDp45v5=1713966357; cSyncDp53v5=1713966357; cSyncDp62v2=1713966357; cSyncDp67v3=1713966357; cSyncDp68v3=1713966357; cSyncDp71v2=1713966357; cSyncDp80v2=1713966357; cSyncDp85v2=1713966357; cSyncDp95v4=1713966357; cSyncDp98v3=1713966357; cSyncDp104v2=1713966357; cSyncDp107v2=1713966357; cSyncDp110v3=1713966357; cSyncDp125v4=1713966357; cSyncDp126v3=1713966357; cSyncDp127v2=1713966357; cSyncDp129v2=1713966357; cSyncDp136v3=1713966357; cSyncDp146v2=1713966357; cSyncDp148v2=1713966357; cSyncDp149v3=1713966357; cSyncDp151v2=1713966357; cSyncDp251v1=1713966357; cSyncDp186v2=1713966357; cSyncDp217v2=1713966357; cSyncDp235v2=1713966357; cSyncDp239v2=1713966357; cSyncDp243v2=1713966357; cSyncDp260v2=1713966357; cSyncDp244v2=1713966357; cSyncDp248v2=1713966357; cSyncDp261v1=1713966357; cSyncDp289v2=1713966357; cSyncDp293v1=1713966357; cSyncDp296v2=1713966357
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=126
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/csync?cn=sapecookie&bid=0A00007F150D2966E32F104702A44A3F | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/csync?cn=sapecookie&bid=0A00007F150D2966E32F104702A44A3F IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=sapecookie&bid=0A00007F150D2966E32F104702A44A3F HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8; hbrdcookie2=efb0ab642581b4586944; otclkbid=VU0cO9fZFTbYzyf; bzcookie=b532de35-9400-48ba-78bd-5db5cc175cb3; ohmybid=97b584c1-f2b8-439d-b0f7-679d83e7dc41; otmbid=NjYyOTBkMTUwMTRiOGU2Yw==; 680rmads=1713966358
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: image/jpeg
content-length: 0
set-cookie: sapecookie=0A00007F150D2966E32F104702A44A3F; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/vast2?key=ea59f7a89d04d570fbb4ef98a8a1693c&sid=autoplay&cp.adsource=Dhs_out_gam&cp.adtype=pre&vt=100&fp=[fp]&w=400&h=225&vid=&fpro=&suri=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&rdd1=true&cp.referer=https%253A%252F%252Frutor.is%252Ftorrent%252F970410e&cp.cb=8e498e5d-0e21-c25d-0399-7bf8ba4984e3 | 193.200.65.151 | | 79 B |
URL code.moviead55.ru/vast2?key=ea59f7a89d04d570fbb4ef98a8a1693c&sid=autoplay&cp.adsource=Dhs_out_gam&cp.adtype=pre&vt=100&fp=[fp]&w=400&h=225&vid=&fpro=&suri=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&rdd1=true&cp.referer=https%253A%252F%252Frutor.is%252Ftorrent%252F970410e&cp.cb=8e498e5d-0e21-c25d-0399-7bf8ba4984e3 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
File typegzip compressed data, from Unix Hashb6983f1a0f7f97ef276001797e8a93ca 834dd440c906069bbaeff287ef411f9b0c4a941f a6d73ed93b99d7ed995dfdd498855ad7a78bec9c57ec929b3d69331973956558
GET /vast2?key=ea59f7a89d04d570fbb4ef98a8a1693c&sid=autoplay&cp.adsource=Dhs_out_gam&cp.adtype=pre&vt=100&fp=[fp]&w=400&h=225&vid=&fpro=&suri=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&rdd1=true&cp.referer=https%253A%252F%252Frutor.is%252Ftorrent%252F970410e&cp.cb=8e498e5d-0e21-c25d-0399-7bf8ba4984e3 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rutor.is
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8; hbrdcookie2=efb0ab642581b4586944; otclkbid=VU0cO9fZFTbYzyf; bzcookie=b532de35-9400-48ba-78bd-5db5cc175cb3; ohmybid=97b584c1-f2b8-439d-b0f7-679d83e7dc41; otmbid=NjYyOTBkMTUwMTRiOGU2Yw==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: text/xml;charset=UTF-8
vary: Accept-Encoding
x-movieads-cors-qex: Referer
x-movieads-path: /
access-control-allow-credentials: true
access-control-allow-origin: https://rutor.is
x-movieads-udata: cache,parsed,73881
x-movieads-referrer: https://rutor.is/
x-cache-source: Rist
x-movieads-mrc: no
x-movieads-ref: {"Scheme":"https","Opaque":"","User":null,"Host":"rutor.is","Path":"/","RawPath":"","OmitHost":false,"ForceQuery":false,"RawQuery":"","Fragment":"","RawFragment":""}
set-cookie: 680rmads=1713966358; max-age=31536000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Ddd70b512-ceec-49be-97a5-0031ba19dfe8 | 5.189.234.227 | | 102 B |
URL sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Ddd70b512-ceec-49be-97a5-0031ba19dfe8 IP5.189.234.227:0 ASN#50340 OOO Network of data-centers Selectel
File typeHTML document, ASCII text Hashcf2b02e1ed609f8c2f6b278d8720bbc0 84b88a7b05cfb865f57666e3948cec8103537c36 b8894d10009ba8285c7e0583d58166dd9da05b601447916b4124cec4510634c8
GET /check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Ddd70b512-ceec-49be-97a5-0031ba19dfe8 HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: as-user=dd70b512-ceec-49be-97a5-0031ba19dfe8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.22.1
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: text/html; charset=utf-8
content-length: 102
location: https://www.acint.net/match?dp=98&euid=dd70b512-ceec-49be-97a5-0031ba19dfe8
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: PUT, GET, POST, OPTIONS
access-control-allow-headers: Content-Type, authorization
access-control-max-age: 1728000
X-Firefox-Spdy: h2
|
|
| nr.bidderstack.com/sape/cm?user_id=0A00007F150D2966E32F104702A44A3F&pupa=1 | 142.132.211.137 | | 0 B |
URL nr.bidderstack.com/sape/cm?user_id=0A00007F150D2966E32F104702A44A3F&pupa=1 IP142.132.211.137:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/cm?user_id=0A00007F150D2966E32F104702A44A3F&pupa=1 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 24 Apr 2024 13:45:58 GMT
Content-Length: 0
Connection: keep-alive
Location: https://exchange.buzzoola.com/cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec
Set-Cookie: pupa=187da8a4-5e7b-8768-ed39-68cc113f0aec; domain=.bidderstack.com; path=/; expires=Thu, 24-Apr-2025 13:45:58 GMT;
csorigin2=3; domain=.bidderstack.com; path=/; expires=Wed, 24-Apr-2024 13:50:58 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
|
|
| sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 | 178.63.75.168 | | 0 B |
URL sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 IP178.63.75.168:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: session_tptc=1713966358182
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=174b60f4-bd2c-4026-b28b-69a5cd320c3b;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=174b60f4-bd2c-4026-b28b-69a5cd320c3b;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/rmatch?dp=71&euid=174b60f4-bd2c-4026-b28b-69a5cd320c3b&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
|
|
| mc.acint.net/rmatch?dp=110&euid=fd253991c36f4dc9a8a8f3f3f2997241&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D110 | 193.3.184.139 | | 154 B |
URL mc.acint.net/rmatch?dp=110&euid=fd253991c36f4dc9a8a8f3f3f2997241&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D110 IP193.3.184.139:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=110&euid=fd253991c36f4dc9a8a8f3f3f2997241&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D110 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; cSyncDp14v4=1713966357; cSyncDp14v6=1713966357; cSyncDp17v2=1713966357; cSyncDp45v5=1713966357; cSyncDp53v5=1713966357; cSyncDp62v2=1713966357; cSyncDp67v3=1713966357; cSyncDp68v3=1713966357; cSyncDp71v2=1713966357; cSyncDp80v2=1713966357; cSyncDp85v2=1713966357; cSyncDp95v4=1713966357; cSyncDp98v3=1713966357; cSyncDp104v2=1713966357; cSyncDp107v2=1713966357; cSyncDp110v3=1713966357; cSyncDp125v4=1713966357; cSyncDp126v3=1713966357; cSyncDp127v2=1713966357; cSyncDp129v2=1713966357; cSyncDp136v3=1713966357; cSyncDp146v2=1713966357; cSyncDp148v2=1713966357; cSyncDp149v3=1713966357; cSyncDp151v2=1713966357; cSyncDp251v1=1713966357; cSyncDp186v2=1713966357; cSyncDp217v2=1713966357; cSyncDp235v2=1713966357; cSyncDp239v2=1713966357; cSyncDp243v2=1713966357; cSyncDp260v2=1713966357; cSyncDp244v2=1713966357; cSyncDp248v2=1713966357; cSyncDp261v1=1713966357; cSyncDp289v2=1713966357; cSyncDp293v1=1713966357; cSyncDp296v2=1713966357
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=110
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=UGKSORRT | 193.3.184.139 | | 154 B |
URL mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=UGKSORRT IP193.3.184.139:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=UGKSORRT HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; cSyncDp14v4=1713966357; cSyncDp14v6=1713966357; cSyncDp17v2=1713966357; cSyncDp45v5=1713966357; cSyncDp53v5=1713966357; cSyncDp62v2=1713966357; cSyncDp67v3=1713966357; cSyncDp68v3=1713966357; cSyncDp71v2=1713966357; cSyncDp80v2=1713966357; cSyncDp85v2=1713966357; cSyncDp95v4=1713966357; cSyncDp98v3=1713966357; cSyncDp104v2=1713966357; cSyncDp107v2=1713966357; cSyncDp110v3=1713966357; cSyncDp125v4=1713966357; cSyncDp126v3=1713966357; cSyncDp127v2=1713966357; cSyncDp129v2=1713966357; cSyncDp136v3=1713966357; cSyncDp146v2=1713966357; cSyncDp148v2=1713966357; cSyncDp149v3=1713966357; cSyncDp151v2=1713966357; cSyncDp251v1=1713966357; cSyncDp186v2=1713966357; cSyncDp217v2=1713966357; cSyncDp235v2=1713966357; cSyncDp239v2=1713966357; cSyncDp243v2=1713966357; cSyncDp260v2=1713966357; cSyncDp244v2=1713966357; cSyncDp248v2=1713966357; cSyncDp261v1=1713966357; cSyncDp289v2=1713966357; cSyncDp293v1=1713966357; cSyncDp296v2=1713966357
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=95
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| www.acint.net/match?dp=186&euid=1fb9204c-2dc1-4a0d-b687-f5423cb2fd82 | 193.3.184.139 | | 43 B |
URL www.acint.net/match?dp=186&euid=1fb9204c-2dc1-4a0d-b687-f5423cb2fd82 IP193.3.184.139:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=186&euid=1fb9204c-2dc1-4a0d-b687-f5423cb2fd82 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; cSyncDp14v4=1713966357; cSyncDp14v6=1713966357; cSyncDp17v2=1713966357; cSyncDp45v5=1713966357; cSyncDp53v5=1713966357; cSyncDp62v2=1713966357; cSyncDp67v3=1713966357; cSyncDp68v3=1713966357; cSyncDp71v2=1713966357; cSyncDp80v2=1713966357; cSyncDp85v2=1713966357; cSyncDp95v4=1713966357; cSyncDp98v3=1713966357; cSyncDp104v2=1713966357; cSyncDp107v2=1713966357; cSyncDp110v3=1713966357; cSyncDp125v4=1713966357; cSyncDp126v3=1713966357; cSyncDp127v2=1713966357; cSyncDp129v2=1713966357; cSyncDp136v3=1713966357; cSyncDp146v2=1713966357; cSyncDp148v2=1713966357; cSyncDp149v3=1713966357; cSyncDp151v2=1713966357; cSyncDp251v1=1713966357; cSyncDp186v2=1713966357; cSyncDp217v2=1713966357; cSyncDp235v2=1713966357; cSyncDp239v2=1713966357; cSyncDp243v2=1713966357; cSyncDp260v2=1713966357; cSyncDp244v2=1713966357; cSyncDp248v2=1713966357; cSyncDp261v1=1713966357; cSyncDp289v2=1713966357; cSyncDp293v1=1713966357; cSyncDp296v2=1713966357
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| sync.bumlam.com/?src=sap1&s_data=CAIQARiWmqSxBmIgMEEwMDAwN0YxNTBEMjk2NkUzMkYxMDQ3MDJBNDRBM0aiARD609GuAkAR74bgACWQwGR8 | 31.172.81.159 | | 0 B |
URL sync.bumlam.com/?src=sap1&s_data=CAIQARiWmqSxBmIgMEEwMDAwN0YxNTBEMjk2NkUzMkYxMDQ3MDJBNDRBM0aiARD609GuAkAR74bgACWQwGR8 IP31.172.81.159:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&s_data=CAIQARiWmqSxBmIgMEEwMDAwN0YxNTBEMjk2NkUzMkYxMDQ3MDJBNDRBM0aiARD609GuAkAR74bgACWQwGR8 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRmYWQzZDFhZS0wMjQwLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 13:45:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: close
Set-Cookie: suuid3=IiRmYWQzZDFhZS0wMjQwLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Tue, 19 Apr 2044 13:45:58 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
|
|
| sync.bumlam.com/?src=sape | 31.172.81.159 | | 0 B |
URL sync.bumlam.com/?src=sape IP31.172.81.159:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRmYWQzZDFhZS0wMjQwLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Wed, 24 Apr 2024 13:45:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: close
Set-Cookie: suuid3=IiRmYWQzZDFhZS0wMjQwLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Tue, 19 Apr 2044 13:45:58 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: https://pix.bumlam.com/sync/sape/sync_ok?guid=fad3d1ae-0240-11ef-86e0-002590c0647c
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://acint.net
Access-Control-Allow-Credentials: true
|
|
| mc.acint.net/cmatch?dp=126 | 193.3.184.139 | | 43 B |
URL mc.acint.net/cmatch?dp=126 IP193.3.184.139:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cmatch?dp=126 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; cSyncDp14v4=1713966357; cSyncDp14v6=1713966357; cSyncDp17v2=1713966357; cSyncDp45v5=1713966357; cSyncDp53v5=1713966357; cSyncDp62v2=1713966357; cSyncDp67v3=1713966357; cSyncDp68v3=1713966357; cSyncDp71v2=1713966357; cSyncDp80v2=1713966357; cSyncDp85v2=1713966357; cSyncDp95v4=1713966357; cSyncDp98v3=1713966357; cSyncDp104v2=1713966357; cSyncDp107v2=1713966357; cSyncDp110v3=1713966357; cSyncDp125v4=1713966357; cSyncDp126v3=1713966357; cSyncDp127v2=1713966357; cSyncDp129v2=1713966357; cSyncDp136v3=1713966357; cSyncDp146v2=1713966357; cSyncDp148v2=1713966357; cSyncDp149v3=1713966357; cSyncDp151v2=1713966357; cSyncDp251v1=1713966357; cSyncDp186v2=1713966357; cSyncDp217v2=1713966357; cSyncDp235v2=1713966357; cSyncDp239v2=1713966357; cSyncDp243v2=1713966357; cSyncDp260v2=1713966357; cSyncDp244v2=1713966357; cSyncDp248v2=1713966357; cSyncDp261v1=1713966357; cSyncDp289v2=1713966357; cSyncDp293v1=1713966357; cSyncDp296v2=1713966357
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| www.acint.net/match?dp=98&euid=dd70b512-ceec-49be-97a5-0031ba19dfe8 | 193.3.184.139 | | 43 B |
URL www.acint.net/match?dp=98&euid=dd70b512-ceec-49be-97a5-0031ba19dfe8 IP193.3.184.139:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=98&euid=dd70b512-ceec-49be-97a5-0031ba19dfe8 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; cSyncDp14v4=1713966357; cSyncDp14v6=1713966357; cSyncDp17v2=1713966357; cSyncDp45v5=1713966357; cSyncDp53v5=1713966357; cSyncDp62v2=1713966357; cSyncDp67v3=1713966357; cSyncDp68v3=1713966357; cSyncDp71v2=1713966357; cSyncDp80v2=1713966357; cSyncDp85v2=1713966357; cSyncDp95v4=1713966357; cSyncDp98v3=1713966357; cSyncDp104v2=1713966357; cSyncDp107v2=1713966357; cSyncDp110v3=1713966357; cSyncDp125v4=1713966357; cSyncDp126v3=1713966357; cSyncDp127v2=1713966357; cSyncDp129v2=1713966357; cSyncDp136v3=1713966357; cSyncDp146v2=1713966357; cSyncDp148v2=1713966357; cSyncDp149v3=1713966357; cSyncDp151v2=1713966357; cSyncDp251v1=1713966357; cSyncDp186v2=1713966357; cSyncDp217v2=1713966357; cSyncDp235v2=1713966357; cSyncDp239v2=1713966357; cSyncDp243v2=1713966357; cSyncDp260v2=1713966357; cSyncDp244v2=1713966357; cSyncDp248v2=1713966357; cSyncDp261v1=1713966357; cSyncDp289v2=1713966357; cSyncDp293v1=1713966357; cSyncDp296v2=1713966357
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| exchange.buzzoola.com/cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec | 195.201.198.232 | | 43 B |
URL exchange.buzzoola.com/cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec IP195.201.198.232:0 ASN#24940 Hetzner Online GmbH
File typeGIF image data, version 89a, 1 x 1 Hash325472601571f31e1bf00674c368d335 2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /cookiesync/dsp/hyperadx-video?uid=187da8a4-5e7b-8768-ed39-68cc113f0aec HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: uuid=80862cfc-e5e3-41c5-57af-eba4c1d7543a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:55 GMT
content-type: image/gif
content-length: 43
set-cookie: uuid=; Path=/; Domain=exchange.buzzoola.com; Expires=Thu, 01 Jan 1970 00:00:01 GMT; Max-Age=0; Secure; SameSite=None
uuid=80862cfc-e5e3-41c5-57af-eba4c1d7543a; Path=/; Domain=buzzoola.com; Expires=Fri, 24 May 2024 13:45:55 GMT; Max-Age=2592000; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2
|
|
| www.acint.net/rmatch?dp=71&euid=174b60f4-bd2c-4026-b28b-69a5cd320c3b&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71 | 193.3.184.139 | | 154 B |
URL www.acint.net/rmatch?dp=71&euid=174b60f4-bd2c-4026-b28b-69a5cd320c3b&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71 IP193.3.184.139:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=71&euid=174b60f4-bd2c-4026-b28b-69a5cd320c3b&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; cSyncDp14v4=1713966357; cSyncDp14v6=1713966357; cSyncDp17v2=1713966357; cSyncDp45v5=1713966357; cSyncDp53v5=1713966357; cSyncDp62v2=1713966357; cSyncDp67v3=1713966357; cSyncDp68v3=1713966357; cSyncDp71v2=1713966357; cSyncDp80v2=1713966357; cSyncDp85v2=1713966357; cSyncDp95v4=1713966357; cSyncDp98v3=1713966357; cSyncDp104v2=1713966357; cSyncDp107v2=1713966357; cSyncDp110v3=1713966357; cSyncDp125v4=1713966357; cSyncDp126v3=1713966357; cSyncDp127v2=1713966357; cSyncDp129v2=1713966357; cSyncDp136v3=1713966357; cSyncDp146v2=1713966357; cSyncDp148v2=1713966357; cSyncDp149v3=1713966357; cSyncDp151v2=1713966357; cSyncDp251v1=1713966357; cSyncDp186v2=1713966357; cSyncDp217v2=1713966357; cSyncDp235v2=1713966357; cSyncDp239v2=1713966357; cSyncDp243v2=1713966357; cSyncDp260v2=1713966357; cSyncDp244v2=1713966357; cSyncDp248v2=1713966357; cSyncDp261v1=1713966357; cSyncDp289v2=1713966357; cSyncDp293v1=1713966357; cSyncDp296v2=1713966357
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: text/html
content-length: 154
location: https://acint.net/cmatch?dp=71
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| ssp.al-adtech.com/api/sync/sape | 45.139.25.124 | | 0 B |
URL ssp.al-adtech.com/api/sync/sape IP45.139.25.124:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync/sape HTTP/1.1
Host: ssp.al-adtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.20.1
Date: Wed, 24 Apr 2024 13:45:58 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Location: https://mc.acint.net/rmatch?dp=261&euid=0871fadd-588a-4c02-87d6-680ccdea562f&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261
Set-Cookie: afp_cookie=gAAAAABmKQ0WDGjecbSIfu7C-gBw_DyaxmXf1YJ0Z9gOISRL80SavvR-Nrptqpe_hXJJp6ugoLM_N3QuIUUaO-N7hNm_nhRj97slRfG9Ray00CLQsJC2c-eSVwCgxyPGPjCClR9L2_5Ss8ffKbtzTozi7VMw2-ipDxLqYXOhx-GnUv8SkZAMgCqfQ5SCoKViZj-8VU-yzv2BrRH-llCu7xCgXPyxG8h08g==$; expires=Fri, 24 May 2024 13:45:58 GMT; path=/; secure; SameSite=None
|
|
| mc.acint.net/cmatch?dp=95 | 193.3.184.139 | | 43 B |
URL mc.acint.net/cmatch?dp=95 IP193.3.184.139:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cmatch?dp=95 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; cSyncDp14v4=1713966357; cSyncDp14v6=1713966357; cSyncDp17v2=1713966357; cSyncDp45v5=1713966357; cSyncDp53v5=1713966357; cSyncDp62v2=1713966357; cSyncDp67v3=1713966357; cSyncDp68v3=1713966357; cSyncDp71v2=1713966357; cSyncDp80v2=1713966357; cSyncDp85v2=1713966357; cSyncDp95v4=1713966357; cSyncDp98v3=1713966357; cSyncDp104v2=1713966357; cSyncDp107v2=1713966357; cSyncDp110v3=1713966357; cSyncDp125v4=1713966357; cSyncDp126v3=1713966357; cSyncDp127v2=1713966357; cSyncDp129v2=1713966357; cSyncDp136v3=1713966357; cSyncDp146v2=1713966357; cSyncDp148v2=1713966357; cSyncDp149v3=1713966357; cSyncDp151v2=1713966357; cSyncDp251v1=1713966357; cSyncDp186v2=1713966357; cSyncDp217v2=1713966357; cSyncDp235v2=1713966357; cSyncDp239v2=1713966357; cSyncDp243v2=1713966357; cSyncDp260v2=1713966357; cSyncDp244v2=1713966357; cSyncDp248v2=1713966357; cSyncDp261v1=1713966357; cSyncDp289v2=1713966357; cSyncDp293v1=1713966357; cSyncDp296v2=1713966357
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| mc.acint.net/cmatch?dp=110 | 193.3.184.139 | | 43 B |
URL mc.acint.net/cmatch?dp=110 IP193.3.184.139:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cmatch?dp=110 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; cSyncDp14v4=1713966357; cSyncDp14v6=1713966357; cSyncDp17v2=1713966357; cSyncDp45v5=1713966357; cSyncDp53v5=1713966357; cSyncDp62v2=1713966357; cSyncDp67v3=1713966357; cSyncDp68v3=1713966357; cSyncDp71v2=1713966357; cSyncDp80v2=1713966357; cSyncDp85v2=1713966357; cSyncDp95v4=1713966357; cSyncDp98v3=1713966357; cSyncDp104v2=1713966357; cSyncDp107v2=1713966357; cSyncDp110v3=1713966357; cSyncDp125v4=1713966357; cSyncDp126v3=1713966357; cSyncDp127v2=1713966357; cSyncDp129v2=1713966357; cSyncDp136v3=1713966357; cSyncDp146v2=1713966357; cSyncDp148v2=1713966357; cSyncDp149v3=1713966357; cSyncDp151v2=1713966357; cSyncDp251v1=1713966357; cSyncDp186v2=1713966357; cSyncDp217v2=1713966357; cSyncDp235v2=1713966357; cSyncDp239v2=1713966357; cSyncDp243v2=1713966357; cSyncDp260v2=1713966357; cSyncDp244v2=1713966357; cSyncDp248v2=1713966357; cSyncDp261v1=1713966357; cSyncDp289v2=1713966357; cSyncDp293v1=1713966357; cSyncDp296v2=1713966357
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| pix.bumlam.com/sync/sape/sync_ok?guid=fad3d1ae-0240-11ef-86e0-002590c0647c | 31.172.81.158 | | 0 B |
URL pix.bumlam.com/sync/sape/sync_ok?guid=fad3d1ae-0240-11ef-86e0-002590c0647c IP31.172.81.158:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/sync_ok?guid=fad3d1ae-0240-11ef-86e0-002590c0647c HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRmYWQzZDFhZS0wMjQwLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 24 Apr 2024 13:45:58 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://fad3d1ae-0240-11ef-86e0-002590c0647c.n1.sync.bumlam.com/?src=sape
|
|
| acint.net/cmatch?dp=71 | 193.3.184.139 | | 43 B |
IP193.3.184.139:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cmatch?dp=71 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; cSyncDp14v4=1713966357; cSyncDp14v6=1713966357; cSyncDp17v2=1713966357; cSyncDp45v5=1713966357; cSyncDp53v5=1713966357; cSyncDp62v2=1713966357; cSyncDp67v3=1713966357; cSyncDp68v3=1713966357; cSyncDp71v2=1713966357; cSyncDp80v2=1713966357; cSyncDp85v2=1713966357; cSyncDp95v4=1713966357; cSyncDp98v3=1713966357; cSyncDp104v2=1713966357; cSyncDp107v2=1713966357; cSyncDp110v3=1713966357; cSyncDp125v4=1713966357; cSyncDp126v3=1713966357; cSyncDp127v2=1713966357; cSyncDp129v2=1713966357; cSyncDp136v3=1713966357; cSyncDp146v2=1713966357; cSyncDp148v2=1713966357; cSyncDp149v3=1713966357; cSyncDp151v2=1713966357; cSyncDp251v1=1713966357; cSyncDp186v2=1713966357; cSyncDp217v2=1713966357; cSyncDp235v2=1713966357; cSyncDp239v2=1713966357; cSyncDp243v2=1713966357; cSyncDp260v2=1713966357; cSyncDp244v2=1713966357; cSyncDp248v2=1713966357; cSyncDp261v1=1713966357; cSyncDp289v2=1713966357; cSyncDp293v1=1713966357; cSyncDp296v2=1713966357
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| mc.acint.net/rmatch?dp=261&euid=0871fadd-588a-4c02-87d6-680ccdea562f&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261 | 193.3.184.139 | | 154 B |
URL mc.acint.net/rmatch?dp=261&euid=0871fadd-588a-4c02-87d6-680ccdea562f&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261 IP193.3.184.139:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=261&euid=0871fadd-588a-4c02-87d6-680ccdea562f&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; cSyncDp14v4=1713966357; cSyncDp14v6=1713966357; cSyncDp17v2=1713966357; cSyncDp45v5=1713966357; cSyncDp53v5=1713966357; cSyncDp62v2=1713966357; cSyncDp67v3=1713966357; cSyncDp68v3=1713966357; cSyncDp71v2=1713966357; cSyncDp80v2=1713966357; cSyncDp85v2=1713966357; cSyncDp95v4=1713966357; cSyncDp98v3=1713966357; cSyncDp104v2=1713966357; cSyncDp107v2=1713966357; cSyncDp110v3=1713966357; cSyncDp125v4=1713966357; cSyncDp126v3=1713966357; cSyncDp127v2=1713966357; cSyncDp129v2=1713966357; cSyncDp136v3=1713966357; cSyncDp146v2=1713966357; cSyncDp148v2=1713966357; cSyncDp149v3=1713966357; cSyncDp151v2=1713966357; cSyncDp251v1=1713966357; cSyncDp186v2=1713966357; cSyncDp217v2=1713966357; cSyncDp235v2=1713966357; cSyncDp239v2=1713966357; cSyncDp243v2=1713966357; cSyncDp260v2=1713966357; cSyncDp244v2=1713966357; cSyncDp248v2=1713966357; cSyncDp261v1=1713966357; cSyncDp289v2=1713966357; cSyncDp293v1=1713966357; cSyncDp296v2=1713966357
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=261
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| mc.acint.net/cmatch?dp=261 | 193.3.184.139 | | 43 B |
URL mc.acint.net/cmatch?dp=261 IP193.3.184.139:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cmatch?dp=261 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; cSyncDp14v4=1713966357; cSyncDp14v6=1713966357; cSyncDp17v2=1713966357; cSyncDp45v5=1713966357; cSyncDp53v5=1713966357; cSyncDp62v2=1713966357; cSyncDp67v3=1713966357; cSyncDp68v3=1713966357; cSyncDp71v2=1713966357; cSyncDp80v2=1713966357; cSyncDp85v2=1713966357; cSyncDp95v4=1713966357; cSyncDp98v3=1713966357; cSyncDp104v2=1713966357; cSyncDp107v2=1713966357; cSyncDp110v3=1713966357; cSyncDp125v4=1713966357; cSyncDp126v3=1713966357; cSyncDp127v2=1713966357; cSyncDp129v2=1713966357; cSyncDp136v3=1713966357; cSyncDp146v2=1713966357; cSyncDp148v2=1713966357; cSyncDp149v3=1713966357; cSyncDp151v2=1713966357; cSyncDp251v1=1713966357; cSyncDp186v2=1713966357; cSyncDp217v2=1713966357; cSyncDp235v2=1713966357; cSyncDp239v2=1713966357; cSyncDp243v2=1713966357; cSyncDp260v2=1713966357; cSyncDp244v2=1713966357; cSyncDp248v2=1713966357; cSyncDp261v1=1713966357; cSyncDp289v2=1713966357; cSyncDp293v1=1713966357; cSyncDp296v2=1713966357
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| fad3d1ae-0240-11ef-86e0-002590c0647c.n1.sync.bumlam.com/?src=sape | 188.120.246.182 | | 0 B |
URL fad3d1ae-0240-11ef-86e0-002590c0647c.n1.sync.bumlam.com/?src=sape IP188.120.246.182:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: fad3d1ae-0240-11ef-86e0-002590c0647c.n1.sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRmYWQzZDFhZS0wMjQwLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.25.4
date: Wed, 24 Apr 2024 13:45:59 GMT
content-length: 0
location: https://pix.bumlam.com/sync/sape/done
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
X-Firefox-Spdy: h2
|
|
| pix.bumlam.com/sync/sape/done | 31.172.81.158 | | 43 B |
URL pix.bumlam.com/sync/sape/done IP31.172.81.158:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sync/sape/done HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRmYWQzZDFhZS0wMjQwLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 13:45:59 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
|
|
| gw-iad-bid.ymmobi.com/dsp/user/sync?dspid=c2FwZV9kc3A=&gdpr=0&gdpr_consent=0&us_privacy=0&callback=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D293%26euid%3D%7Bym_user_id%7D | 47.253.61.56 | | 0 B |
URL gw-iad-bid.ymmobi.com/dsp/user/sync?dspid=c2FwZV9kc3A=&gdpr=0&gdpr_consent=0&us_privacy=0&callback=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D293%26euid%3D%7Bym_user_id%7D IP47.253.61.56:0 ASN#45102 Alibaba US Technology Co., Ltd.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dsp/user/sync?dspid=c2FwZV9kc3A=&gdpr=0&gdpr_consent=0&us_privacy=0&callback=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D293%26euid%3D%7Bym_user_id%7D HTTP/1.1
Host: gw-iad-bid.ymmobi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 24 Apr 2024 13:45:59 GMT
content-length: 0
location: https://mc.acint.net/match?dp=293&euid=ym_user_63f7a317-4629-4175-beab-c85fbfcec538
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token
access-control-allow-credentials: true
set-cookie: ym_user_cookie=ym_user_63f7a317-4629-4175-beab-c85fbfcec538; max-age=31104000; domain=ymmobi.com; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| mc.acint.net/match?dp=293&euid=ym_user_63f7a317-4629-4175-beab-c85fbfcec538 | 193.3.184.139 | | 43 B |
URL mc.acint.net/match?dp=293&euid=ym_user_63f7a317-4629-4175-beab-c85fbfcec538 IP193.3.184.139:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=293&euid=ym_user_63f7a317-4629-4175-beab-c85fbfcec538 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAACmYpDRVHEC/jP0qkAvCi0p28wEMIBmljiwtFzLP5Y991; cSyncDp14v4=1713966357; cSyncDp14v6=1713966357; cSyncDp17v2=1713966357; cSyncDp45v5=1713966357; cSyncDp53v5=1713966357; cSyncDp62v2=1713966357; cSyncDp67v3=1713966357; cSyncDp68v3=1713966357; cSyncDp71v2=1713966357; cSyncDp80v2=1713966357; cSyncDp85v2=1713966357; cSyncDp95v4=1713966357; cSyncDp98v3=1713966357; cSyncDp104v2=1713966357; cSyncDp107v2=1713966357; cSyncDp110v3=1713966357; cSyncDp125v4=1713966357; cSyncDp126v3=1713966357; cSyncDp127v2=1713966357; cSyncDp129v2=1713966357; cSyncDp136v3=1713966357; cSyncDp146v2=1713966357; cSyncDp148v2=1713966357; cSyncDp149v3=1713966357; cSyncDp151v2=1713966357; cSyncDp251v1=1713966357; cSyncDp186v2=1713966357; cSyncDp217v2=1713966357; cSyncDp235v2=1713966357; cSyncDp239v2=1713966357; cSyncDp243v2=1713966357; cSyncDp260v2=1713966357; cSyncDp244v2=1713966357; cSyncDp248v2=1713966357; cSyncDp261v1=1713966357; cSyncDp289v2=1713966357; cSyncDp293v1=1713966357; cSyncDp296v2=1713966357
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 13:45:59 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/vast2?key=ea59f7a89d04d570fbb4ef98a8a1693c&sid=autoplay&cp.adsource=Dhs_out_g3&cp.adtype=pre&vt=100&fp=[fp]&w=400&h=225&vid=&fpro=&suri=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&rdd1=true&cp.referer=https%253A%252F%252Frutor.is%252Ftorrent%252F970410e&cp.cb=8e498e5d-0e21-c25d-0399-7bf8ba4984e3 | 193.200.65.151 | | 631 B |
URL code.moviead55.ru/vast2?key=ea59f7a89d04d570fbb4ef98a8a1693c&sid=autoplay&cp.adsource=Dhs_out_g3&cp.adtype=pre&vt=100&fp=[fp]&w=400&h=225&vid=&fpro=&suri=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&rdd1=true&cp.referer=https%253A%252F%252Frutor.is%252Ftorrent%252F970410e&cp.cb=8e498e5d-0e21-c25d-0399-7bf8ba4984e3 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
File typegzip compressed data, from Unix Hashd7a9c5705186338e34a9d4b817807708 31eb87fa372e5d5b9876fd35f014163bdaaf87f4 d76139ab90adcbd62dadadad66810afd11ea0ca0bef92f5fb68da5a19ea4fe5c
GET /vast2?key=ea59f7a89d04d570fbb4ef98a8a1693c&sid=autoplay&cp.adsource=Dhs_out_g3&cp.adtype=pre&vt=100&fp=[fp]&w=400&h=225&vid=&fpro=&suri=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&rdd1=true&cp.referer=https%253A%252F%252Frutor.is%252Ftorrent%252F970410e&cp.cb=8e498e5d-0e21-c25d-0399-7bf8ba4984e3 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rutor.is
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8; hbrdcookie2=efb0ab642581b4586944; otclkbid=VU0cO9fZFTbYzyf; bzcookie=b532de35-9400-48ba-78bd-5db5cc175cb3; ohmybid=97b584c1-f2b8-439d-b0f7-679d83e7dc41; otmbid=NjYyOTBkMTUwMTRiOGU2Yw==; 680rmads=1713966358; sapecookie=0A00007F150D2966E32F104702A44A3F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: text/xml;charset=UTF-8
vary: Accept-Encoding
x-movieads-cors-qex: Referer
x-movieads-path: /
access-control-allow-credentials: true
access-control-allow-origin: https://rutor.is
x-movieads-udata: empty
x-movieads-referrer: https://rutor.is/
x-cache-source: Rist
x-movieads-mrc: no
x-movieads-ref: {"Scheme":"https","Opaque":"","User":null,"Host":"rutor.is","Path":"/","RawPath":"","OmitHost":false,"ForceQuery":false,"RawQuery":"","Fragment":"","RawFragment":""}
set-cookie: 754rmads=1713966358; max-age=31536000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| user91471.clients-cdnnow.ru/vp_dist/hls.js?v3 | 185.40.155.13 | | 255 kB |
URL user91471.clients-cdnnow.ru/vp_dist/hls.js?v3 IP185.40.155.13:0
File typeJavaScript source, ASCII text Size255 kB (255258 bytes) Hashd567d59f7d6e0ffebf1808308f844fff 35d4d1a80d988ca93840d381f9c6a2fbea82f6cc e3f75482e8d75ba2c1486db86beae298a959c19cfe63d20dc1b5093d3ffb1a92
GET /vp_dist/hls.js?v3 HTTP/1.1
Host: user91471.clients-cdnnow.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:46:00 GMT
content-type: application/javascript
last-modified: Tue, 05 Mar 2024 14:56:11 GMT
vary: Accept-Encoding
etag: W/"65e7328b-1132d6"
x-movieads-country: RU
content-encoding: gzip
x-edge-cache: HIT
x-edge-ip: 172.19.32.3
X-Firefox-Spdy: h2
|
|
| static.filmskino.site/hls/trailers/N3hJuiAbqlU.mp4/seg-1-v1-a1.ts | 193.200.65.230 | | 265 kB |
URL static.filmskino.site/hls/trailers/N3hJuiAbqlU.mp4/seg-1-v1-a1.ts IP193.200.65.230:0 ASN#6681 Giveme Cloud Sp Z O O
File typeMPEG transport stream data Size265 kB (265080 bytes) Hashe0d7ee1fd379d3a867a4d74b715fdfd5 e985fe3eda27328e4e0383f654b2fcc263c46771 d93317ddb1a55474d07ed67921d647d88b4106d594be61bc3e90cdf611039cdf
GET /hls/trailers/N3hJuiAbqlU.mp4/seg-1-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 13:46:00 GMT
Content-Type: video/MP2T
Content-Length: 265080
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-40b78"
Expires: Fri, 02 Aug 2024 13:46:00 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| static.filmskino.site/hls/trailers/N3hJuiAbqlU.mp4/seg-2-v1-a1.ts | 193.200.65.230 | | 295 kB |
URL static.filmskino.site/hls/trailers/N3hJuiAbqlU.mp4/seg-2-v1-a1.ts IP193.200.65.230:0 ASN#6681 Giveme Cloud Sp Z O O
File typeMPEG transport stream data Size295 kB (295160 bytes) Hashf1a08c234f61085a425459b6249c977c 2467f0a64f665f3578034620b4cc8c2c82876afa 84495821ad0121cbe119e2744346245fc9c4848d3f54dc6c24b75eab965ebd30
GET /hls/trailers/N3hJuiAbqlU.mp4/seg-2-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 13:46:00 GMT
Content-Type: video/MP2T
Content-Length: 295160
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-480f8"
Expires: Fri, 02 Aug 2024 13:46:00 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| logger.moviead55.ru/logger.php?t=cdiv&c=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&a=&m=32&v=ea59f7a89d04d570fbb4ef98a8a1693c&o= | 193.200.65.146 | | 4.6 kB |
URL logger.moviead55.ru/logger.php?t=cdiv&c=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&a=&m=32&v=ea59f7a89d04d570fbb4ef98a8a1693c&o= IP193.200.65.146:0 ASN#6681 Giveme Cloud Sp Z O O
File typegzip compressed data, from Unix Hashc47b6f642ea0a274d39d47a16523dafe 83577804442e215d0608c62b2b9a06472f508e9c dd30e7de2a41a1d7387dfcf4e49e8957f6f5ee85956abf4d08610101c0259f07
GET /logger.php?t=cdiv&c=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&a=&m=32&v=ea59f7a89d04d570fbb4ef98a8a1693c&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:56 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| user91471.clients-cdnnow.ru/yasdk/vw.js?v3 | 185.40.155.13 | | 1.5 kB |
URL user91471.clients-cdnnow.ru/yasdk/vw.js?v3 IP185.40.155.13:0
File typeJavaScript source, ASCII text Hashce2a10e7a4e0560528ac6676db3615af f90d7a0fcf54877c43e7fa035a966c53754dc37e 4f33af9dcf3dc777a723a96826c9ca5e99c978f8588c13c6ede6a76105d0ccd8
GET /yasdk/vw.js?v3 HTTP/1.1
Host: user91471.clients-cdnnow.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:46:13 GMT
content-type: application/javascript
last-modified: Fri, 21 Jul 2023 13:34:19 GMT
vary: Accept-Encoding
etag: W/"64ba895b-12fc"
x-movieads-country: RU
content-encoding: gzip
x-edge-cache: HIT
x-edge-ip: 172.19.32.3
X-Firefox-Spdy: h2
|
|
| static.moviead55.ru/mp_dist/protect_trackmaster.js?v1713966373223 | 172.67.156.18 | | 349 B |
URL static.moviead55.ru/mp_dist/protect_trackmaster.js?v1713966373223 IP172.67.156.18:0
File typeASCII text, with very long lines (746), with no line terminators Hash0a58cfaf8b36ee0bda3d3b164589ab25 c98f8f9b230280b35c5b0634a5ca042c6ae5b179 8b9ed7c31e5a95c28722f4cfbf9f1a3b86626111d3b21b3d97dc4acc48d46be9
GET /mp_dist/protect_trackmaster.js?v1713966373223 HTTP/1.1
Host: static.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 13:46:13 GMT
content-type: application/javascript
last-modified: Tue, 23 Apr 2024 08:52:47 GMT
vary: Accept-Encoding
etag: W/"662776df-2ea"
x-movieads-country: NO
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-max-age: 1728000
cache-control: max-age=7200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cbpf3V8kEhhUKXvDJZHnbiDkWls%2BtyV3lBBBh81QoDpNv%2BCLwYRjnIW1BB4p9LjEisyIT5GcPa0iYsKE9pVfFDSdKdpB2lWZWlyiJGK7VXb8IHJneKFQlA2Cx%2BxkhWKzbKXrVeCm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879689c8fd7f712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1713966375 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1713966375 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=hbrdcookie2&rnd=1713966375 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8; hbrdcookie2=efb0ab642581b4586944; otclkbid=VU0cO9fZFTbYzyf; bzcookie=b532de35-9400-48ba-78bd-5db5cc175cb3; ohmybid=97b584c1-f2b8-439d-b0f7-679d83e7dc41; otmbid=NjYyOTBkMTUwMTRiOGU2Yw==; 680rmads=1713966358; sapecookie=0A00007F150D2966E32F104702A44A3F; 754rmads=1713966358
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:46:15 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=otmbid&rnd=1713966375 | 193.200.65.151 | 200 OK | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=otmbid&rnd=1713966375 IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9 ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otmbid&rnd=1713966375 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8; hbrdcookie2=efb0ab642581b4586944; otclkbid=VU0cO9fZFTbYzyf; bzcookie=b532de35-9400-48ba-78bd-5db5cc175cb3; ohmybid=97b584c1-f2b8-439d-b0f7-679d83e7dc41; otmbid=NjYyOTBkMTUwMTRiOGU2Yw==; 680rmads=1713966358; sapecookie=0A00007F150D2966E32F104702A44A3F; 754rmads=1713966358
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:46:15 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1713966375 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1713966375 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=bzcookie&rnd=1713966375 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8; hbrdcookie2=efb0ab642581b4586944; otclkbid=VU0cO9fZFTbYzyf; bzcookie=b532de35-9400-48ba-78bd-5db5cc175cb3; ohmybid=97b584c1-f2b8-439d-b0f7-679d83e7dc41; otmbid=NjYyOTBkMTUwMTRiOGU2Yw==; 680rmads=1713966358; sapecookie=0A00007F150D2966E32F104702A44A3F; 754rmads=1713966358
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:46:15 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| logger.moviead55.ru/logger.php?t=prev_session&c=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&a=&m=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&v=ea59f7a89d04d570fbb4ef98a8a1693c&o= | 193.200.65.146 | | 81 B |
URL logger.moviead55.ru/logger.php?t=prev_session&c=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&a=&m=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&v=ea59f7a89d04d570fbb4ef98a8a1693c&o= IP193.200.65.146:0 ASN#6681 Giveme Cloud Sp Z O O
File typePNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced Hashb357a19c87624c7c4d131aeeb4ae677f c7a9c45fd419815a5ab1998503a9f03514c0e229 497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?t=prev_session&c=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&a=&m=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&v=ea59f7a89d04d570fbb4ef98a8a1693c&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:46:15 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| logger.moviead55.ru/logger.php?v=ea59f7a89d04d570fbb4ef98a8a1693c&c=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&t=player_init&a=&m=%7B%22vis%22%3A100%2C%22dv%22%3Atrue%2C%22jmap%22%3A2%2C%22blen%22%3A2%7D&o= | 193.200.65.146 | | 81 B |
URL logger.moviead55.ru/logger.php?v=ea59f7a89d04d570fbb4ef98a8a1693c&c=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&t=player_init&a=&m=%7B%22vis%22%3A100%2C%22dv%22%3Atrue%2C%22jmap%22%3A2%2C%22blen%22%3A2%7D&o= IP193.200.65.146:0 ASN#6681 Giveme Cloud Sp Z O O
File typePNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced Hashb357a19c87624c7c4d131aeeb4ae677f c7a9c45fd419815a5ab1998503a9f03514c0e229 497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?v=ea59f7a89d04d570fbb4ef98a8a1693c&c=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&t=player_init&a=&m=%7B%22vis%22%3A100%2C%22dv%22%3Atrue%2C%22jmap%22%3A2%2C%22blen%22%3A2%7D&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:58 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=gtnt&rnd=1713966375 | 193.200.65.151 | 301 Moved Permanently | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=gtnt&rnd=1713966375 IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9 ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gtnt&rnd=1713966375 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8; hbrdcookie2=efb0ab642581b4586944; otclkbid=VU0cO9fZFTbYzyf; bzcookie=b532de35-9400-48ba-78bd-5db5cc175cb3; ohmybid=97b584c1-f2b8-439d-b0f7-679d83e7dc41; otmbid=NjYyOTBkMTUwMTRiOGU2Yw==; 680rmads=1713966358; sapecookie=0A00007F150D2966E32F104702A44A3F; 754rmads=1713966358
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 24 Apr 2024 13:46:15 GMT
content-length: 0
location: https://px.adhigh.net/p/cm/skyadvert?u=54c719e7-4329-fa93-2583-c033f54556e8
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=sapecookie&rnd=1713966375 | 193.200.65.151 | 200 OK | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=sapecookie&rnd=1713966375 IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9 ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=sapecookie&rnd=1713966375 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8; hbrdcookie2=efb0ab642581b4586944; otclkbid=VU0cO9fZFTbYzyf; bzcookie=b532de35-9400-48ba-78bd-5db5cc175cb3; ohmybid=97b584c1-f2b8-439d-b0f7-679d83e7dc41; otmbid=NjYyOTBkMTUwMTRiOGU2Yw==; 680rmads=1713966358; sapecookie=0A00007F150D2966E32F104702A44A3F; 754rmads=1713966358
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:46:15 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=dgm2&rnd=1713966375 | 193.200.65.151 | 301 Moved Permanently | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=dgm2&rnd=1713966375 IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9 ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=dgm2&rnd=1713966375 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8; hbrdcookie2=efb0ab642581b4586944; otclkbid=VU0cO9fZFTbYzyf; bzcookie=b532de35-9400-48ba-78bd-5db5cc175cb3; ohmybid=97b584c1-f2b8-439d-b0f7-679d83e7dc41; otmbid=NjYyOTBkMTUwMTRiOGU2Yw==; 680rmads=1713966358; sapecookie=0A00007F150D2966E32F104702A44A3F; 754rmads=1713966358
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 24 Apr 2024 13:46:15 GMT
content-length: 0
location: https://sync.opendsp.ru/match/MovieAds?id=54c719e7-4329-fa93-2583-c033f54556e8
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1713966375 | 193.200.65.151 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1713966375 IP193.200.65.151:0 ASN#6681 Giveme Cloud Sp Z O O
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otclkbid&rnd=1713966375 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8; hbrdcookie2=efb0ab642581b4586944; otclkbid=VU0cO9fZFTbYzyf; bzcookie=b532de35-9400-48ba-78bd-5db5cc175cb3; ohmybid=97b584c1-f2b8-439d-b0f7-679d83e7dc41; otmbid=NjYyOTBkMTUwMTRiOGU2Yw==; 680rmads=1713966358; sapecookie=0A00007F150D2966E32F104702A44A3F; 754rmads=1713966358
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:46:15 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=prgmtc&rnd=1713966375 | 193.200.65.151 | 301 Moved Permanently | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=prgmtc&rnd=1713966375 IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9 ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=prgmtc&rnd=1713966375 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8; hbrdcookie2=efb0ab642581b4586944; otclkbid=VU0cO9fZFTbYzyf; bzcookie=b532de35-9400-48ba-78bd-5db5cc175cb3; ohmybid=97b584c1-f2b8-439d-b0f7-679d83e7dc41; otmbid=NjYyOTBkMTUwMTRiOGU2Yw==; 680rmads=1713966358; sapecookie=0A00007F150D2966E32F104702A44A3F; 754rmads=1713966358
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 24 Apr 2024 13:46:15 GMT
content-length: 0
location: https://sync.programmatica.com/match/SkyAdvert?id=54c719e7-4329-fa93-2583-c033f54556e8
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| static.moviead55.ru/mp_dist/mstream2.js?v6693199836 | 172.67.156.18 | | 54 kB |
URL static.moviead55.ru/mp_dist/mstream2.js?v6693199836 IP172.67.156.18:0
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65036), with no line terminators Hasha75c76d62cb40bacf212bb6c4aada799 f0714f18917a3c60da52adf18d5c3f9c66dd4dd4 aaaa00ab0d5482d894ee735dd21bd3e383bdb447289407f23098000f70262322
GET /mp_dist/mstream2.js?v6693199836 HTTP/1.1
Host: static.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 13:46:15 GMT
content-type: application/javascript
last-modified: Tue, 23 Apr 2024 08:52:47 GMT
vary: Accept-Encoding
etag: W/"662776df-26e64"
x-movieads-country: RU
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-max-age: 1728000
cache-control: max-age=7200
cf-cache-status: HIT
age: 3190
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rOOWDLNgV4qVSMz8Y9xBb2hcAeN4hg%2BvX17iEmYiM3UQzlUnFUU%2BwjGc3KW%2F8JmwuOSijZW%2F%2Bg1eWzOxfNG5%2B1%2FI2niljqWg9erWJbbq4o2r3hphiRgr9hQLsk9Sl2tRnyVIzoZ0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879689d8e959712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| sync.opendsp.ru/match/MovieAds?id=54c719e7-4329-fa93-2583-c033f54556e8 | 82.148.20.186 | 200 OK | 43 B |
URL GET HTTP/2sync.opendsp.ru/match/MovieAds?id=54c719e7-4329-fa93-2583-c033f54556e8 IP82.148.20.186:443 ASN#50340 OOO Network of data-centers Selectel
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerLet's Encrypt Subjectsync.opendsp.ru Fingerprint61:B4:DA:9F:EB:AB:9D:73:4C:76:FB:7C:3B:0B:80:A4:0F:14:18:28 ValidityThu, 04 Apr 2024 10:36:13 GMT - Wed, 03 Jul 2024 10:36:12 GMT
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/MovieAds?id=54c719e7-4329-fa93-2583-c033f54556e8 HTTP/1.1
Host: sync.opendsp.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:46:15 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| sync.programmatica.com/match/SkyAdvert?id=54c719e7-4329-fa93-2583-c033f54556e8 | 158.160.128.78 | | 43 B |
URL sync.programmatica.com/match/SkyAdvert?id=54c719e7-4329-fa93-2583-c033f54556e8 IP158.160.128.78:0 ASN#200350 Yandex.Cloud LLC
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/SkyAdvert?id=54c719e7-4329-fa93-2583-c033f54556e8 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 13:46:15 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| sync.gonet-ads.com/match/SkyAdvert?id=54c719e7-4329-fa93-2583-c033f54556e8 | 188.42.105.236 | | 43 B |
URL sync.gonet-ads.com/match/SkyAdvert?id=54c719e7-4329-fa93-2583-c033f54556e8 IP188.42.105.236:0
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/SkyAdvert?id=54c719e7-4329-fa93-2583-c033f54556e8 HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:46:15 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
|
|
| kimberlite.io/rtb/sync/skyadvert?u=54c719e7-4329-fa93-2583-c033f54556e8 | 217.199.220.43 | | 0 B |
URL kimberlite.io/rtb/sync/skyadvert?u=54c719e7-4329-fa93-2583-c033f54556e8 IP217.199.220.43:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/skyadvert?u=54c719e7-4329-fa93-2583-c033f54556e8 HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: as=hPJ_CGYpDRX5atR4ZikNFQ; f=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsolta%26bid%3DZikNFZI_zBc; n=2; u=ZikNFZI_zBc~cwP-f7xSvAPyEzQDkxdZT32lCsw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Wed, 24 Apr 2024 13:46:16 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: as=hPJ_CGYpDRX5atR4ZikNFThax-FmKQ0o; max-age=604800; samesite=none; httponly; secure
n=3; max-age=30; samesite=none; httponly; secure
location: https://sm.rtb.mts.ru/p?ssp=toptraffic&id=ZikNFZI_zBc
referrer-policy: no-referrer
server-timing: app;srv=0;dur=0.0002
|
|
| videotoday.site/frndnp.php?ver=1&autoplay=1&v=ea59f7a89d04d570fbb4ef98a8a1693c&cb=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&fclose=false&jh=cpzse3jqpizzc4mfcf1dkpjqqj4o&sth=qp4gn7djcczg455spf1sn3bigwz8r7e&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=34&r=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&frnd=true&maid=302cdf12-5b2d-473e-af1c-81e5ba6a7cfd&rel=true&rnd=1713966375560&cnt=1 | 172.67.218.218 | | 32 kB |
URL videotoday.site/frndnp.php?ver=1&autoplay=1&v=ea59f7a89d04d570fbb4ef98a8a1693c&cb=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&fclose=false&jh=cpzse3jqpizzc4mfcf1dkpjqqj4o&sth=qp4gn7djcczg455spf1sn3bigwz8r7e&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=34&r=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&frnd=true&maid=302cdf12-5b2d-473e-af1c-81e5ba6a7cfd&rel=true&rnd=1713966375560&cnt=1 IP172.67.218.218:0
File typeASCII text, with very long lines (65518) Hash08f1e0849ae6bbe64d86a1d305ef9a48 0c671c6b52cb5cea63325cba550adfa92b0a2b13 d3b8716b1dd618ee8f0f98202fa2d01dbdfc11ff979e04ea64458572ade0001a
GET /frndnp.php?ver=1&autoplay=1&v=ea59f7a89d04d570fbb4ef98a8a1693c&cb=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&fclose=false&jh=cpzse3jqpizzc4mfcf1dkpjqqj4o&sth=qp4gn7djcczg455spf1sn3bigwz8r7e&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=34&r=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&frnd=true&maid=302cdf12-5b2d-473e-af1c-81e5ba6a7cfd&rel=true&rnd=1713966375560&cnt=1 HTTP/1.1
Host: videotoday.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 13:46:15 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-cache: Yac
x-movieads-country: NO
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x9DIlo0GqloWXtf3GW7iNQeUyYa94ea%2FJ5sXZvMMEq%2B%2BXnHbF%2BcIJQdTjDTJrEI2oB5qkDeFdwoo7awEiyUxMRRoDEELrF8NgWMqg%2FopwDMz0PReadYsnlkaGI1h25IiCsQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879689d7bef95696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| videotoday.site/mp_dist/td/trhls.html?v6693199836 | 172.67.218.218 | | 4.1 kB |
URL videotoday.site/mp_dist/td/trhls.html?v6693199836 IP172.67.218.218:0
File typeHTML document, Unicode text, UTF-8 text, with very long lines (7914) Hashe2b7fe8ca5ded3441ceb57849100d840 3b92cf354e5e82d0b8e2604d6ab33a01a56f7266 9b55240774fd2e6418c2674edac975e47438c11f39a4842c467ee36719c2f2f8
GET /mp_dist/td/trhls.html?v6693199836 HTTP/1.1
Host: videotoday.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 13:46:17 GMT
content-type: text/html
last-modified: Tue, 23 Apr 2024 08:52:47 GMT
vary: Accept-Encoding
x-movieads-country: NO
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-max-age: 1728000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ThcTikZpHOo%2BTmZHfxvnAqVAPgoSiVG%2FgiDBCFVCZVWkR1FrZ5yuQ%2B2nqWcLsMnvv1ssoroYcn7Sn%2BdnS4CLRUuXhE76t4yf7JX%2FwF3FYYg1%2FwDCDL518E%2B0cKKfho1BjYI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879689e3a9195696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| static.filmskino.site/hls/trailers/dyuBBSxDsrA.mp4/seg-1-v1-a1.ts | 193.200.65.230 | | 253 kB |
URL static.filmskino.site/hls/trailers/dyuBBSxDsrA.mp4/seg-1-v1-a1.ts IP193.200.65.230:0 ASN#6681 Giveme Cloud Sp Z O O
File typeMPEG transport stream data Size253 kB (253048 bytes) Hash99ebec0bb4ee87f71f9944bf9cb0690e 140e047fd4957d0891be4157daa17b9d8f17f4d6 015aaa253600c0e04367b423aee6ec852a0c517df912a74e9c4c91fbdbbf77e6
GET /hls/trailers/dyuBBSxDsrA.mp4/seg-1-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 13:46:18 GMT
Content-Type: video/MP2T
Content-Length: 253048
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-3dc78"
Expires: Fri, 02 Aug 2024 13:46:18 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| static.filmskino.site/hls/trailers/dyuBBSxDsrA.mp4/seg-2-v1-a1.ts | 193.200.65.230 | | 106 kB |
URL static.filmskino.site/hls/trailers/dyuBBSxDsrA.mp4/seg-2-v1-a1.ts IP193.200.65.230:0 ASN#6681 Giveme Cloud Sp Z O O
File typeMPEG transport stream data Size106 kB (105656 bytes) Hashdfe216b60784724a8bf566854afa50b4 234b0f9648fc7c79d719395c578a1cc8e1a4fc2b dd8a89b5062b6fd0588f3013b71a7d651fdca4636c26b6dc28a2dfe6da0a6409
GET /hls/trailers/dyuBBSxDsrA.mp4/seg-2-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 13:46:18 GMT
Content-Type: video/MP2T
Content-Length: 105656
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-19cb8"
Expires: Fri, 02 Aug 2024 13:46:18 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| avatars.mds.yandex.net/get-kinopoisk-image/1629390/1233d348-cc2c-4ff9-ac82-930d710438a4/52 | 87.250.247.181 | 200 OK | 1.6 kB |
URL GET HTTP/2avatars.mds.yandex.net/get-kinopoisk-image/1629390/1233d348-cc2c-4ff9-ac82-930d710438a4/52 IP87.250.247.181:443
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerGlobalSign nv-sa Subject*.avatars.mds.yandex.net FingerprintBA:3A:F2:3D:C9:8F:4B:5C:E1:4D:48:8E:47:FD:3B:F8:C3:BE:0A:A2 ValidityWed, 20 Mar 2024 15:21:04 GMT - Sun, 20 Oct 2024 15:21:04 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 52x82, Scaling: [none]x[none], YUV color, decoders should clamp Hashb70c939c161119c6967470fe485d17a7 b25d0c42134d44bdadb7a3536294c2eb03deefcc 2eca1f01bebe334b695d08927af474efc9be733eff1bd835c2bae073b1277ded
GET /get-kinopoisk-image/1629390/1233d348-cc2c-4ff9-ac82-930d710438a4/52 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: image/webp
content-length: 1628
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Sat, 09 Mar 2024 13:35:44 GMT
cache-control: max-age=604800,immutable
x-request-id: f8c19c0de40bfe32
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=SAS"}]}
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| avatars.mds.yandex.net/get-kinopoisk-image/1599028/0ede2205-4d80-492b-941b-2af09ba3d56b/52 | 87.250.247.181 | 200 OK | 1.6 kB |
URL GET HTTP/2avatars.mds.yandex.net/get-kinopoisk-image/1599028/0ede2205-4d80-492b-941b-2af09ba3d56b/52 IP87.250.247.181:443
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerGlobalSign nv-sa Subject*.avatars.mds.yandex.net FingerprintBA:3A:F2:3D:C9:8F:4B:5C:E1:4D:48:8E:47:FD:3B:F8:C3:BE:0A:A2 ValidityWed, 20 Mar 2024 15:21:04 GMT - Sun, 20 Oct 2024 15:21:04 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 52x82, Scaling: [none]x[none], YUV color, decoders should clamp Hashdd7a16ca88c65e6a7dc382b6c58e2d35 063a3a1875f84b4945063098092dc9bad24c40e2 2ad5a1aaec7e8cac6a8146def2929e602b24ce326ab9079dc70dc5e5c733d81f
GET /get-kinopoisk-image/1599028/0ede2205-4d80-492b-941b-2af09ba3d56b/52 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:57 GMT
content-type: image/webp
content-length: 1644
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Fri, 19 Jun 2020 08:47:28 GMT
cache-control: max-age=604800,immutable
x-request-id: 1f53fd12cb7beb01
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=SAS"}]}
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| sp.ohmy.bid/cmf?0.46375250465087425 | 167.235.9.235 | 204 No Content | 0 B |
URL GET HTTP/2sp.ohmy.bid/cmf?0.46375250465087425 IP167.235.9.235:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerLet's Encrypt Subjectsp.ohmy.bid Fingerprint3D:58:E2:D5:2F:E7:90:A7:4A:D3:A3:9B:6F:C5:FA:97:B5:84:10:81 ValiditySat, 23 Mar 2024 20:09:28 GMT - Fri, 21 Jun 2024 20:09:27 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cmf?0.46375250465087425 HTTP/1.1
Host: sp.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: uid=97b584c1-f2b8-439d-b0f7-679d83e7dc41.66290d15.b4a875d5b3ba3156
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx
date: Wed, 24 Apr 2024 13:46:15 GMT
bidder: bid-15 1.1531.0cf371f1
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/vast2?key=ea59f7a89d04d570fbb4ef98a8a1693c&sid=autoplay&cp.adsource=Dhs_out_g3&cp.adtype=pre&vt=100&fp=[fp]&w=400&h=225&vid=&fpro=&suri=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&rdd1=true&cp.referer=https%253A%252F%252Frutor.is%252Ftorrent%252F970410e&cp.cb=5ed68a75-e94d-06cf-f54b-dc4a08102692 | 193.200.65.151 | 200 OK | 911 B |
URL GET HTTP/2code.moviead55.ru/vast2?key=ea59f7a89d04d570fbb4ef98a8a1693c&sid=autoplay&cp.adsource=Dhs_out_g3&cp.adtype=pre&vt=100&fp=[fp]&w=400&h=225&vid=&fpro=&suri=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&rdd1=true&cp.referer=https%253A%252F%252Frutor.is%252Ftorrent%252F970410e&cp.cb=5ed68a75-e94d-06cf-f54b-dc4a08102692 IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9 ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
File typeXML document, ASCII text, with very long lines (937), with no line terminators Hashee720b105036120adb17e17c0784db87 9cef1c6e2d94cfee90a5b582d1f72f0432026817 4a55e7842401df52564a0a51a9b9e6f983622cfd2ebe8622f7081c0747d7e808
GET /vast2?key=ea59f7a89d04d570fbb4ef98a8a1693c&sid=autoplay&cp.adsource=Dhs_out_g3&cp.adtype=pre&vt=100&fp=[fp]&w=400&h=225&vid=&fpro=&suri=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&rdd1=true&cp.referer=https%253A%252F%252Frutor.is%252Ftorrent%252F970410e&cp.cb=5ed68a75-e94d-06cf-f54b-dc4a08102692 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rutor.is
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8; hbrdcookie2=efb0ab642581b4586944; otclkbid=VU0cO9fZFTbYzyf; bzcookie=b532de35-9400-48ba-78bd-5db5cc175cb3; ohmybid=97b584c1-f2b8-439d-b0f7-679d83e7dc41; otmbid=NjYyOTBkMTUwMTRiOGU2Yw==; 680rmads=1713966377; sapecookie=0A00007F150D2966E32F104702A44A3F; 754rmads=1713966358
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:46:17 GMT
content-type: text/xml;charset=UTF-8
vary: Accept-Encoding
x-movieads-cors-qex: Referer
x-movieads-path: /
access-control-allow-credentials: true
access-control-allow-origin: https://rutor.is
x-movieads-udata: cache,parsed,69823
x-movieads-referrer: https://rutor.is/
x-cache-source: Rist
x-movieads-mrc: no
x-movieads-ref: {"Scheme":"https","Opaque":"","User":null,"Host":"rutor.is","Path":"/","RawPath":"","OmitHost":false,"ForceQuery":false,"RawQuery":"","Fragment":"","RawFragment":""}
set-cookie: 754rmads=1713966377; max-age=31536000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1713966375 | 193.200.65.151 | 301 Moved Permanently | 43 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1713966375 IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9 ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gonetbid&rnd=1713966375 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=54c719e7-4329-fa93-2583-c033f54556e8; hbrdcookie2=efb0ab642581b4586944; otclkbid=VU0cO9fZFTbYzyf; bzcookie=b532de35-9400-48ba-78bd-5db5cc175cb3; ohmybid=97b584c1-f2b8-439d-b0f7-679d83e7dc41; otmbid=NjYyOTBkMTUwMTRiOGU2Yw==; 680rmads=1713966358; sapecookie=0A00007F150D2966E32F104702A44A3F; 754rmads=1713966358
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 24 Apr 2024 13:46:15 GMT
content-length: 0
location: https://sync.gonet-ads.com/match/SkyAdvert?id=54c719e7-4329-fa93-2583-c033f54556e8
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/madstyle.css | 193.200.65.151 | 200 OK | 209 B |
URL GET HTTP/2code.moviead55.ru/madstyle.css IP193.200.65.151:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9 ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
File typeASCII text, with no line terminators Hashf48e4b3bf133900ec333310cb9303de4 66d5453c9018c4a2163ba71ef5829923aa3df7f1 55ed53e35560d060534f1e8576b923cb1217a550cf0da32f1e50ef9064dc9776
GET /madstyle.css HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:45:56 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
access-control-allow-origin: *
access-control-expose-headers: *
access-control-max-age: 86400
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin, Access-Control-Request-Headers, Access-Control-Request-Method
etag: W/"28021-7Ba9Gb9K6bwuIzasQJpQO7varK0"
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| logger.moviead55.ru/logger.php?t=player_finish&c=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&a=&m=&v=ea59f7a89d04d570fbb4ef98a8a1693c&o=undefined | 193.200.65.146 | 200 OK | 70 B |
URL GET HTTP/2logger.moviead55.ru/logger.php?t=player_finish&c=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&a=&m=&v=ea59f7a89d04d570fbb4ef98a8a1693c&o=undefined IP193.200.65.146:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintE4:F3:DB:F5:01:1C:F3:56:55:6B:F7:22:06:C7:C8:6E:DD:9D:B4:E9 ValidityThu, 22 Feb 2024 17:50:17 GMT - Wed, 22 May 2024 17:50:16 GMT
File typePNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced Hashb357a19c87624c7c4d131aeeb4ae677f c7a9c45fd419815a5ab1998503a9f03514c0e229 497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?t=player_finish&c=2b4be58c-85cb-43e2-ba6b-6d102d2360e5&a=&m=&v=ea59f7a89d04d570fbb4ef98a8a1693c&o=undefined HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 13:46:15 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| st.kinopoisk.ru/images/sm_actor/20542.jpg | 213.180.199.9 | 302 Found | 1.6 kB |
URL GET HTTP/2st.kinopoisk.ru/images/sm_actor/20542.jpg IP213.180.199.9:443
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerGlobalSign nv-sa Subject*.kinopoisk.ru Fingerprint60:65:F8:10:D8:3A:62:4C:14:01:40:39:D4:CF:BD:67:36:B0:A8:D3 ValidityThu, 23 Nov 2023 21:12:48 GMT - Thu, 23 May 2024 20:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/sm_actor/20542.jpg HTTP/1.1
Host: st.kinopoisk.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://avatars.mds.yandex.net/get-kinopoisk-image/1599028/0ede2205-4d80-492b-941b-2af09ba3d56b/52
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
date: Wed, 24 Apr 2024 13:45:56 GMT
access-control-allow-origin: *
set-cookie: _yasc=nfMIg+k39sZS/PiSxfhl7ljvSizyRRSWj0Z3DN+o3jsvJEaKDilZqvI27nVzP85wHA==; domain=.kinopoisk.ru; path=/; expires=Sat, 22 Apr 2034 13:45:56 GMT; secure
i=S21yMXtqc756HKM+tA6gXKtYNPRbOSPfIWLu4xu/S8wEVtj33eFx1UUFEK22CU2tkOmFZsjHED659fPHPvBrspitBGk=; Expires=Fri, 24-Apr-2026 13:45:56 GMT; Domain=.kinopoisk.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=4614439161713966356; Expires=Fri, 24-Apr-2026 13:45:56 GMT; Domain=.kinopoisk.ru; Path=/; Secure; SameSite=None
yashr=9641814131713966356; Path=/; Domain=.kinopoisk.ru; Expires=Thu, 24 Apr 2025 13:45:56 GMT; SameSite=None; Secure; HttpOnly
x-request-id: 1713966356928766-2308665989597944598
expires: Wed, 24 Apr 2024 13:55:56 GMT
x-response-request-id: 1713966356928766-2308665989597944598
cache-control: max-age=600
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| st.kinopoisk.ru/images/sm_actor/3044768.jpg | 213.180.199.9 | 302 Found | 1.6 kB |
URL GET HTTP/2st.kinopoisk.ru/images/sm_actor/3044768.jpg IP213.180.199.9:443
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerGlobalSign nv-sa Subject*.kinopoisk.ru Fingerprint60:65:F8:10:D8:3A:62:4C:14:01:40:39:D4:CF:BD:67:36:B0:A8:D3 ValidityThu, 23 Nov 2023 21:12:48 GMT - Thu, 23 May 2024 20:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/sm_actor/3044768.jpg HTTP/1.1
Host: st.kinopoisk.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://avatars.mds.yandex.net/get-kinopoisk-image/1777765/ccaa0be2-1a89-4fcb-ae4d-ac726ed8ed11/52
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
date: Wed, 24 Apr 2024 13:45:56 GMT
access-control-allow-origin: *
set-cookie: _yasc=YvE5vMaf+mBOnvVkRpBJMVat2E3wxova/hMn/yZbeyt8cnqX6sHsQYJ60Y/94sRJkw==; domain=.kinopoisk.ru; path=/; expires=Sat, 22 Apr 2034 13:45:56 GMT; secure
i=/npYCbH2r+mNs3NDVg0IKT6yWXkW1Iq+JTx8trR5EoHgnfs07W2rAs0XVuM3/r3qWobNuGXOxkD9DTVhgnpJ3QgnQQA=; Expires=Fri, 24-Apr-2026 13:45:56 GMT; Domain=.kinopoisk.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=6719880811713966356; Expires=Fri, 24-Apr-2026 13:45:56 GMT; Domain=.kinopoisk.ru; Path=/; Secure; SameSite=None
yashr=2177794851713966356; Path=/; Domain=.kinopoisk.ru; Expires=Thu, 24 Apr 2025 13:45:56 GMT; SameSite=None; Secure; HttpOnly
x-request-id: 1713966356860656-5036152317619059678
expires: Wed, 24 Apr 2024 13:55:56 GMT
x-response-request-id: 1713966356860656-5036152317619059678
cache-control: max-age=600
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| st.kinopoisk.ru/images/sm_actor/1983.jpg | 213.180.199.9 | 302 Found | 1.6 kB |
URL GET HTTP/2st.kinopoisk.ru/images/sm_actor/1983.jpg IP213.180.199.9:443
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerGlobalSign nv-sa Subject*.kinopoisk.ru Fingerprint60:65:F8:10:D8:3A:62:4C:14:01:40:39:D4:CF:BD:67:36:B0:A8:D3 ValidityThu, 23 Nov 2023 21:12:48 GMT - Thu, 23 May 2024 20:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/sm_actor/1983.jpg HTTP/1.1
Host: st.kinopoisk.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://avatars.mds.yandex.net/get-kinopoisk-image/4716873/a15357e2-9669-43a2-bd86-bf9656d11e90/52
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
date: Wed, 24 Apr 2024 13:45:56 GMT
access-control-allow-origin: *
set-cookie: _yasc=dxzXYstqUotXXCZ7/BsSAtLm8R9ngYkjn0oXPRhKcLlZJLn0/6zszwp5iDlL2tpZ; domain=.kinopoisk.ru; path=/; expires=Sat, 22 Apr 2034 13:45:56 GMT; secure
i=/9eQ6c9dVldLDs4N55Fm3bsAGdfuq7I6hqT5xOLM+EeoucWrO5vZwsjlI/7vD4isLQyeWeKZqGv/H4tdFzIp14XEbUU=; Expires=Fri, 24-Apr-2026 13:45:56 GMT; Domain=.kinopoisk.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=4293848831713966356; Expires=Fri, 24-Apr-2026 13:45:56 GMT; Domain=.kinopoisk.ru; Path=/; Secure; SameSite=None
yashr=5557952251713966356; Path=/; Domain=.kinopoisk.ru; Expires=Thu, 24 Apr 2025 13:45:56 GMT; SameSite=None; Secure; HttpOnly
x-request-id: 1713966356895474-10154657572721665459
expires: Wed, 24 Apr 2024 13:55:56 GMT
x-response-request-id: 1713966356895474-10154657572721665459
cache-control: max-age=600
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| endpoints.dochase.com/?seat=evxGM8Wybgk6hDa9lZoy&token=ggVl8a4pY8KlsunXQ24YAedeD25lKPrm&cb=1713966377.1795423&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&ip=192.168.110.151%3A23064&w=400&h=225&url=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&domain=rutor.is&cat=324&ref=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&maxduration=40&minduration=1&playerwidth=400&playerheight=225&publisher_id=54c719e7-4329-fa93-2583-c033f54556e8 | 8.2.109.53 | 200 OK | 21 B |
URL GET HTTP/1.1endpoints.dochase.com/?seat=evxGM8Wybgk6hDa9lZoy&token=ggVl8a4pY8KlsunXQ24YAedeD25lKPrm&cb=1713966377.1795423&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&ip=192.168.110.151%3A23064&w=400&h=225&url=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&domain=rutor.is&cat=324&ref=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&maxduration=40&minduration=1&playerwidth=400&playerheight=225&publisher_id=54c719e7-4329-fa93-2583-c033f54556e8 IP8.2.109.53:443
Requested byhttps://rutor.is/torrent/970410e CertificateIssuerGlobalSign nv-sa Subject*.dochase.com Fingerprint67:CF:80:F8:5A:15:36:52:0F:79:77:E0:B9:6F:2C:4B:63:70:E1:41 ValidityThu, 04 Jan 2024 12:17:10 GMT - Tue, 04 Feb 2025 12:17:09 GMT
File typeASCII text, with no line terminators Hash73585956e1ab6eec67477b0219fe5a49 5d7661f530e76df06c522c8178ccd611181c2a1f c0cc1c763fa66aa593a6ee3d727f78cd63de02f9950ae8083376ac2e483d2514
GET /?seat=evxGM8Wybgk6hDa9lZoy&token=ggVl8a4pY8KlsunXQ24YAedeD25lKPrm&cb=1713966377.1795423&ua=Mozilla%2F5.0+%28X11%3B+Linux+x86_64%3B+rv%3A96.0%29+Gecko%2F20100101+Firefox%2F96.0&ip=192.168.110.151%3A23064&w=400&h=225&url=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&domain=rutor.is&cat=324&ref=https%3A%2F%2Frutor.is%2Ftorrent%2F970410e&maxduration=40&minduration=1&playerwidth=400&playerheight=225&publisher_id=54c719e7-4329-fa93-2583-c033f54556e8 HTTP/1.1
Host: endpoints.dochase.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rutor.is
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 13:46:17 GMT
Content-Type: text/xml
Content-Length: 21
Connection: keep-alive
Access-Control-Allow-Origin: https://rutor.is
Access-Control-Allow-Credentials: true
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
X-Frame-Options: DENY
|
|