| r10.o.lencr.org/ |  23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash91a50ba757c5ca46c896205a21d87a49 0b48953a685631845a7034c8948077de0e60de80 15d10fabb92098e81e218740ae04059fe6340c321ee70325db46f6c9cb7ad817
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "15D10FABB92098E81E218740AE04059FE6340C321EE70325DB46F6C9CB7AD817"
Last-Modified: Thu, 18 Jul 2024 07:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2191
Expires: Sat, 20 Jul 2024 22:17:26 GMT
Date: Sat, 20 Jul 2024 21:40:55 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashc746d0145c03aa7156aa6a21d8cd2d41 8fb7cb950f28012e8bf42cf02c7598862c66e21f c695ccd93d9e45c8d7b4b08201a3fe45221658531fa0a54f778dadcc2479399e
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "C695CCD93D9E45C8D7B4B08201A3FE45221658531FA0A54F778DADCC2479399E"
Last-Modified: Thu, 18 Jul 2024 07:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6033
Expires: Sat, 20 Jul 2024 23:21:28 GMT
Date: Sat, 20 Jul 2024 21:40:55 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashba83fc82f22d464fbc0a613d3224fdef b8d2b3e057c0d01c05e3891f5b5cdaf09e001d3b 17205f996d5ce1462adb970516597f51763582906181b875e45b5b7535f38b8f
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "17205F996D5CE1462ADB970516597F51763582906181B875E45B5B7535F38B8F"
Last-Modified: Thu, 18 Jul 2024 08:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8158
Expires: Sat, 20 Jul 2024 23:56:53 GMT
Date: Sat, 20 Jul 2024 21:40:55 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash42e531d59be85c09ecc215208470d19e 75ec72c8c8e1de19407837d46d2ad7119770cdb0 38125115e22a9a58bf2df205bb09ae6c6fef4948b9de15b2f15f37d19aedf6a9
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "38125115E22A9A58BF2DF205BB09AE6C6FEF4948B9DE15B2F15F37D19AEDF6A9"
Last-Modified: Thu, 18 Jul 2024 07:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6536
Expires: Sat, 20 Jul 2024 23:29:52 GMT
Date: Sat, 20 Jul 2024 21:40:56 GMT
Connection: keep-alive
|
|
| e6.o.lencr.org/ | 23.36.76.226 | | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash307b2fb54d4ca0e88812a5b73fe9f386 c609ad0d6ad6d96c8a4512c0170b67294d7c8562 c794db283db7662796db4bf868234e1e38f2ca2e3552348667094f5481d32bd8
POST / HTTP/1.1
Host: e6.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "C794DB283DB7662796DB4BF868234E1E38F2CA2E3552348667094F5481D32BD8"
Last-Modified: Thu, 18 Jul 2024 08:43:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10825
Expires: Sun, 21 Jul 2024 00:41:21 GMT
Date: Sat, 20 Jul 2024 21:40:56 GMT
Connection: keep-alive
|
|
| |  193.46.255.26 | 200 OK | 7.3 kB |
URL User Request GET HTTP/1.1IP193.46.255.26:443
CertificateIssuerLet's Encrypt Subjectrutor.is Fingerprint18:80:79:37:71:45:DA:B3:A3:03:0C:43:63:9D:35:36:FB:B1:4C:FF ValidityFri, 21 Jun 2024 02:01:14 GMT - Thu, 19 Sep 2024 02:01:13 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (645), with CRLF, CR, LF line terminators Hashb6c5f86c2b533a6b3793f49baf982b0f b58718520ed3af77de962952fd2d15911e741373 bf264c6f2abc7ebe524da4f1a5e0da35d87779121acb2be08ff27fc8d3bb4f09
GET /torrent/987625e HTTP/1.1
Host: rutor.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sat, 20 Jul 2024 21:40:56 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 7340
Connection: keep-alive
Content-Encoding: gzip
Age: 12740
Accept-Ranges: bytes
X-Debug: 14400.000 36 v
|
|
| sheisnotateacher.com/services/?id=144655 |  193.200.64.24 | 200 OK | 2.4 kB |
URL GET HTTP/1.1sheisnotateacher.com/services/?id=144655 IP193.200.64.24:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectsheisnotateacher.com Fingerprint83:8F:18:EF:B3:E5:F2:74:07:B4:EF:85:E9:63:A4:73:45:84:25:8E ValidityTue, 07 May 2024 20:06:16 GMT - Mon, 05 Aug 2024 20:06:15 GMT
File typeJavaScript source, ASCII text, with very long lines (2444), with no line terminators Hashb815a98aa05995180679977f4d57cf49 c137651ec3db43c93684e00bb2083bbba321b755 4cd0064cf166b9113e7b793a3fcf691f570a2ef111ab7736d968a713188a3022
GET /services/?id=144655 HTTP/1.1
Host: sheisnotateacher.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 20 Jul 2024 21:40:56 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 2444
Connection: keep-alive
|
|
| o.pki.goog/wr2 |  142.250.74.131 | | 472 B |
IP142.250.74.131:0
Hash67db02be150b913e03c7ba9aafe6b5d3 c0902e2d45e7d3d3838a685e9344e17187474068 d5a1d2c4f560d5c431867f9e715ce4cde0e8f4641c1713316cb30b9e3424aee6
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 20 Jul 2024 21:40:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashad4a896c32466111ff4e9da356fac713 856e04e9ada23979756025a1a6009ab910a99abc 7c6153d2a6d673211d5e55b190f703d603c62776479a964cf6d5d634c67780dd
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "7C6153D2A6D673211D5E55B190F703D603C62776479A964CF6D5D634C67780DD"
Last-Modified: Sat, 20 Jul 2024 19:37:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16089
Expires: Sun, 21 Jul 2024 02:09:05 GMT
Date: Sat, 20 Jul 2024 21:40:56 GMT
Connection: keep-alive
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashad4a896c32466111ff4e9da356fac713 856e04e9ada23979756025a1a6009ab910a99abc 7c6153d2a6d673211d5e55b190f703d603c62776479a964cf6d5d634c67780dd
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "7C6153D2A6D673211D5E55B190F703D603C62776479A964CF6D5D634C67780DD"
Last-Modified: Sat, 20 Jul 2024 19:37:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16089
Expires: Sun, 21 Jul 2024 02:09:05 GMT
Date: Sat, 20 Jul 2024 21:40:56 GMT
Connection: keep-alive
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashad4a896c32466111ff4e9da356fac713 856e04e9ada23979756025a1a6009ab910a99abc 7c6153d2a6d673211d5e55b190f703d603c62776479a964cf6d5d634c67780dd
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "7C6153D2A6D673211D5E55B190F703D603C62776479A964CF6D5D634C67780DD"
Last-Modified: Sat, 20 Jul 2024 19:37:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16089
Expires: Sun, 21 Jul 2024 02:09:05 GMT
Date: Sat, 20 Jul 2024 21:40:56 GMT
Connection: keep-alive
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashad4a896c32466111ff4e9da356fac713 856e04e9ada23979756025a1a6009ab910a99abc 7c6153d2a6d673211d5e55b190f703d603c62776479a964cf6d5d634c67780dd
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "7C6153D2A6D673211D5E55B190F703D603C62776479A964CF6D5D634C67780DD"
Last-Modified: Sat, 20 Jul 2024 19:37:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16089
Expires: Sun, 21 Jul 2024 02:09:05 GMT
Date: Sat, 20 Jul 2024 21:40:56 GMT
Connection: keep-alive
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js | 142.250.74.74 | 200 OK | 25 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js IP142.250.74.74:443
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerGoogle Trust Services Subjectupload.video.google.com Fingerprint8F:1C:80:D7:A7:FA:04:F3:EE:EF:70:FD:56:35:32:FD:55:AB:63:5F ValidityMon, 24 Jun 2024 07:40:53 GMT - Mon, 16 Sep 2024 07:40:52 GMT
File typeJavaScript source, ASCII text, with very long lines (820) Hash10092eee563dec2dca82b77d2cf5a1ae 65cbff4e9d95d47a6f31d96ab4ea361c1f538a7b e23a2a4e2d7c2b41ebcdd8ffc0679df7140eb7f52e1eebabf827a88182643c59
GET /ajax/libs/jquery/1.4.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 24715
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Jul 2024 09:19:05 GMT
expires: Thu, 17 Jul 2025 09:19:05 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 303711
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdnbunny.org/t/functions.js |  77.91.100.49 | 200 OK | 3.9 kB |
URL GET HTTP/1.1cdnbunny.org/t/functions.js IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint4E:13:1E:35:83:89:93:82:C0:0F:ED:13:AE:2D:4C:42:40:0C:16:69 ValidityThu, 11 Jul 2024 19:15:26 GMT - Wed, 09 Oct 2024 19:15:25 GMT
File typeUnicode text, UTF-8 text, with very long lines (318) Hashacee02196e40649c575ccf4848b623d8 152193c0a635fdd111253397d32f52392bcf8c52 c787a40d68005890630932870e5b79587360d9eb1c2a4c0323ed5da897690801
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /t/functions.js HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 20 Jul 2024 21:40:56 GMT
Content-Type: application/javascript
Content-Length: 3862
Connection: keep-alive
Last-Modified: Wed, 06 Jan 2016 14:43:48 GMT
ETag: "568d2824-f16"
Cache-Control: max-age=604800
Age: 225218
X-Debug: 604800.000 769752
Accept-Ranges: bytes
|
|
| cdnbunny.org/jquery.cookie-min.js | 77.91.100.49 | 200 OK | 732 B |
URL GET HTTP/1.1cdnbunny.org/jquery.cookie-min.js IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint4E:13:1E:35:83:89:93:82:C0:0F:ED:13:AE:2D:4C:42:40:0C:16:69 ValidityThu, 11 Jul 2024 19:15:26 GMT - Wed, 09 Oct 2024 19:15:25 GMT
File typeJavaScript source, ASCII text, with very long lines (732), with no line terminators Hashce56bb0d2daafc993b2866ccc1af86fc fe46733587f81da245f6b3e16d6bbbd8a1cb2fea 874d19eae19d9f20a884d976ccca6092c91da6ee8c71d8be1c5c893acbad9159
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /jquery.cookie-min.js HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 20 Jul 2024 21:40:56 GMT
Content-Type: application/javascript
Content-Length: 732
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 17:05:24 GMT
ETag: "4ebea754-2dc"
Cache-Control: max-age=604800
Age: 225218
X-Debug: 604800.000 776191
Accept-Ranges: bytes
|
|
| o.pki.goog/wr2 | 142.250.74.131 | | 472 B |
IP142.250.74.131:0
Hash67db02be150b913e03c7ba9aafe6b5d3 c0902e2d45e7d3d3838a685e9344e17187474068 d5a1d2c4f560d5c431867f9e715ce4cde0e8f4641c1713316cb30b9e3424aee6
POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 20 Jul 2024 21:40:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| cdnbunny.org/css.css | 77.91.100.49 | 200 OK | 24 kB |
IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint4E:13:1E:35:83:89:93:82:C0:0F:ED:13:AE:2D:4C:42:40:0C:16:69 ValidityThu, 11 Jul 2024 19:15:26 GMT - Wed, 09 Oct 2024 19:15:25 GMT
File typeASCII text, with very long lines (3877), with CRLF line terminators Hash751ab231b9980ced48191df03db9999a 36bd22d3521f2dfd5530d74796082fc276160c99 581b656ce90c82bb602f30470c75abbd2eb9d68d26cfc8f2d7a975f0ca0675a3
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /css.css HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 20 Jul 2024 21:40:56 GMT
Content-Type: text/css
Content-Length: 23547
Connection: keep-alive
Last-Modified: Sun, 17 May 2015 18:55:35 GMT
ETag: "5558e427-5bfb"
Cache-Control: max-age=604800
Age: 225219
X-Debug: 604800.000 772206
Accept-Ranges: bytes
|
|
| cdnbunny.org/i/forum.gif | 77.91.100.49 | 200 OK | 4.4 kB |
IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint4E:13:1E:35:83:89:93:82:C0:0F:ED:13:AE:2D:4C:42:40:0C:16:69 ValidityThu, 11 Jul 2024 19:15:26 GMT - Wed, 09 Oct 2024 19:15:25 GMT
File typeGIF image data, version 89a, 250 x 42 Hash48ae00889ff3baa47dafe9d6d0977019 8c08f0f6ee7fd93f40679bea8d3ceb7be01b3e2c 790a5e6e4ff054d64eca66bd8cfe77b7f379695366e3e5f1f35d5b702e39506c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /i/forum.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 20 Jul 2024 21:40:57 GMT
Content-Type: image/gif
Content-Length: 4367
Connection: keep-alive
Last-Modified: Sun, 03 Jan 2016 20:49:57 GMT
ETag: "56898975-110f"
Cache-Control: max-age=604800
Age: 225218
X-Debug: 604800.000 717030
Accept-Ranges: bytes
|
|
| cdnbunny.org/i/com.gif | 77.91.100.49 | 200 OK | 295 B |
IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint4E:13:1E:35:83:89:93:82:C0:0F:ED:13:AE:2D:4C:42:40:0C:16:69 ValidityThu, 11 Jul 2024 19:15:26 GMT - Wed, 09 Oct 2024 19:15:25 GMT
File typeGIF image data, version 89a, 11 x 9 Hashe91f48c29a8f6285ade898585e58f8ad c171b970bbdb33210c1e9714bc7fa96e42bdb0bf 30bacf9c5db02b0b5fdbe670c15301ec8231d2e526ab20ea5f8dfb8692e02f17
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /i/com.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 20 Jul 2024 21:40:57 GMT
Content-Type: image/gif
Content-Length: 295
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:28:29 GMT
ETag: "4ebe909d-127"
Cache-Control: max-age=604800
Age: 225219
X-Debug: 604800.000 748609
Accept-Ranges: bytes
|
|
| cdnbunny.org/t/top.gif | 77.91.100.49 | 200 OK | 612 B |
IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint4E:13:1E:35:83:89:93:82:C0:0F:ED:13:AE:2D:4C:42:40:0C:16:69 ValidityThu, 11 Jul 2024 19:15:26 GMT - Wed, 09 Oct 2024 19:15:25 GMT
File typeGIF image data, version 89a, 24 x 24 Hashab3755cddb40723270164fa84b8f0362 a7e6700d02578c03bd76b217b23c55b4fba997ea 79df9f5b18cac4dbaec0808448c15e094b5fe20d04aabfe7bed9e6ae07739dfd
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /t/top.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 20 Jul 2024 21:40:57 GMT
Content-Type: image/gif
Content-Length: 612
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:31:17 GMT
ETag: "4ebe9145-264"
Cache-Control: max-age=604800
Age: 225220
X-Debug: 604800.000 716340
Accept-Ranges: bytes
|
|
| cdnbunny.org/logo.jpg | 77.91.100.49 | 200 OK | 45 kB |
IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint4E:13:1E:35:83:89:93:82:C0:0F:ED:13:AE:2D:4C:42:40:0C:16:69 ValidityThu, 11 Jul 2024 19:15:26 GMT - Wed, 09 Oct 2024 19:15:25 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=120, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=450], baseline, precision 8, 420x110, components 3 Hashdc4a948f3ccf35b2c39269cde1aad6f3 1b952aa88121ee56b0648e0e2476a0dacc39da5e eabb9097a448d6066ceac9b449f2a3759776e14aea3d574208495af12ed84f56
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /logo.jpg HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 20 Jul 2024 21:40:57 GMT
Content-Type: image/jpeg
Content-Length: 44893
Connection: keep-alive
Last-Modified: Wed, 23 Jan 2019 21:57:36 GMT
ETag: "5c48e350-af5d"
Cache-Control: max-age=604800
Age: 225215
X-Debug: 604800.000 732472
Accept-Ranges: bytes
|
|
| e5.o.lencr.org/ | 23.36.77.32 | | 346 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashe75c3293900ebc2f922480dad0a6ef91 c5cea0291c2cc8ff58d483af17ed8743c5c3e3e3 e0c0afb07dda0615fc5817170b8be741a19d4dd0d665ea4119600680013e808b
POST / HTTP/1.1
Host: e5.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "E0C0AFB07DDA0615FC5817170B8BE741A19D4DD0D665EA4119600680013E808B"
Last-Modified: Sat, 20 Jul 2024 20:04:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17691
Expires: Sun, 21 Jul 2024 02:35:48 GMT
Date: Sat, 20 Jul 2024 21:40:57 GMT
Connection: keep-alive
|
|
| cdnbunny.org/t/down.png | 77.91.100.49 | 200 OK | 4.6 kB |
IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint4E:13:1E:35:83:89:93:82:C0:0F:ED:13:AE:2D:4C:42:40:0C:16:69 ValidityThu, 11 Jul 2024 19:15:26 GMT - Wed, 09 Oct 2024 19:15:25 GMT
File typePNG image data, 27 x 27, 8-bit/color RGBA, interlaced Hash7c13d91e67d4debe5cc1469495197d9d e58a04673dd493302d7e6f1198b68ffdce39ebc2 d2e05bd0c1f904da109ba2558bcc76c84c48e3de9a2cece178ceba790c6d2bb4
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /t/down.png HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 20 Jul 2024 21:40:57 GMT
Content-Type: image/png
Content-Length: 4603
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:31:05 GMT
ETag: "4ebe9139-11fb"
Cache-Control: max-age=604800
Age: 225218
X-Debug: 604800.000 496800
Accept-Ranges: bytes
|
|
| cdnbunny.org/i/lupa.gif | 77.91.100.49 | 200 OK | 3.1 kB |
IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint4E:13:1E:35:83:89:93:82:C0:0F:ED:13:AE:2D:4C:42:40:0C:16:69 ValidityThu, 11 Jul 2024 19:15:26 GMT - Wed, 09 Oct 2024 19:15:25 GMT
File typeGIF image data, version 89a, 55 x 56 Hashe2c8f8537818f7880be3ae505852b9ff 2a1f5572e6f4c9efc1700f34d6c6969bedbd8535 6946c64a41b61a1e8708b7bcf8274274c71cdc23932aab32da5b868d19212b3a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /i/lupa.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 20 Jul 2024 21:40:57 GMT
Content-Type: image/gif
Content-Length: 3079
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:28:36 GMT
ETag: "4ebe90a4-c07"
Cache-Control: max-age=604800
Age: 225215
X-Debug: 604800.000 716715
Accept-Ranges: bytes
|
|
| cdnbunny.org/t/arrowup.gif | 77.91.100.49 | 200 OK | 52 B |
URL GET HTTP/1.1cdnbunny.org/t/arrowup.gif IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint4E:13:1E:35:83:89:93:82:C0:0F:ED:13:AE:2D:4C:42:40:0C:16:69 ValidityThu, 11 Jul 2024 19:15:26 GMT - Wed, 09 Oct 2024 19:15:25 GMT
File typeGIF image data, version 89a, 5 x 8 Hash7cbfc089fd0b0d261187a0c1ef0826af 1583fd0ccdd6a7dcb24ef670761ab01387cf87cf b88cfd011c972f65586f207621005b8b3336773a252e2a309ddbd9b7dda7b8b9
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /t/arrowup.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 20 Jul 2024 21:40:57 GMT
Content-Type: image/gif
Content-Length: 52
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:30:59 GMT
ETag: "4ebe9133-34"
Cache-Control: max-age=604800
Age: 225218
X-Debug: 604800.000 785391
Accept-Ranges: bytes
|
|
| cdnbunny.org/i/poisk_bg.gif | 77.91.100.49 | 200 OK | 2.0 kB |
URL GET HTTP/1.1cdnbunny.org/i/poisk_bg.gif IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint4E:13:1E:35:83:89:93:82:C0:0F:ED:13:AE:2D:4C:42:40:0C:16:69 ValidityThu, 11 Jul 2024 19:15:26 GMT - Wed, 09 Oct 2024 19:15:25 GMT
File typeGIF image data, version 89a, 46 x 56 Hash76118a48fd5ae4b926e34f4edb427386 4aa5f228e3f511bf626afa6703488d1d7c6df5e0 4912841156c4582948d016867a6c71845a0221f1dd6419ea911f6f83bbc431d7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /i/poisk_bg.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 20 Jul 2024 21:40:57 GMT
Content-Type: image/gif
Content-Length: 1998
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:28:37 GMT
ETag: "4ebe90a5-7ce"
Cache-Control: max-age=604800
Age: 225219
X-Debug: 604800.000 477304
Accept-Ranges: bytes
|
|
| s.rutor.info/imdb/pic/30981149.gif | 193.46.255.28 | 200 OK | 1.8 kB |
URL GET HTTP/1.1s.rutor.info/imdb/pic/30981149.gif IP193.46.255.28:443
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectrutor.info Fingerprint40:51:F3:E4:FC:F7:6B:FE:80:D2:BB:35:CB:6C:9A:5D:A7:AD:FD:80 ValidityFri, 21 Jun 2024 02:01:00 GMT - Thu, 19 Sep 2024 02:00:59 GMT
File typeGIF image data, version 87a, 102 x 38 Hash347453f70c9e6c58dff77eb14ba87df8 9ceea158091f0315e7cbd005d548d752cce2b0a4 c88d3f09e380cff764749f17eefb0a645d51adf9648f6023043d2c9a9673d530
GET /imdb/pic/30981149.gif HTTP/1.1
Host: s.rutor.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sat, 20 Jul 2024 21:40:57 GMT
Content-Type: image/gif
Content-Length: 1787
Connection: keep-alive
Last-Modified: Sun, 07 Jul 2024 07:04:21 GMT
ETag: "668a3df5-6fb"
Cache-Control: max-age=86400
Age: 138327
Accept-Ranges: bytes
X-Debug: 172800.000 1884
|
|
| cdnbunny.org/i/m.png | 77.91.100.49 | 200 OK | 656 B |
IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint4E:13:1E:35:83:89:93:82:C0:0F:ED:13:AE:2D:4C:42:40:0C:16:69 ValidityThu, 11 Jul 2024 19:15:26 GMT - Wed, 09 Oct 2024 19:15:25 GMT
File typePNG image data, 13 x 13, 8-bit/color RGBA, non-interlaced Hash1c923e4247dd2fbbc7e407beecf6028c 37a7cd424c135206071cad59df92511df4fb6e5e efb2d84b9882f1e58d07b358cb77ad0b67fcce154bc7dc70086532abe8f57fff
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /i/m.png HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 20 Jul 2024 21:40:57 GMT
Content-Type: image/png
Content-Length: 656
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:28:36 GMT
ETag: "4ebe90a4-290"
Cache-Control: max-age=604800
Age: 225219
X-Debug: 604800.000 799371
Accept-Ranges: bytes
|
|
| cdnbunny.org/i/d.gif | 77.91.100.49 | 200 OK | 359 B |
IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint4E:13:1E:35:83:89:93:82:C0:0F:ED:13:AE:2D:4C:42:40:0C:16:69 ValidityThu, 11 Jul 2024 19:15:26 GMT - Wed, 09 Oct 2024 19:15:25 GMT
File typeGIF image data, version 89a, 13 x 13 Hash3def66024a583b6ca763e249acb3c426 82f2f897d3e2746181b889811ac675565dcaf0fa 7d4fb7d5a9e681b2313ca88338e3255364aa452f243d6397aa905783e98bfca0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /i/d.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 20 Jul 2024 21:40:57 GMT
Content-Type: image/gif
Content-Length: 359
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:28:29 GMT
ETag: "4ebe909d-167"
Cache-Control: max-age=604800
Age: 225220
X-Debug: 604800.000 813231
Accept-Ranges: bytes
|
|
| cdnbunny.org/i/zaiti.gif | 77.91.100.49 | 200 OK | 3.1 kB |
IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint4E:13:1E:35:83:89:93:82:C0:0F:ED:13:AE:2D:4C:42:40:0C:16:69 ValidityThu, 11 Jul 2024 19:15:26 GMT - Wed, 09 Oct 2024 19:15:25 GMT
File typeGIF image data, version 89a, 99 x 30 Hash9815ec4cdd376b7d71df61b74a7ce6c6 962c557ce627cc0332bc6ee175914946ff4bd2a1 a1d3e2383ecd387242844341a7200834f5cf3517ab846f17d276a2adc0286421
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /i/zaiti.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 20 Jul 2024 21:40:57 GMT
Content-Type: image/gif
Content-Length: 3070
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:28:40 GMT
ETag: "4ebe90a8-bfe"
Cache-Control: max-age=604800
Age: 225219
X-Debug: 604800.000 549011
Accept-Ranges: bytes
|
|
| cdnbunny.org/i/magnet.gif | 77.91.100.49 | 200 OK | 796 B |
URL GET HTTP/1.1cdnbunny.org/i/magnet.gif IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint4E:13:1E:35:83:89:93:82:C0:0F:ED:13:AE:2D:4C:42:40:0C:16:69 ValidityThu, 11 Jul 2024 19:15:26 GMT - Wed, 09 Oct 2024 19:15:25 GMT
File typeGIF image data, version 89a, 30 x 30 Hash1a31398a96af2ae3e63de5055912daec 55d558e163c634baeae650b15000f513753f29a8 7c92fab95800728d3ab74659b56bdc267928496ec422f03954679ebe0155cf9a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /i/magnet.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 20 Jul 2024 21:40:57 GMT
Content-Type: image/gif
Content-Length: 796
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:28:27 GMT
ETag: "4ebe909b-31c"
Cache-Control: max-age=604800
Age: 225219
X-Debug: 604800.000 497891
Accept-Ranges: bytes
|
|
| cdnbunny.org/t/arrowdown.gif | 77.91.100.49 | 200 OK | 51 B |
URL GET HTTP/1.1cdnbunny.org/t/arrowdown.gif IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint4E:13:1E:35:83:89:93:82:C0:0F:ED:13:AE:2D:4C:42:40:0C:16:69 ValidityThu, 11 Jul 2024 19:15:26 GMT - Wed, 09 Oct 2024 19:15:25 GMT
File typeGIF image data, version 89a, 5 x 8 Hashfe98a58fe6509fb7cb897d25228329d3 34d9e63fe61d4b543f84003c70d0473b6893926f a045e7b1f5ceaefbab2ef782b86b12de0a41fc2ca34c43cbf6b8b8a107d339ff
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /t/arrowdown.gif HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 20 Jul 2024 21:40:57 GMT
Content-Type: image/gif
Content-Length: 51
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2011 15:30:58 GMT
ETag: "4ebe9132-33"
Cache-Control: max-age=604800
Age: 225218
X-Debug: 604800.000 770494
Accept-Ranges: bytes
|
|
| i5.imageban.ru/out/2024/06/05/3516de85b2a1f7867452b9ade44ab9a1.jpg |  62.109.5.15 | 200 OK | 111 kB |
URL GET HTTP/2i5.imageban.ru/out/2024/06/05/3516de85b2a1f7867452b9ade44ab9a1.jpg IP62.109.5.15:443
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerGlobalSign nv-sa Subject*.imageban.ru FingerprintCB:12:16:F2:20:B4:01:49:C4:B4:8C:9F:62:A2:0E:AE:B2:22:F0:96 ValidityMon, 18 Sep 2023 10:25:55 GMT - Sat, 19 Oct 2024 10:25:54 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 415x600, components 3 Size111 kB (111232 bytes) Hashddbe5abdda36f3c4bab46f50bfce0a92 704619a8ccdd07d7a60ed319783a6d793028dde1 39cf13211ffe2dd87799bd9e359c7829e8aa21bc6d933bd181cdcca436526b34
GET /out/2024/06/05/3516de85b2a1f7867452b9ade44ab9a1.jpg HTTP/1.1
Host: i5.imageban.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Sat, 20 Jul 2024 21:40:57 GMT
content-type: image/jpeg
content-length: 111232
last-modified: Wed, 05 Jun 2024 08:59:04 GMT
etag: "666028d8-1b280"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdnbunny.org/favicon.ico | 77.91.100.49 | 200 OK | 894 B |
IP77.91.100.49:443 ASN#44477 Stark Industries Solutions Ltd
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectcdnbunny.org Fingerprint4E:13:1E:35:83:89:93:82:C0:0F:ED:13:AE:2D:4C:42:40:0C:16:69 ValidityThu, 11 Jul 2024 19:15:26 GMT - Wed, 09 Oct 2024 19:15:25 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 24 bits/pixel Hashab55f59a775976829d8352a7a0584d3e e4b29ec4ac46d97ea15c582d61d02c523dd0485b e68d4b7f22b5027fef4672cc5ba884fb52ac248fd1ca4648c9ac89d95b0e58f4
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: cdnbunny.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 20 Jul 2024 21:40:57 GMT
Content-Type: image/x-icon
Content-Length: 894
Connection: keep-alive
Last-Modified: Fri, 08 Feb 2013 21:57:36 GMT
ETag: "511574d0-37e"
Cache-Control: max-age=604800
Age: 225215
X-Debug: 604800.000 403905
Accept-Ranges: bytes
|
|
| vak345.com/cs/202407210040.js?v=ea59f7a89d04d570fbb4ef98a8a1693c&_t=1721511657040.04 |  104.21.69.38 | | 31 kB |
URL vak345.com/cs/202407210040.js?v=ea59f7a89d04d570fbb4ef98a8a1693c&_t=1721511657040.04 IP104.21.69.38:0
File typegzip compressed data, from Unix Hash1e644e7c69bdac7867e2a50994d3ac77 7bc8ef61d537a373f4a5252b0df90f7a0cf95baf 27061955b9a7e1d3447aea0a11cb9afe0da20313676ff2148444f8269413e2e5
GET /cs/202407210040.js?v=ea59f7a89d04d570fbb4ef98a8a1693c&_t=1721511657040.04 HTTP/1.1
Host: vak345.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Jul 2024 21:40:57 GMT
content-type: application/javascript;charset=UTF-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-yac-source: Yac
x-movieads-setup: combo
x-movieads-country: NO
content-encoding: gzip
cf-cache-status: BYPASS
set-cookie: sky_uuid=767d00b2-a8e6-4422-b6d1-81bc11901374; expires=Sun, 20-Jul-2025 21:40:57 GMT; Max-Age=31536000; path=/; SameSite=None;Secure
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WWhuCIWbhbvXSoYjBLvHvjIuczZiwMFc7qgVAIuPW4qxwViUaLDaftmBYvMuIOBu%2BhW59KVRZ%2FIwMg7TadjEeozgqM9fVo43yRMsfd6wDl%2FS2RGN465nCYyv5TXI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a661cd09c0c0b55-OSL
alt-svc: h3=":443"; ma=86400
|
|
| code.moviead55.ru/madstyle.css | 193.200.65.149 | 200 OK | 310 B |
URL GET HTTP/2code.moviead55.ru/madstyle.css IP193.200.65.149:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
File typegzip compressed data, from Unix Hash4221067758f34d6169d06d8166f98e9a 4d4591302e2cf3f041f83d0125c3d459ec777b51 e720e4c6d1bc1d1d5e8dd2214351bc39eb8349ebee65c020395578742d1047bc
GET /madstyle.css HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:40:57 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
access-control-allow-origin: *
access-control-expose-headers: *
access-control-max-age: 86400
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin, Access-Control-Request-Headers, Access-Control-Request-Method
etag: W/"28021-7Ba9Gb9K6bwuIzasQJpQO7varK0"
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashe1358bd0e5c3570bdb7092b89cb68e9b 41f2be3e6fcc3ba9ee713de6c814add372b32cfe 178fc1e3db2920e0cbc78bc170bdfafd8520cd807e7477f4c61a91fd2db8a766
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "178FC1E3DB2920E0CBC78BC170BDFAFD8520CD807E7477F4C61A91FD2DB8A766"
Last-Modified: Thu, 18 Jul 2024 08:28:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8774
Expires: Sun, 21 Jul 2024 00:07:11 GMT
Date: Sat, 20 Jul 2024 21:40:57 GMT
Connection: keep-alive
|
|
| klvegaall.com/bens/vinos.js?24105&u=null&a=0.2987881929320195 | 193.200.65.68 | 200 OK | 78 kB |
URL GET HTTP/1.1klvegaall.com/bens/vinos.js?24105&u=null&a=0.2987881929320195 IP193.200.65.68:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectklvegaall.com Fingerprint14:0D:7D:81:23:DE:19:80:AE:7C:95:B1:31:C3:AD:8D:8D:D4:F0:63 ValidityFri, 12 Jul 2024 12:25:03 GMT - Thu, 10 Oct 2024 12:25:02 GMT
File typeJavaScript source, ASCII text, with very long lines (699) Hashd7704aab7ac29bcec91cddace7881b41 38324495e7619971ded9a4478bc4d023813ba2de d445a9cf98447feb57d5d6b7db28f69a1796c608137fedd2c68b095d59f9fbe5
GET /bens/vinos.js?24105&u=null&a=0.2987881929320195 HTTP/1.1
Host: klvegaall.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 20 Jul 2024 21:40:57 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NON DSP COR CURa TIA"
Set-Cookie: uuid=17215116577433877172; expires=Mon, 20-Jul-2026 21:40:57 GMT; Max-Age=63072000; path=/; samesite=None; domain=.klvegaall.com; secure
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9041c7b14ed56a170760ee187e59cb3d 4334c89d4af87a7d10b7cfd712cf6494bcbf2f04 da6d4b1554585f827dbf6b29b44389dc9d1b7ea24ac0bc5b078dcc7fc5c4e148
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "DA6D4B1554585F827DBF6B29B44389DC9D1B7EA24AC0BC5B078DCC7FC5C4E148"
Last-Modified: Thu, 18 Jul 2024 08:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7363
Expires: Sat, 20 Jul 2024 23:43:41 GMT
Date: Sat, 20 Jul 2024 21:40:58 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9041c7b14ed56a170760ee187e59cb3d 4334c89d4af87a7d10b7cfd712cf6494bcbf2f04 da6d4b1554585f827dbf6b29b44389dc9d1b7ea24ac0bc5b078dcc7fc5c4e148
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "DA6D4B1554585F827DBF6B29B44389DC9D1B7EA24AC0BC5B078DCC7FC5C4E148"
Last-Modified: Thu, 18 Jul 2024 08:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7363
Expires: Sat, 20 Jul 2024 23:43:41 GMT
Date: Sat, 20 Jul 2024 21:40:58 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9041c7b14ed56a170760ee187e59cb3d 4334c89d4af87a7d10b7cfd712cf6494bcbf2f04 da6d4b1554585f827dbf6b29b44389dc9d1b7ea24ac0bc5b078dcc7fc5c4e148
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "DA6D4B1554585F827DBF6B29B44389DC9D1B7EA24AC0BC5B078DCC7FC5C4E148"
Last-Modified: Thu, 18 Jul 2024 08:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7363
Expires: Sat, 20 Jul 2024 23:43:41 GMT
Date: Sat, 20 Jul 2024 21:40:58 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9041c7b14ed56a170760ee187e59cb3d 4334c89d4af87a7d10b7cfd712cf6494bcbf2f04 da6d4b1554585f827dbf6b29b44389dc9d1b7ea24ac0bc5b078dcc7fc5c4e148
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "DA6D4B1554585F827DBF6B29B44389DC9D1B7EA24AC0BC5B078DCC7FC5C4E148"
Last-Modified: Thu, 18 Jul 2024 08:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7363
Expires: Sat, 20 Jul 2024 23:43:41 GMT
Date: Sat, 20 Jul 2024 21:40:58 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9041c7b14ed56a170760ee187e59cb3d 4334c89d4af87a7d10b7cfd712cf6494bcbf2f04 da6d4b1554585f827dbf6b29b44389dc9d1b7ea24ac0bc5b078dcc7fc5c4e148
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "DA6D4B1554585F827DBF6B29B44389DC9D1B7EA24AC0BC5B078DCC7FC5C4E148"
Last-Modified: Thu, 18 Jul 2024 08:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7363
Expires: Sat, 20 Jul 2024 23:43:41 GMT
Date: Sat, 20 Jul 2024 21:40:58 GMT
Connection: keep-alive
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash0480b448880e8a14f65f0b548b25c7f6 49fe4110645bf663e84bfdbb89220e861ca71fde bec80215c77d5b4000d55a52c5e30c0341b02697cdb1d952a4cb3d8960a3e821
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "BEC80215C77D5B4000D55A52C5E30C0341B02697CDB1D952A4CB3D8960A3E821"
Last-Modified: Thu, 18 Jul 2024 07:29:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7787
Expires: Sat, 20 Jul 2024 23:50:45 GMT
Date: Sat, 20 Jul 2024 21:40:58 GMT
Connection: keep-alive
|
|
| code.moviead55.ru/go/cinit?cn=btwcookie&rnd=1721511658 | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=btwcookie&rnd=1721511658 IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=btwcookie&rnd=1721511658 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:40:58 GMT
content-length: 0
location: https://ads.betweendigital.com/match?bidder_id=34348&callback_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbtwcookie%26bid%3D%24%7BUSER_ID%7D
set-cookie: sky_uuid=78cb43c5-7547-bf2e-7879-01a85277d415; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1721511658 | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1721511658 IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=hbrdcookie2&rnd=1721511658 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:40:58 GMT
content-length: 0
location: https://dm-eu.hybrid.ai/match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D
set-cookie: sky_uuid=46a83041-3820-a0cb-32f8-7448faf25f9f; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| rating.kinopoisk.ru/5388902.gif | 213.180.199.9 | 200 OK | 769 B |
URL GET HTTP/2rating.kinopoisk.ru/5388902.gif IP213.180.199.9:443
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerGlobalSign nv-sa Subject*.kinopoisk.ru FingerprintCD:3E:39:E6:3A:14:61:D5:4A:D3:FB:69:4E:65:4D:CE:B5:88:3C:91 ValidityFri, 10 May 2024 21:06:14 GMT - Fri, 08 Nov 2024 20:59:59 GMT
File typeGIF image data, version 87a, 102 x 38 Hashb6ef27fb0f20b0de01a64cadcfbf7e8d 1dc6ac002106548bcf78930da8b8be61f81cf3dc d36595a5a2dacf52436fb768d44e8ca5dab7aceb0d9179bb14c7a29a5d7dfe5b
GET /5388902.gif HTTP/1.1
Host: rating.kinopoisk.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
strict-transport-security: max-age=31536000
expires: Sat, 20 Jul 2024 21:45:57 GMT
cache-control: max-age=300, must-revalidate, no-cache, private
x-partial-components-secret: YTJlNDdhZmI5MjEyNjc1M2Q0OTEzODU2
x-request-id: 1721511657770275-9056151624907980553
date: Sat, 20 Jul 2024 21:40:57 GMT
set-cookie: _yasc=OggzydfMVNQn2PIaAfaPrbl+65R3t7RNHD8GNDkjoSQkyAwI+5hggBafH0HHtP5B; domain=.kinopoisk.ru; path=/; expires=Tue, 18 Jul 2034 21:40:57 GMT; secure
i=JJNJIeSWgdPAkBnB1sFRsa9lQC6U7wb0+bx+U1jO6aX+Os9tDjsIoBKWieF9uAEiUwJmYypjieMAnNPgerk7oSb2ZQo=; Expires=Mon, 20-Jul-2026 21:40:57 GMT; Domain=.kinopoisk.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=7739517491721511657; Expires=Mon, 20-Jul-2026 21:40:57 GMT; Domain=.kinopoisk.ru; Path=/; Secure; SameSite=None
yashr=9607749971721511657; Path=/; Domain=.kinopoisk.ru; Expires=Sun, 20 Jul 2025 21:40:57 GMT; SameSite=None; Secure; HttpOnly
x-content-type-options: nosniff
content-type: image/gif
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=vhd&rnd=1721511658 | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=vhd&rnd=1721511658 IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=vhd&rnd=1721511658 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-length: 0
location: https://a.videohead.tech/sync?ssp=sky_new
set-cookie: sky_uuid=4b36fb2a-891b-fe24-916e-107b39d531f5; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| logger.moviead55.ru/logger.php?t=cdiv&c=830a9218-3392-47dd-890e-37ad8b4cb142&a=&m=35&v=ea59f7a89d04d570fbb4ef98a8a1693c&o= | 193.200.65.146 | | 81 B |
URL logger.moviead55.ru/logger.php?t=cdiv&c=830a9218-3392-47dd-890e-37ad8b4cb142&a=&m=35&v=ea59f7a89d04d570fbb4ef98a8a1693c&o= IP193.200.65.146:0 ASN#6681 Giveme Cloud Sp Z O O
File typePNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced Hashb357a19c87624c7c4d131aeeb4ae677f c7a9c45fd419815a5ab1998503a9f03514c0e229 497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?t=cdiv&c=830a9218-3392-47dd-890e-37ad8b4cb142&a=&m=35&v=ea59f7a89d04d570fbb4ef98a8a1693c&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:40:58 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=gtnt&rnd=1721511658 | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=gtnt&rnd=1721511658 IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gtnt&rnd=1721511658 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-length: 0
location: https://px.adhigh.net/p/cm/skyadvert?u=e6e1af3d-a821-9ec2-fd33-7c2cdd3f6556
set-cookie: sky_uuid=e6e1af3d-a821-9ec2-fd33-7c2cdd3f6556; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=dgm2&rnd=1721511658 | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=dgm2&rnd=1721511658 IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=dgm2&rnd=1721511658 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-length: 0
location: https://sync.opendsp.ru/match/MovieAds?id=45f435bf-6fba-d76c-4af8-22d2ff794035
set-cookie: sky_uuid=45f435bf-6fba-d76c-4af8-22d2ff794035; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1721511658 | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1721511658 IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otclkbid&rnd=1721511658 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-length: 0
location: https://otclick-adv.ru/core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D
set-cookie: sky_uuid=d9abab06-63b1-b2c4-7838-9c24caef870a; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=sapecookie&rnd=1721511658 | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=sapecookie&rnd=1721511658 IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=sapecookie&rnd=1721511658 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-length: 0
location: https://www.acint.net/rmatch?dp=167&euid=68d1e062-9b21-c8cf-5fb7-b7978aa52bec&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D
set-cookie: sky_uuid=68d1e062-9b21-c8cf-5fb7-b7978aa52bec; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1721511658 | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1721511658 IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gonetbid&rnd=1721511658 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-length: 0
location: https://sync.gonet-ads.com/match/SkyAdvert?id=7e9def36-5eba-2094-5f14-ecccdf74fcf5
set-cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; max-age=157680000; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=adspktr&rnd=1721511658 | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=adspktr&rnd=1721511658 IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=adspktr&rnd=1721511658 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=78cb43c5-7547-bf2e-7879-01a85277d415
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-length: 0
location: https://a.adspector.io/sync?ssp=12
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=ohmybid&rnd=1721511658 | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=ohmybid&rnd=1721511658 IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=ohmybid&rnd=1721511658 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=78cb43c5-7547-bf2e-7879-01a85277d415
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-length: 0
location: https://match.ohmy.bid/cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%7Buid%7D
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=hpr&rnd=1721511658 | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=hpr&rnd=1721511658 IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=hpr&rnd=1721511658 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=46a83041-3820-a0cb-32f8-7448faf25f9f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-length: 0
location: http://cmr.bidderstack.com/skyadvert/cm?user_id=46a83041-3820-a0cb-32f8-7448faf25f9f
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1721511658 | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1721511658 IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=bzcookie&rnd=1721511658 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=46a83041-3820-a0cb-32f8-7448faf25f9f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-length: 0
location: https://exchange.buzzoola.com/cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| e5.o.lencr.org/ | 23.36.77.32 | | 344 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd2d6150e430a445accc46dfd031b912c 1fc9c4187ba7cd703fe8525e59637e185715d861 33de0d2cc634640812d70f7fbb7469b92fa7aadb8232c9481fc146acf6b29a23
POST / HTTP/1.1
Host: e5.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "33DE0D2CC634640812D70F7FBB7469B92FA7AADB8232C9481FC146ACF6B29A23"
Last-Modified: Thu, 18 Jul 2024 07:17:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2380
Expires: Sat, 20 Jul 2024 22:20:39 GMT
Date: Sat, 20 Jul 2024 21:40:59 GMT
Connection: keep-alive
|
|
| www.acint.net/mc/?dp=167 | 193.3.184.135 | 200 OK | 154 B |
IP193.3.184.135:443
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.acint.net Fingerprint97:E0:8A:B4:D4:E0:30:6C:03:63:6B:F5:F3:99:B5:66:6D:F1:70:89 ValidityMon, 01 Jul 2024 06:10:26 GMT - Sun, 29 Sep 2024 06:10:25 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /mc/?dp=167 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: openresty
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: text/html
content-length: 154
location: /mc/?dp=167&tc=1
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Sat, 20-Jul-24 21:50:59 GMT
aid=fwAAAWacLuu/4wLy7sdmAnswV6nYX/AAT8/WbV8itAVRrI/C; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| www.acint.net/rmatch?dp=167&euid=68d1e062-9b21-c8cf-5fb7-b7978aa52bec&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D | 193.3.184.135 | | 154 B |
URL www.acint.net/rmatch?dp=167&euid=68d1e062-9b21-c8cf-5fb7-b7978aa52bec&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D IP193.3.184.135:0
CertificateIssuerLet's Encrypt Subject*.acint.net Fingerprint97:E0:8A:B4:D4:E0:30:6C:03:63:6B:F5:F3:99:B5:66:6D:F1:70:89 ValidityMon, 01 Jul 2024 06:10:26 GMT - Sun, 29 Sep 2024 06:10:25 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=167&euid=68d1e062-9b21-c8cf-5fb7-b7978aa52bec&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: text/html
content-length: 154
location: /rmatch?r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D&dp=167&tc=1&euid=68d1e062-9b21-c8cf-5fb7-b7978aa52bec
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Sat, 20-Jul-24 21:50:59 GMT
aid=fwAAAmacLuu9tQLh864hAukhtFG0Nl7NFBMut8USc8AtM5Xe; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| a.videohead.tech/sync?ssp=sky_new | 188.114.96.1 | 302 Found | 0 B |
URL GET HTTP/3a.videohead.tech/sync?ssp=sky_new IP188.114.96.1:443
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerGoogle Trust Services Subjectvideohead.tech Fingerprint69:44:E3:1B:0F:E9:B9:37:5B:D1:1C:6C:E8:D3:13:C7:38:F8:62:DA ValidityFri, 19 Jul 2024 11:41:00 GMT - Thu, 17 Oct 2024 11:40:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=sky_new HTTP/1.1
Host: a.videohead.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: text/plain
set-cookie: prevhead=1; Expires=Tue, 20 Aug 2024 00:40:59 GMT; Domain=.videohead.tech; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jc3VWHonRoA0E8Ut6XhKoy4AsnzDSqsKtFk3Mm2dH04bQeP%2BDwrxLvRtEARShJ5wN7BbQ5xgqpGfhlYcslHlXQovf2%2Fgm3CoMcXnyYdBEnvPz5WhB%2BMFY2fbS94OjUcOX8p2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a661cdde8f5712d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| dm-eu.hybrid.ai/match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D | 37.230.131.21 | | 0 B |
URL dm-eu.hybrid.ai/match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D IP37.230.131.21:0 ASN#200197 Hybrid Adtech Sp.z.o.o.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=185&burl=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dhbrdcookie2%26bid%3D%24%7BVID%7D HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 20 Jul 2024 21:40:59 GMT
content-length: 0
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
location: https://code.moviead55.ru/go/csync?cn=hbrdcookie2&bid=51cc532838537289824e
set-cookie: vid=51cc532838537289824e; Expires=Sun, 20 Jul 2025 21:40:58 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 549
x-xss-protection: 1; mode=block
access-control-allow-origin: https://rutor.is
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
|
|
| a.adspector.io/sync?ssp=12 | 104.21.15.59 | 302 Found | 0 B |
URL GET HTTP/3a.adspector.io/sync?ssp=12 IP104.21.15.59:443
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerGoogle Trust Services LLC Subjectadspector.io Fingerprint03:E3:A4:D9:4C:86:09:E5:8A:07:E2:26:5C:8F:14:8C:31:A4:E2:E5 ValidityWed, 29 May 2024 13:09:43 GMT - Tue, 27 Aug 2024 13:09:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=12 HTTP/1.1
Host: a.adspector.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: text/plain
set-cookie: preadspector=1; Expires=Tue, 20 Aug 2024 00:40:59 GMT; Domain=.adspector.io; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gMx11NqmXFn7YdTuVW654LB%2FX8cryOLSGklpEWHhnl%2BVBhXy2nUtu7JVC%2FW%2Fe7zf6BMUh7LISPqQ3tXrCGyvPqeazolAyJsnfc%2FkpgoInxEOPJMxfBHms4sHbgpNqt%2F%2F8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a661cddff7256b7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.acint.net/rmatch?r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D&dp=167&tc=1&euid=68d1e062-9b21-c8cf-5fb7-b7978aa52bec | 193.3.184.135 | | 154 B |
URL www.acint.net/rmatch?r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D&dp=167&tc=1&euid=68d1e062-9b21-c8cf-5fb7-b7978aa52bec IP193.3.184.135:0
CertificateIssuerLet's Encrypt Subject*.acint.net Fingerprint97:E0:8A:B4:D4:E0:30:6C:03:63:6B:F5:F3:99:B5:66:6D:F1:70:89 ValidityMon, 01 Jul 2024 06:10:26 GMT - Sun, 29 Sep 2024 06:10:25 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D&dp=167&tc=1&euid=68d1e062-9b21-c8cf-5fb7-b7978aa52bec HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: test_cookie=CheckForPermission; aid=fwAAAmacLuu9tQLh864hAukhtFG0Nl7NFBMut8USc8AtM5Xe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: text/html
content-length: 154
location: https://ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D$%257BUSER_ID%257D&dp=14
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
set-cookie: cSyncDp14v4=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| otclick-adv.ru/core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D | 139.45.228.134 | | 124 B |
URL otclick-adv.ru/core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D IP139.45.228.134:0
File typeHTML document, ASCII text, with CRLF line terminators Hashc73e35f73ed5c795c70cf66e99088b7c 63a9ffe5d0e5b4070819b95ef564a58d8a3a3a1c 80034a9712f07e6b0577c7e5bf6d5d718736593e7d21c81dd1a3cbdb4eb860de
GET /core/match.gif?s=30&reference=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dotclkbid%26bid%3D%23%7BUID%7D HTTP/1.1
Host: otclick-adv.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.27.0
date: Sat, 20 Jul 2024 21:40:59 GMT
content-length: 124
p3p: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
cache-control: no-cache, max-age=0, must-revalidate, no-store
pragma: no-cache
expires: Thursday, 01-Jan-1970 00:00:00 GMT
set-cookie: idntfy=VU0cN8yG3RaXtJh; expires=Tue, 18-Jul-2034 21:40:59 GMT; domain=otclick-adv.ru; path=/c/; SameSite=None; Secure
idntfy=VU0cN8yG3RaXtJh; expires=Tue, 18-Jul-2034 21:40:59 GMT; domain=otclick-adv.ru; path=/core/; SameSite=None; Secure
location: https://code.moviead55.ru/go/csync?cn=otclkbid&bid=VU0cN8yG3RaXtJh
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| sp.ohmy.bid/cmf?0.5260901604935923 |  167.235.14.51 | | 0 B |
URL sp.ohmy.bid/cmf?0.5260901604935923 IP167.235.14.51:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cmf?0.5260901604935923 HTTP/1.1
Host: sp.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
bidder: bid-29 1.1616.b31a5032
set-cookie: uid=788df865-df75-4183-9c3a-73c2de6a07b8.669c2eeb.5bf2a6f4923c416d; domain=.ohmy.bid; path=/; expires=Mon, 19-Aug-2024 21:40:59 GMT; SameSite=None; Secure;
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashdb2be3a64871d6e0fcd4fc8917ea504e 6c7746df28a13753eb3bbe365bd93ab2aff0b0b4 7f99f1ad556a5da0e5684a35c3db358ce6338a128047f2e28d578a33fa3df525
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "7F99F1AD556A5DA0E5684A35C3DB358CE6338A128047F2E28D578A33FA3DF525"
Last-Modified: Thu, 18 Jul 2024 09:08:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15934
Expires: Sun, 21 Jul 2024 02:06:33 GMT
Date: Sat, 20 Jul 2024 21:40:59 GMT
Connection: keep-alive
|
|
| sync.opendsp.ru/match/MovieAds?id=45f435bf-6fba-d76c-4af8-22d2ff794035 | 82.148.20.186 | | 43 B |
URL sync.opendsp.ru/match/MovieAds?id=45f435bf-6fba-d76c-4af8-22d2ff794035 IP82.148.20.186:0 ASN#50340 OOO Network of data-centers Selectel
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/MovieAds?id=45f435bf-6fba-d76c-4af8-22d2ff794035 HTTP/1.1
Host: sync.opendsp.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| match.ohmy.bid/cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%7Buid%7D | 167.235.10.90 | | 0 B |
URL match.ohmy.bid/cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%7Buid%7D IP167.235.10.90:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?ssp=skyadv&redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dohmybid%26bid%3D%7Buid%7D HTTP/1.1
Host: match.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 20 Jul 2024 21:40:59 GMT
Content-Length: 0
Connection: keep-alive
Bidder: bid-28 1.1616.b31a5032
Location: https://code.moviead55.ru/go/csync?cn=ohmybid&bid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f
Set-Cookie: uid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f.669c2eeb.195a4d74b101d2a1; domain=.ohmy.bid; path=/; expires=Mon, 19-Aug-2024 21:40:59 GMT; SameSite=None; Secure;
Access-Control-Allow-Credentials: true
|
|
| code.moviead55.ru/go/csync?cn=hbrdcookie2&bid=51cc532838537289824e | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/csync?cn=hbrdcookie2&bid=51cc532838537289824e IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=hbrdcookie2&bid=51cc532838537289824e HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: image/jpeg
content-length: 0
set-cookie: hbrdcookie2=51cc532838537289824e; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| sync.dmp.otm-r.com/match/skyadvert | 194.55.244.180 | | 61 B |
URL sync.dmp.otm-r.com/match/skyadvert IP194.55.244.180:0
File typeHTML document, ASCII text Hash92b1a7951edb32f30371da3db63e6dd7 b74887593a1bf650f5912f579ed6962a6913e9b9 bfed174236725e6f626efa960d2e22a94a6d45d45c46163858703bd740e5b270
GET /match/skyadvert HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.23.2
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: text/html; charset=utf-8
content-length: 61
access-control-allow-origin: *
location: /match/skyadvert?otcm_check=1721511659
set-cookie: mpid=NjY5YzJlZWIwNGEwZWEzYw==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| kimberlite.io/rtb/sync/skyadvert?u=e6a5100a-3f6a-94d3-67aa-208eaea5e64c | 217.199.220.44 | | 0 B |
URL kimberlite.io/rtb/sync/skyadvert?u=e6a5100a-3f6a-94d3-67aa-208eaea5e64c IP217.199.220.44:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/skyadvert?u=e6a5100a-3f6a-94d3-67aa-208eaea5e64c HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 20 Jul 2024 21:40:59 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: u=Zpwu6xu_O8Y~l7RcW5SMnBxaspEv3PPQSV4M-kQ; path=/; max-age=7776000; samesite=none; httponly; secure
da=KLqvcgAAAAE; path=/rtb; max-age=604800; samesite=none; httponly; secure
f=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsolta%26bid%3DZpwu6xu_O8U; max-age=30; samesite=none; httponly; secure
n=1; max-age=30; samesite=none; httponly; secure
location: https://sm.rtb.mts.ru/p?ssp=toptraffic&id=Zpwu6xu_O8Y
referrer-policy: no-referrer
server-timing: app;srv=0;dur=0.0004
|
|
| code.moviead55.ru/go/csync?cn=otclkbid&bid=VU0cN8yG3RaXtJh | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/csync?cn=otclkbid&bid=VU0cN8yG3RaXtJh IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=otclkbid&bid=VU0cN8yG3RaXtJh HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: image/jpeg
content-length: 0
set-cookie: otclkbid=VU0cN8yG3RaXtJh; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| cmr.bidderstack.com/skyadvert/cm?user_id=46a83041-3820-a0cb-32f8-7448faf25f9f | 185.149.242.234 | | 0 B |
URL cmr.bidderstack.com/skyadvert/cm?user_id=46a83041-3820-a0cb-32f8-7448faf25f9f IP185.149.242.234:0 ASN#49505 OOO Network of data-centers Selectel
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /skyadvert/cm?user_id=46a83041-3820-a0cb-32f8-7448faf25f9f HTTP/1.1
Host: cmr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 20 Jul 2024 21:40:59 GMT
Content-Length: 0
Connection: keep-alive
Location: /skyadvert/cm?user_id=46a83041-3820-a0cb-32f8-7448faf25f9f&pupa=1
x-from: lp-nrr-1
Set-Cookie: pupa=837a51a2-ad30-b32c-8216-91a748fe8727; domain=.bidderstack.com; path=/; expires=Sun, 20-Jul-2025 21:40:59 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
|
|
| sync.gonet-ads.com/match/SkyAdvert?id=7e9def36-5eba-2094-5f14-ecccdf74fcf5 | 23.109.14.90 | 200 OK | 43 B |
URL GET HTTP/2sync.gonet-ads.com/match/SkyAdvert?id=7e9def36-5eba-2094-5f14-ecccdf74fcf5 IP23.109.14.90:443
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerSectigo Limited Subject*.gonet-ads.com FingerprintF9:26:15:49:49:7C:0B:D7:26:B2:22:B3:1A:42:11:6B:F7:FB:3D:33 ValidityMon, 20 May 2024 00:00:00 GMT - Wed, 11 Jun 2025 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/SkyAdvert?id=7e9def36-5eba-2094-5f14-ecccdf74fcf5 HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
|
|
| exchange.buzzoola.com/cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D | 176.9.158.88 | | 114 B |
URL exchange.buzzoola.com/cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D IP176.9.158.88:0 ASN#24940 Hetzner Online GmbH
File typeHTML document, ASCII text Hashc04d9d86e6d2a5c8285916187ddff657 2983805b8a3f88966ecd535e859510db574341e1 e322db3a1482d1da5b0b64a1a57089178964fe32e744656773ea5b13fec73896
GET /cookiesync/redirect/skyadvert?redirect_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbzcookie%26bid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: text/html; charset=utf-8
content-length: 114
location: https://code.moviead55.ru/go/csync?cn=bzcookie&bid=a3defc24-9733-45d3-5fb3-e6d7071e4f9e
serverid: TODO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/csync?cn=ohmybid&bid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/csync?cn=ohmybid&bid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=ohmybid&bid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: image/jpeg
content-length: 0
set-cookie: ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hasha77794fdd831edd17091112ef5f84871 2ad013e0bd3740c9667e279e37f88107881d3531 47ba327cd54f285d6f9f201b01fc01c0372589b061ad790aa47038b57b9fdfbe
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "47BA327CD54F285D6F9F201B01FC01C0372589B061AD790AA47038B57B9FDFBE"
Last-Modified: Thu, 18 Jul 2024 08:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3340
Expires: Sat, 20 Jul 2024 22:36:39 GMT
Date: Sat, 20 Jul 2024 21:40:59 GMT
Connection: keep-alive
|
|
| dm-eu.hybrid.ai/match?id=106&vid=0100007FEB2E9C66F202E3BF0266C7EE | 37.230.131.21 | | 0 B |
URL dm-eu.hybrid.ai/match?id=106&vid=0100007FEB2E9C66F202E3BF0266C7EE IP37.230.131.21:0 ASN#200197 Hybrid Adtech Sp.z.o.o.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=106&vid=0100007FEB2E9C66F202E3BF0266C7EE HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: vid=51cc532838537289824e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Sat, 20 Jul 2024 21:40:59 GMT
content-length: 0
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
location: https://dmg.digitaltarget.ru/1/168/i/i?a=168&e=51cc532838537289824e&i=44424193
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 563
x-xss-protection: 1; mode=block
access-control-allow-origin: https://www.acint.net
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
|
|
| sync.dmp.otm-r.com/match/sape?id=0100007FEB2E9C66F202E3BF0266C7EE | 194.55.244.180 | | 94 B |
URL sync.dmp.otm-r.com/match/sape?id=0100007FEB2E9C66F202E3BF0266C7EE IP194.55.244.180:0
File typeHTML document, ASCII text Hash0b7605a798c6fe630214e830ca69645f d1c5da0e6fe32414ba4a5b245c7bd7d64fa1c7f6 88e7913caad3c1ad2a64bafdde6b2e5ed0c6e4d28d1908f34dbfff290d190793
GET /match/sape?id=0100007FEB2E9C66F202E3BF0266C7EE HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: mpid=NjY5YzJlZWIwNGEwZWEzYw==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.23.2
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: text/html; charset=utf-8
content-length: 94
access-control-allow-origin: *
location: https://www.acint.net/match?dp=68&euid=NjY5YzJlZWIwNGEwZWEzYw%3D%3D
set-cookie: mpid=NjY5YzJlZWIwNGEwZWEzYw==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| sync.gonet-ads.com/match/sape.js?id=0100007FEB2E9C66F202E3BF0266C7EE | 23.109.14.90 | | 43 B |
URL sync.gonet-ads.com/match/sape.js?id=0100007FEB2E9C66F202E3BF0266C7EE IP23.109.14.90:0
CertificateIssuerSectigo Limited Subject*.gonet-ads.com FingerprintF9:26:15:49:49:7C:0B:D7:26:B2:22:B3:1A:42:11:6B:F7:FB:3D:33 ValidityMon, 20 May 2024 00:00:00 GMT - Wed, 11 Jun 2025 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape.js?id=0100007FEB2E9C66F202E3BF0266C7EE HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
|
|
| exchange.buzzoola.com/cookiesync/dsp/sape-banner?uid=0100007FEB2E9C66F202E3BF0266C7EE&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 | 176.9.158.88 | | 269 B |
URL exchange.buzzoola.com/cookiesync/dsp/sape-banner?uid=0100007FEB2E9C66F202E3BF0266C7EE&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 IP176.9.158.88:0 ASN#24940 Hetzner Online GmbH
File typeHTML document, ASCII text Hashbe4c072beefe080a471cfc2bd80ee9cf 5461094252a12cf33edcdab1a08dbabfed50d8da 4d3065776f411aaf2d93fff91de7c73df9b7778d3ab6239cf3fd0439d8a2e4cd
GET /cookiesync/dsp/sape-banner?uid=0100007FEB2E9C66F202E3BF0266C7EE&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 307 Temporary Redirect
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: text/html; charset=utf-8
content-length: 269
location: /cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0100007FEB2E9C66F202E3BF0266C7EE&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126
set-cookie: uuid=e40ae80e-9788-4297-5204-9553cdebbd74; Path=/; Domain=buzzoola.com; Expires=Mon, 19 Aug 2024 21:40:59 GMT; Max-Age=2592000; Secure; SameSite=None
serverid: TODO
X-Firefox-Spdy: h2
|
|
| sync.opendsp.ru/match/sape?id=0100007FEB2E9C66F202E3BF0266C7EE | 82.148.20.186 | | 43 B |
URL sync.opendsp.ru/match/sape?id=0100007FEB2E9C66F202E3BF0266C7EE IP82.148.20.186:0 ASN#50340 OOO Network of data-centers Selectel
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape?id=0100007FEB2E9C66F202E3BF0266C7EE HTTP/1.1
Host: sync.opendsp.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D | 167.235.10.90 | | 0 B |
URL match.ohmy.bid/cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D IP167.235.10.90:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?ssp=sape&redirect_url=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D217%26euid%3D%7Buid%7D HTTP/1.1
Host: match.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: uid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f.669c2eeb.195a4d74b101d2a1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 20 Jul 2024 21:40:59 GMT
Content-Length: 0
Connection: keep-alive
Bidder: bid-20 1.1616.b31a5032
Location: https://mc.acint.net/match?dp=217&euid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f
Access-Control-Allow-Credentials: true
|
|
| sync.opendsp.ru/match/sape_ex?id=0100007FEB2E9C66F202E3BF0266C7EE | 82.148.20.186 | | 43 B |
URL sync.opendsp.ru/match/sape_ex?id=0100007FEB2E9C66F202E3BF0266C7EE IP82.148.20.186:0 ASN#50340 OOO Network of data-centers Selectel
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape_ex?id=0100007FEB2E9C66F202E3BF0266C7EE HTTP/1.1
Host: sync.opendsp.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D$%257BUSER_ID%257D&dp=14 | 193.3.184.214 | | 142 B |
URL ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D$%257BUSER_ID%257D&dp=14 IP193.3.184.214:0
File typeHTML document, ASCII text, with CRLF line terminators Hash82c98e8e012b79c922655461171cc2fa 0828d79135573276005b04be42d79a8a3291292b 745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fcode.moviead55.ru%252Fgo%252Fcsync%253Fcn%253Dsapecookie%2526bid%253D$%257BUSER_ID%257D&dp=14 HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Sat, 20 Jul 2024 21:40:59 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/rmatch?dp=14&euid=1A03420AEB2E9C668E03DB8A021714D8&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=CkIDGmacLuuK2wOO2BQXAolLLuImizO0nuwHn4x1cDGh5uRF; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None
|
|
| a.utraff.com/sync?ssp=8&id=0100007FEB2E9C66F202E3BF0266C7EE | 104.26.6.189 | | 0 B |
URL a.utraff.com/sync?ssp=8&id=0100007FEB2E9C66F202E3BF0266C7EE IP104.26.6.189:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=8&id=0100007FEB2E9C66F202E3BF0266C7EE HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Tue, 20 Aug 2024 00:40:59 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Tue, 20 Aug 2024 00:40:59 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sxSeg7D9SErKsicHFW83DqN9rzsVmRc2AZ1Ly9U%2Ba3EoiQNoaPiJ4lqnQ8m5wxyK2FtEd0VvrZRqlch30udEHiWnTQWjiWc6Hd0WfG5zqXQi1LG8NpnmHGfoD5wleg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a661ce0fab956b1-OSL
X-Firefox-Spdy: h2
|
|
| kimberlite.io/rtb/sync/sape2?u=0100007FEB2E9C66F202E3BF0266C7EE | 217.199.220.44 | | 0 B |
URL kimberlite.io/rtb/sync/sape2?u=0100007FEB2E9C66F202E3BF0266C7EE IP217.199.220.44:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/sape2?u=0100007FEB2E9C66F202E3BF0266C7EE HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Cookie: f=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsolta%26bid%3DZpwu6xu_O8U; n=1; da=KLqvcgAAAAE; u=Zpwu6xu_O8Y~l7RcW5SMnBxaspEv3PPQSV4M-kQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 20 Jul 2024 21:40:59 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: da=KLqvcgAAAAI; path=/rtb; max-age=604800; samesite=none; httponly; secure
n=2; max-age=30; samesite=none; httponly; secure
location: https://sm.rtb.mts.ru/p?ssp=toptraffic&id=Zpwu6xu_O8Y
referrer-policy: no-referrer
server-timing: app;srv=0;dur=0.0004
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hasha77794fdd831edd17091112ef5f84871 2ad013e0bd3740c9667e279e37f88107881d3531 47ba327cd54f285d6f9f201b01fc01c0372589b061ad790aa47038b57b9fdfbe
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "47BA327CD54F285D6F9F201B01FC01C0372589B061AD790AA47038B57B9FDFBE"
Last-Modified: Thu, 18 Jul 2024 08:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3340
Expires: Sat, 20 Jul 2024 22:36:39 GMT
Date: Sat, 20 Jul 2024 21:40:59 GMT
Connection: keep-alive
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb10a929f85ed016c754f7d195b04c2f3 91f12ef45e1eb395734ccbcaa561b27b88c6e25e 2ae4fddd82839dd0d123e9e9ac2da9205e6fa0dba21cfecf526e565e7c73c90d
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "2AE4FDDD82839DD0D123E9E9AC2DA9205E6FA0DBA21CFECF526E565E7C73C90D"
Last-Modified: Thu, 18 Jul 2024 07:17:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2569
Expires: Sat, 20 Jul 2024 22:23:48 GMT
Date: Sat, 20 Jul 2024 21:40:59 GMT
Connection: keep-alive
|
|
| e6.o.lencr.org/ | 23.36.76.226 | | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashde33ceb2b43e3a50aba207c4386d48e1 c34095f221041161214a82080b7196033ecabe0e 0839bf362d7271075573014f356953bf0f85ae62194ba4325a5ce4e31859c5bc
POST / HTTP/1.1
Host: e6.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0839BF362D7271075573014F356953BF0F85AE62194BA4325A5CE4E31859C5BC"
Last-Modified: Thu, 18 Jul 2024 07:20:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8499
Expires: Sun, 21 Jul 2024 00:02:38 GMT
Date: Sat, 20 Jul 2024 21:40:59 GMT
Connection: keep-alive
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash4b4d5c6ecfc38e0dec1551eb51523b32 bf18be29666820d0f932a47625f9080bbc6dbef9 479cc0d5d63b2032b577a4a5ce3eb4b30b5f74c43f20ca7e0080039f7cecd8f5
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "479CC0D5D63B2032B577A4A5CE3EB4B30B5F74C43F20CA7E0080039F7CECD8F5"
Last-Modified: Thu, 18 Jul 2024 07:17:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5918
Expires: Sat, 20 Jul 2024 23:19:37 GMT
Date: Sat, 20 Jul 2024 21:40:59 GMT
Connection: keep-alive
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb10a929f85ed016c754f7d195b04c2f3 91f12ef45e1eb395734ccbcaa561b27b88c6e25e 2ae4fddd82839dd0d123e9e9ac2da9205e6fa0dba21cfecf526e565e7c73c90d
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "2AE4FDDD82839DD0D123E9E9AC2DA9205E6FA0DBA21CFECF526E565E7C73C90D"
Last-Modified: Thu, 18 Jul 2024 07:17:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2569
Expires: Sat, 20 Jul 2024 22:23:48 GMT
Date: Sat, 20 Jul 2024 21:40:59 GMT
Connection: keep-alive
|
|
| code.moviead55.ru/go/csync?cn=bzcookie&bid=a3defc24-9733-45d3-5fb3-e6d7071e4f9e | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/csync?cn=bzcookie&bid=a3defc24-9733-45d3-5fb3-e6d7071e4f9e IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=bzcookie&bid=a3defc24-9733-45d3-5fb3-e6d7071e4f9e HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: image/jpeg
content-length: 0
set-cookie: bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D | 193.3.184.212 | | 142 B |
URL ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D IP193.3.184.212:0
File typeHTML document, ASCII text, with CRLF line terminators Hash82c98e8e012b79c922655461171cc2fa 0828d79135573276005b04be42d79a8a3291292b 745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Sat, 20 Jul 2024 21:40:59 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=1903420AEB2E9C66960340160262F0FC
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=CkIDGWacLusWQAOW/PBiApU9HC2W1IyXxRIRPI201FlV3xJv; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None
|
|
| pix.bumlam.com/sync/sape/check?sspuid=0100007FEB2E9C66F202E3BF0266C7EE | 31.172.81.160 | | 0 B |
URL pix.bumlam.com/sync/sape/check?sspuid=0100007FEB2E9C66F202E3BF0266C7EE IP31.172.81.160:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/check?sspuid=0100007FEB2E9C66F202E3BF0266C7EE HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 20 Jul 2024 21:40:59 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.bumlam.com/?src=sape
|
|
| s.uuidksinc.net/match/396/?remote_uid=0100007FEB2E9C66F202E3BF0266C7EE | 31.220.27.134 | | 0 B |
URL s.uuidksinc.net/match/396/?remote_uid=0100007FEB2E9C66F202E3BF0266C7EE IP31.220.27.134:0 ASN#39572 DataWeb Global Group B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/396/?remote_uid=0100007FEB2E9C66F202E3BF0266C7EE HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.23.2
date: Sat, 20 Jul 2024 21:40:59 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=Fy8gddQW5fcOeJjeza0c
set-cookie: jcsuuid=Fy8gddQW5fcOeJjeza0c; expires=Sun, 20 Jul 2025 21:40:59 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| sync.dmp.otm-r.com/match/skyadvert?otcm_check=1721511659 | 194.55.244.180 | | 104 B |
URL sync.dmp.otm-r.com/match/skyadvert?otcm_check=1721511659 IP194.55.244.180:0
File typeHTML document, ASCII text Hashbce6f53ce4d0297b2636f82aa4a0eebf ad2ff6f621ac1890ad134b075e7fca19aaf8f79e 330ff569a95a33813be772e4775fde2afa8c1e3b22fc18c6591d368aaeeeca1b
GET /match/skyadvert?otcm_check=1721511659 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: mpid=NjY5YzJlZWIwNGEwZWEzYw==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx/1.23.2
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: text/html; charset=utf-8
content-length: 104
access-control-allow-origin: *
location: https://code.moviead55.ru/go/csync?cn=otmbid&bid=NjY5YzJlZWIwNGEwZWEzYw%3D%3D
set-cookie: mpid=NjY5YzJlZWIwNGEwZWEzYw==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| sync.bumlam.com/?src=sap1&uid=0100007FEB2E9C66F202E3BF0266C7EE | 31.172.81.146 | | 0 B |
URL sync.bumlam.com/?src=sap1&uid=0100007FEB2E9C66F202E3BF0266C7EE IP31.172.81.146:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&uid=0100007FEB2E9C66F202E3BF0266C7EE HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 20 Jul 2024 21:40:59 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRjMTIwODM0Ni00NmUwLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Fri, 15 Jul 2044 21:40:59 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARjr3fC0BmIgMDEwMDAwN0ZFQjJFOUM2NkYyMDJFM0JGMDI2NkM3RUWiARDBIINGRuAR74bgACWQwGR8
ETag: c1208346-46e0-11ef-86e0-002590c0647c
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
|
|
| cmr.bidderstack.com/skyadvert/cm?user_id=46a83041-3820-a0cb-32f8-7448faf25f9f&pupa=1 | 185.149.242.234 | | 0 B |
URL cmr.bidderstack.com/skyadvert/cm?user_id=46a83041-3820-a0cb-32f8-7448faf25f9f&pupa=1 IP185.149.242.234:0 ASN#49505 OOO Network of data-centers Selectel
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /skyadvert/cm?user_id=46a83041-3820-a0cb-32f8-7448faf25f9f&pupa=1 HTTP/1.1
Host: cmr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 20 Jul 2024 21:40:59 GMT
Content-Length: 0
Connection: keep-alive
Location: https://code.moviead55.ru/go/csync?cn=hpr&bid=837a51a2-ad30-b32c-8216-91a748fe8727
x-from: lp-nrr-2
Set-Cookie: pupa=837a51a2-ad30-b32c-8216-91a748fe8727; domain=.bidderstack.com; path=/; expires=Sun, 20-Jul-2025 21:40:59 GMT;
csorigin2=297; domain=.bidderstack.com; path=/; expires=Sat, 20-Jul-2024 21:45:59 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd07251ef58e19d4a16abed55c4874d43 ffce79646ec4846addfa8e94e93d12e901ab0682 5f56ea5fe957e5f6e36b9edfc60169fea47452f73c66b7e558721e9321a0520b
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5F56EA5FE957E5F6E36B9EDFC60169FEA47452F73C66B7E558721E9321A0520B"
Last-Modified: Thu, 18 Jul 2024 08:24:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3544
Expires: Sat, 20 Jul 2024 22:40:03 GMT
Date: Sat, 20 Jul 2024 21:40:59 GMT
Connection: keep-alive
|
|
| sync.upravel.com/sape/sync | 148.251.78.49 | | 0 B |
URL sync.upravel.com/sape/sync IP148.251.78.49:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
set-cookie: session_tptc=1721511659875;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1721511659875;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd4031106738f0de8822e2451288d3c71 babca5a72b480159fd84db8463c4cddfb92f5bce 90e24a93d917c68985c8cea4cb43aa465119b62a71d3802a7de183059df1aa67
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "90E24A93D917C68985C8CEA4CB43AA465119B62A71D3802A7DE183059DF1AA67"
Last-Modified: Sat, 20 Jul 2024 20:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18697
Expires: Sun, 21 Jul 2024 02:52:36 GMT
Date: Sat, 20 Jul 2024 21:40:59 GMT
Connection: keep-alive
|
|
| nr.bidderstack.com/sape/cm?user_id=0100007FEB2E9C66F202E3BF0266C7EE | 167.235.186.113 | | 0 B |
URL nr.bidderstack.com/sape/cm?user_id=0100007FEB2E9C66F202E3BF0266C7EE IP167.235.186.113:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/cm?user_id=0100007FEB2E9C66F202E3BF0266C7EE HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 20 Jul 2024 21:40:59 GMT
Content-Length: 0
Connection: keep-alive
Location: /sape/cm?user_id=0100007FEB2E9C66F202E3BF0266C7EE&pupa=1
x-from: lp-nra-5
Set-Cookie: pupa=087f303a-cab9-e724-c694-be3a1f03e356; domain=.bidderstack.com; path=/; expires=Sun, 20-Jul-2025 21:40:59 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash909d76f6c87b7679791264c35326eb66 3406b54037c8ce8f923d8d7f8cd59e954a50fa06 6030b169a5ff92ddc51ed223d79bb3cf2cfccf4050740e3e394a7bbdbc932786
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "6030B169A5FF92DDC51ED223D79BB3CF2CFCCF4050740E3E394A7BBDBC932786"
Last-Modified: Thu, 18 Jul 2024 07:25:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11743
Expires: Sun, 21 Jul 2024 00:56:42 GMT
Date: Sat, 20 Jul 2024 21:40:59 GMT
Connection: keep-alive
|
|
| e6.o.lencr.org/ | 23.36.76.226 | | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashb54b5f8ec93fa4dc1dc7534f2c7f22c6 943512610d1df17f50184c4099db9509d40f788b 33036d9d6ff2f5d681fe441ded15bd5c18497e4b2037a51de9f5398496ecd3d8
POST / HTTP/1.1
Host: e6.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "33036D9D6FF2F5D681FE441DED15BD5C18497E4B2037A51DE9F5398496ECD3D8"
Last-Modified: Thu, 18 Jul 2024 08:21:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3694
Expires: Sat, 20 Jul 2024 22:42:33 GMT
Date: Sat, 20 Jul 2024 21:40:59 GMT
Connection: keep-alive
|
|
| www.acint.net/match?dp=68&euid=NjY5YzJlZWIwNGEwZWEzYw%3D%3D | 193.3.184.135 | | 43 B |
URL www.acint.net/match?dp=68&euid=NjY5YzJlZWIwNGEwZWEzYw%3D%3D IP193.3.184.135:0
CertificateIssuerLet's Encrypt Subject*.acint.net Fingerprint97:E0:8A:B4:D4:E0:30:6C:03:63:6B:F5:F3:99:B5:66:6D:F1:70:89 ValidityMon, 01 Jul 2024 06:10:26 GMT - Sun, 29 Sep 2024 06:10:25 GMT
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=68&euid=NjY5YzJlZWIwNGEwZWEzYw%3D%3D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAmacLuu9tQLh864hAukhtFG0Nl7NFBMut8USc8AtM5Xe; cSyncDp14v6=1721511659; cSyncDp17v2=1721511659; cSyncDp45v5=1721511659; cSyncDp53v5=1721511659; cSyncDp62v2=1721511659; cSyncDp67v3=1721511659; cSyncDp68v3=1721511659; cSyncDp71v2=1721511659; cSyncDp80v2=1721511659; cSyncDp85v2=1721511659; cSyncDp95v4=1721511659; cSyncDp98v3=1721511659; cSyncDp104v2=1721511659; cSyncDp107v2=1721511659; cSyncDp110v3=1721511659; cSyncDp125v4=1721511659; cSyncDp126v3=1721511659; cSyncDp127v2=1721511659; cSyncDp129v2=1721511659; cSyncDp136v3=1721511659; cSyncDp146v2=1721511659; cSyncDp148v2=1721511659; cSyncDp149v3=1721511659; cSyncDp151v2=1721511659; cSyncDp251v1=1721511659; cSyncDp186v2=1721511659; cSyncDp217v2=1721511659; cSyncDp226v1=1721511659; cSyncDp235v2=1721511659; cSyncDp239v2=1721511659; cSyncDp243v2=1721511659; cSyncDp260v2=1721511659; cSyncDp244v2=1721511659; cSyncDp248v2=1721511659; cSyncDp261v1=1721511659; cSyncDp289v2=1721511659; cSyncDp293v1=1721511659; cSyncDp296v2=1721511659; cSyncDp312v1=1721511659; cSyncDp331v1=1721511659; cSyncDp14v4=1721511659
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb94fc85ef2ca6aff14ac115f618ce3a1 a71329a3f61cfd731888bd2a0751bb2f831aa5ca 48eb99bea8d440e3b5365ffa88ccf00410c58f7754b74cb57bce73c5ba1e4506
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "48EB99BEA8D440E3B5365FFA88CCF00410C58F7754B74CB57BCE73C5BA1E4506"
Last-Modified: Thu, 18 Jul 2024 07:23:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7361
Expires: Sat, 20 Jul 2024 23:43:40 GMT
Date: Sat, 20 Jul 2024 21:40:59 GMT
Connection: keep-alive
|
|
| match.new-programmatic.com/userbind?src=sape&id=0100007FEB2E9C66F202E3BF0266C7EE | 217.65.2.150 | | 0 B |
URL match.new-programmatic.com/userbind?src=sape&id=0100007FEB2E9C66F202E3BF0266C7EE IP217.65.2.150:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0100007FEB2E9C66F202E3BF0266C7EE HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Sat, 20 Jul 2024 21:40:59 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
|
|
| exchange.buzzoola.com/cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0100007FEB2E9C66F202E3BF0266C7EE&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 | 176.9.158.88 | | 156 B |
URL exchange.buzzoola.com/cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0100007FEB2E9C66F202E3BF0266C7EE&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 IP176.9.158.88:0 ASN#24940 Hetzner Online GmbH
File typeHTML document, ASCII text Hash87480aa356b4c0f3e893198edbbf6359 443a8cecab7cc93d9135a69940a19fab867ac4fd 92a12a8c70f941cdd67b59d9593bcd9198535d69fb3bc93be4f4bd36b4003db1
GET /cookiesync/dsp/sape-banner?set_buzzoola_cookie=t&uid=0100007FEB2E9C66F202E3BF0266C7EE&url=https%3A%2F%2Fmc.acint.net%2Frmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D%26r%3Dhttps%253A%252F%252Fmc.acint.net%252Fcmatch%253Fdp%253D126 HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: uuid=e40ae80e-9788-4297-5204-9553cdebbd74
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: text/html; charset=utf-8
content-length: 156
location: https://mc.acint.net/rmatch?dp=126&euid=e40ae80e-9788-4297-5204-9553cdebbd74&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126
serverid: TODO
X-Firefox-Spdy: h2
|
|
| sync.programmatica.com/match/01 | 158.160.128.78 | | 43 B |
URL sync.programmatica.com/match/01 IP158.160.128.78:0 ASN#200350 Yandex.Cloud LLC
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/01 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| cs.agency2.ru/p?ssp=sp&uid=0100007FEB2E9C66F202E3BF0266C7EE | 23.105.255.196 | | 35 B |
URL cs.agency2.ru/p?ssp=sp&uid=0100007FEB2E9C66F202E3BF0266C7EE IP23.105.255.196:0 ASN#39134 Edinaya Set Limited Liability Company
File typeGIF image data, version 89a, 1 x 1 Hashc2196de8ba412c60c22ab491af7b1409 5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /p?ssp=sp&uid=0100007FEB2E9C66F202E3BF0266C7EE HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Jul 2024 21:40:59 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: uuid=9b6b91a3-fe98-4632-bdc2-c2a13193fced; expires=Fri, 11 Jul 2025 21:40:59 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.105.255.196
|
|
| ssp.al-adtech.com/api/sync/sape | 45.139.25.120 | | 0 B |
URL ssp.al-adtech.com/api/sync/sape IP45.139.25.120:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync/sape HTTP/1.1
Host: ssp.al-adtech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.20.1
Date: Sat, 20 Jul 2024 21:40:59 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin:
Access-Control-Allow-Credentials: true
Location: https://mc.acint.net/rmatch?dp=261&euid=49ddb8ee-0dc0-4af7-a830-eb676e51c8d6&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261
Set-Cookie: afp_cookie=gAAAAABmnC7rfMlXoybtjYfDpxcdaU8SKk3N_kGUqVnModXbSbtN8oxxiH55f7_yCPhjPFCuLVKPEegd3oUFdKv4Ie_yb52T-wsLLvKwQLJ7sHfiyU-EUBA3QXTqL1V3hfFyJ2tHMInwtUOT0BySxTEWKTDx5WhcrW9V-3sEHNV-7fw0F6awJdk36r7LX41eBUZACde-7su-1s06yDpbkAvfupuaL3e-dw==$; expires=Tue, 20 Aug 2024 21:40:59 GMT; path=/; secure; SameSite=None
|
|
| acint.net/rmatch?dp=14&euid=1A03420AEB2E9C668E03DB8A021714D8&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D | 193.3.184.135 | | 154 B |
URL acint.net/rmatch?dp=14&euid=1A03420AEB2E9C668E03DB8A021714D8&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D IP193.3.184.135:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=14&euid=1A03420AEB2E9C668E03DB8A021714D8&r=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsapecookie%26bid%3D$%7BUSER_ID%7D HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: test_cookie=CheckForPermission; aid=fwAAAmacLuu9tQLh864hAukhtFG0Nl7NFBMut8USc8AtM5Xe; cSyncDp14v6=1721511659; cSyncDp17v2=1721511659; cSyncDp45v5=1721511659; cSyncDp53v5=1721511659; cSyncDp62v2=1721511659; cSyncDp67v3=1721511659; cSyncDp68v3=1721511659; cSyncDp71v2=1721511659; cSyncDp80v2=1721511659; cSyncDp85v2=1721511659; cSyncDp95v4=1721511659; cSyncDp98v3=1721511659; cSyncDp104v2=1721511659; cSyncDp107v2=1721511659; cSyncDp110v3=1721511659; cSyncDp125v4=1721511659; cSyncDp126v3=1721511659; cSyncDp127v2=1721511659; cSyncDp129v2=1721511659; cSyncDp136v3=1721511659; cSyncDp146v2=1721511659; cSyncDp148v2=1721511659; cSyncDp149v3=1721511659; cSyncDp151v2=1721511659; cSyncDp251v1=1721511659; cSyncDp186v2=1721511659; cSyncDp217v2=1721511659; cSyncDp226v1=1721511659; cSyncDp235v2=1721511659; cSyncDp239v2=1721511659; cSyncDp243v2=1721511659; cSyncDp260v2=1721511659; cSyncDp244v2=1721511659; cSyncDp248v2=1721511659; cSyncDp261v1=1721511659; cSyncDp289v2=1721511659; cSyncDp293v1=1721511659; cSyncDp296v2=1721511659; cSyncDp312v1=1721511659; cSyncDp331v1=1721511659; cSyncDp14v4=1721511659
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: text/html
content-length: 154
location: https://code.moviead55.ru/go/csync?cn=sapecookie&bid=0200007FEB2E9C66E102B5BD0221AEF3
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| mc.acint.net/match?dp=217&euid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f | 193.3.184.135 | | 43 B |
URL mc.acint.net/match?dp=217&euid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f IP193.3.184.135:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=217&euid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAmacLuu9tQLh864hAukhtFG0Nl7NFBMut8USc8AtM5Xe; cSyncDp14v6=1721511659; cSyncDp17v2=1721511659; cSyncDp45v5=1721511659; cSyncDp53v5=1721511659; cSyncDp62v2=1721511659; cSyncDp67v3=1721511659; cSyncDp68v3=1721511659; cSyncDp71v2=1721511659; cSyncDp80v2=1721511659; cSyncDp85v2=1721511659; cSyncDp95v4=1721511659; cSyncDp98v3=1721511659; cSyncDp104v2=1721511659; cSyncDp107v2=1721511659; cSyncDp110v3=1721511659; cSyncDp125v4=1721511659; cSyncDp126v3=1721511659; cSyncDp127v2=1721511659; cSyncDp129v2=1721511659; cSyncDp136v3=1721511659; cSyncDp146v2=1721511659; cSyncDp148v2=1721511659; cSyncDp149v3=1721511659; cSyncDp151v2=1721511659; cSyncDp251v1=1721511659; cSyncDp186v2=1721511659; cSyncDp217v2=1721511659; cSyncDp226v1=1721511659; cSyncDp235v2=1721511659; cSyncDp239v2=1721511659; cSyncDp243v2=1721511659; cSyncDp260v2=1721511659; cSyncDp244v2=1721511659; cSyncDp248v2=1721511659; cSyncDp261v1=1721511659; cSyncDp289v2=1721511659; cSyncDp293v1=1721511659; cSyncDp296v2=1721511659; cSyncDp312v1=1721511659; cSyncDp331v1=1721511659; cSyncDp14v4=1721511659
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| adx.com.ru/sape-sync?uid=0100007FEB2E9C66F202E3BF0266C7EE | 83.222.104.70 | | 169 B |
URL adx.com.ru/sape-sync?uid=0100007FEB2E9C66F202E3BF0266C7EE IP83.222.104.70:0
File typeHTML document, ASCII text, with CRLF line terminators Hash5974b7b0a4b06e9c2da4b0c7448ed7c0 f8260d70d9cffdb0522e4e5d326c07117fd8947c c9878bc7dccad3a43bbe44367be20caf9ba94fb40e84c038ea49f6dafb19daa1
GET /sape-sync?uid=0100007FEB2E9C66F202E3BF0266C7EE HTTP/1.1
Host: adx.com.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 429 Too Many Requests
server: nginx/1.26.0
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: text/html
content-length: 169
X-Firefox-Spdy: h2
|
|
| sync.dsp.solta.io/match/sape?id=0100007FEB2E9C66F202E3BF0266C7EE | 217.199.220.72 | | 43 B |
URL sync.dsp.solta.io/match/sape?id=0100007FEB2E9C66F202E3BF0266C7EE IP217.199.220.72:0
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/sape?id=0100007FEB2E9C66F202E3BF0266C7EE HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| pixel.dsp.onetarget.ru/sape/pixel?id=0100007FEB2E9C66F202E3BF0266C7EE | 130.193.53.230 | | 0 B |
URL pixel.dsp.onetarget.ru/sape/pixel?id=0100007FEB2E9C66F202E3BF0266C7EE IP130.193.53.230:0 ASN#200350 Yandex.Cloud LLC
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/pixel?id=0100007FEB2E9C66F202E3BF0266C7EE HTTP/1.1
Host: pixel.dsp.onetarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 20 Jul 2024 21:41:00 GMT
content-length: 0
location: https://x01.aidata.io/0.gif?pid=5813217&id=ff7955d7-2320-4a1d-bc00-d3f2bb3ead49
set-cookie: USER_ID=ff7955d7-2320-4a1d-bc00-d3f2bb3ead49;max-age=2147483647;Secure;HttpOnly;SameSite=None
SAPE_USER_ID=0100007FEB2E9C66F202E3BF0266C7EE;max-age=30758400;Secure;HttpOnly;SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-max-age: 1728000
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/csync?cn=otmbid&bid=NjY5YzJlZWIwNGEwZWEzYw%3D%3D | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/csync?cn=otmbid&bid=NjY5YzJlZWIwNGEwZWEzYw%3D%3D IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=otmbid&bid=NjY5YzJlZWIwNGEwZWEzYw%3D%3D HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: image/jpeg
content-length: 0
set-cookie: otmbid=NjY5YzJlZWIwNGEwZWEzYw==; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| sync.bumlam.com/?src=sape | 31.172.81.146 | | 0 B |
URL sync.bumlam.com/?src=sape IP31.172.81.146:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRjMTIwODM0Ni00NmUwLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 20 Jul 2024 21:41:00 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRjMTIwODM0Ni00NmUwLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Fri, 15 Jul 2044 21:41:00 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: https://pix.bumlam.com/sync/sape/sync_ok?guid=c1208346-46e0-11ef-86e0-002590c0647c
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://acint.net
Access-Control-Allow-Credentials: true
|
|
| code.moviead55.ru/go/csync?cn=hpr&bid=837a51a2-ad30-b32c-8216-91a748fe8727 | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/csync?cn=hpr&bid=837a51a2-ad30-b32c-8216-91a748fe8727 IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=hpr&bid=837a51a2-ad30-b32c-8216-91a748fe8727 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: image/jpeg
content-length: 0
set-cookie: hpr=837a51a2-ad30-b32c-8216-91a748fe8727; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| www.acint.net/mc/?dp=167&tc=1 | 193.3.184.135 | | 1.7 kB |
URL www.acint.net/mc/?dp=167&tc=1 IP193.3.184.135:0
CertificateIssuerLet's Encrypt Subject*.acint.net Fingerprint97:E0:8A:B4:D4:E0:30:6C:03:63:6B:F5:F3:99:B5:66:6D:F1:70:89 ValidityMon, 01 Jul 2024 06:10:26 GMT - Sun, 29 Sep 2024 06:10:25 GMT
File typegzip compressed data, from Unix Hasha6801722bc0f162b57a63d13f7b275c4 93a72b92ba6cd29c6d9e7e43b7a2ec4f6873c43c bdd7ecf347581eeb8a834a04280ceabca9f711db046cd225980fe3b9d6ed0927
GET /mc/?dp=167&tc=1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rutor.is/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWacLuu/4wLy7sdmAnswV6nYX/AAT8/WbV8itAVRrI/C
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: text/html
set-cookie: cSyncDp14v6=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp17v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v5=1721511659; expires=Sun, 21-Jul-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53v5=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v3=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68v3=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp80v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v4=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp98v3=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp104v2=1721511659; expires=Sat, 03-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110v3=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v4=1721511659; expires=Sun, 04-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126v3=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v3=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149v3=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp251v1=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp217v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp226v1=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp235v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp239v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp243v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp260v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp244v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp248v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp261v1=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp289v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp293v1=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp296v2=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp312v1=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp331v1=1721511659; expires=Mon, 19-Aug-24 21:40:59 GMT; path=/; Secure; SameSite=None; domain=.acint.net
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| acint.net/match?dp=14&euid=1903420AEB2E9C66960340160262F0FC | 193.3.184.135 | | 43 B |
URL acint.net/match?dp=14&euid=1903420AEB2E9C66960340160262F0FC IP193.3.184.135:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=14&euid=1903420AEB2E9C66960340160262F0FC HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAmacLuu9tQLh864hAukhtFG0Nl7NFBMut8USc8AtM5Xe; cSyncDp14v6=1721511659; cSyncDp17v2=1721511659; cSyncDp45v5=1721511659; cSyncDp53v5=1721511659; cSyncDp62v2=1721511659; cSyncDp67v3=1721511659; cSyncDp68v3=1721511659; cSyncDp71v2=1721511659; cSyncDp80v2=1721511659; cSyncDp85v2=1721511659; cSyncDp95v4=1721511659; cSyncDp98v3=1721511659; cSyncDp104v2=1721511659; cSyncDp107v2=1721511659; cSyncDp110v3=1721511659; cSyncDp125v4=1721511659; cSyncDp126v3=1721511659; cSyncDp127v2=1721511659; cSyncDp129v2=1721511659; cSyncDp136v3=1721511659; cSyncDp146v2=1721511659; cSyncDp148v2=1721511659; cSyncDp149v3=1721511659; cSyncDp151v2=1721511659; cSyncDp251v1=1721511659; cSyncDp186v2=1721511659; cSyncDp217v2=1721511659; cSyncDp226v1=1721511659; cSyncDp235v2=1721511659; cSyncDp239v2=1721511659; cSyncDp243v2=1721511659; cSyncDp260v2=1721511659; cSyncDp244v2=1721511659; cSyncDp248v2=1721511659; cSyncDp261v1=1721511659; cSyncDp289v2=1721511659; cSyncDp293v1=1721511659; cSyncDp296v2=1721511659; cSyncDp312v1=1721511659; cSyncDp331v1=1721511659; cSyncDp14v4=1721511659
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| sync.bumlam.com/?src=sap1&s_data=CAIQARjr3fC0BmIgMDEwMDAwN0ZFQjJFOUM2NkYyMDJFM0JGMDI2NkM3RUWiARDBIINGRuAR74bgACWQwGR8 | 31.172.81.146 | | 0 B |
URL sync.bumlam.com/?src=sap1&s_data=CAIQARjr3fC0BmIgMDEwMDAwN0ZFQjJFOUM2NkYyMDJFM0JGMDI2NkM3RUWiARDBIINGRuAR74bgACWQwGR8 IP31.172.81.146:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&s_data=CAIQARjr3fC0BmIgMDEwMDAwN0ZFQjJFOUM2NkYyMDJFM0JGMDI2NkM3RUWiARDBIINGRuAR74bgACWQwGR8 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRjMTIwODM0Ni00NmUwLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 20 Jul 2024 21:41:00 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRjMTIwODM0Ni00NmUwLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Fri, 15 Jul 2044 21:41:00 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
|
|
| www.acint.net/match?dp=129&euid=9vn4rq5s81 | 193.3.184.135 | | 43 B |
URL www.acint.net/match?dp=129&euid=9vn4rq5s81 IP193.3.184.135:0
CertificateIssuerLet's Encrypt Subject*.acint.net Fingerprint97:E0:8A:B4:D4:E0:30:6C:03:63:6B:F5:F3:99:B5:66:6D:F1:70:89 ValidityMon, 01 Jul 2024 06:10:26 GMT - Sun, 29 Sep 2024 06:10:25 GMT
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=129&euid=9vn4rq5s81 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAmacLuu9tQLh864hAukhtFG0Nl7NFBMut8USc8AtM5Xe; cSyncDp14v6=1721511659; cSyncDp17v2=1721511659; cSyncDp45v5=1721511659; cSyncDp53v5=1721511659; cSyncDp62v2=1721511659; cSyncDp67v3=1721511659; cSyncDp68v3=1721511659; cSyncDp71v2=1721511659; cSyncDp80v2=1721511659; cSyncDp85v2=1721511659; cSyncDp95v4=1721511659; cSyncDp98v3=1721511659; cSyncDp104v2=1721511659; cSyncDp107v2=1721511659; cSyncDp110v3=1721511659; cSyncDp125v4=1721511659; cSyncDp126v3=1721511659; cSyncDp127v2=1721511659; cSyncDp129v2=1721511659; cSyncDp136v3=1721511659; cSyncDp146v2=1721511659; cSyncDp148v2=1721511659; cSyncDp149v3=1721511659; cSyncDp151v2=1721511659; cSyncDp251v1=1721511659; cSyncDp186v2=1721511659; cSyncDp217v2=1721511659; cSyncDp226v1=1721511659; cSyncDp235v2=1721511659; cSyncDp239v2=1721511659; cSyncDp243v2=1721511659; cSyncDp260v2=1721511659; cSyncDp244v2=1721511659; cSyncDp248v2=1721511659; cSyncDp261v1=1721511659; cSyncDp289v2=1721511659; cSyncDp293v1=1721511659; cSyncDp296v2=1721511659; cSyncDp312v1=1721511659; cSyncDp331v1=1721511659; cSyncDp14v4=1721511659
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| www.acint.net/match?dp=127&euid=Fy8gddQW5fcOeJjeza0c | 193.3.184.135 | | 43 B |
URL www.acint.net/match?dp=127&euid=Fy8gddQW5fcOeJjeza0c IP193.3.184.135:0
CertificateIssuerLet's Encrypt Subject*.acint.net Fingerprint97:E0:8A:B4:D4:E0:30:6C:03:63:6B:F5:F3:99:B5:66:6D:F1:70:89 ValidityMon, 01 Jul 2024 06:10:26 GMT - Sun, 29 Sep 2024 06:10:25 GMT
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=127&euid=Fy8gddQW5fcOeJjeza0c HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAmacLuu9tQLh864hAukhtFG0Nl7NFBMut8USc8AtM5Xe; cSyncDp14v6=1721511659; cSyncDp17v2=1721511659; cSyncDp45v5=1721511659; cSyncDp53v5=1721511659; cSyncDp62v2=1721511659; cSyncDp67v3=1721511659; cSyncDp68v3=1721511659; cSyncDp71v2=1721511659; cSyncDp80v2=1721511659; cSyncDp85v2=1721511659; cSyncDp95v4=1721511659; cSyncDp98v3=1721511659; cSyncDp104v2=1721511659; cSyncDp107v2=1721511659; cSyncDp110v3=1721511659; cSyncDp125v4=1721511659; cSyncDp126v3=1721511659; cSyncDp127v2=1721511659; cSyncDp129v2=1721511659; cSyncDp136v3=1721511659; cSyncDp146v2=1721511659; cSyncDp148v2=1721511659; cSyncDp149v3=1721511659; cSyncDp151v2=1721511659; cSyncDp251v1=1721511659; cSyncDp186v2=1721511659; cSyncDp217v2=1721511659; cSyncDp226v1=1721511659; cSyncDp235v2=1721511659; cSyncDp239v2=1721511659; cSyncDp243v2=1721511659; cSyncDp260v2=1721511659; cSyncDp244v2=1721511659; cSyncDp248v2=1721511659; cSyncDp261v1=1721511659; cSyncDp289v2=1721511659; cSyncDp293v1=1721511659; cSyncDp296v2=1721511659; cSyncDp312v1=1721511659; cSyncDp331v1=1721511659; cSyncDp14v4=1721511659
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 | 148.251.78.49 | | 0 B |
URL sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 IP148.251.78.49:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: session_tptc=1721511659875
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=360a9a5a-f31a-4503-9145-cce00c0f9197;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=360a9a5a-f31a-4503-9145-cce00c0f9197;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/rmatch?dp=71&euid=360a9a5a-f31a-4503-9145-cce00c0f9197&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
|
|
| nr.bidderstack.com/sape/cm?user_id=0100007FEB2E9C66F202E3BF0266C7EE&pupa=1 | 167.235.186.113 | | 0 B |
URL nr.bidderstack.com/sape/cm?user_id=0100007FEB2E9C66F202E3BF0266C7EE&pupa=1 IP167.235.186.113:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/cm?user_id=0100007FEB2E9C66F202E3BF0266C7EE&pupa=1 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 20 Jul 2024 21:41:00 GMT
Content-Length: 0
Connection: keep-alive
Location: https://rs.mail.ru/d160760576.gif?rnd=&ts=&id=087f303a-cab9-e724-c694-be3a1f03e356
x-from: lp-nra-5
Set-Cookie: pupa=087f303a-cab9-e724-c694-be3a1f03e356; domain=.bidderstack.com; path=/; expires=Sun, 20-Jul-2025 21:41:00 GMT;
csorigin2=361; domain=.bidderstack.com; path=/; expires=Sat, 20-Jul-2024 21:46:00 GMT;
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
|
|
| code.moviead55.ru/go/jmap?v=ea59f7a89d04d570fbb4ef98a8a1693c&sid=ap&cp.referer=https%253A%252F%252Frutor.is%252Ftorrent%252F987625e&it=1&tq=2&cp.cb=ac54a889-004e-2e2c-409f-7416445ed762&session=830a9218-3392-47dd-890e-37ad8b4cb142&position=pre&vt=100&ostream=true&isp=0&suri=https%253A%252F%252Frutor.is%252Ftorrent%252F987625e&rnd=1721511659990&raw=yes | 193.200.65.149 | | 2 B |
URL code.moviead55.ru/go/jmap?v=ea59f7a89d04d570fbb4ef98a8a1693c&sid=ap&cp.referer=https%253A%252F%252Frutor.is%252Ftorrent%252F987625e&it=1&tq=2&cp.cb=ac54a889-004e-2e2c-409f-7416445ed762&session=830a9218-3392-47dd-890e-37ad8b4cb142&position=pre&vt=100&ostream=true&isp=0&suri=https%253A%252F%252Frutor.is%252Ftorrent%252F987625e&rnd=1721511659990&raw=yes IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd751713988987e9331980363e24189ce 97d170e1550eee4afc0af065b78cda302a97674c 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /go/jmap?v=ea59f7a89d04d570fbb4ef98a8a1693c&sid=ap&cp.referer=https%253A%252F%252Frutor.is%252Ftorrent%252F987625e&it=1&tq=2&cp.cb=ac54a889-004e-2e2c-409f-7416445ed762&session=830a9218-3392-47dd-890e-37ad8b4cb142&position=pre&vt=100&ostream=true&isp=0&suri=https%253A%252F%252Frutor.is%252Ftorrent%252F987625e&rnd=1721511659990&raw=yes HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rutor.is
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: application/json;charset=UTF-8
content-length: 2
x-movieads-cors-qex: Referer
x-movieads-path: /
access-control-allow-credentials: true
access-control-allow-origin: https://rutor.is
x-go-country: NO
x-movieads-udata: cache,parsed,6837
x-movieads-plc: 0
x-movieads-ark: true
x-movieads-qmc: NO
x-movieads-rdb: 0
x-movieads-alc: 2
x-movieads-ctvs: 2
server-timing: keyValidation;dur=0.0000, wmData;dur=0.0000, range_links;dur=0.0000, getJson;dur=0.0000, corsParams;dur=0.0000, qManager;dur=0.0000, initBuilder;dur=0.0000, uData;dur=0.0000, queueSort;dur=0.0000, queuesMerge;dur=0.0000, attachTracking;dur=0.0000, jmapParams;dur=0.0000, optProc;dur=0.0000, getAnyQueue;dur=0.0000, buildTagsQueue;dur=0.0000, getLinks;dur=0.0000
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| gw-iad-bid.ymmobi.com/dsp/user/sync?dspid=c2FwZV9kc3A=&gdpr=0&gdpr_consent=0&us_privacy=0&callback=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D293%26euid%3D%7Bym_user_id%7D | 47.253.61.56 | | 0 B |
URL gw-iad-bid.ymmobi.com/dsp/user/sync?dspid=c2FwZV9kc3A=&gdpr=0&gdpr_consent=0&us_privacy=0&callback=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D293%26euid%3D%7Bym_user_id%7D IP47.253.61.56:0 ASN#45102 Alibaba US Technology Co., Ltd.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dsp/user/sync?dspid=c2FwZV9kc3A=&gdpr=0&gdpr_consent=0&us_privacy=0&callback=https%3A%2F%2Fmc.acint.net%2Fmatch%3Fdp%3D293%26euid%3D%7Bym_user_id%7D HTTP/1.1
Host: gw-iad-bid.ymmobi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 20 Jul 2024 21:41:00 GMT
content-length: 0
location: https://mc.acint.net/match?dp=293&euid=ym_user_417a8743-2f00-47cf-9d74-9e18742a1a94
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token
access-control-allow-credentials: true
set-cookie: ym_user_cookie=ym_user_417a8743-2f00-47cf-9d74-9e18742a1a94; max-age=31104000; domain=ymmobi.com; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/csync?cn=sapecookie&bid=0200007FEB2E9C66E102B5BD0221AEF3 | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/csync?cn=sapecookie&bid=0200007FEB2E9C66E102B5BD0221AEF3 IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=sapecookie&bid=0200007FEB2E9C66E102B5BD0221AEF3 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: image/jpeg
content-length: 0
set-cookie: sapecookie=0200007FEB2E9C66E102B5BD0221AEF3; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| mc.acint.net/rmatch?dp=126&euid=e40ae80e-9788-4297-5204-9553cdebbd74&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126 | 193.3.184.135 | | 154 B |
URL mc.acint.net/rmatch?dp=126&euid=e40ae80e-9788-4297-5204-9553cdebbd74&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126 IP193.3.184.135:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=126&euid=e40ae80e-9788-4297-5204-9553cdebbd74&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D126 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAmacLuu9tQLh864hAukhtFG0Nl7NFBMut8USc8AtM5Xe; cSyncDp14v6=1721511659; cSyncDp17v2=1721511659; cSyncDp45v5=1721511659; cSyncDp53v5=1721511659; cSyncDp62v2=1721511659; cSyncDp67v3=1721511659; cSyncDp68v3=1721511659; cSyncDp71v2=1721511659; cSyncDp80v2=1721511659; cSyncDp85v2=1721511659; cSyncDp95v4=1721511659; cSyncDp98v3=1721511659; cSyncDp104v2=1721511659; cSyncDp107v2=1721511659; cSyncDp110v3=1721511659; cSyncDp125v4=1721511659; cSyncDp126v3=1721511659; cSyncDp127v2=1721511659; cSyncDp129v2=1721511659; cSyncDp136v3=1721511659; cSyncDp146v2=1721511659; cSyncDp148v2=1721511659; cSyncDp149v3=1721511659; cSyncDp151v2=1721511659; cSyncDp251v1=1721511659; cSyncDp186v2=1721511659; cSyncDp217v2=1721511659; cSyncDp226v1=1721511659; cSyncDp235v2=1721511659; cSyncDp239v2=1721511659; cSyncDp243v2=1721511659; cSyncDp260v2=1721511659; cSyncDp244v2=1721511659; cSyncDp248v2=1721511659; cSyncDp261v1=1721511659; cSyncDp289v2=1721511659; cSyncDp293v1=1721511659; cSyncDp296v2=1721511659; cSyncDp312v1=1721511659; cSyncDp331v1=1721511659; cSyncDp14v4=1721511659
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=126
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| user91471.clients-cdnnow.ru/mp_dist/mstream2.js?v7339858604 | 185.40.155.13 | 200 OK | 56 kB |
URL GET HTTP/2user91471.clients-cdnnow.ru/mp_dist/mstream2.js?v7339858604 IP185.40.155.13:443
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.clients-cdnnow.ru Fingerprint80:B0:CF:87:8D:0A:56:55:01:2B:64:4C:7A:AA:26:D0:88:CB:05:D9 ValidityWed, 03 Jul 2024 08:43:11 GMT - Tue, 01 Oct 2024 08:43:10 GMT
File typegzip compressed data, from Unix Hash300c6d24e16ba4444e1764ce7b34cd89 c4ae85e6a63320d7737e8bf1d802621df658bbd8 8422de5282bcd8b749a4515e45e06e1233aec2cf4686f34447e094af4af658e6
GET /mp_dist/mstream2.js?v7339858604 HTTP/1.1
Host: user91471.clients-cdnnow.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:47 GMT
content-type: application/javascript
last-modified: Mon, 15 Jul 2024 06:29:32 GMT
vary: Accept-Encoding
etag: W/"6694c1cc-28494"
x-movieads-country: RU
content-encoding: gzip
x-edge-cache: HIT
x-edge-ip: 172.19.32.7
X-Firefox-Spdy: h2
|
|
| mc.acint.net/rmatch?dp=261&euid=49ddb8ee-0dc0-4af7-a830-eb676e51c8d6&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261 | 193.3.184.135 | | 154 B |
URL mc.acint.net/rmatch?dp=261&euid=49ddb8ee-0dc0-4af7-a830-eb676e51c8d6&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261 IP193.3.184.135:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=261&euid=49ddb8ee-0dc0-4af7-a830-eb676e51c8d6&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D261 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAmacLuu9tQLh864hAukhtFG0Nl7NFBMut8USc8AtM5Xe; cSyncDp14v6=1721511659; cSyncDp17v2=1721511659; cSyncDp45v5=1721511659; cSyncDp53v5=1721511659; cSyncDp62v2=1721511659; cSyncDp67v3=1721511659; cSyncDp68v3=1721511659; cSyncDp71v2=1721511659; cSyncDp80v2=1721511659; cSyncDp85v2=1721511659; cSyncDp95v4=1721511659; cSyncDp98v3=1721511659; cSyncDp104v2=1721511659; cSyncDp107v2=1721511659; cSyncDp110v3=1721511659; cSyncDp125v4=1721511659; cSyncDp126v3=1721511659; cSyncDp127v2=1721511659; cSyncDp129v2=1721511659; cSyncDp136v3=1721511659; cSyncDp146v2=1721511659; cSyncDp148v2=1721511659; cSyncDp149v3=1721511659; cSyncDp151v2=1721511659; cSyncDp251v1=1721511659; cSyncDp186v2=1721511659; cSyncDp217v2=1721511659; cSyncDp226v1=1721511659; cSyncDp235v2=1721511659; cSyncDp239v2=1721511659; cSyncDp243v2=1721511659; cSyncDp260v2=1721511659; cSyncDp244v2=1721511659; cSyncDp248v2=1721511659; cSyncDp261v1=1721511659; cSyncDp289v2=1721511659; cSyncDp293v1=1721511659; cSyncDp296v2=1721511659; cSyncDp312v1=1721511659; cSyncDp331v1=1721511659; cSyncDp14v4=1721511659
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=261
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| pix.bumlam.com/sync/sape/sync_ok?guid=c1208346-46e0-11ef-86e0-002590c0647c | 31.172.81.160 | | 0 B |
URL pix.bumlam.com/sync/sape/sync_ok?guid=c1208346-46e0-11ef-86e0-002590c0647c IP31.172.81.160:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/sync_ok?guid=c1208346-46e0-11ef-86e0-002590c0647c HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRjMTIwODM0Ni00NmUwLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 20 Jul 2024 21:41:00 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://c1208346-46e0-11ef-86e0-002590c0647c.n2.sync.bumlam.com/?src=sape
|
|
| sync.adspend.space/sape?uid=0100007FEB2E9C66F202E3BF0266C7EE | 104.21.26.195 | | 294 B |
URL sync.adspend.space/sape?uid=0100007FEB2E9C66F202E3BF0266C7EE IP104.21.26.195:0
Hash5863efcffef9042e38f173997f507c0b 366c911982cfd364bfbf0ed30eabc1cab8ab8f0a c45e848edcba7793c87ed3debfa365084fd2e8f45097b4fea52ec2a03a2eade5
GET /sape?uid=0100007FEB2E9C66F202E3BF0266C7EE HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 20 Jul 2024 21:40:59 GMT
content-type: text/html; charset=utf-8
location: https://sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3D0584f40b-9736-4e08-a8ef-5d798ffdf3cc
set-cookie: as-user=0584f40b-9736-4e08-a8ef-5d798ffdf3cc; Path=/; Max-Age=31536000; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3M0ZDphVB64%2BnZpFM%2BlO1jqr0sbMsuGbRjGfDoB9xsLFZLhq9wBfd53KVGlxmEKzkY8rkyLJVl4GdO6i3Bg69jkNdDT0PDuFa0kwIgBy1HyngEtkmRM%2BMX6dPF0JO%2BAjes98cx4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a661ce109605697-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=QKVJRWKF | 193.3.184.135 | | 154 B |
URL mc.acint.net/rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=QKVJRWKF IP193.3.184.135:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=95&r=https%3A%2F%2Fmc.acint.net%2Fcmatch%3Fdp%3D95&euid=QKVJRWKF HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAmacLuu9tQLh864hAukhtFG0Nl7NFBMut8USc8AtM5Xe; cSyncDp14v6=1721511659; cSyncDp17v2=1721511659; cSyncDp45v5=1721511659; cSyncDp53v5=1721511659; cSyncDp62v2=1721511659; cSyncDp67v3=1721511659; cSyncDp68v3=1721511659; cSyncDp71v2=1721511659; cSyncDp80v2=1721511659; cSyncDp85v2=1721511659; cSyncDp95v4=1721511659; cSyncDp98v3=1721511659; cSyncDp104v2=1721511659; cSyncDp107v2=1721511659; cSyncDp110v3=1721511659; cSyncDp125v4=1721511659; cSyncDp126v3=1721511659; cSyncDp127v2=1721511659; cSyncDp129v2=1721511659; cSyncDp136v3=1721511659; cSyncDp146v2=1721511659; cSyncDp148v2=1721511659; cSyncDp149v3=1721511659; cSyncDp151v2=1721511659; cSyncDp251v1=1721511659; cSyncDp186v2=1721511659; cSyncDp217v2=1721511659; cSyncDp226v1=1721511659; cSyncDp235v2=1721511659; cSyncDp239v2=1721511659; cSyncDp243v2=1721511659; cSyncDp260v2=1721511659; cSyncDp244v2=1721511659; cSyncDp248v2=1721511659; cSyncDp261v1=1721511659; cSyncDp289v2=1721511659; cSyncDp293v1=1721511659; cSyncDp296v2=1721511659; cSyncDp312v1=1721511659; cSyncDp331v1=1721511659; cSyncDp14v4=1721511659
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: text/html
content-length: 154
location: https://mc.acint.net/cmatch?dp=95
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| www.acint.net/rmatch?dp=71&euid=360a9a5a-f31a-4503-9145-cce00c0f9197&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71 | 193.3.184.135 | | 154 B |
URL www.acint.net/rmatch?dp=71&euid=360a9a5a-f31a-4503-9145-cce00c0f9197&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71 IP193.3.184.135:0
CertificateIssuerLet's Encrypt Subject*.acint.net Fingerprint97:E0:8A:B4:D4:E0:30:6C:03:63:6B:F5:F3:99:B5:66:6D:F1:70:89 ValidityMon, 01 Jul 2024 06:10:26 GMT - Sun, 29 Sep 2024 06:10:25 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=71&euid=360a9a5a-f31a-4503-9145-cce00c0f9197&r=https%3A%2F%2Facint.net%2Fcmatch%3Fdp%3D71 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAmacLuu9tQLh864hAukhtFG0Nl7NFBMut8USc8AtM5Xe; cSyncDp14v6=1721511659; cSyncDp17v2=1721511659; cSyncDp45v5=1721511659; cSyncDp53v5=1721511659; cSyncDp62v2=1721511659; cSyncDp67v3=1721511659; cSyncDp68v3=1721511659; cSyncDp71v2=1721511659; cSyncDp80v2=1721511659; cSyncDp85v2=1721511659; cSyncDp95v4=1721511659; cSyncDp98v3=1721511659; cSyncDp104v2=1721511659; cSyncDp107v2=1721511659; cSyncDp110v3=1721511659; cSyncDp125v4=1721511659; cSyncDp126v3=1721511659; cSyncDp127v2=1721511659; cSyncDp129v2=1721511659; cSyncDp136v3=1721511659; cSyncDp146v2=1721511659; cSyncDp148v2=1721511659; cSyncDp149v3=1721511659; cSyncDp151v2=1721511659; cSyncDp251v1=1721511659; cSyncDp186v2=1721511659; cSyncDp217v2=1721511659; cSyncDp226v1=1721511659; cSyncDp235v2=1721511659; cSyncDp239v2=1721511659; cSyncDp243v2=1721511659; cSyncDp260v2=1721511659; cSyncDp244v2=1721511659; cSyncDp248v2=1721511659; cSyncDp261v1=1721511659; cSyncDp289v2=1721511659; cSyncDp293v1=1721511659; cSyncDp296v2=1721511659; cSyncDp312v1=1721511659; cSyncDp331v1=1721511659; cSyncDp14v4=1721511659
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: text/html
content-length: 154
location: https://acint.net/cmatch?dp=71
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash5ed9dc41bf1a791a9118ab979e6cde9b c70af35d17821b39b20585056f66d5d6063052c9 0cf94c364bf6a58279c56d8bbac62cd1d05d6752cfa80fc9c89e2450c68a00fa
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "0CF94C364BF6A58279C56D8BBAC62CD1D05D6752CFA80FC9C89E2450C68A00FA"
Last-Modified: Sat, 20 Jul 2024 19:22:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16127
Expires: Sun, 21 Jul 2024 02:09:47 GMT
Date: Sat, 20 Jul 2024 21:41:00 GMT
Connection: keep-alive
|
|
| mc.acint.net/match?dp=293&euid=ym_user_417a8743-2f00-47cf-9d74-9e18742a1a94 | 193.3.184.135 | | 43 B |
URL mc.acint.net/match?dp=293&euid=ym_user_417a8743-2f00-47cf-9d74-9e18742a1a94 IP193.3.184.135:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=293&euid=ym_user_417a8743-2f00-47cf-9d74-9e18742a1a94 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAmacLuu9tQLh864hAukhtFG0Nl7NFBMut8USc8AtM5Xe; cSyncDp14v6=1721511659; cSyncDp17v2=1721511659; cSyncDp45v5=1721511659; cSyncDp53v5=1721511659; cSyncDp62v2=1721511659; cSyncDp67v3=1721511659; cSyncDp68v3=1721511659; cSyncDp71v2=1721511659; cSyncDp80v2=1721511659; cSyncDp85v2=1721511659; cSyncDp95v4=1721511659; cSyncDp98v3=1721511659; cSyncDp104v2=1721511659; cSyncDp107v2=1721511659; cSyncDp110v3=1721511659; cSyncDp125v4=1721511659; cSyncDp126v3=1721511659; cSyncDp127v2=1721511659; cSyncDp129v2=1721511659; cSyncDp136v3=1721511659; cSyncDp146v2=1721511659; cSyncDp148v2=1721511659; cSyncDp149v3=1721511659; cSyncDp151v2=1721511659; cSyncDp251v1=1721511659; cSyncDp186v2=1721511659; cSyncDp217v2=1721511659; cSyncDp226v1=1721511659; cSyncDp235v2=1721511659; cSyncDp239v2=1721511659; cSyncDp243v2=1721511659; cSyncDp260v2=1721511659; cSyncDp244v2=1721511659; cSyncDp248v2=1721511659; cSyncDp261v1=1721511659; cSyncDp289v2=1721511659; cSyncDp293v1=1721511659; cSyncDp296v2=1721511659; cSyncDp312v1=1721511659; cSyncDp331v1=1721511659; cSyncDp14v4=1721511659
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| mc.acint.net/cmatch?dp=126 | 193.3.184.135 | | 154 B |
URL mc.acint.net/cmatch?dp=126 IP193.3.184.135:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=126 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAmacLuu9tQLh864hAukhtFG0Nl7NFBMut8USc8AtM5Xe; cSyncDp14v6=1721511659; cSyncDp17v2=1721511659; cSyncDp45v5=1721511659; cSyncDp53v5=1721511659; cSyncDp62v2=1721511659; cSyncDp67v3=1721511659; cSyncDp68v3=1721511659; cSyncDp71v2=1721511659; cSyncDp80v2=1721511659; cSyncDp85v2=1721511659; cSyncDp95v4=1721511659; cSyncDp98v3=1721511659; cSyncDp104v2=1721511659; cSyncDp107v2=1721511659; cSyncDp110v3=1721511659; cSyncDp125v4=1721511659; cSyncDp126v3=1721511659; cSyncDp127v2=1721511659; cSyncDp129v2=1721511659; cSyncDp136v3=1721511659; cSyncDp146v2=1721511659; cSyncDp148v2=1721511659; cSyncDp149v3=1721511659; cSyncDp151v2=1721511659; cSyncDp251v1=1721511659; cSyncDp186v2=1721511659; cSyncDp217v2=1721511659; cSyncDp226v1=1721511659; cSyncDp235v2=1721511659; cSyncDp239v2=1721511659; cSyncDp243v2=1721511659; cSyncDp260v2=1721511659; cSyncDp244v2=1721511659; cSyncDp248v2=1721511659; cSyncDp261v1=1721511659; cSyncDp289v2=1721511659; cSyncDp293v1=1721511659; cSyncDp296v2=1721511659; cSyncDp312v1=1721511659; cSyncDp331v1=1721511659; cSyncDp14v4=1721511659
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: text/html
content-length: 154
location: https://ads.betweendigital.com/match?bidder_id=73&external_user_id=0200007FEB2E9C66E102B5BD0221AEF3
set-cookie: cSyncDp7v3=1721511660; expires=Mon, 19-Aug-24 21:41:00 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| mc.acint.net/cmatch?dp=110 | 193.3.184.135 | | 154 B |
URL mc.acint.net/cmatch?dp=110 IP193.3.184.135:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=110 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAmacLuu9tQLh864hAukhtFG0Nl7NFBMut8USc8AtM5Xe; cSyncDp14v6=1721511659; cSyncDp17v2=1721511659; cSyncDp45v5=1721511659; cSyncDp53v5=1721511659; cSyncDp62v2=1721511659; cSyncDp67v3=1721511659; cSyncDp68v3=1721511659; cSyncDp71v2=1721511659; cSyncDp80v2=1721511659; cSyncDp85v2=1721511659; cSyncDp95v4=1721511659; cSyncDp98v3=1721511659; cSyncDp104v2=1721511659; cSyncDp107v2=1721511659; cSyncDp110v3=1721511659; cSyncDp125v4=1721511659; cSyncDp126v3=1721511659; cSyncDp127v2=1721511659; cSyncDp129v2=1721511659; cSyncDp136v3=1721511659; cSyncDp146v2=1721511659; cSyncDp148v2=1721511659; cSyncDp149v3=1721511659; cSyncDp151v2=1721511659; cSyncDp251v1=1721511659; cSyncDp186v2=1721511659; cSyncDp217v2=1721511659; cSyncDp226v1=1721511659; cSyncDp235v2=1721511659; cSyncDp239v2=1721511659; cSyncDp243v2=1721511659; cSyncDp260v2=1721511659; cSyncDp244v2=1721511659; cSyncDp248v2=1721511659; cSyncDp261v1=1721511659; cSyncDp289v2=1721511659; cSyncDp293v1=1721511659; cSyncDp296v2=1721511659; cSyncDp312v1=1721511659; cSyncDp331v1=1721511659; cSyncDp14v4=1721511659
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: text/html
content-length: 154
location: https://ads.betweendigital.com/match?bidder_id=73&external_user_id=0200007FEB2E9C66E102B5BD0221AEF3
set-cookie: cSyncDp7v3=1721511660; expires=Mon, 19-Aug-24 21:41:00 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| mc.acint.net/cmatch?dp=261 | 193.3.184.135 | | 154 B |
URL mc.acint.net/cmatch?dp=261 IP193.3.184.135:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=261 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAmacLuu9tQLh864hAukhtFG0Nl7NFBMut8USc8AtM5Xe; cSyncDp14v6=1721511659; cSyncDp17v2=1721511659; cSyncDp45v5=1721511659; cSyncDp53v5=1721511659; cSyncDp62v2=1721511659; cSyncDp67v3=1721511659; cSyncDp68v3=1721511659; cSyncDp71v2=1721511659; cSyncDp80v2=1721511659; cSyncDp85v2=1721511659; cSyncDp95v4=1721511659; cSyncDp98v3=1721511659; cSyncDp104v2=1721511659; cSyncDp107v2=1721511659; cSyncDp110v3=1721511659; cSyncDp125v4=1721511659; cSyncDp126v3=1721511659; cSyncDp127v2=1721511659; cSyncDp129v2=1721511659; cSyncDp136v3=1721511659; cSyncDp146v2=1721511659; cSyncDp148v2=1721511659; cSyncDp149v3=1721511659; cSyncDp151v2=1721511659; cSyncDp251v1=1721511659; cSyncDp186v2=1721511659; cSyncDp217v2=1721511659; cSyncDp226v1=1721511659; cSyncDp235v2=1721511659; cSyncDp239v2=1721511659; cSyncDp243v2=1721511659; cSyncDp260v2=1721511659; cSyncDp244v2=1721511659; cSyncDp248v2=1721511659; cSyncDp261v1=1721511659; cSyncDp289v2=1721511659; cSyncDp293v1=1721511659; cSyncDp296v2=1721511659; cSyncDp312v1=1721511659; cSyncDp331v1=1721511659; cSyncDp14v4=1721511659
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: text/html
content-length: 154
location: https://ads.betweendigital.com/match?bidder_id=73&external_user_id=0200007FEB2E9C66E102B5BD0221AEF3
set-cookie: cSyncDp7v3=1721511660; expires=Mon, 19-Aug-24 21:41:00 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| mc.acint.net/cmatch?dp=95 | 193.3.184.135 | | 154 B |
URL mc.acint.net/cmatch?dp=95 IP193.3.184.135:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=95 HTTP/1.1
Host: mc.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAmacLuu9tQLh864hAukhtFG0Nl7NFBMut8USc8AtM5Xe; cSyncDp14v6=1721511659; cSyncDp17v2=1721511659; cSyncDp45v5=1721511659; cSyncDp53v5=1721511659; cSyncDp62v2=1721511659; cSyncDp67v3=1721511659; cSyncDp68v3=1721511659; cSyncDp71v2=1721511659; cSyncDp80v2=1721511659; cSyncDp85v2=1721511659; cSyncDp95v4=1721511659; cSyncDp98v3=1721511659; cSyncDp104v2=1721511659; cSyncDp107v2=1721511659; cSyncDp110v3=1721511659; cSyncDp125v4=1721511659; cSyncDp126v3=1721511659; cSyncDp127v2=1721511659; cSyncDp129v2=1721511659; cSyncDp136v3=1721511659; cSyncDp146v2=1721511659; cSyncDp148v2=1721511659; cSyncDp149v3=1721511659; cSyncDp151v2=1721511659; cSyncDp251v1=1721511659; cSyncDp186v2=1721511659; cSyncDp217v2=1721511659; cSyncDp226v1=1721511659; cSyncDp235v2=1721511659; cSyncDp239v2=1721511659; cSyncDp243v2=1721511659; cSyncDp260v2=1721511659; cSyncDp244v2=1721511659; cSyncDp248v2=1721511659; cSyncDp261v1=1721511659; cSyncDp289v2=1721511659; cSyncDp293v1=1721511659; cSyncDp296v2=1721511659; cSyncDp312v1=1721511659; cSyncDp331v1=1721511659; cSyncDp14v4=1721511659
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: text/html
content-length: 154
location: https://ads.betweendigital.com/match?bidder_id=73&external_user_id=0200007FEB2E9C66E102B5BD0221AEF3
set-cookie: cSyncDp7v3=1721511660; expires=Mon, 19-Aug-24 21:41:00 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| acint.net/cmatch?dp=71 | 193.3.184.135 | | 154 B |
IP193.3.184.135:0
File typeHTML document, ASCII text, with CRLF line terminators Hashcfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /cmatch?dp=71 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAmacLuu9tQLh864hAukhtFG0Nl7NFBMut8USc8AtM5Xe; cSyncDp14v6=1721511659; cSyncDp17v2=1721511659; cSyncDp45v5=1721511659; cSyncDp53v5=1721511659; cSyncDp62v2=1721511659; cSyncDp67v3=1721511659; cSyncDp68v3=1721511659; cSyncDp71v2=1721511659; cSyncDp80v2=1721511659; cSyncDp85v2=1721511659; cSyncDp95v4=1721511659; cSyncDp98v3=1721511659; cSyncDp104v2=1721511659; cSyncDp107v2=1721511659; cSyncDp110v3=1721511659; cSyncDp125v4=1721511659; cSyncDp126v3=1721511659; cSyncDp127v2=1721511659; cSyncDp129v2=1721511659; cSyncDp136v3=1721511659; cSyncDp146v2=1721511659; cSyncDp148v2=1721511659; cSyncDp149v3=1721511659; cSyncDp151v2=1721511659; cSyncDp251v1=1721511659; cSyncDp186v2=1721511659; cSyncDp217v2=1721511659; cSyncDp226v1=1721511659; cSyncDp235v2=1721511659; cSyncDp239v2=1721511659; cSyncDp243v2=1721511659; cSyncDp260v2=1721511659; cSyncDp244v2=1721511659; cSyncDp248v2=1721511659; cSyncDp261v1=1721511659; cSyncDp289v2=1721511659; cSyncDp293v1=1721511659; cSyncDp296v2=1721511659; cSyncDp312v1=1721511659; cSyncDp331v1=1721511659; cSyncDp14v4=1721511659
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 20 Jul 2024 21:41:00 GMT
content-type: text/html
content-length: 154
location: https://ads.betweendigital.com/match?bidder_id=73&external_user_id=0200007FEB2E9C66E102B5BD0221AEF3
set-cookie: cSyncDp7v3=1721511660; expires=Mon, 19-Aug-24 21:41:00 GMT; path=/; Secure; SameSite=None; domain=.acint.net
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashf76143c96121280131239f744ded616b aeeded4a3880bb9e9e85bd7782a8a8cdbf640d70 647dafcc584ce7414361ccfc69a31de908fda114e36e12709d79220ff24b39a2
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "647DAFCC584CE7414361CCFC69A31DE908FDA114E36E12709D79220FF24B39A2"
Last-Modified: Thu, 18 Jul 2024 07:20:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3668
Expires: Sat, 20 Jul 2024 22:42:08 GMT
Date: Sat, 20 Jul 2024 21:41:00 GMT
Connection: keep-alive
|
|
| c1208346-46e0-11ef-86e0-002590c0647c.n2.sync.bumlam.com/?src=sape | 80.87.198.111 | | 0 B |
URL c1208346-46e0-11ef-86e0-002590c0647c.n2.sync.bumlam.com/?src=sape IP80.87.198.111:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: c1208346-46e0-11ef-86e0-002590c0647c.n2.sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRjMTIwODM0Ni00NmUwLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.26.0
date: Sat, 20 Jul 2024 21:41:00 GMT
content-length: 0
location: https://pix.bumlam.com/sync/sape/done
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
X-Firefox-Spdy: h2
|
|
| pix.bumlam.com/sync/sape/done | 31.172.81.160 | | 43 B |
URL pix.bumlam.com/sync/sape/done IP31.172.81.160:0
File typeGIF image data, version 89a, 1 x 1 Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sync/sape/done HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
DNT: 1
Connection: keep-alive
Cookie: suuid3=IiRjMTIwODM0Ni00NmUwLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 20 Jul 2024 21:41:00 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash6a5a9d6317ebcabb7cb82ef31b79c872 bad6cae2d178b515a212daf3e49fb391ffac6c06 e9a2b00f8d6e57da34ac07cabff8166febeb5b86eaf94602060e6b708c394352
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "E9A2B00F8D6E57DA34AC07CABFF8166FEBEB5B86EAF94602060E6B708C394352"
Last-Modified: Thu, 18 Jul 2024 07:34:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7212
Expires: Sat, 20 Jul 2024 23:41:13 GMT
Date: Sat, 20 Jul 2024 21:41:01 GMT
Connection: keep-alive
|
|
| static.filmskino.site/hls/trailers/ZoxJy7yXq84.mp4/index.m3u8 | 193.200.65.230 | | 339 B |
URL static.filmskino.site/hls/trailers/ZoxJy7yXq84.mp4/index.m3u8 IP193.200.65.230:0 ASN#6681 Giveme Cloud Sp Z O O
Hash7cb53c5703f464ecaf46fc3d87112ab6 c109cb21cf0b98b3e1d1fb4ea37a4c0b6356bf48 c0112dbdac5a05b1865be84bc60024b296231dc07cf2172aee9c6a1f9d4cf205
GET /hls/trailers/ZoxJy7yXq84.mp4/index.m3u8 HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 20 Jul 2024 21:41:01 GMT
Content-Type: application/vnd.apple.mpegurl
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"3a1794b0-10ab"
Expires: Mon, 28 Oct 2024 21:41:01 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Content-Encoding: gzip
|
|
| static.filmskino.site/hls/trailers/ZoxJy7yXq84.mp4/seg-1-v1-a1.ts | 193.200.65.230 | | 280 kB |
URL static.filmskino.site/hls/trailers/ZoxJy7yXq84.mp4/seg-1-v1-a1.ts IP193.200.65.230:0 ASN#6681 Giveme Cloud Sp Z O O
File typeMPEG transport stream data Size280 kB (280120 bytes) Hash20d73abd5d9223272e437656db4b1aa3 d918924bbe2c65ea67357624bdc991d3351f2151 53ae7a8faf0e25a536747ea853791be1fc9520a05ddf807b2e171a0ba71379c7
GET /hls/trailers/ZoxJy7yXq84.mp4/seg-1-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 20 Jul 2024 21:41:01 GMT
Content-Type: video/MP2T
Content-Length: 280120
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-44638"
Expires: Mon, 28 Oct 2024 21:41:01 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| static.filmskino.site/hls/trailers/ZoxJy7yXq84.mp4/seg-2-v1-a1.ts | 193.200.65.230 | | 178 kB |
URL static.filmskino.site/hls/trailers/ZoxJy7yXq84.mp4/seg-2-v1-a1.ts IP193.200.65.230:0 ASN#6681 Giveme Cloud Sp Z O O
File typeMPEG transport stream data Size178 kB (177848 bytes) Hashd36e94377ed8f6c6f4bfbc360ddbbe14 2b65f34b6fa6506d2a841eb933a5406a0d95b742 67a472955a6a8d23052b6c530f65f34dc0bc80e969d966b4fe35d64d134f52fe
GET /hls/trailers/ZoxJy7yXq84.mp4/seg-2-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 20 Jul 2024 21:41:01 GMT
Content-Type: video/MP2T
Content-Length: 177848
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-2b6b8"
Expires: Mon, 28 Oct 2024 21:41:01 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| s.ccsyncuuid.net/match/5/?remote_uid=0100007FEB2E9C66F202E3BF0266C7EE |  46.8.8.100 | | 57 B |
URL s.ccsyncuuid.net/match/5/?remote_uid=0100007FEB2E9C66F202E3BF0266C7EE IP46.8.8.100:0
Hash6e07d282904e3ed34dcc67090597f9f7 27707a8fa69b37d127e181a818ad65034cca8725 0e0399c76b900b02a90a2045a930b85a96988945388a5e0caca770f25e473360
GET /match/5/?remote_uid=0100007FEB2E9C66F202E3BF0266C7EE HTTP/1.1
Host: s.ccsyncuuid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 57
date: Sat, 20 Jul 2024 21:41:05 GMT
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=btwcookie&rnd=1721511677 | 193.200.65.149 | 301 Moved Permanently | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=btwcookie&rnd=1721511677 IP193.200.65.149:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=btwcookie&rnd=1721511677 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727; sapecookie=0200007FEB2E9C66E102B5BD0221AEF3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-length: 0
location: https://ads.betweendigital.com/match?bidder_id=34348&callback_url=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dbtwcookie%26bid%3D%24%7BUSER_ID%7D
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1721511677 | 193.200.65.149 | 200 OK | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=hbrdcookie2&rnd=1721511677 IP193.200.65.149:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=hbrdcookie2&rnd=1721511677 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727; sapecookie=0200007FEB2E9C66E102B5BD0221AEF3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| logger.moviead55.ru/logger.php?t=player_finish&c=830a9218-3392-47dd-890e-37ad8b4cb142&a=&m=&v=ea59f7a89d04d570fbb4ef98a8a1693c&o=undefined | 193.200.65.146 | 200 OK | 162 B |
URL GET HTTP/2logger.moviead55.ru/logger.php?t=player_finish&c=830a9218-3392-47dd-890e-37ad8b4cb142&a=&m=&v=ea59f7a89d04d570fbb4ef98a8a1693c&o=undefined IP193.200.65.146:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
File typePNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced Hash0f71030bd8cff1a0d21a03f12dd8d5c2 2b8316e3675ebf2777a97d6ee9d48027f07f0668 6b4d50b2b4b72a9378c16ac83c21983116fe932ed9db7c1f21a68c21d87e1efa
GET /logger.php?t=player_finish&c=830a9218-3392-47dd-890e-37ad8b4cb142&a=&m=&v=ea59f7a89d04d570fbb4ef98a8a1693c&o=undefined HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:16 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=vhd&rnd=1721511677 | 193.200.65.149 | 301 Moved Permanently | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=vhd&rnd=1721511677 IP193.200.65.149:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=vhd&rnd=1721511677 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727; sapecookie=0200007FEB2E9C66E102B5BD0221AEF3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-length: 0
location: https://a.videohead.tech/sync?ssp=sky_new
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=solta&rnd=1721511677 | 193.200.65.149 | 301 Moved Permanently | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=solta&rnd=1721511677 IP193.200.65.149:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=solta&rnd=1721511677 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727; sapecookie=0200007FEB2E9C66E102B5BD0221AEF3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-length: 0
location: https://kimberlite.io/rtb/sync/skyadvert?u=7e9def36-5eba-2094-5f14-ecccdf74fcf5
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=gtnt&rnd=1721511677 | 193.200.65.149 | 301 Moved Permanently | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=gtnt&rnd=1721511677 IP193.200.65.149:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gtnt&rnd=1721511677 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727; sapecookie=0200007FEB2E9C66E102B5BD0221AEF3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-length: 0
location: https://px.adhigh.net/p/cm/skyadvert?u=7e9def36-5eba-2094-5f14-ecccdf74fcf5
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=dgm2&rnd=1721511677 | 193.200.65.149 | 301 Moved Permanently | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=dgm2&rnd=1721511677 IP193.200.65.149:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=dgm2&rnd=1721511677 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727; sapecookie=0200007FEB2E9C66E102B5BD0221AEF3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-length: 0
location: https://sync.opendsp.ru/match/MovieAds?id=7e9def36-5eba-2094-5f14-ecccdf74fcf5
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1721511677 | 193.200.65.149 | 200 OK | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=otclkbid&rnd=1721511677 IP193.200.65.149:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otclkbid&rnd=1721511677 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727; sapecookie=0200007FEB2E9C66E102B5BD0221AEF3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=sapecookie&rnd=1721511677 | 193.200.65.149 | 200 OK | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=sapecookie&rnd=1721511677 IP193.200.65.149:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=sapecookie&rnd=1721511677 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727; sapecookie=0200007FEB2E9C66E102B5BD0221AEF3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=adspktr&rnd=1721511677 | 193.200.65.149 | 301 Moved Permanently | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=adspktr&rnd=1721511677 IP193.200.65.149:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=adspktr&rnd=1721511677 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727; sapecookie=0200007FEB2E9C66E102B5BD0221AEF3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-length: 0
location: https://a.adspector.io/sync?ssp=12
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=ohmybid&rnd=1721511677 | 193.200.65.149 | 200 OK | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=ohmybid&rnd=1721511677 IP193.200.65.149:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=ohmybid&rnd=1721511677 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727; sapecookie=0200007FEB2E9C66E102B5BD0221AEF3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=hpr&rnd=1721511677 | 193.200.65.149 | 200 OK | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=hpr&rnd=1721511677 IP193.200.65.149:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=hpr&rnd=1721511677 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727; sapecookie=0200007FEB2E9C66E102B5BD0221AEF3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1721511677 | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/cinit?cn=gonetbid&rnd=1721511677 IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=gonetbid&rnd=1721511677 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727; sapecookie=0200007FEB2E9C66E102B5BD0221AEF3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-length: 0
location: https://sync.gonet-ads.com/match/SkyAdvert?id=7e9def36-5eba-2094-5f14-ecccdf74fcf5
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1721511677 | 193.200.65.149 | 200 OK | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=bzcookie&rnd=1721511677 IP193.200.65.149:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=bzcookie&rnd=1721511677 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727; sapecookie=0200007FEB2E9C66E102B5BD0221AEF3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| sp.ohmy.bid/cmf?0.8816571062378844 | 167.235.14.51 | 204 No Content | 0 B |
URL GET HTTP/2sp.ohmy.bid/cmf?0.8816571062378844 IP167.235.14.51:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectsp.ohmy.bid Fingerprint09:CE:8E:CB:34:0C:95:EE:30:B0:1E:AD:8B:8E:8A:4D:93:0D:E3:24 ValidityWed, 22 May 2024 20:08:37 GMT - Tue, 20 Aug 2024 20:08:36 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cmf?0.8816571062378844 HTTP/1.1
Host: sp.ohmy.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: uid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f.669c2eeb.195a4d74b101d2a1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
bidder: bid-21 1.1616.b31a5032
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| sync.opendsp.ru/match/MovieAds?id=7e9def36-5eba-2094-5f14-ecccdf74fcf5 | 82.148.20.186 | 200 OK | 43 B |
URL GET HTTP/2sync.opendsp.ru/match/MovieAds?id=7e9def36-5eba-2094-5f14-ecccdf74fcf5 IP82.148.20.186:443 ASN#50340 OOO Network of data-centers Selectel
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectsync.opendsp.ru FingerprintF0:11:D4:D9:08:42:7C:A8:97:E5:BC:D9:CF:1A:63:AC:60:59:1E:13 ValidityMon, 03 Jun 2024 23:31:41 GMT - Sun, 01 Sep 2024 23:31:40 GMT
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/MovieAds?id=7e9def36-5eba-2094-5f14-ecccdf74fcf5 HTTP/1.1
Host: sync.opendsp.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| a.videohead.tech/sync?ssp=sky_new | 188.114.96.1 | 302 Found | 0 B |
URL GET HTTP/3a.videohead.tech/sync?ssp=sky_new IP188.114.96.1:443
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerGoogle Trust Services Subjectvideohead.tech Fingerprint69:44:E3:1B:0F:E9:B9:37:5B:D1:1C:6C:E8:D3:13:C7:38:F8:62:DA ValidityFri, 19 Jul 2024 11:41:00 GMT - Thu, 17 Oct 2024 11:40:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=sky_new HTTP/1.1
Host: a.videohead.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: prevhead=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 20 Jul 2024 21:41:17 GMT
content-type: text/plain
location: https://sync.bumlam.com/?src=vh1&uid=29a03af3-4a14-44bd-bd8b-82412eee6b7d
set-cookie: prevhead=1; Max-Age=0; Domain=.videohead.tech; SameSite=None; Secure; Path=/
vhead=ko5PJdJZTak-SJUzkv7Oy9IjvHa6Q_ucBPktH4hXC1g3KZQO-kIC2JbcXb7zkxR4PeR4sDXjBu3EEPar7Y9iNw; Expires=Wed, 19 Jul 2034 00:41:17 GMT; Domain=.videohead.tech; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wa2CDDh3l4d9R7PAGD4yuuEOS9kxJrcEsQlrYE7OOc53YXE9Q1aKVHfugr7CQEpoDWx66d7vMCJLVX7c4zssq9mN9CMKYvhNo4XhdWrMsPv%2FOKQ%2BrcdzyfqhZmZltLtPuTNZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a661d51dd3db509-OSL
alt-svc: h3=":443"; ma=86400
|
|
| sync.bumlam.com/?src=vh1&uid=29a03af3-4a14-44bd-bd8b-82412eee6b7d | 31.172.81.147 | 302 Moved Temporarily | 0 B |
URL GET HTTP/1.1sync.bumlam.com/?src=vh1&uid=29a03af3-4a14-44bd-bd8b-82412eee6b7d IP31.172.81.147:443
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.bumlam.com FingerprintC7:B8:C8:83:62:C5:9D:94:54:71:24:CC:A2:E7:2E:0B:07:A3:57:9D ValidityTue, 18 Jun 2024 12:40:09 GMT - Mon, 16 Sep 2024 12:40:08 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=vh1&uid=29a03af3-4a14-44bd-bd8b-82412eee6b7d HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: suuid3=IiRjMTIwODM0Ni00NmUwLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 20 Jul 2024 21:41:17 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRjMTIwODM0Ni00NmUwLTExZWYtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Fri, 15 Jul 2044 21:41:17 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: https://a.videohead.tech/sync?dsp=Mediasniper&buyerid=c1208346-46e0-11ef-86e0-002590c0647c
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
|
|
| sync.gonet-ads.com/match/SkyAdvert?id=7e9def36-5eba-2094-5f14-ecccdf74fcf5 | 23.109.14.90 | 200 OK | 43 B |
URL GET HTTP/2sync.gonet-ads.com/match/SkyAdvert?id=7e9def36-5eba-2094-5f14-ecccdf74fcf5 IP23.109.14.90:443
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerSectigo Limited Subject*.gonet-ads.com FingerprintF9:26:15:49:49:7C:0B:D7:26:B2:22:B3:1A:42:11:6B:F7:FB:3D:33 ValidityMon, 20 May 2024 00:00:00 GMT - Wed, 11 Jun 2025 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/SkyAdvert?id=7e9def36-5eba-2094-5f14-ecccdf74fcf5 HTTP/1.1
Host: sync.gonet-ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
|
|
| kimberlite.io/rtb/sync/skyadvert?u=7e9def36-5eba-2094-5f14-ecccdf74fcf5 | 217.199.220.44 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1kimberlite.io/rtb/sync/skyadvert?u=7e9def36-5eba-2094-5f14-ecccdf74fcf5 IP217.199.220.44:443
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerGlobalSign nv-sa Subject*.kimberlite.io Fingerprint27:9B:57:5F:3C:19:A5:31:A3:1B:E6:A4:8E:CF:2F:73:78:4E:46:C1 ValidityThu, 29 Feb 2024 12:20:14 GMT - Tue, 01 Apr 2025 12:20:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/skyadvert?u=7e9def36-5eba-2094-5f14-ecccdf74fcf5 HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: f=https%3A%2F%2Fcode.moviead55.ru%2Fgo%2Fcsync%3Fcn%3Dsolta%26bid%3DZpwu6xu_O8U; n=2; da=KLqvcgAAAAI; u=Zpwu6xu_O8Y~l7RcW5SMnBxaspEv3PPQSV4M-kQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 20 Jul 2024 21:41:17 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
location: https://code.moviead55.ru/go/csync?cn=solta&bid=Zpwu6xu_O8U
set-cookie: f=; max-age=0; samesite=none; httponly; secure
n=; max-age=0; samesite=none; httponly; secure
referrer-policy: no-referrer
server-timing: app;srv=13;dur=0.0002
|
|
| code.moviead55.ru/go/csync?cn=solta&bid=Zpwu6xu_O8U | 193.200.65.149 | | 0 B |
URL code.moviead55.ru/go/csync?cn=solta&bid=Zpwu6xu_O8U IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=solta&bid=Zpwu6xu_O8U HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727; sapecookie=0200007FEB2E9C66E102B5BD0221AEF3; adspktr=$160dbaab-b759-41cf-b6f8-41122b1f8e64
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-type: image/jpeg
content-length: 0
set-cookie: solta=Zpwu6xu_O8U; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/jmap?v=ea59f7a89d04d570fbb4ef98a8a1693c&sid=ap&cp.referer=https%253A%252F%252Frutor.is%252Ftorrent%252F987625e&it=1&tq=2&cp.cb=96d0f857-9e18-16b0-213a-b312bca72cf6&session=830a9218-3392-47dd-890e-37ad8b4cb142&position=pre&vt=100&ostream=true&isp=0&suri=https%253A%252F%252Frutor.is%252Ftorrent%252F987625e&rnd=1721511678669&raw=yes&ma=e445ffb4-81c0-4ece-b4c3-1daf905c9f65 | 193.200.65.149 | | 2 B |
URL code.moviead55.ru/go/jmap?v=ea59f7a89d04d570fbb4ef98a8a1693c&sid=ap&cp.referer=https%253A%252F%252Frutor.is%252Ftorrent%252F987625e&it=1&tq=2&cp.cb=96d0f857-9e18-16b0-213a-b312bca72cf6&session=830a9218-3392-47dd-890e-37ad8b4cb142&position=pre&vt=100&ostream=true&isp=0&suri=https%253A%252F%252Frutor.is%252Ftorrent%252F987625e&rnd=1721511678669&raw=yes&ma=e445ffb4-81c0-4ece-b4c3-1daf905c9f65 IP193.200.65.149:0 ASN#6681 Giveme Cloud Sp Z O O
CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd751713988987e9331980363e24189ce 97d170e1550eee4afc0af065b78cda302a97674c 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /go/jmap?v=ea59f7a89d04d570fbb4ef98a8a1693c&sid=ap&cp.referer=https%253A%252F%252Frutor.is%252Ftorrent%252F987625e&it=1&tq=2&cp.cb=96d0f857-9e18-16b0-213a-b312bca72cf6&session=830a9218-3392-47dd-890e-37ad8b4cb142&position=pre&vt=100&ostream=true&isp=0&suri=https%253A%252F%252Frutor.is%252Ftorrent%252F987625e&rnd=1721511678669&raw=yes&ma=e445ffb4-81c0-4ece-b4c3-1daf905c9f65 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rutor.is
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727; sapecookie=0200007FEB2E9C66E102B5BD0221AEF3; adspktr=$160dbaab-b759-41cf-b6f8-41122b1f8e64; solta=Zpwu6xu_O8U
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:18 GMT
content-type: application/json;charset=UTF-8
content-length: 2
x-movieads-cors-qex: Referer
x-movieads-path: /
access-control-allow-credentials: true
access-control-allow-origin: https://rutor.is
x-go-country: NO
x-movieads-udata: cache,parsed,98145
x-movieads-plc: 0
x-movieads-ark: true
x-movieads-qmc: NO
x-movieads-rdb: 0
x-movieads-alc: 2
x-movieads-ctvs: 2
server-timing: range_links;dur=0.0000, getJson;dur=0.0000, jmapParams;dur=0.0000, corsParams;dur=0.0000, keyValidation;dur=0.0000, wmData;dur=0.0000, uData;dur=0.0000, getLinks;dur=0.0000, initBuilder;dur=0.0000, attachTracking;dur=0.0000, qManager;dur=0.0000, getAnyQueue;dur=0.0000, buildTagsQueue;dur=0.0000, queueSort;dur=0.0000, queuesMerge;dur=0.0000, optProc;dur=0.0000
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| logger.moviead55.ru/logger.php?v=ea59f7a89d04d570fbb4ef98a8a1693c&c=830a9218-3392-47dd-890e-37ad8b4cb142&t=player_init&a=&m=%7B%22vis%22%3A100%2C%22dv%22%3Atrue%2C%22jmap%22%3A0%2C%22blen%22%3A1%7D&o= | 193.200.65.146 | 200 OK | 255 kB |
URL GET HTTP/2logger.moviead55.ru/logger.php?v=ea59f7a89d04d570fbb4ef98a8a1693c&c=830a9218-3392-47dd-890e-37ad8b4cb142&t=player_init&a=&m=%7B%22vis%22%3A100%2C%22dv%22%3Atrue%2C%22jmap%22%3A0%2C%22blen%22%3A1%7D&o= IP193.200.65.146:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
File typePNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced Size255 kB (255327 bytes) Hash63dfc7443703ee2b505fdf9326d0c9b9 d3d37eeec6e56aa10438c28c6f429acf0b6d4459 e3a9f3e77c1f20ba438d753d5340d3f8fcd397c5dc04ca4e82e9e12a076a578d
GET /logger.php?v=ea59f7a89d04d570fbb4ef98a8a1693c&c=830a9218-3392-47dd-890e-37ad8b4cb142&t=player_init&a=&m=%7B%22vis%22%3A100%2C%22dv%22%3Atrue%2C%22jmap%22%3A0%2C%22blen%22%3A1%7D&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:18 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| videotoday.site/mp_dist/td/trhls.html?v1721024963010 | 185.40.155.13 | | 176 kB |
URL GET videotoday.site/mp_dist/td/trhls.html?v1721024963010 IP185.40.155.13:0
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subjectvideotoday.site FingerprintF1:58:93:2B:56:B3:D7:95:1A:EC:44:A8:62:4D:D1:6A:CB:B3:C1:B5 ValidityTue, 09 Jul 2024 12:47:23 GMT - Mon, 07 Oct 2024 12:47:22 GMT
File typegzip compressed data, from Unix Size176 kB (175789 bytes) Hashb3414b7a913574800c694278a550e952 d507c6e9f0c7475d2094389fbf905b878328fee8 2d57acce444b0bab73ed6fe4eae1f4e3d1bdd74a37efa53838077c9df9bc832c
GET /mp_dist/td/trhls.html?v1721024963010 HTTP/1.1
Host: videotoday.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:42:07 GMT
content-type: text/html
last-modified: Mon, 15 Jul 2024 06:29:32 GMT
vary: Accept-Encoding
etag: W/"6694c1cc-242c"
x-movieads-country: RU
content-encoding: gzip
x-edge-cache: HIT
x-edge-ip: 172.19.32.7
X-Firefox-Spdy: h2
|
|
| static.filmskino.site/hls/trailers/tQs0gRLaweA.mp4/seg-2-v1-a1.ts | 193.200.65.230 | | 178 kB |
URL static.filmskino.site/hls/trailers/tQs0gRLaweA.mp4/seg-2-v1-a1.ts IP193.200.65.230:0 ASN#6681 Giveme Cloud Sp Z O O
File typeMPEG transport stream data Size178 kB (177848 bytes) Hash654e950dc5613c86b04bd90e995ae8c5 d1b4f46e92ec5e0b5c254ed10a45e89c360741c0 cb2d2a5ae5ef20b99dcec219eea42589f733bd9e62f7538e380636217f6d3241
GET /hls/trailers/tQs0gRLaweA.mp4/seg-2-v1-a1.ts HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 20 Jul 2024 21:41:19 GMT
Content-Type: video/MP2T
Content-Length: 177848
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Connection: keep-alive
ETag: "3a1794b0-2b6b8"
Expires: Mon, 28 Oct 2024 21:41:19 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| code.moviead55.ru/go/cinit?cn=otmbid&rnd=1721511677 | 193.200.65.149 | 200 OK | 0 B |
URL GET HTTP/2code.moviead55.ru/go/cinit?cn=otmbid&rnd=1721511677 IP193.200.65.149:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/cinit?cn=otmbid&rnd=1721511677 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727; sapecookie=0200007FEB2E9C66E102B5BD0221AEF3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-type: image/jpeg
content-length: 0
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| logger.moviead55.ru/logger.php?t=prev_session&c=830a9218-3392-47dd-890e-37ad8b4cb142&a=&m=830a9218-3392-47dd-890e-37ad8b4cb142&v=ea59f7a89d04d570fbb4ef98a8a1693c&o= | 193.200.65.146 | 200 OK | 70 B |
URL GET HTTP/2logger.moviead55.ru/logger.php?t=prev_session&c=830a9218-3392-47dd-890e-37ad8b4cb142&a=&m=830a9218-3392-47dd-890e-37ad8b4cb142&v=ea59f7a89d04d570fbb4ef98a8a1693c&o= IP193.200.65.146:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
File typePNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced Hashb357a19c87624c7c4d131aeeb4ae677f c7a9c45fd419815a5ab1998503a9f03514c0e229 497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?t=prev_session&c=830a9218-3392-47dd-890e-37ad8b4cb142&a=&m=830a9218-3392-47dd-890e-37ad8b4cb142&v=ea59f7a89d04d570fbb4ef98a8a1693c&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.kinopoisk.ru/rating/5388902.gif | 213.180.199.9 | 301 Moved Permanently | 769 B |
URL GET HTTP/2www.kinopoisk.ru/rating/5388902.gif IP213.180.199.9:443
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerGlobalSign nv-sa Subject*.kinopoisk.ru FingerprintCD:3E:39:E6:3A:14:61:D5:4A:D3:FB:69:4E:65:4D:CE:B5:88:3C:91 ValidityFri, 10 May 2024 21:06:14 GMT - Fri, 08 Nov 2024 20:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rating/5388902.gif HTTP/1.1
Host: www.kinopoisk.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
content-length: 178
strict-transport-security: max-age=31536000
nel: {"report_to": "neldrlog", "max_age": 200, "success_fraction": 0.01, "failure_fraction": 1}
report-to: {"group": "neldrlog", "max_age": 200, "endpoints": [{"url": "https://dr.yandex.net/kinopoisk/nel", "priority": 1}, {"url": "https://dr2.yandex.net/kinopoisk/nel", "priority": 2}]}
content-type: text/html
location: https://rating.kinopoisk.ru/5388902.gif
x-request-id: 1721511657531168-6911216662929601697
date: Sat, 20 Jul 2024 21:40:57 GMT
set-cookie: _yasc=QObZC+Qn+YNEsLZ9Y3tXkW2yH6mIg7O/fbxn/esaqDkUdi1/hTe4AbXqaHoc/gUF; domain=.kinopoisk.ru; path=/; expires=Tue, 18 Jul 2034 21:40:57 GMT; secure
i=Hh+ZMWC8tN3RBe6JWgCidzOaNTTQEhhRZuye4B+Y7N+oRCtg3BEgJdDOEbg19utMPA6JmmRaSIpjT8x5QaKS33R3ZYQ=; Expires=Mon, 20-Jul-2026 21:40:57 GMT; Domain=.kinopoisk.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=461776741721511657; Expires=Mon, 20-Jul-2026 21:40:57 GMT; Domain=.kinopoisk.ru; Path=/; Secure; SameSite=None
yashr=5711983001721511657; Path=/; Domain=.kinopoisk.ru; Expires=Sun, 20 Jul 2025 21:40:57 GMT; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
|
|
| a.videohead.tech/sync?dsp=Mediasniper&buyerid=c1208346-46e0-11ef-86e0-002590c0647c | 188.114.96.1 | 201 Created | 0 B |
URL GET HTTP/3a.videohead.tech/sync?dsp=Mediasniper&buyerid=c1208346-46e0-11ef-86e0-002590c0647c IP188.114.96.1:443
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerGoogle Trust Services Subjectvideohead.tech Fingerprint69:44:E3:1B:0F:E9:B9:37:5B:D1:1C:6C:E8:D3:13:C7:38:F8:62:DA ValidityFri, 19 Jul 2024 11:41:00 GMT - Thu, 17 Oct 2024 11:40:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp=Mediasniper&buyerid=c1208346-46e0-11ef-86e0-002590c0647c HTTP/1.1
Host: a.videohead.tech
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: vhead=ko5PJdJZTak-SJUzkv7Oy9IjvHa6Q_ucBPktH4hXC1g3KZQO-kIC2JbcXb7zkxR4PeR4sDXjBu3EEPar7Y9iNw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 201 Created
date: Sat, 20 Jul 2024 21:41:17 GMT
content-type: text/plain
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SnIqbQeFQS9K5xArBWyFDDJvoLG6KnfaT1I7wikOjkORQLjBQyriZkzfCj3iihHl569hElLJRj77i5KLvshWViHWK7vg9p8Axrz036Iyy%2BRGpf7LI99rxs73NTrpNL8r3aTI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a661d52ce26b509-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vak345.com/s.js?v=ea59f7a89d04d570fbb4ef98a8a1693c | 104.21.69.38 | 200 OK | 3.9 kB |
URL GET HTTP/2vak345.com/s.js?v=ea59f7a89d04d570fbb4ef98a8a1693c IP104.21.69.38:443
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerGoogle Trust Services LLC Subjectvak345.com Fingerprint50:FD:F1:51:4F:59:AF:74:72:1A:02:EC:6E:9D:98:23:0F:20:81:39 ValidityWed, 05 Jun 2024 00:12:42 GMT - Tue, 03 Sep 2024 00:12:41 GMT
File typeJavaScript source, ASCII text, with very long lines (4296), with no line terminators Hash7413fce8cadcdf117b8b6bdc16cc8a40 4cd34e84edb7b77d7b32f918a171b1b917d9cf79 25874037445907776b137b3c18a59e4c6d3c16b6503803b0034f3737c4553da6
GET /s.js?v=ea59f7a89d04d570fbb4ef98a8a1693c HTTP/1.1
Host: vak345.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 20 Jul 2024 21:40:56 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-movieads-country: NO
content-encoding: gzip
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tEfzmm%2Fz1h2RSCgIGp8OpOuYqXUV8FeIznPAJYy%2FxPuy1%2Br%2FrxzaST5lmxIB43X42AI7D0LCGqzVQIPTP%2BJrBScXfy1fYdCbN2VmMgKR23XRxR0fEE7PKCfK75dc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a661cce6cb55689-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| code.moviead55.ru/go/csync?cn=adspktr&bid=$160dbaab-b759-41cf-b6f8-41122b1f8e64 | 193.200.65.149 | 200 OK | 0 B |
URL GET HTTP/2code.moviead55.ru/go/csync?cn=adspktr&bid=$160dbaab-b759-41cf-b6f8-41122b1f8e64 IP193.200.65.149:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/csync?cn=adspktr&bid=$160dbaab-b759-41cf-b6f8-41122b1f8e64 HTTP/1.1
Host: code.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Cookie: sky_uuid=7e9def36-5eba-2094-5f14-ecccdf74fcf5; hbrdcookie2=51cc532838537289824e; otclkbid=VU0cN8yG3RaXtJh; ohmybid=c68eae04-aefc-41fe-9e63-d5d6c338ac3f; bzcookie=a3defc24-9733-45d3-5fb3-e6d7071e4f9e; otmbid=NjY5YzJlZWIwNGEwZWEzYw==; hpr=837a51a2-ad30-b32c-8216-91a748fe8727; sapecookie=0200007FEB2E9C66E102B5BD0221AEF3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-type: image/jpeg
content-length: 0
set-cookie: adspktr=$160dbaab-b759-41cf-b6f8-41122b1f8e64; max-age=86400; path=/; HttpOnly; secure; SameSite=None
x-movieads-country: NO
X-Firefox-Spdy: h2
|
|
| logger.moviead55.ru/logger.php?t=target_country_load&c=830a9218-3392-47dd-890e-37ad8b4cb142&a=&m=%7B%22browser%22%3A%22%7B%5C%22name%5C%22%3A%5C%22firefox%5C%22%2C%5C%22version%5C%22%3A%5C%2296%5C%22%7D%22%2C%22isMobile%22%3Afalse%2C%22format%22%3A%22new%22%7D&v=ea59f7a89d04d570fbb4ef98a8a1693c&o=undefined | 193.200.65.146 | 200 OK | 70 B |
URL GET HTTP/2logger.moviead55.ru/logger.php?t=target_country_load&c=830a9218-3392-47dd-890e-37ad8b4cb142&a=&m=%7B%22browser%22%3A%22%7B%5C%22name%5C%22%3A%5C%22firefox%5C%22%2C%5C%22version%5C%22%3A%5C%2296%5C%22%7D%22%2C%22isMobile%22%3Afalse%2C%22format%22%3A%22new%22%7D&v=ea59f7a89d04d570fbb4ef98a8a1693c&o=undefined IP193.200.65.146:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
File typePNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced Hashb357a19c87624c7c4d131aeeb4ae677f c7a9c45fd419815a5ab1998503a9f03514c0e229 497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?t=target_country_load&c=830a9218-3392-47dd-890e-37ad8b4cb142&a=&m=%7B%22browser%22%3A%22%7B%5C%22name%5C%22%3A%5C%22firefox%5C%22%2C%5C%22version%5C%22%3A%5C%2296%5C%22%7D%22%2C%22isMobile%22%3Afalse%2C%22format%22%3A%22new%22%7D&v=ea59f7a89d04d570fbb4ef98a8a1693c&o=undefined HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:40:57 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| logger.moviead55.ru/logger.php?t=player_frame_loaded_new&c=830a9218-3392-47dd-890e-37ad8b4cb142&a=&m=1&v=ea59f7a89d04d570fbb4ef98a8a1693c&o= | 193.200.65.146 | 200 OK | 70 B |
URL GET HTTP/2logger.moviead55.ru/logger.php?t=player_frame_loaded_new&c=830a9218-3392-47dd-890e-37ad8b4cb142&a=&m=1&v=ea59f7a89d04d570fbb4ef98a8a1693c&o= IP193.200.65.146:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.moviead55.ru FingerprintB3:60:C4:3F:20:9F:9E:90:08:DB:2C:9D:40:85:63:A7:98:F2:96:68 ValidityTue, 21 May 2024 19:24:05 GMT - Mon, 19 Aug 2024 19:24:04 GMT
File typePNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced Hashb357a19c87624c7c4d131aeeb4ae677f c7a9c45fd419815a5ab1998503a9f03514c0e229 497790947d4666760ce38f3c00e852c71fdb66cae849bae8e9ede352719e1581
GET /logger.php?t=player_frame_loaded_new&c=830a9218-3392-47dd-890e-37ad8b4cb142&a=&m=1&v=ea59f7a89d04d570fbb4ef98a8a1693c&o= HTTP/1.1
Host: logger.moviead55.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:41:17 GMT
content-type: Content-Type: image/png
vary: Accept-Encoding
x-movieads-le: true
x-movieads-country: NO
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| user91471.clients-cdnnow.ru/frndnp.php?ver=1&autoplay=1&v=ea59f7a89d04d570fbb4ef98a8a1693c&cb=830a9218-3392-47dd-890e-37ad8b4cb142&fclose=false&jh=cpzse3jqpizzc4mfcf1dkpjqqj4o&sth=qi3skht3gr4dqcjqcpsg13mqqt314a5rp3zg673qqj4o&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=37&r=https%3A%2F%2Frutor.is%2Ftorrent%2F987625e&frnd=true&maid=e445ffb4-81c0-4ece-b4c3-1daf905c9f65&rel=true&rnd=1721511676337&cnt=1 | 0.0.0.0 | | 0 B |
URL GET user91471.clients-cdnnow.ru/frndnp.php?ver=1&autoplay=1&v=ea59f7a89d04d570fbb4ef98a8a1693c&cb=830a9218-3392-47dd-890e-37ad8b4cb142&fclose=false&jh=cpzse3jqpizzc4mfcf1dkpjqqj4o&sth=qi3skht3gr4dqcjqcpsg13mqqt314a5rp3zg673qqj4o&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=37&r=https%3A%2F%2Frutor.is%2Ftorrent%2F987625e&frnd=true&maid=e445ffb4-81c0-4ece-b4c3-1daf905c9f65&rel=true&rnd=1721511676337&cnt=1 IP0.0.0.0:0
Requested byhttps://rutor.is/torrent/987625e CertificateIssuerLet's Encrypt Subject*.clients-cdnnow.ru Fingerprint80:B0:CF:87:8D:0A:56:55:01:2B:64:4C:7A:AA:26:D0:88:CB:05:D9 ValidityWed, 03 Jul 2024 08:43:11 GMT - Tue, 01 Oct 2024 08:43:10 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /frndnp.php?ver=1&autoplay=1&v=ea59f7a89d04d570fbb4ef98a8a1693c&cb=830a9218-3392-47dd-890e-37ad8b4cb142&fclose=false&jh=cpzse3jqpizzc4mfcf1dkpjqqj4o&sth=qi3skht3gr4dqcjqcpsg13mqqt314a5rp3zg673qqj4o&sub_id=ap&fmt_id=1&testad=no&nomon=1&cdiv=37&r=https%3A%2F%2Frutor.is%2Ftorrent%2F987625e&frnd=true&maid=e445ffb4-81c0-4ece-b4c3-1daf905c9f65&rel=true&rnd=1721511676337&cnt=1 HTTP/1.1
Host: user91471.clients-cdnnow.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rutor.is/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 20 Jul 2024 21:42:06 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-cache: Yac
x-movieads-country: RU
content-encoding: gzip
x-edge-cache: MISS
x-edge-ip: 172.19.32.7
X-Firefox-Spdy: h2
|
|
| static.filmskino.site/hls/trailers/tQs0gRLaweA.mp4/index.m3u8 | 193.200.65.230 | 200 OK | 4.1 kB |
URL GET HTTP/1.1static.filmskino.site/hls/trailers/tQs0gRLaweA.mp4/index.m3u8 IP193.200.65.230:443 ASN#6681 Giveme Cloud Sp Z O O
Requested byhttps://videotoday.site/mp_dist/td/trhls.html?v1721024963010 CertificateIssuerLet's Encrypt Subjectstatic.filmskino.site Fingerprint15:DD:DD:0F:C6:60:20:AA:56:41:94:34:26:16:56:F5:DE:F9:D2:CF ValidityFri, 07 Jun 2024 16:19:32 GMT - Thu, 05 Sep 2024 16:19:31 GMT
File typeM3U playlist, ASCII text, with very long lines (4182), with no line terminators Hash48a81110d9f8d2118c1b3a3924c7442f 093ec254e758003f608421686a045bbdf7666a8f fa3b1129066b5686be8c3d392a2a30e988ca7f142cb503e118a8248ff75797ae
GET /hls/trailers/tQs0gRLaweA.mp4/index.m3u8 HTTP/1.1
Host: static.filmskino.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://videotoday.site
DNT: 1
Connection: keep-alive
Referer: https://videotoday.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 20 Jul 2024 21:41:19 GMT
Content-Type: application/vnd.apple.mpegurl
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"3a1794b0-ff7"
Expires: Mon, 28 Oct 2024 21:41:19 GMT
Cache-Control: max-age=8640000
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Origin: *
Content-Encoding: gzip
|
|
0.0.0.0