Report - primeflix.lol/tv/1855/season/1

Report Overview

Submitted URL
primeflix.lol/tv/1855/season/1
IP
76.76.21.21
ASN
#16509 AMAZON-02
Submitted
2024-05-08 04:58:29
Access
public
Website Title
PrimeFlix
Final URL
primeflix.lol/tv/1855/season/1
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
50

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cameesse.net	unknown	2023-10-18	2023-10-18	2024-05-02	6.3 kB	462 kB	139.45.197.242
aistekso.net	unknown	2023-10-16	2023-10-16	2024-04-30	2.8 kB	93 kB	139.45.197.244
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-07	417 B	1.9 kB	142.250.74.106
tzegilo.com	unknown	2022-01-14	2022-01-14	2024-05-07	396 B	20 kB	104.21.11.245
amunfezanttor.com	unknown	2023-03-31	2023-03-31	2024-05-07	999 B	1.1 kB	139.45.197.250
offerimage.com	304078	2019-06-10	2019-06-10	2024-05-07	1.8 kB	62 kB	172.67.22.216
gishejuy.com	unknown	2023-10-25	2023-10-25	2024-05-04	6.0 kB	113 kB	139.45.197.242
track.jefytrack.com	unknown	2023-07-04	2023-09-05	2024-05-07	744 B	2.2 kB	143.204.55.21
primeflix.lol	unknown	unknown	No data	No data	20 kB	1.3 MB	76.76.21.21
image.tmdb.org	17757	2009-09-15	2021-01-09	2024-05-06	6.9 kB	319 kB	169.150.247.40
alwingulla.com	unknown	2023-05-22	2023-05-22	2024-04-30	400 B	27 kB	188.114.96.1
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21	2024-05-07	338 B	863 B	143.204.53.97
securedpeacomm.com	unknown	2023-02-27	2023-02-27	2024-05-03	673 B	886 B	172.67.175.232
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-07	1.0 kB	33 kB	216.58.207.227
externalde.com	unknown	2024-02-28	2024-02-28	2024-05-07	655 B	1.7 kB	188.114.96.1
lkbx.me	117868	2020-11-24	2020-12-14	2024-05-03	496 B	1.4 kB	47.89.248.255
my.rtmark.net	9054	2014-10-29	2015-02-04	2024-05-06	1.0 kB	1.5 kB	139.45.195.8
moonoafy.net	unknown	2024-01-09	2024-01-09	2024-04-30	5.3 kB	160 kB	139.45.197.250
veepteero.com	unknown	2023-05-08	2023-05-09	2024-04-30	1.5 kB	136 kB	139.45.197.242
fleraprt.com	unknown	2022-01-14	2022-01-14	2024-05-07	567 B	483 B	139.45.195.254

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-07	medium	alwingulla.com	Sinkholed
2024-05-07	medium	moonoafy.net	Sinkholed
2024-05-07	medium	veepteero.com	Sinkholed
2024-05-07	medium	cameesse.net	Sinkholed
2024-05-07	medium	moonoafy.net	Sinkholed
2024-05-07	medium	moonoafy.net	Sinkholed
2024-05-07	medium	moonoafy.net	Sinkholed
2024-05-07	medium	moonoafy.net	Sinkholed
2024-05-07	medium	moonoafy.net	Sinkholed
2024-05-07	medium	moonoafy.net	Sinkholed
2024-05-07	medium	cameesse.net	Sinkholed
2024-05-07	medium	cameesse.net	Sinkholed
2024-05-07	medium	amunfezanttor.com	Sinkholed
2024-05-07	medium	aistekso.net	Sinkholed
2024-05-07	medium	amunfezanttor.com	Sinkholed
2024-05-07	medium	moonoafy.net	Sinkholed
2024-05-07	medium	moonoafy.net	Sinkholed
2024-05-07	medium	aistekso.net	Sinkholed
2024-05-07	medium	cameesse.net	Sinkholed
2024-05-07	medium	aistekso.net	Sinkholed
2024-05-07	medium	cameesse.net	Sinkholed
2024-05-07	medium	moonoafy.net	Sinkholed
2024-05-07	medium	moonoafy.net	Sinkholed
2024-05-07	medium	veepteero.com	Sinkholed
2024-05-07	medium	cameesse.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (34)

	URL	Size	First Seen	Last Seen
	primeflix.lol/_next/static/chunks/main-app-89dfec3aa10af464.js	462 B	2024-02-14	2024-05-19
Pretty URL primeflix.lol/_next/static/chunks/main-app-89dfec3aa10af464.js IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-14 10:32:43 Last Seen2024-05-19 09:17:31 Times Seen83 Hash 26e3e343f4ddbeea4deb04831427fc30 7b93dbcdf8e534b0c8e3cc40fc0951e13968e69f 599208d876cc41134ee1402e37c8b37c4f730763f9cfd12d3b05811e5551e869 Loading...

	primeflix.lol/tv/1855/season/1	451 B	2023-03-10	2024-05-19
Pretty URL primeflix.lol/tv/1855/season/1 IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 15:50:13 Last Seen2024-05-19 02:55:44 Times Seen45 Hash 6fbc235591d1a9cacd7e215c7adef618 cc219857409468f46e2910953aa014704afe1891 ab5f83697b19527109b378e937d6685a9eb2a4ad710705e24711be0b7d713940 Loading...

	primeflix.lol/tv/1855/season/1	341 B	2024-02-14	2024-05-18
Pretty URL primeflix.lol/tv/1855/season/1 IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-14 10:32:43 Last Seen2024-05-18 23:54:58 Times Seen23 Hash 782d8cbf0f2c721f206f0a25bd4d5670 a8c1494f46960eb68851cefb7ac54dc6d1c3725f 9872610610d3cc46e73b5eede15d342b90de3416b449afe9876994a474ce751a Loading...

	gishejuy.com/400/7134623	84 kB	2024-05-08	2024-05-08
Pretty URL gishejuy.com/400/7134623 IP 139.45.197.242 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 06:58:37 Last Seen2024-05-08 06:58:38 Times Seen2 Hash 7ea763c0270f531bd0d49edce4333bba cca100a43c3e45ef7cea80ff5dbfd80516efd994 6c2397777ecc20fc66dc5379c65439954cf8bfdd8c219c607cd1b704ad2dd71a Loading...

	cameesse.net/1?z=7134624	43 kB	2024-05-08	2024-05-08
Pretty URL cameesse.net/1?z=7134624 IP 139.45.197.242 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 06:58:37 Last Seen2024-05-08 06:58:38 Times Seen2 Hash 2a179ec4432914ccc2e09513924dedc9 0db44bfd86aff0c92f3a00c044f78edcf3552f13 2365f4ad97327609fc9f1bd05e38e14a7e0a12fa5006e43b5f82efc676f8d99c Loading...

	aistekso.net/401/7134625	91 kB	2024-05-08	2024-05-08
Pretty URL aistekso.net/401/7134625 IP 139.45.197.244 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 06:58:37 Last Seen2024-05-08 06:58:38 Times Seen2 Hash 6656f93cef61fd9865dc65390868dab1 23becd5a438ece0635d71b2f4ac10689e4399ea5 295f0d59f2fd9413fe35d9befe628671289e0dfddcbb120bd384376cf72b731b Loading...

	primeflix.lol/tv/1855/season/1	72 B	2023-10-09	2024-05-19
Pretty URL primeflix.lol/tv/1855/season/1 IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-09 10:35:22 Last Seen2024-05-19 14:58:28 Times Seen1852 Hash b40cdc025a72d0b516bd11d9ef0a1776 9cd34b30af473b8071638d82dcacef0373194aaf 43ef2d3ec8d5b620ec8c5fc2bfc14c3a9836620f75a0a14a0c025ab753cf6f68 Loading...

	primeflix.lol/tv/1855/season/1	667 B	2024-04-24	2024-05-18
Pretty URL primeflix.lol/tv/1855/season/1 IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 21:32:31 Last Seen2024-05-18 23:54:59 Times Seen17 Hash 898d581dc04159a7b892fd2c5677cb90 d93edc4d49987d9b5c62805961297cb68aa53f07 74a0b6ff846cdad6bd2f745f9e5085891f202c36992b7fc78cfed2898f2a0f9f Loading...

	primeflix.lol/_next/static/chunks/webpack-543f49f6e9e187d0.js	3.9 kB	2024-04-24	2024-05-18
Pretty URL primeflix.lol/_next/static/chunks/webpack-543f49f6e9e187d0.js IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 21:32:31 Last Seen2024-05-18 23:54:59 Times Seen27 Hash 072667d8f4d23fdca15aa274bd4dc408 2fa926acc235d16f14bb5fc5b330ec6ee02b5aa1 100c65a9bacdf6707f4012deed36c8226904d7044ac3b5635a0a5c337b4ccbcc Loading...

	primeflix.lol/_next/static/chunks/465-c13a1673cd976902.js	400 kB	2024-04-24	2024-05-18
Pretty URL primeflix.lol/_next/static/chunks/465-c13a1673cd976902.js IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 21:32:32 Last Seen2024-05-18 23:55:00 Times Seen42 Hash 97acbd9cfdfabb64a923d6ee6f86ca33 a184b3f6adf98c59cc4f7286e4b590146dda5c3e b61120e0221eb048d7851bcef315bbd6a9c4232a79c662181e31225f8a7afaea Loading...

	alwingulla.com/88/tag.min.js	81 kB	2024-05-07	2024-05-08
Pretty URL alwingulla.com/88/tag.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 23:04:31 Last Seen2024-05-08 22:45:22 Times Seen19 Hash 43d7cfde39f6a0d86f3dd9dadd585edd 2a8f4de42716406465227c86f37b24b55c1b0233 62c6cba138d72f64de8743bd8bd9cbd22fb9c903aa86a5825f6837d1cc419826 Loading...

	primeflix.lol/_next/static/chunks/8dc5345f-59ab206b15081b67.js	684 B	2024-03-04	2024-05-18
Pretty URL primeflix.lol/_next/static/chunks/8dc5345f-59ab206b15081b67.js IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-04 00:55:05 Last Seen2024-05-18 23:54:59 Times Seen40 Hash 511ba7411ca41c0d40e0556923192ca0 d08930312e8f3c542aa6a8b780a016df8557792f afbe8383bf057257dd46e88c07df6ac29113846d21a0e94d0ad86b417982c980 Loading...

	primeflix.lol/_next/static/chunks/324-9fa5b5bcca8bd748.js	90 kB	2024-04-24	2024-05-18
Pretty URL primeflix.lol/_next/static/chunks/324-9fa5b5bcca8bd748.js IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 21:32:31 Last Seen2024-05-18 23:55:00 Times Seen40 Hash 71ac0955ea9c375c58d5fc63e08e1551 a863d999964b505cff3c0fd6bf1c81941b15dec7 1350e082d5bae184cdf5f175de03ac730eb6de67928dd908e1cab4708725e36b Loading...

	lkbx.me/4KqY7?uid=wepdvdof3c4e1s41j0l79s2c	0 B	2023-03-07	2024-05-19
Pretty URL lkbx.me/4KqY7?uid=wepdvdof3c4e1s41j0l79s2c IP 47.89.248.255 ASN #45102 Alibaba US Technology Co., Ltd. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-19 19:30:52 Times Seen37839588 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	primeflix.lol/tv/1855/season/1	297 B	2024-05-08	2024-05-08
Pretty URL primeflix.lol/tv/1855/season/1 IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-08 06:58:37 Last Seen2024-05-08 06:58:37 Times Seen1 Hash 046d9b4fae3c4358098f4301c8632625 307de0f474ee9bf4e5c69423fe09e19255036dcc b509795f3af74725f7f68612563af5febc924351f65997645442c35ae6497fcc Loading...

	cameesse.net/27/7552beb94fc0bdff7bbb33cad3d1ab0a	413 kB	2024-04-11	2024-05-19
Pretty URL cameesse.net/27/7552beb94fc0bdff7bbb33cad3d1ab0a IP 139.45.197.242 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 13:26:00 Last Seen2024-05-19 16:37:35 Times Seen276 Hash 297cc248309ba835cf13a1f82fd3f938 1e6f51ce257a0ee53e25280dd44092ed33339847 b2ba9d8b2216d22f8f31a594bc22ee21f60e2b539474a650be1e87dea87d5ed7 Loading...

	primeflix.lol/_next/static/chunks/app/layout-7de5d54b9d4be558.js	4.6 kB	2024-04-24	2024-05-18
Pretty URL primeflix.lol/_next/static/chunks/app/layout-7de5d54b9d4be558.js IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 21:32:32 Last Seen2024-05-18 23:54:59 Times Seen28 Hash 81d7e6e58cdabdb50c1d5fd3d8b1995c e6f663c3521af3d4182bed1d297fb949a1685018 76c60ef9a921b193ecac25eeaecef892431027184e90b13031ab15e8e484fd98 Loading...

	primeflix.lol/_next/static/chunks/858-2ee8c30d686ac6a6.js	280 kB	2024-04-24	2024-05-18
Pretty URL primeflix.lol/_next/static/chunks/858-2ee8c30d686ac6a6.js IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 21:32:31 Last Seen2024-05-18 23:55:00 Times Seen40 Hash fa0fc89d352b429a5dbf64140b5a10c7 c59939b9820472cde1c4560438b8b6b801d0648f 9c79b287a161187ffa4d51f6f776701e68c24cb14f5f3408f79ed12370e390e5 Loading...

	tzegilo.com/stattag.js	19 kB	2024-02-10	2024-05-19
Pretty URL tzegilo.com/stattag.js IP 104.21.11.245 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-10 03:00:18 Last Seen2024-05-19 16:37:36 Times Seen1838 Hash 70ebd404c2e1e7bad13998538b56887c 86e57af8ba3cfc2c004da3311835f6b54ba6d848 d71ea61938136a384e4c53c5a7a3c36e68fcc70a68bae691e270987d5d2eb11f Loading...

	primeflix.lol/_next/static/chunks/39209d7c-f3bb05d37c29447d.js	3.0 kB	2024-02-14	2024-05-18
Pretty URL primeflix.lol/_next/static/chunks/39209d7c-f3bb05d37c29447d.js IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-14 10:32:43 Last Seen2024-05-18 23:54:59 Times Seen27 Hash 114bb41ae2ebef4655f7caded2448678 68928fdbde0d1a039d66c0386a55bdd7ab805001 ad82fa5f5b6dd6607291ec44288b6794f8f956b45a85507efe10178fd40b10d3 Loading...

	primeflix.lol/_next/static/chunks/69-c6458cf49e249670.js	113 kB	2024-03-28	2024-05-19
Pretty URL primeflix.lol/_next/static/chunks/69-c6458cf49e249670.js IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 07:06:47 Last Seen2024-05-19 09:17:32 Times Seen54 Hash 0f09430e5361b0b2892a70c436032138 b580ce9182ae5bc908ecc3c41bac4b1ee7de9913 a7ac5c57282e7158016e8aa140e56bf410dcc61dda1cfb6e046631668354aeef Loading...

	primeflix.lol/_next/static/chunks/app/page-35b7cd2e7b3fd8bc.js	9.0 kB	2024-04-24	2024-05-18
Pretty URL primeflix.lol/_next/static/chunks/app/page-35b7cd2e7b3fd8bc.js IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 21:32:32 Last Seen2024-05-18 23:54:59 Times Seen23 Hash 06758a67417c66261af6a64858f47145 5a4e0cd6a92fb5642e8ba2f22e48aacb822c4239 e3931a6bc515bc899a3ccc63fe0109272a218410c59702b7cd6b06f01b846033 Loading...

	moonoafy.net/pfe/current/tag.min.js?z=7134626	15 kB	2024-04-25	2024-05-14
Pretty URL moonoafy.net/pfe/current/tag.min.js?z=7134626 IP 139.45.197.250 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 22:19:47 Last Seen2024-05-14 14:21:41 Times Seen215 Hash ffdd38e0a5a1a47cb341a116a3318e0e 2fd730feff506cf56e14c531e9d89cdea2cca424 7d8e97e9586d3f04c4a2a703692378868e49120c6159d079ae7ed1eca2ca2b5c Loading...

	unknown	90 kB	2024-04-25	2024-05-14
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 22:19:47 Last Seen2024-05-14 14:21:41 Times Seen281 Hash 4caad44ecc6a13eba45b63ed7cf9e387 e67dfe90bebd5447495d8fe962d03e55f6d13071 66f95b5eb4bf3dc3a13643e3e6776b18a2b15e0b881328e2ee012c73e679ad00 Loading...

	primeflix.lol/_next/static/chunks/app/tv/%5Bslug%5D/season/%5Bid%5D/page-3a162fec0d4a5e22.js	4.3 kB	2024-04-24	2024-05-10
Pretty URL primeflix.lol/_next/static/chunks/app/tv/%5Bslug%5D/season/%5Bid%5D/page-3a162fec0d4a5e22.js IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 23:48:40 Last Seen2024-05-10 06:47:39 Times Seen8 Hash a5c2a255dc7fca2f048976fcf6a26e82 dc42792a80825dfc72acd68bb2a261553d2705fd 4ed673340abcaa1dbeeb85194c5815d6baa6d0b4299225d1b0136a86c74f7b10 Loading...

	primeflix.lol/tv/1855/season/1	5.6 kB	2024-05-08	2024-05-08
Pretty URL primeflix.lol/tv/1855/season/1 IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-08 06:58:37 Last Seen2024-05-08 06:58:37 Times Seen1 Hash bf669d570cb142fbe2748ede565b5b9f 3015e8e4da096429d68e02e138dd1dded00bc5f3 c0c78503ba409a688b0bffd89080ddb56b53c3f1b388f6d553afc69fca97e9d6 Loading...

	primeflix.lol/tv/1855/season/1	507 B	2024-04-24	2024-05-10
Pretty URL primeflix.lol/tv/1855/season/1 IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 23:48:41 Last Seen2024-05-10 06:47:38 Times Seen6 Hash 2957430b36ed7f635b77082abf036ced 4f19439c4ac4569fb23713b69d94d84db4ab5602 33defad041d0bb240aeb8d63318075767faa172bee41426e68d741d50209d2e6 Loading...

	primeflix.lol/tv/1855/season/1	2.2 kB	2024-04-24	2024-05-10
Pretty URL primeflix.lol/tv/1855/season/1 IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 23:48:41 Last Seen2024-05-10 06:47:38 Times Seen6 Hash 7abec696f399979002842690994d8c3a f9b08f5adeda255928bc88f4127bcf4b21aa8127 9ca76aeea77d7f8f1d1dfa9c408d66bcf59a031b05a8752698065cec5f336342 Loading...

	primeflix.lol/_next/static/chunks/fd9d1056-764650a9573d5c26.js	172 kB	2024-03-28	2024-05-19
Pretty URL primeflix.lol/_next/static/chunks/fd9d1056-764650a9573d5c26.js IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 07:06:46 Last Seen2024-05-19 09:17:31 Times Seen54 Hash 07bed7eba1dceeeb9c638523e777f6dd 92eb0f91bf2da90ff4ad722ce5cd9417c5587c9a a76c068cf3857b3d68e6a49b85cc7e71ddf0ecdb60dbbf22c5c951e642904201 Loading...

	unknown	26 kB	2023-03-07	2024-05-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:51 Last Seen2024-05-19 12:40:29 Times Seen2122 Hash a912e7afe74b51fdd03b28bf67e7d409 85004dfe087af5a730261c85262661d89b3d2516 706b3882753d8f81cfcf35aa2623303b1b380c8106686a4ad12a1fae23cf4650 Loading...

	primeflix.lol/_next/static/chunks/772-732179aac77444c7.js	70 kB	2024-04-24	2024-05-18
Pretty URL primeflix.lol/_next/static/chunks/772-732179aac77444c7.js IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 21:32:32 Last Seen2024-05-18 23:54:59 Times Seen27 Hash cba312463e4e3a4cff2276b7d79e4d3b bc4c11394c125009ef72feff95a192738f69e16c dc4e5ba477cb4e7520e1e2e962a6e736a2a2e88077b07361951c045c34a53a73 Loading...

	primeflix.lol/tv/1855/season/1	19 kB	2024-05-08	2024-05-08
Pretty URL primeflix.lol/tv/1855/season/1 IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-08 06:58:37 Last Seen2024-05-08 06:58:37 Times Seen1 Hash 34f85e27569fdda7036e0b12102e9f4a 550363f14795c559734110a1f5dd4b1136c494ac 96937fb394ee49735a68624bbb06a67148e5a53ff6d37e24a08c12719b8930fe Loading...

	primeflix.lol/tv/1855/season/1	26 B	2023-10-24	2024-05-19
Pretty URL primeflix.lol/tv/1855/season/1 IP 76.76.21.21 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-24 19:54:03 Last Seen2024-05-19 09:55:29 Times Seen1226 Hash e4ce6b7bead5829b06478c15e7cb358e e23ce537f9242f99c93d0df75e355d143453662f 62889365b3f7e5fb494aea9c5c7210291d0690e82fc2e4ab2044aaef7a8487ee Loading...

		Size	First Seen	Last Seen
	#1 Write - a21417502e666e88270ee5ffcc61046f	51 kB	2024-04-24	2024-05-13
Pretty Observations First Seen2024-04-24 21:32:32 Last Seen2024-05-13 19:37:04 Times Seen20 Hash a21417502e666e88270ee5ffcc61046f a8ba192d623f5f572c788367d34d723fa53336de 2cb31d98de99522ca61d3081936ec3a29bc164fe93d77d2e5540b6d25ecef027 Loading...

HTTP Transactions (96)

URL IP Response Size

primeflix.lol/_next/static/media/9e82d62334b205f4-s.p.woff2

76.76.21.21

200 OK

7.9 kB

URL GET HTTP/2
primeflix.lol/_next/static/media/9e82d62334b205f4-s.p.woff2
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7896, version 1.0
Size
7.9 kB (7896 bytes)
Hash
1c2ea932e7620e3a752301d0e54d3d91
371d31b930b895d8c45757a63e7ae4924106d1d4
244dd57da310b3fe9a789ef87179bb433b8628016354c4ce80896fd7e4e53968

HTTP Headers

GET /_next/static/media/9e82d62334b205f4-s.p.woff2 HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/tv/1855/season/1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1613291
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="9e82d62334b205f4-s.p.woff2"
content-type: font/woff2
date: Wed, 08 May 2024 04:57:55 GMT
etag: "1c2ea932e7620e3a752301d0e54d3d91"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/media/9e82d62334b205f4-s.p.woff2
x-vercel-cache: HIT
x-vercel-id: arn1::p7f7v-1715144275752-d208896f0072
content-length: 7896
X-Firefox-Spdy: h2

primeflix.lol/_next/static/media/eafabf029ad39a43-s.p.woff2

76.76.21.21

200 OK

7.9 kB

URL GET HTTP/2
primeflix.lol/_next/static/media/eafabf029ad39a43-s.p.woff2
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7900, version 1.0
Size
7.9 kB (7900 bytes)
Hash
43751174b6b810eb169101a20d8c26f8
7e48d54b1df1d3f657fc90227590308183ff9ddc
3dc5d0c52428fe1696264907a1054ebbaac07f8cbe45832c105f819c2ae397c0

HTTP Headers

GET /_next/static/media/eafabf029ad39a43-s.p.woff2 HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/tv/1855/season/1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1613291
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="eafabf029ad39a43-s.p.woff2"
content-type: font/woff2
date: Wed, 08 May 2024 04:57:55 GMT
etag: "43751174b6b810eb169101a20d8c26f8"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/media/eafabf029ad39a43-s.p.woff2
x-vercel-cache: HIT
x-vercel-id: arn1::sxggw-1715144275753-bcbcbb92a8e2
content-length: 7900
X-Firefox-Spdy: h2

primeflix.lol/_next/static/media/4c285fdca692ea22-s.p.woff2

76.76.21.21

200 OK

7.8 kB

URL GET HTTP/2
primeflix.lol/_next/static/media/4c285fdca692ea22-s.p.woff2
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7844, version 1.0
Size
7.8 kB (7844 bytes)
Hash
42d3308e3aca8742731f63154187bdd7
69002807427be874f7b46a98f8a611d2c5c5f52b
643e38d8c288a1da34a14a68a5012441929108d50054414ce8cc33fad36a2354

HTTP Headers

GET /_next/static/media/4c285fdca692ea22-s.p.woff2 HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/tv/1855/season/1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1613291
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="4c285fdca692ea22-s.p.woff2"
content-type: font/woff2
date: Wed, 08 May 2024 04:57:55 GMT
etag: "42d3308e3aca8742731f63154187bdd7"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/media/4c285fdca692ea22-s.p.woff2
x-vercel-cache: HIT
x-vercel-id: arn1::n55ps-1715144275749-d4adf51931fb
content-length: 7844
X-Firefox-Spdy: h2

primeflix.lol/_next/static/media/8888a3826f4a3af4-s.p.woff2

76.76.21.21

200 OK

7.7 kB

URL GET HTTP/2
primeflix.lol/_next/static/media/8888a3826f4a3af4-s.p.woff2
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7740, version 1.0
Size
7.7 kB (7740 bytes)
Hash
792477d09826b11d1e5a611162c9797a
bba020c0fd0426079872fdd7929a260b414845cd
289e0afc8be731a86822349e54557296f145926496bd2138db1bac0db77f77a2

HTTP Headers

GET /_next/static/media/8888a3826f4a3af4-s.p.woff2 HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/tv/1855/season/1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1613291
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="8888a3826f4a3af4-s.p.woff2"
content-type: font/woff2
date: Wed, 08 May 2024 04:57:55 GMT
etag: "792477d09826b11d1e5a611162c9797a"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/media/8888a3826f4a3af4-s.p.woff2
x-vercel-cache: HIT
x-vercel-id: arn1::jlt2t-1715144275751-487097d5090c
content-length: 7740
X-Firefox-Spdy: h2

primeflix.lol/_next/static/media/7108afb8b1381ad1-s.p.woff2

76.76.21.21

200 OK

7.5 kB

URL GET HTTP/2
primeflix.lol/_next/static/media/7108afb8b1381ad1-s.p.woff2
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7496, version 1.0
Size
7.5 kB (7496 bytes)
Hash
d5a9cbc34d22ffd5c4eb636dcca02f5d
bdaae7fd3c0796641336aeaf79c59de984f231a4
ba433c0e3e2ccac378976ceb97c0c25dcbc81ec0989a0e111c504000bbf14fd2

HTTP Headers

GET /_next/static/media/7108afb8b1381ad1-s.p.woff2 HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/tv/1855/season/1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1613291
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="7108afb8b1381ad1-s.p.woff2"
content-type: font/woff2
date: Wed, 08 May 2024 04:57:55 GMT
etag: "d5a9cbc34d22ffd5c4eb636dcca02f5d"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/media/7108afb8b1381ad1-s.p.woff2
x-vercel-cache: HIT
x-vercel-id: arn1::rrj9k-1715144275750-839c74230ed8
content-length: 7496
X-Firefox-Spdy: h2

primeflix.lol/_next/static/chunks/main-app-89dfec3aa10af464.js

76.76.21.21

200 OK

462 B

URL GET HTTP/2
primeflix.lol/_next/static/chunks/main-app-89dfec3aa10af464.js
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
ASCII text, with very long lines (462), with no line terminators
Size
462 B (462 bytes)
Hash
26e3e343f4ddbeea4deb04831427fc30
7b93dbcdf8e534b0c8e3cc40fc0951e13968e69f
599208d876cc41134ee1402e37c8b37c4f730763f9cfd12d3b05811e5551e869

HTTP Headers

GET /_next/static/chunks/main-app-89dfec3aa10af464.js HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/tv/1855/season/1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1572674
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="main-app-89dfec3aa10af464.js"
content-type: application/javascript; charset=utf-8
date: Wed, 08 May 2024 04:57:55 GMT
etag: "26e3e343f4ddbeea4deb04831427fc30"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/main-app-89dfec3aa10af464.js
x-vercel-cache: HIT
x-vercel-id: arn1::jlt2t-1715144275769-032e09e0ec0f
content-length: 462
X-Firefox-Spdy: h2

primeflix.lol/_next/static/css/d6bae7cb8463c96e.css

76.76.21.21

200 OK

23 kB

URL GET HTTP/2
primeflix.lol/_next/static/css/d6bae7cb8463c96e.css
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
ASCII text, with very long lines (62078)
Size
23 kB (23144 bytes)
Hash
07a15e1ba3979f1ead3330cc1583c520
67fbddf7f9555f9e74d12408de2d043723b8e58d
b172dc69389816bf77456d1d47c5e4e061233ff5c9e2b80c39124d08ed794daf

HTTP Headers

GET /_next/static/css/d6bae7cb8463c96e.css HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/tv/1855/season/1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 1613290
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="d6bae7cb8463c96e.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Wed, 08 May 2024 04:57:55 GMT
etag: W/"07a15e1ba3979f1ead3330cc1583c520"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/css/d6bae7cb8463c96e.css
x-vercel-cache: HIT
x-vercel-id: arn1::rrj9k-1715144275766-cc1046fd6607
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/kqDickbXlfrpBARvDJFNdqbrVCU.jpg

169.150.247.40

200 OK

19 kB

URL GET HTTP/2
image.tmdb.org/t/p/original/kqDickbXlfrpBARvDJFNdqbrVCU.jpg
IP
169.150.247.40:443
ASN
#60068 Datacamp Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint40:88:A2:12:27:42:DC:4F:28:09:F9:EB:BC:ED:0F:05:3B:F1:D5:BC
ValidityWed, 10 Apr 2024 15:08:25 GMT - Tue, 09 Jul 2024 15:08:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 448x252, components 3
Size
19 kB (18628 bytes)
Hash
d3bf418331d1c79c2b2bf11ab5625e97
914368eaf1d2d832c48369f82a9a817a1af290f7
6c86b507ec56d9fe01c10eda6e432832357457108eb366ee41c0988ff8da52cb

HTTP Headers

GET /t/p/original/kqDickbXlfrpBARvDJFNdqbrVCU.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:55 GMT
content-type: image/jpeg
content-length: 18628
server: BunnyCDN-DE1-1075
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "64708273-48c4"
last-modified: Fri, 26 May 2023 09:57:07 GMT
cdn-storageserver: NY-346
cdn-requestpullsuccess: True
cdn-fileserver: 628
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 09/10/2023 16:29:06
cdn-edgestorageid: 1077
cdn-status: 200
cdn-requestid: e7d6ca3284bde3c655f97d561e6523b2
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/pFIjtvBMYdj0sv8TJqHXffoqYqp.jpg

169.150.247.40

200 OK

22 kB

URL GET HTTP/2
image.tmdb.org/t/p/original/pFIjtvBMYdj0sv8TJqHXffoqYqp.jpg
IP
169.150.247.40:443
ASN
#60068 Datacamp Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint40:88:A2:12:27:42:DC:4F:28:09:F9:EB:BC:ED:0F:05:3B:F1:D5:BC
ValidityWed, 10 Apr 2024 15:08:25 GMT - Tue, 09 Jul 2024 15:08:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 448x252, components 3
Size
22 kB (22312 bytes)
Hash
ae126b777544645ecec9cfd2ddff7f0a
a2bd9d0b35d5afd94eba8f79839dc8150681bd6f
06fcb0ecc8fc97e1fbb7dc70a9fe3be7316eb8a154213829e459c64432de9aae

HTTP Headers

GET /t/p/original/pFIjtvBMYdj0sv8TJqHXffoqYqp.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:55 GMT
content-type: image/jpeg
content-length: 22312
server: BunnyCDN-DE1-1075
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "64708ee0-5728"
last-modified: Fri, 26 May 2023 10:50:08 GMT
cdn-storageserver: NY-267
cdn-requestpullsuccess: True
cdn-fileserver: 628
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 09/09/2023 16:36:23
cdn-edgestorageid: 864
cdn-status: 200
cdn-requestid: 55e40043ca24867dfa8a963393b14bf7
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/hjTBs7oSvsjIv1wcVYhsNX4QdhN.jpg

169.150.247.40

200 OK

17 kB

URL GET HTTP/2
image.tmdb.org/t/p/original/hjTBs7oSvsjIv1wcVYhsNX4QdhN.jpg
IP
169.150.247.40:443
ASN
#60068 Datacamp Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint40:88:A2:12:27:42:DC:4F:28:09:F9:EB:BC:ED:0F:05:3B:F1:D5:BC
ValidityWed, 10 Apr 2024 15:08:25 GMT - Tue, 09 Jul 2024 15:08:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 448x252, components 3
Size
17 kB (17446 bytes)
Hash
347d3090290e7eda75f457644387f73f
989ed931d2e491a9a633ae61e62951b24378c7fa
a570df763e3141d6432c61e144094d4ae695ac23c687c2c566451fd4fa28508a

HTTP Headers

GET /t/p/original/hjTBs7oSvsjIv1wcVYhsNX4QdhN.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:55 GMT
content-type: image/jpeg
content-length: 17446
server: BunnyCDN-DE1-1075
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "64708ee2-4426"
last-modified: Fri, 26 May 2023 10:50:10 GMT
cdn-storageserver: NY-268
cdn-requestpullsuccess: True
cdn-fileserver: 427
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 12/27/2023 03:49:35
cdn-edgestorageid: 756
cdn-status: 200
cdn-requestid: 9d55c7ecbcc607e59c52d6a9a0d2a850
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/qn8VV6w9EymTWHW2sSESJK2e3Bm.jpg

169.150.247.40

200 OK

12 kB

URL GET HTTP/2
image.tmdb.org/t/p/original/qn8VV6w9EymTWHW2sSESJK2e3Bm.jpg
IP
169.150.247.40:443
ASN
#60068 Datacamp Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint40:88:A2:12:27:42:DC:4F:28:09:F9:EB:BC:ED:0F:05:3B:F1:D5:BC
ValidityWed, 10 Apr 2024 15:08:25 GMT - Tue, 09 Jul 2024 15:08:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 448x252, components 3
Size
12 kB (11503 bytes)
Hash
069097570df53acbc25e7ccfa76c1c87
4aa6a6fe0d446a4a93c6162ce5a0428feb99fca7
46003d5c88984c69505f7400e0e16a900a749ef7a01c9b83949828807b8e230e

HTTP Headers

GET /t/p/original/qn8VV6w9EymTWHW2sSESJK2e3Bm.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:55 GMT
content-type: image/jpeg
content-length: 11503
server: BunnyCDN-DE1-1075
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "64708ee7-2cef"
last-modified: Fri, 26 May 2023 10:50:15 GMT
cdn-storageserver: NY-268
cdn-requestpullsuccess: True
cdn-fileserver: 628
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 09/22/2023 14:24:04
cdn-edgestorageid: 1053
cdn-status: 200
cdn-requestid: ec3eebb06b5105a7d88884bb3bc9a529
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/2rQZwwmpWc8DmwyTJT2HvHr80gj.jpg

169.150.247.40

200 OK

15 kB

URL GET HTTP/2
image.tmdb.org/t/p/original/2rQZwwmpWc8DmwyTJT2HvHr80gj.jpg
IP
169.150.247.40:443
ASN
#60068 Datacamp Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint40:88:A2:12:27:42:DC:4F:28:09:F9:EB:BC:ED:0F:05:3B:F1:D5:BC
ValidityWed, 10 Apr 2024 15:08:25 GMT - Tue, 09 Jul 2024 15:08:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 448x252, components 3
Size
15 kB (15373 bytes)
Hash
f332a1a65011d793cb9609163762cb92
362f44c6dedc594692b7c3f01b2c7e0da17d512e
841f65bf950a1728fd0a0ba0aca62069359744977c4307ba5c0585e1c2dfcda5

HTTP Headers

GET /t/p/original/2rQZwwmpWc8DmwyTJT2HvHr80gj.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:55 GMT
content-type: image/jpeg
content-length: 15373
server: BunnyCDN-DE1-1075
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "64708eea-3c0d"
last-modified: Fri, 26 May 2023 10:50:18 GMT
cdn-storageserver: NY-430
cdn-requestpullsuccess: True
cdn-fileserver: 628
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 09/15/2023 21:50:03
cdn-edgestorageid: 863
cdn-status: 200
cdn-requestid: 6896fb237d9b01a6d86277f8731b277b
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/l7XB1sI9vJTknbMhDVuteCnKLub.jpg

169.150.247.40

200 OK

15 kB

URL GET HTTP/2
image.tmdb.org/t/p/original/l7XB1sI9vJTknbMhDVuteCnKLub.jpg
IP
169.150.247.40:443
ASN
#60068 Datacamp Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint40:88:A2:12:27:42:DC:4F:28:09:F9:EB:BC:ED:0F:05:3B:F1:D5:BC
ValidityWed, 10 Apr 2024 15:08:25 GMT - Tue, 09 Jul 2024 15:08:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 448x252, components 3
Size
15 kB (15317 bytes)
Hash
f92670d90132dff990b872e0225e3d45
a3dc6b58d24a6bb37668dc787bffefcb3e20836c
3f0f344049f8f8c3c5d9ce4879d53fda4398c0b99789a6f01815b5eea0fc00d0

HTTP Headers

GET /t/p/original/l7XB1sI9vJTknbMhDVuteCnKLub.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:55 GMT
content-type: image/jpeg
content-length: 15317
server: BunnyCDN-DE1-1075
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "6470826b-3bd5"
last-modified: Fri, 26 May 2023 09:56:59 GMT
cdn-storageserver: NY-267
cdn-requestpullsuccess: True
cdn-fileserver: 268
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 09/09/2023 05:17:34
cdn-edgestorageid: 865
cdn-status: 200
cdn-requestid: 59a8bd2ef632f1a9396ca48c778bbcc9
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/mEFHQ8DZl5pQHrheM94souyu9BZ.jpg

169.150.247.40

200 OK

15 kB

URL GET HTTP/2
image.tmdb.org/t/p/original/mEFHQ8DZl5pQHrheM94souyu9BZ.jpg
IP
169.150.247.40:443
ASN
#60068 Datacamp Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint40:88:A2:12:27:42:DC:4F:28:09:F9:EB:BC:ED:0F:05:3B:F1:D5:BC
ValidityWed, 10 Apr 2024 15:08:25 GMT - Tue, 09 Jul 2024 15:08:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 448x252, components 3
Size
15 kB (14923 bytes)
Hash
0eb52e6f4ce260b1077eb9522b66919a
ae8a134b112c7c0f0e8bed9dfdc49af135cab7e5
f81c8d478d02b8a56eb4c396e20f844a8ffa48ff652ade35337d9048e66fff45

HTTP Headers

GET /t/p/original/mEFHQ8DZl5pQHrheM94souyu9BZ.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:55 GMT
content-type: image/jpeg
content-length: 14923
server: BunnyCDN-DE1-1075
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "64708268-3a4b"
last-modified: Fri, 26 May 2023 09:56:56 GMT
cdn-storageserver: NY-346
cdn-requestpullsuccess: True
cdn-fileserver: 268
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 05/26/2023 11:07:27
cdn-edgestorageid: 722
cdn-status: 200
cdn-requestid: b1917f5add1a45623b725fed31ea2c1d
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

primeflix.lol/tv/1855/season/1

76.76.21.21

200 OK

25 kB

URL User Request GET HTTP/2
primeflix.lol/tv/1855/season/1
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
HTML document, ASCII text, with very long lines (43416)
Size
25 kB (25343 bytes)
Hash
e7ca103c3c4eeeeac7931d176d7e8bc0
6af74156a41f4b6134d2a3f2a2104aa116f48368
293b104bd1127ef4f1132c8bee34639a1dc9bf66934ba312bb16d17338e1f930

HTTP Headers

GET /tv/1855/season/1 HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
age: 0
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
content-encoding: br
content-type: text/html; charset=utf-8
date: Wed, 08 May 2024 04:57:55 GMT
server: Vercel
strict-transport-security: max-age=63072000
vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url
x-matched-path: /tv/[slug]/season/[id]
x-powered-by: Next.js
x-vercel-cache: MISS
x-vercel-execution-region: iad1
x-vercel-id: arn1::iad1::rrj9k-1715144275202-5040613551a5
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/b4kNyOH8ktCHLfUG7wJOVHPeHeQ.jpg

169.150.247.40

200 OK

29 kB

URL GET HTTP/2
image.tmdb.org/t/p/original/b4kNyOH8ktCHLfUG7wJOVHPeHeQ.jpg
IP
169.150.247.40:443
ASN
#60068 Datacamp Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint40:88:A2:12:27:42:DC:4F:28:09:F9:EB:BC:ED:0F:05:3B:F1:D5:BC
ValidityWed, 10 Apr 2024 15:08:25 GMT - Tue, 09 Jul 2024 15:08:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 448x252, components 3
Size
29 kB (29388 bytes)
Hash
5c7e5bb7f68d24f277f6fae013bd87df
34ac594a44bef2ddb1dab54adb0a866b50635630
16dae5440934db8affc8cbeb1e03c1669f9e41b2a22ae1b06023f6176cef55d8

HTTP Headers

GET /t/p/original/b4kNyOH8ktCHLfUG7wJOVHPeHeQ.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:55 GMT
content-type: image/jpeg
content-length: 29388
server: BunnyCDN-DE1-1075
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "64708ef0-72cc"
last-modified: Fri, 26 May 2023 10:50:24 GMT
cdn-storageserver: NY-430
cdn-requestpullsuccess: True
cdn-fileserver: 427
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 09/10/2023 08:41:05
cdn-edgestorageid: 860
cdn-status: 200
cdn-requestid: cbba6fc5c97d0994c923be82f3a7ae42
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/gS99wOETjQqoGLzmMzBBTOOwefg.jpg

169.150.247.40

200 OK

17 kB

URL GET HTTP/2
image.tmdb.org/t/p/original/gS99wOETjQqoGLzmMzBBTOOwefg.jpg
IP
169.150.247.40:443
ASN
#60068 Datacamp Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint40:88:A2:12:27:42:DC:4F:28:09:F9:EB:BC:ED:0F:05:3B:F1:D5:BC
ValidityWed, 10 Apr 2024 15:08:25 GMT - Tue, 09 Jul 2024 15:08:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 448x252, components 3
Size
17 kB (17202 bytes)
Hash
1cb33017c3db65f7956d4a4092ae870b
cae51c0fc19af52eb94fab4fbeb4a081140cd90f
9c426755d974e81a0f8304650ce4a8bc4cceed365055b8182755b246c3e627cb

HTTP Headers

GET /t/p/original/gS99wOETjQqoGLzmMzBBTOOwefg.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:55 GMT
content-type: image/jpeg
content-length: 17202
server: BunnyCDN-DE1-1075
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "64708284-4332"
last-modified: Fri, 26 May 2023 09:57:24 GMT
cdn-storageserver: NY-427
cdn-requestpullsuccess: True
cdn-fileserver: 628
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 05/26/2023 11:07:27
cdn-edgestorageid: 874
cdn-status: 200
cdn-requestid: 48d6be3bcfdb88f51276ec64cfa2934c
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/7Rejv9QC5vgmtJTW1kcX6yC9RKm.jpg

169.150.247.40

200 OK

18 kB

URL GET HTTP/2
image.tmdb.org/t/p/original/7Rejv9QC5vgmtJTW1kcX6yC9RKm.jpg
IP
169.150.247.40:443
ASN
#60068 Datacamp Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint40:88:A2:12:27:42:DC:4F:28:09:F9:EB:BC:ED:0F:05:3B:F1:D5:BC
ValidityWed, 10 Apr 2024 15:08:25 GMT - Tue, 09 Jul 2024 15:08:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 448x252, components 3
Size
18 kB (18374 bytes)
Hash
3f4e1599ab17ec1050d9e69a4c27c0fe
dd12832a12bd0bae619276c8e73d59738d35cf4c
37d71fd1e7e9a1100c115845ad8fa8befc81c8841c82ae91ad331b1e49133903

HTTP Headers

GET /t/p/original/7Rejv9QC5vgmtJTW1kcX6yC9RKm.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:55 GMT
content-type: image/jpeg
content-length: 18374
server: BunnyCDN-DE1-1075
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "64708ee8-47c6"
last-modified: Fri, 26 May 2023 10:50:16 GMT
cdn-storageserver: NY-427
cdn-requestpullsuccess: True
cdn-fileserver: 426
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 03/15/2024 21:01:07
cdn-edgestorageid: 1049
cdn-status: 200
cdn-requestid: 17d6e6d113551a2d475f94d90d8871f6
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/XXgaTyqPsHezmY315ILGh4Ut64.jpg

169.150.247.40

200 OK

19 kB

URL GET HTTP/2
image.tmdb.org/t/p/original/XXgaTyqPsHezmY315ILGh4Ut64.jpg
IP
169.150.247.40:443
ASN
#60068 Datacamp Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint40:88:A2:12:27:42:DC:4F:28:09:F9:EB:BC:ED:0F:05:3B:F1:D5:BC
ValidityWed, 10 Apr 2024 15:08:25 GMT - Tue, 09 Jul 2024 15:08:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 448x252, components 3
Size
19 kB (19359 bytes)
Hash
00dba40a72972c3bab533578e6f9ea14
082fb36f4d8a1709d0974e71fbc4de14aac9a088
eaf627534eba3a6c5765552b1140c3cb87c5cc2f8021921f74f7b80ef5fd7d57

HTTP Headers

GET /t/p/original/XXgaTyqPsHezmY315ILGh4Ut64.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:55 GMT
content-type: image/jpeg
content-length: 19359
server: BunnyCDN-DE1-1075
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "64708ee8-4b9f"
last-modified: Fri, 26 May 2023 10:50:16 GMT
cdn-storageserver: NY-427
cdn-requestpullsuccess: True
cdn-fileserver: 267
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 09/21/2023 17:55:20
cdn-edgestorageid: 1048
cdn-status: 200
cdn-requestid: d4501daf6f9f1a4bd5fa6739f36a7a73
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/6601rSVnCoFwUdBPIQaV63hbcrR.jpg

169.150.247.40

200 OK

17 kB

URL GET HTTP/2
image.tmdb.org/t/p/original/6601rSVnCoFwUdBPIQaV63hbcrR.jpg
IP
169.150.247.40:443
ASN
#60068 Datacamp Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint40:88:A2:12:27:42:DC:4F:28:09:F9:EB:BC:ED:0F:05:3B:F1:D5:BC
ValidityWed, 10 Apr 2024 15:08:25 GMT - Tue, 09 Jul 2024 15:08:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 448x252, components 3
Size
17 kB (17187 bytes)
Hash
1aef3c231df04957a67d89ef3575855a
cbc25104da2a24c98d59a4e9f152fa3583a3a8b3
ae1e3c530be2f83ff0dd34d0ed52142bb20662833d33ca9d820eba2304bf48ef

HTTP Headers

GET /t/p/original/6601rSVnCoFwUdBPIQaV63hbcrR.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:55 GMT
content-type: image/jpeg
content-length: 17187
server: BunnyCDN-DE1-1075
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "64708eed-4323"
last-modified: Fri, 26 May 2023 10:50:21 GMT
cdn-storageserver: NY-430
cdn-requestpullsuccess: True
cdn-fileserver: 628
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 09/09/2023 12:46:02
cdn-edgestorageid: 1077
cdn-status: 200
cdn-requestid: 84a8dbcd5e76becc9b5bc4a2083d0b2e
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/4cllsHwBJNLsLRyAt9R0I2XYq5O.jpg

169.150.247.40

200 OK

40 kB

URL GET HTTP/2
image.tmdb.org/t/p/original/4cllsHwBJNLsLRyAt9R0I2XYq5O.jpg
IP
169.150.247.40:443
ASN
#60068 Datacamp Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint40:88:A2:12:27:42:DC:4F:28:09:F9:EB:BC:ED:0F:05:3B:F1:D5:BC
ValidityWed, 10 Apr 2024 15:08:25 GMT - Tue, 09 Jul 2024 15:08:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 448x252, components 3
Size
40 kB (40282 bytes)
Hash
14b7cc50bf7fb138ad6b01539f253ef1
b044e35db758dd72edb11b612c02c71b7888f25a
5a3c90a163cf184d2aace6bc1084696ec4be5a7220129c4c753cc31d0b93f052

HTTP Headers

GET /t/p/original/4cllsHwBJNLsLRyAt9R0I2XYq5O.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:55 GMT
content-type: image/jpeg
content-length: 40282
server: BunnyCDN-DE1-1075
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "64708eea-9d5a"
last-modified: Fri, 26 May 2023 10:50:18 GMT
cdn-storageserver: NY-266
cdn-requestpullsuccess: True
cdn-fileserver: 426
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 09/13/2023 06:08:30
cdn-edgestorageid: 1053
cdn-status: 200
cdn-requestid: f4679900f79579287137cf86007aaff0
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/upAuq9otlYiNmpBAP3PGjgUuaEx.jpg

169.150.247.40

200 OK

36 kB

URL GET HTTP/2
image.tmdb.org/t/p/original/upAuq9otlYiNmpBAP3PGjgUuaEx.jpg
IP
169.150.247.40:443
ASN
#60068 Datacamp Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint40:88:A2:12:27:42:DC:4F:28:09:F9:EB:BC:ED:0F:05:3B:F1:D5:BC
ValidityWed, 10 Apr 2024 15:08:25 GMT - Tue, 09 Jul 2024 15:08:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x480, components 3
Size
36 kB (36049 bytes)
Hash
1f113ddc9308a3a4bfbe809c0cc69e38
ac6b267250dfd195415005bfd9070426a2998e29
a42bdbe2e7e0e217913772d86179025e566cefcaed80353a0084a0a82802693e

HTTP Headers

GET /t/p/original/upAuq9otlYiNmpBAP3PGjgUuaEx.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:55 GMT
content-type: image/jpeg
content-length: 36049
server: BunnyCDN-DE1-1075
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "628b17e4-8cd1"
last-modified: Mon, 23 May 2022 05:13:08 GMT
cdn-storageserver: NY-346
cdn-requestpullsuccess: True
cdn-fileserver: 354
perma-cache: HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-cachedat: 03/27/2024 21:53:22
cdn-edgestorageid: 1048
cdn-status: 200
cdn-requestid: af6fd4b741d8120a9630dc821c7b1388
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

primeflix.lol/_next/static/chunks/39209d7c-f3bb05d37c29447d.js

76.76.21.21

200 OK

1.9 kB

URL GET HTTP/2
primeflix.lol/_next/static/chunks/39209d7c-f3bb05d37c29447d.js
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
JavaScript source, ASCII text, with very long lines (2971), with no line terminators
Size
1.9 kB (1922 bytes)
Hash
114bb41ae2ebef4655f7caded2448678
68928fdbde0d1a039d66c0386a55bdd7ab805001
ad82fa5f5b6dd6607291ec44288b6794f8f956b45a85507efe10178fd40b10d3

HTTP Headers

GET /_next/static/chunks/39209d7c-f3bb05d37c29447d.js HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/tv/1855/season/1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 1613290
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="39209d7c-f3bb05d37c29447d.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 08 May 2024 04:57:55 GMT
etag: W/"114bb41ae2ebef4655f7caded2448678"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/39209d7c-f3bb05d37c29447d.js
x-vercel-cache: HIT
x-vercel-id: arn1::n55ps-1715144275772-97664da1d7d6
X-Firefox-Spdy: h2

alwingulla.com/88/tag.min.js

188.114.96.1

200 OK

26 kB

URL GET HTTP/2
alwingulla.com/88/tag.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerGoogle Trust Services LLC
Subjectalwingulla.com
FingerprintB6:A3:BD:4F:5E:0D:58:50:07:9D:17:E0:30:97:67:97:9E:23:1A:1C
ValidityTue, 12 Mar 2024 16:48:22 GMT - Mon, 10 Jun 2024 16:48:21 GMT

File type
JavaScript source, ASCII text, with very long lines (65494)
Size
26 kB (25493 bytes)
Hash
43d7cfde39f6a0d86f3dd9dadd585edd
2a8f4de42716406465227c86f37b24b55c1b0233
62c6cba138d72f64de8743bd8bd9cbd22fb9c903aa86a5825f6837d1cc419826

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /88/tag.min.js HTTP/1.1
Host: alwingulla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:55 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: 6994902f34e9acfa6e5d40a15acd2622
cache-control: max-age=86400
last-modified: Tue, 07 May 2024 03:18:41 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Thu, 09 May 2024 03:11:17 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 6398
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FaHgtcXYZ7Wgb7VsZzo9Fj%2BdAUquPyc9BhqtbhnM%2Bm8YPaDNQuUvhO5biGOUJPXsdL6U9%2FGrLLnn7yBEOwj1ducar%2Fq3WdsbjrdpUVkpLuhyIW9ko3mjmI%2BjDF2Gp%2BDDLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806df2ccbea1c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?userId=008056d3ce95404ce5d3b54185f2acf6

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?userId=008056d3ce95404ce5d3b54185f2acf6
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC
ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT

File type
JSON text data
Size
65 B (65 bytes)
Hash
a6fe459ec09cc4101a02ab0899ceab6b
4579a5b66500926a874d47a8d61219537d9da6d0
06001311cb940579647d1b70b1847b9e9bfce45c925ff3fe57ab2faba840919f

HTTP Headers

GET /gid.js?userId=008056d3ce95404ce5d3b54185f2acf6 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:56 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://primeflix.lol
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=008056d3ce95404ce5d3b54185f2acf6; expires=Thu, 08 May 2025 04:57:56 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

moonoafy.net/zone?pub=0&zone_id=7134626&is_mobile=false&domain=primeflix.lol&var=&ymid=&var_3=&tg=0&sw=3.1.504

139.45.197.250

200 OK

880 B

URL GET HTTP/2
moonoafy.net/zone?pub=0&zone_id=7134626&is_mobile=false&domain=primeflix.lol&var=&ymid=&var_3=&tg=0&sw=3.1.504
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectmoonoafy.net
Fingerprint17:AD:95:C9:DA:29:B4:0A:55:33:11:0A:74:DF:AF:4D:05:13:AC:A0
ValidityFri, 29 Mar 2024 05:18:37 GMT - Thu, 27 Jun 2024 05:18:36 GMT

File type
JSON text data
Size
880 B (880 bytes)
Hash
63a204daaa1ae68c38b5a6d8cf0f0758
b8f7b8880d278da896ae5dc2951278b06a877cb3
60eebe5c5150cf279fb6532b36bf2e1126c70bda3a7bec2af2ccbc12e2d3dc51

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /zone?pub=0&zone_id=7134626&is_mobile=false&domain=primeflix.lol&var=&ymid=&var_3=&tg=0&sw=3.1.504 HTTP/1.1
Host: moonoafy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:56 GMT
content-type: application/json; charset=utf-8
content-length: 880
x-trace-id: 12368f3f7a009aaaa389f067eb838eb2
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://primeflix.lol
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

veepteero.com/88/46726

139.45.197.242

200 OK

132 kB

URL GET HTTP/2
veepteero.com/88/46726
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectveepteero.com
Fingerprint13:68:56:48:EC:67:A6:93:BE:E0:36:BC:FA:04:75:6D:6E:D2:C1:91
ValiditySat, 23 Mar 2024 05:18:36 GMT - Fri, 21 Jun 2024 05:18:35 GMT

File type
gzip compressed data, max speed, from Unix
Size
132 kB (132114 bytes)
Hash
8aee098b914159452a5a76b4106eea1e
10daf792e06b352382e7363a4a6ae0a24d39f17d
1e09cb1781187fa4739f1bb1ecfb33b07728ead740319485de3d897e53792186

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /88/46726 HTTP/1.1
Host: veepteero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:56 GMT
content-type: application/json
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://primeflix.lol
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

primeflix.lol/tv/1855/season/1/stream/7?_rsc=1823j

76.76.21.21

200 OK

322 B

URL GET HTTP/2
primeflix.lol/tv/1855/season/1/stream/7?_rsc=1823j
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
ASCII text
Size
322 B (322 bytes)
Hash
70703d259b53a8ed08fc9998e9831f7c
9482b46fb46cc08329fcac5cda5d0a7a76a57834
079adbec8841d619853a013a20f8874da2b7c61c4ffb637d0c05b326c5936fe6

HTTP Headers

GET /tv/1855/season/1/stream/7?_rsc=1823j HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/tv/1855/season/1
RSC: 1
Next-Router-State-Tree: %5B%22%22%2C%7B%22children%22%3A%5B%22tv%22%2C%7B%22children%22%3A%5B%5B%22slug%22%2C%221855%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22season%22%2C%7B%22children%22%3A%5B%5B%22id%22%2C%221%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%5D%7D%5D%7D%5D%7D%5D%7D%5D%7D%2Cnull%2Cnull%2Ctrue%5D
Next-Router-Prefetch: 1
Next-Url: /tv/1855/season/1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
age: 0
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: text/x-component
date: Wed, 08 May 2024 04:57:56 GMT
server: Vercel
strict-transport-security: max-age=63072000
vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url
x-matched-path: /tv/[slug]/season/[id]/stream/[eps].rsc
x-powered-by: Next.js
x-vercel-cache: MISS
x-vercel-execution-region: iad1
x-vercel-id: arn1::iad1::l6m6d-1715144276547-646e1f282a49
X-Firefox-Spdy: h2

cameesse.net/9?z=7134624&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=&hil=1&ist=0&oaid=008056d3ce95404ce5d3b54185f2acf6

139.45.197.242

204 No Content

0 B

URL OPTIONS HTTP/2
cameesse.net/9?z=7134624&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=&hil=1&ist=0&oaid=008056d3ce95404ce5d3b54185f2acf6
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectcameesse.net
Fingerprint40:09:71:B1:17:F8:74:15:9B:3D:0A:95:73:15:74:D6:05:A5:5B:44
ValidityFri, 22 Mar 2024 19:24:17 GMT - Thu, 20 Jun 2024 19:24:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /9?z=7134624&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=&hil=1&ist=0&oaid=008056d3ce95404ce5d3b54185f2acf6 HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://primeflix.lol/
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Wed, 08 May 2024 04:57:57 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://primeflix.lol
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

moonoafy.net/custom

139.45.197.250

200 OK

0 B

URL OPTIONS HTTP/2
moonoafy.net/custom
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectmoonoafy.net
Fingerprint17:AD:95:C9:DA:29:B4:0A:55:33:11:0A:74:DF:AF:4D:05:13:AC:A0
ValidityFri, 29 Mar 2024 05:18:37 GMT - Thu, 27 Jun 2024 05:18:36 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /custom HTTP/1.1
Host: moonoafy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://primeflix.lol/
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:57 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://primeflix.lol
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

moonoafy.net/custom

139.45.197.250

200 OK

0 B

URL OPTIONS HTTP/2
moonoafy.net/custom
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectmoonoafy.net
Fingerprint17:AD:95:C9:DA:29:B4:0A:55:33:11:0A:74:DF:AF:4D:05:13:AC:A0
ValidityFri, 29 Mar 2024 05:18:37 GMT - Thu, 27 Jun 2024 05:18:36 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /custom HTTP/1.1
Host: moonoafy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://primeflix.lol/
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:57 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://primeflix.lol
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

primeflix.lol/sw.js

76.76.21.21

404 Not Found

2.9 kB

URL GET HTTP/2
primeflix.lol/sw.js
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
HTML document, ASCII text, with very long lines (6107)
Size
2.9 kB (2910 bytes)
Hash
08359d2229dc4ec7697a18669b6b18d3
24ef86ba0535ebcf6ff1fda443496e02f647c859
817006a70521a6fedaf5d1f660d23f58c5ab38ca8f3d05b9da93ab0eb9f32ee0

HTTP Headers

GET /sw.js HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/tv/1855/season/1
DNT: 1
Connection: keep-alive
Cookie: prefetchAd_7134622=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
access-control-allow-origin: *
age: 1613053
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="404"
content-encoding: br
content-type: text/html; charset=utf-8
date: Wed, 08 May 2024 04:57:57 GMT
etag: W/"08359d2229dc4ec7697a18669b6b18d3"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /404
x-vercel-cache: HIT
x-vercel-id: arn1::zjrhv-1715144277163-d926c0b4129c
X-Firefox-Spdy: h2

moonoafy.net/custom

139.45.197.250

200 OK

39 B

URL OPTIONS HTTP/2
moonoafy.net/custom
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectmoonoafy.net
Fingerprint17:AD:95:C9:DA:29:B4:0A:55:33:11:0A:74:DF:AF:4D:05:13:AC:A0
ValidityFri, 29 Mar 2024 05:18:37 GMT - Thu, 27 Jun 2024 05:18:36 GMT

File type
JSON text data
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /custom HTTP/1.1
Host: moonoafy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/
Content-Type: application/json
Content-Length: 379
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:57 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: ba674d51bc3f0edbc93306c6997dc0ec
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://primeflix.lol
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

moonoafy.net/custom

139.45.197.250

200 OK

39 B

URL OPTIONS HTTP/2
moonoafy.net/custom
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectmoonoafy.net
Fingerprint17:AD:95:C9:DA:29:B4:0A:55:33:11:0A:74:DF:AF:4D:05:13:AC:A0
ValidityFri, 29 Mar 2024 05:18:37 GMT - Thu, 27 Jun 2024 05:18:36 GMT

File type
JSON text data
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /custom HTTP/1.1
Host: moonoafy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/
Content-Type: application/json
Content-Length: 753
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:57 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: c13842658f94e57c9df70c4079e90fc7
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://primeflix.lol
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

moonoafy.net/pfe/current/tag.min.js?z=7134626

139.45.197.250

200 OK

6.7 kB

URL GET HTTP/2
moonoafy.net/pfe/current/tag.min.js?z=7134626
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectmoonoafy.net
Fingerprint17:AD:95:C9:DA:29:B4:0A:55:33:11:0A:74:DF:AF:4D:05:13:AC:A0
ValidityFri, 29 Mar 2024 05:18:37 GMT - Thu, 27 Jun 2024 05:18:36 GMT

File type
gzip compressed data, max speed, from Unix
Size
6.7 kB (6722 bytes)
Hash
d7eafc545180b913e6b2a5486a1caf83
bee9ee87038ffcdc888aa0515e10a712bd55ee67
27f3d0d572e530936f05a738eb95a06d941975a533311f625b23a630390a9e04

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pfe/current/tag.min.js?z=7134626 HTTP/1.1
Host: moonoafy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:56 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 10:48:52 GMT
etag: W/"662a3514-3914"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

moonoafy.net/event

139.45.197.250

200 OK

94 B

URL POST HTTP/2
moonoafy.net/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectmoonoafy.net
Fingerprint17:AD:95:C9:DA:29:B4:0A:55:33:11:0A:74:DF:AF:4D:05:13:AC:A0
ValidityFri, 29 Mar 2024 05:18:37 GMT - Thu, 27 Jun 2024 05:18:36 GMT

File type
JSON text data
Size
94 B (94 bytes)
Hash
40b8d50c541c4a8643af5af770e06782
d3616c684dfedb4db7c9a5d0bcd0f8d1a1612a1e
d449ed2da92846140fe88a68f8fbdeec5f6e22584c7bc86c0bdfb40fb39c6427

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /event HTTP/1.1
Host: moonoafy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/
Content-Type: application/json
Content-Length: 1637
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:57 GMT
content-type: application/json; charset=utf-8
content-length: 94
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://primeflix.lol
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

cameesse.net/11?rnd=2996207572&z=7134624&b=20830638&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=6Y4CeK2dVOGEbmbyMKTi2pRKMDvhmk__1kXaORVouSCk4NaDTdGrSnfdrtsw53uUeUsFel1xCPnnvfq-PhtHX7G5w1Fn2vHHQXmNy8ujT8D8u2Oy3jgl221PHv2tp27sG7bqmCuBRGiB45yCa2wWYGSuvFsP73Kso_aF0sNMAQXOiRzTmwUfz_EHKkrT1IAvWVGYaowFKeC1VPgb3UTDno-2xLDX5JuXPT4VaiwG2DtXbdqlPxIDmVUAvqor2m7p_DhLuclySrhdTd1RzfSzo9JFhSO0Gvu-JePfmG1G8SR-Ee8_HsJBJmaOZ5_Hb7sTOnBMw8v9Nkp8YLEVQK02tWS2_bO-sTN11GKDYg25sPTZUTKiSGJ_RYRX2ctUhwEsZ5xOtGfoIaBx3kP4YaWVHmli2_73BVgHUz-NYOtqfuMWvMr25acp4cfj66n7KGSuzB7ML8kGFn3Qv17nIaW-Wl_Vnio50AJ8bBehM7nAcQJTydc7Hsky4m5OeJclu26GjwBHFUb_Kc0GmwoAzQqdNlaYjN5T7ttj2ymvEog2xWOlbzZfawEV28OIQo1VT_uWXd4HkIR8QBL7YBBousjqnhIgpmXsEWbwXnm6kSTC8II9hEFO&ruid=6dad8cf4-6c7a-4c04-99de-bd219429d323&subid=811936552616730624&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=&hil=1&ist=0&ot=90

139.45.197.242

200 OK

0 B

URL GET HTTP/2
cameesse.net/11?rnd=2996207572&z=7134624&b=20830638&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=6Y4CeK2dVOGEbmbyMKTi2pRKMDvhmk__1kXaORVouSCk4NaDTdGrSnfdrtsw53uUeUsFel1xCPnnvfq-PhtHX7G5w1Fn2vHHQXmNy8ujT8D8u2Oy3jgl221PHv2tp27sG7bqmCuBRGiB45yCa2wWYGSuvFsP73Kso_aF0sNMAQXOiRzTmwUfz_EHKkrT1IAvWVGYaowFKeC1VPgb3UTDno-2xLDX5JuXPT4VaiwG2DtXbdqlPxIDmVUAvqor2m7p_DhLuclySrhdTd1RzfSzo9JFhSO0Gvu-JePfmG1G8SR-Ee8_HsJBJmaOZ5_Hb7sTOnBMw8v9Nkp8YLEVQK02tWS2_bO-sTN11GKDYg25sPTZUTKiSGJ_RYRX2ctUhwEsZ5xOtGfoIaBx3kP4YaWVHmli2_73BVgHUz-NYOtqfuMWvMr25acp4cfj66n7KGSuzB7ML8kGFn3Qv17nIaW-Wl_Vnio50AJ8bBehM7nAcQJTydc7Hsky4m5OeJclu26GjwBHFUb_Kc0GmwoAzQqdNlaYjN5T7ttj2ymvEog2xWOlbzZfawEV28OIQo1VT_uWXd4HkIR8QBL7YBBousjqnhIgpmXsEWbwXnm6kSTC8II9hEFO&ruid=6dad8cf4-6c7a-4c04-99de-bd219429d323&subid=811936552616730624&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=&hil=1&ist=0&ot=90
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectcameesse.net
Fingerprint40:09:71:B1:17:F8:74:15:9B:3D:0A:95:73:15:74:D6:05:A5:5B:44
ValidityFri, 22 Mar 2024 19:24:17 GMT - Thu, 20 Jun 2024 19:24:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /11?rnd=2996207572&z=7134624&b=20830638&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=6Y4CeK2dVOGEbmbyMKTi2pRKMDvhmk__1kXaORVouSCk4NaDTdGrSnfdrtsw53uUeUsFel1xCPnnvfq-PhtHX7G5w1Fn2vHHQXmNy8ujT8D8u2Oy3jgl221PHv2tp27sG7bqmCuBRGiB45yCa2wWYGSuvFsP73Kso_aF0sNMAQXOiRzTmwUfz_EHKkrT1IAvWVGYaowFKeC1VPgb3UTDno-2xLDX5JuXPT4VaiwG2DtXbdqlPxIDmVUAvqor2m7p_DhLuclySrhdTd1RzfSzo9JFhSO0Gvu-JePfmG1G8SR-Ee8_HsJBJmaOZ5_Hb7sTOnBMw8v9Nkp8YLEVQK02tWS2_bO-sTN11GKDYg25sPTZUTKiSGJ_RYRX2ctUhwEsZ5xOtGfoIaBx3kP4YaWVHmli2_73BVgHUz-NYOtqfuMWvMr25acp4cfj66n7KGSuzB7ML8kGFn3Qv17nIaW-Wl_Vnio50AJ8bBehM7nAcQJTydc7Hsky4m5OeJclu26GjwBHFUb_Kc0GmwoAzQqdNlaYjN5T7ttj2ymvEog2xWOlbzZfawEV28OIQo1VT_uWXd4HkIR8QBL7YBBousjqnhIgpmXsEWbwXnm6kSTC8II9hEFO&ruid=6dad8cf4-6c7a-4c04-99de-bd219429d323&subid=811936552616730624&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=&hil=1&ist=0&ot=90 HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Cookie: scm=1; OAID=008056d3ce95404ce5d3b54185f2acf6; oaidts=1715144276
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:57 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://primeflix.lol
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: fb0a32ebfd58be4459f0284b64929081
access-control-expose-headers: X-Sc
set-cookie: OAID=008056d3ce95404ce5d3b54185f2acf6; expires=Thu, 08 May 2025 04:57:57 GMT; secure; SameSite=None
oaidts=1715144276; expires=Thu, 08 May 2025 04:57:57 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

cameesse.net/121?rnd=2627204433&z=7134624&b=20830638&c=8121703&var=&varid=0&d=https%3A%2F%2Fsecuredpeacomm.com%2Fin%2F%3Ftg%3Dhttps%3A%2F%2Ftrack.jefytrack.com%2F145f6684-c379-407a-a2eb-922622a713e1%26zoneid%3D7134624%26campaignid%3D8121703%26carrier%3D%7Bcarrier%7D%26connectiontype%3D%7Bconnection.type%7D%26isp%3D%7Bisp%7D%26cost%3D%7Bcost%7D%26visitor_id%3D811936552616730624&cln={CELL_NUMBER}&btp=7&rb=6Y4CeK2dVOGEbmbyMKTi2pRKMDvhmk__1kXaORVouSCk4NaDTdGrSnfdrtsw53uUeUsFel1xCPnnvfq-PhtHX7G5w1Fn2vHHQXmNy8ujT8D8u2Oy3jgl221PHv2tp27sG7bqmCuBRGiB45yCa2wWYGSuvFsP73Kso_aF0sNMAQXOiRzTmwUfz_EHKkrT1IAvWVGYaowFKeC1VPgb3UTDno-2xLDX5JuXPT4VaiwG2DtXbdqlPxIDmVUAvqor2m7p_DhLuclySrhdTd1RzfSzo9JFhSO0Gvu-JePfmG1G8SR-Ee8_HsJBJmaOZ5_Hb7sTOnBMw8v9Nkp8YLEVQK02tWS2_bO-sTN11GKDYg25sPTZUTKiSGJ_RYRX2ctUhwEsZ5xOtGfoIaBx3kP4YaWVHmli2_73BVgHUz-NYOtqfuMWvMr25acp4cfj66n7KGSuzB7ML8kGFn3Qv17nIaW-Wl_Vnio50AJ8bBehM7nAcQJTydc7Hsky4m5OeJclu26GjwBHFUb_Kc0GmwoAzQqdNlaYjN5T7ttj2ymvEog2xWOlbzZfawEV28OIQo1VT_uWXd4HkIR8QBL7YBBousjqnhIgpmXsEWbwXnm6kSTC8II9hEFO&bag=ydU9kaAfa6I=&ruid=6dad8cf4-6c7a-4c04-99de-bd219429d323&subid=811936552616730624

139.45.197.242

302 Found

0 B

URL GET HTTP/2
cameesse.net/121?rnd=2627204433&z=7134624&b=20830638&c=8121703&var=&varid=0&d=https%3A%2F%2Fsecuredpeacomm.com%2Fin%2F%3Ftg%3Dhttps%3A%2F%2Ftrack.jefytrack.com%2F145f6684-c379-407a-a2eb-922622a713e1%26zoneid%3D7134624%26campaignid%3D8121703%26carrier%3D%7Bcarrier%7D%26connectiontype%3D%7Bconnection.type%7D%26isp%3D%7Bisp%7D%26cost%3D%7Bcost%7D%26visitor_id%3D811936552616730624&cln={CELL_NUMBER}&btp=7&rb=6Y4CeK2dVOGEbmbyMKTi2pRKMDvhmk__1kXaORVouSCk4NaDTdGrSnfdrtsw53uUeUsFel1xCPnnvfq-PhtHX7G5w1Fn2vHHQXmNy8ujT8D8u2Oy3jgl221PHv2tp27sG7bqmCuBRGiB45yCa2wWYGSuvFsP73Kso_aF0sNMAQXOiRzTmwUfz_EHKkrT1IAvWVGYaowFKeC1VPgb3UTDno-2xLDX5JuXPT4VaiwG2DtXbdqlPxIDmVUAvqor2m7p_DhLuclySrhdTd1RzfSzo9JFhSO0Gvu-JePfmG1G8SR-Ee8_HsJBJmaOZ5_Hb7sTOnBMw8v9Nkp8YLEVQK02tWS2_bO-sTN11GKDYg25sPTZUTKiSGJ_RYRX2ctUhwEsZ5xOtGfoIaBx3kP4YaWVHmli2_73BVgHUz-NYOtqfuMWvMr25acp4cfj66n7KGSuzB7ML8kGFn3Qv17nIaW-Wl_Vnio50AJ8bBehM7nAcQJTydc7Hsky4m5OeJclu26GjwBHFUb_Kc0GmwoAzQqdNlaYjN5T7ttj2ymvEog2xWOlbzZfawEV28OIQo1VT_uWXd4HkIR8QBL7YBBousjqnhIgpmXsEWbwXnm6kSTC8II9hEFO&bag=ydU9kaAfa6I=&ruid=6dad8cf4-6c7a-4c04-99de-bd219429d323&subid=811936552616730624
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectcameesse.net
Fingerprint40:09:71:B1:17:F8:74:15:9B:3D:0A:95:73:15:74:D6:05:A5:5B:44
ValidityFri, 22 Mar 2024 19:24:17 GMT - Thu, 20 Jun 2024 19:24:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /121?rnd=2627204433&z=7134624&b=20830638&c=8121703&var=&varid=0&d=https%3A%2F%2Fsecuredpeacomm.com%2Fin%2F%3Ftg%3Dhttps%3A%2F%2Ftrack.jefytrack.com%2F145f6684-c379-407a-a2eb-922622a713e1%26zoneid%3D7134624%26campaignid%3D8121703%26carrier%3D%7Bcarrier%7D%26connectiontype%3D%7Bconnection.type%7D%26isp%3D%7Bisp%7D%26cost%3D%7Bcost%7D%26visitor_id%3D811936552616730624&cln={CELL_NUMBER}&btp=7&rb=6Y4CeK2dVOGEbmbyMKTi2pRKMDvhmk__1kXaORVouSCk4NaDTdGrSnfdrtsw53uUeUsFel1xCPnnvfq-PhtHX7G5w1Fn2vHHQXmNy8ujT8D8u2Oy3jgl221PHv2tp27sG7bqmCuBRGiB45yCa2wWYGSuvFsP73Kso_aF0sNMAQXOiRzTmwUfz_EHKkrT1IAvWVGYaowFKeC1VPgb3UTDno-2xLDX5JuXPT4VaiwG2DtXbdqlPxIDmVUAvqor2m7p_DhLuclySrhdTd1RzfSzo9JFhSO0Gvu-JePfmG1G8SR-Ee8_HsJBJmaOZ5_Hb7sTOnBMw8v9Nkp8YLEVQK02tWS2_bO-sTN11GKDYg25sPTZUTKiSGJ_RYRX2ctUhwEsZ5xOtGfoIaBx3kP4YaWVHmli2_73BVgHUz-NYOtqfuMWvMr25acp4cfj66n7KGSuzB7ML8kGFn3Qv17nIaW-Wl_Vnio50AJ8bBehM7nAcQJTydc7Hsky4m5OeJclu26GjwBHFUb_Kc0GmwoAzQqdNlaYjN5T7ttj2ymvEog2xWOlbzZfawEV28OIQo1VT_uWXd4HkIR8QBL7YBBousjqnhIgpmXsEWbwXnm6kSTC8II9hEFO&bag=ydU9kaAfa6I=&ruid=6dad8cf4-6c7a-4c04-99de-bd219429d323&subid=811936552616730624 HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: scm=1; OAID=008056d3ce95404ce5d3b54185f2acf6; oaidts=1715144276
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
server: nginx
date: Wed, 08 May 2024 04:57:57 GMT
content-length: 0
location: https://securedpeacomm.com/in/?tg=https://track.jefytrack.com/145f6684-c379-407a-a2eb-922622a713e1&zoneid=7134624&campaignid=8121703&carrier={carrier}&connectiontype={connection.type}&isp={isp}&cost=&visitor_id=811936552616730624
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 2785c94a028add58b41fd6f41658c9e3
access-control-expose-headers: X-Sc
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

0 B

URL OPTIONS HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA
ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://primeflix.lol/
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:57 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://primeflix.lol
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

aistekso.net/500/7134625?excludes=&oaid=008056d3ce95404ce5d3b54185f2acf6&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0

139.45.197.244

200 OK

0 B

URL GET HTTP/2
aistekso.net/500/7134625?excludes=&oaid=008056d3ce95404ce5d3b54185f2acf6&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectaistekso.net
Fingerprint3E:A5:CE:35:F4:D9:45:6B:A1:3B:2E:9C:B3:9E:78:4D:8A:4B:51:BB
ValiditySun, 24 Mar 2024 05:08:27 GMT - Sat, 22 Jun 2024 05:08:26 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /500/7134625?excludes=&oaid=008056d3ce95404ce5d3b54185f2acf6&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 HTTP/1.1
Host: aistekso.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://primeflix.lol/
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:57 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://primeflix.lol
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=e49d7467bcfc4037b145277497195cb8&zoneId=7134626&checkDuplicate=true&ymid=&var=&source=pusher

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?pub=0&userId=e49d7467bcfc4037b145277497195cb8&zoneId=7134626&checkDuplicate=true&ymid=&var=&source=pusher
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC
ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT

File type
JSON text data
Size
65 B (65 bytes)
Hash
a6fe459ec09cc4101a02ab0899ceab6b
4579a5b66500926a874d47a8d61219537d9da6d0
06001311cb940579647d1b70b1847b9e9bfce45c925ff3fe57ab2faba840919f

HTTP Headers

GET /gid.js?pub=0&userId=e49d7467bcfc4037b145277497195cb8&zoneId=7134626&checkDuplicate=true&ymid=&var=&source=pusher HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Cookie: ID=008056d3ce95404ce5d3b54185f2acf6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:57 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://primeflix.lol
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=008056d3ce95404ce5d3b54185f2acf6; expires=Thu, 08 May 2025 04:57:57 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

amunfezanttor.com/event

139.45.197.250

200 OK

94 B

URL OPTIONS HTTP/2
amunfezanttor.com/event
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectamunfezanttor.com
FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA
ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT

File type
JSON text data
Size
94 B (94 bytes)
Hash
30e1b8b9299ae9abb766f535763baeba
b4f00a713124a567654b33b6bd16784d81ad6796
aba5eaa12581bece0ad1fcc1c3c4cf008d27c06f7e0acf37b8c20eae8e484a70

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/
Content-Type: application/json
Content-Length: 514
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:57 GMT
content-type: application/json; charset=utf-8
content-length: 94
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://primeflix.lol
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

primeflix.lol/_next/static/chunks/69-c6458cf49e249670.js

76.76.21.21

200 OK

30 kB

URL GET HTTP/2
primeflix.lol/_next/static/chunks/69-c6458cf49e249670.js
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
30 kB (30512 bytes)
Hash
0f09430e5361b0b2892a70c436032138
b580ce9182ae5bc908ecc3c41bac4b1ee7de9913
a7ac5c57282e7158016e8aa140e56bf410dcc61dda1cfb6e046631668354aeef

HTTP Headers

GET /_next/static/chunks/69-c6458cf49e249670.js HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/tv/1855/season/1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 1613290
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="69-c6458cf49e249670.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 08 May 2024 04:57:55 GMT
etag: W/"0f09430e5361b0b2892a70c436032138"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/69-c6458cf49e249670.js
x-vercel-cache: HIT
x-vercel-id: arn1::n55ps-1715144275768-8ec97b081e18
X-Firefox-Spdy: h2

offerimage.com/www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg

172.67.22.216

200 OK

17 kB

URL GET HTTP/2
offerimage.com/www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg
IP
172.67.22.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerGoogle Trust Services LLC
Subjectofferimage.com
Fingerprint5C:87:DE:3A:1B:66:15:11:B1:75:B6:AC:AF:F9:A6:EF:5E:7F:80:72
ValidityFri, 05 Apr 2024 23:50:04 GMT - Thu, 04 Jul 2024 23:50:03 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3
Size
17 kB (17173 bytes)
Hash
9c6355bcf96815c755fbba83f9fd8f64
ce698b45fb51ef1494f80f432b7aff0985247724
2cd74e866757767cd5c88d066a0bc057aded1e6c07171e091dd87f56ffd4a906

HTTP Headers

GET /www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:57 GMT
content-type: image/jpeg
content-length: 17173
cache-control: max-age=86400
cf-bgj: h2pri
etag: "642af881-4315"
expires: Wed, 08 May 2024 20:15:57 GMT
last-modified: Mon, 03 Apr 2023 16:02:09 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 31320
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806df3589f856c6-OSL
X-Firefox-Spdy: h2

primeflix.lol/tv/1855/season/1/stream/9?_rsc=1823j

76.76.21.21

200 OK

255 B

URL GET HTTP/2
primeflix.lol/tv/1855/season/1/stream/9?_rsc=1823j
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
gzip compressed data, from Unix
Size
255 B (255 bytes)
Hash
feb9225455ef367d392f68d17e3ec04c
879554e0592d0140181a55316c0acdec4ad5a59e
1d451d0d4a6d68b1254f26c81a09efc74dcd5d1da1acf5f225de96f38f74689d

HTTP Headers

GET /tv/1855/season/1/stream/9?_rsc=1823j HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/tv/1855/season/1
RSC: 1
Next-Router-State-Tree: %5B%22%22%2C%7B%22children%22%3A%5B%22tv%22%2C%7B%22children%22%3A%5B%5B%22slug%22%2C%221855%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22season%22%2C%7B%22children%22%3A%5B%5B%22id%22%2C%221%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%5D%7D%5D%7D%5D%7D%5D%7D%5D%7D%2Cnull%2Cnull%2Ctrue%5D
Next-Router-Prefetch: 1
Next-Url: /tv/1855/season/1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
age: 0
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: text/x-component
date: Wed, 08 May 2024 04:57:56 GMT
server: Vercel
strict-transport-security: max-age=63072000
vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url
x-matched-path: /tv/[slug]/season/[id]/stream/[eps].rsc
x-powered-by: Next.js
x-vercel-cache: MISS
x-vercel-execution-region: iad1
x-vercel-id: arn1::iad1::m46f2-1715144276548-5d320d12f771
X-Firefox-Spdy: h2

moonoafy.net/custom

139.45.197.250

200 OK

0 B

URL OPTIONS HTTP/2
moonoafy.net/custom
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectmoonoafy.net
Fingerprint17:AD:95:C9:DA:29:B4:0A:55:33:11:0A:74:DF:AF:4D:05:13:AC:A0
ValidityFri, 29 Mar 2024 05:18:37 GMT - Thu, 27 Jun 2024 05:18:36 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /custom HTTP/1.1
Host: moonoafy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://primeflix.lol/
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:57 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://primeflix.lol
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

moonoafy.net/custom

139.45.197.250

200 OK

39 B

URL OPTIONS HTTP/2
moonoafy.net/custom
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectmoonoafy.net
Fingerprint17:AD:95:C9:DA:29:B4:0A:55:33:11:0A:74:DF:AF:4D:05:13:AC:A0
ValidityFri, 29 Mar 2024 05:18:37 GMT - Thu, 27 Jun 2024 05:18:36 GMT

File type
JSON text data
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /custom HTTP/1.1
Host: moonoafy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/
Content-Type: application/json
Content-Length: 376
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:57 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 26065feb4551703b952a9b0c6cac34fa
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://primeflix.lol
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ocsp.r2m03.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
c86b893f8f4679f10b3fb6bfcf7c7a02
5759ae3ee9719f084e87eed5d78e8374970dd884
565c57469cbaf3baecf7452b5bda9dc78d1818a0abf5fe961c7de0cbf517c702

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Wed, 08 May 2024 04:57:57 GMT
Server: ECAcc (amb/6BDA)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lVluvAZWyKBdkG1hmmP4KDFv2vkvJEZgH_3zrE7X-zl_IBjqdZjFAg==

securedpeacomm.com/in/?tg=https://track.jefytrack.com/145f6684-c379-407a-a2eb-922622a713e1&zoneid=7134624&campaignid=8121703&carrier={carrier}&connectiontype={connection.type}&isp={isp}&cost=&visitor_id=811936552616730624

172.67.175.232

302 Found

0 B

URL GET HTTP/2
securedpeacomm.com/in/?tg=https://track.jefytrack.com/145f6684-c379-407a-a2eb-922622a713e1&zoneid=7134624&campaignid=8121703&carrier={carrier}&connectiontype={connection.type}&isp={isp}&cost=&visitor_id=811936552616730624
IP
172.67.175.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerGoogle Trust Services LLC
Subjectsecuredpeacomm.com
FingerprintE2:58:9B:FC:54:26:CA:CC:89:05:0D:28:D6:2E:28:9E:39:7E:5F:D6
ValidityMon, 15 Apr 2024 19:27:34 GMT - Sun, 14 Jul 2024 19:27:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /in/?tg=https://track.jefytrack.com/145f6684-c379-407a-a2eb-922622a713e1&zoneid=7134624&campaignid=8121703&carrier={carrier}&connectiontype={connection.type}&isp={isp}&cost=&visitor_id=811936552616730624 HTTP/1.1
Host: securedpeacomm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Wed, 08 May 2024 04:57:57 GMT
content-type: text/html; charset=UTF-8
location: https://track.jefytrack.com/145f6684-c379-407a-a2eb-922622a713e1?zoneid=7134624&campaignid=8121703&carrier=%7Bcarrier%7D&connectiontype=%7Bconnection.type%7D&isp=%7Bisp%7D&cost=&visitor_id=811936552616730624&ctrl_fetch_dest=iframe&ctrl_id=663b06558c6a0714794649&ctrl_ts=1715144277.5751&ctrl_ab=burp
referrer-policy: no-referrer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kqP8K6ErZkG0HYQRbkOQAnS3xYGEGCuToBLiRWlsvkeVFkmdfTbH18oq2lrEZGdgnYeuZdEaev56ia1lASuAAZiRPMuE6gElphnJwlZQ7cei5zfILKivfCYCV9U6bVHRAIgeu%2Fo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8806df354d0a56a5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

gishejuy.com/impression/qHSr0as5IcQJNX9P8jQc7btkNQFZPmm4LO-5Ta65UlQO1VUAhmhslf26fbthvBaaRLg7slAX0qb6Awgc3pM1eyK5V2zyLaiKbKsjYzJh_VhAydfLAlagsXMXu8LvO81iRf-ZvVxlxzIr80dImSygJ6UviqcIitczV5LaVQth7Vl_rzB0JQ7GfCGyEMg9h40iXlViyvvISOXPcuJB2LNKUarsCsVEslpI5NJNDGvryjlQVfJ7sX7S9tAFU8Pl5I-LpCf_y98xvKJG5fpm2B4A1lMrO39K0bqEpEXVk5tJAHzX4vyazwUNw123D3lN2yOtkynvHwsHUcV78X62NtXAVBXaVQN9UNtmCDbztWnNXtUAxGTo5qeD5i1mNWVgRL01480DmrAehmLhJ1kgfTfkGgDOs8Bku51vckBkyIqqObkYdjz-8V-MRLHZ9FV2vwH8taDK3u9oPUAfiSE0bMPoP8pDzapnmKONrfY1dQE0u66W9TAD1naoQtpJOjK0X5OX5SKHkM67JJlpHH52GEnU2zn0Wgbo1pfHR4MAq3rilq1az9aNY1r5MMWLP6zoyCPtr_lvQg32ysMqArMfYljuaYv-s_fWO_Dx95aGMgw3pfkP1nR8xwQkKTmv8dRwYo-qOA1rrDuK6f4xC42fU7BrbpzJ3UDCizAieHoSYP9TmOAtJ3EQjeY1TGkMEzsAP3RNdEsw677Sl7YoRz3FwpywWY-PBBBF1MVr1OIljYwdoolBuAXk1PTJvCZQYPmfPPt85VL_T7jxt-UXDM8P8cpEQ9cXmFcAnOdxo853pEvyquWmUQKPyOgKG6RpYZE=?_z=7134623&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0

139.45.197.242

200 OK

43 B

URL GET HTTP/2
gishejuy.com/impression/qHSr0as5IcQJNX9P8jQc7btkNQFZPmm4LO-5Ta65UlQO1VUAhmhslf26fbthvBaaRLg7slAX0qb6Awgc3pM1eyK5V2zyLaiKbKsjYzJh_VhAydfLAlagsXMXu8LvO81iRf-ZvVxlxzIr80dImSygJ6UviqcIitczV5LaVQth7Vl_rzB0JQ7GfCGyEMg9h40iXlViyvvISOXPcuJB2LNKUarsCsVEslpI5NJNDGvryjlQVfJ7sX7S9tAFU8Pl5I-LpCf_y98xvKJG5fpm2B4A1lMrO39K0bqEpEXVk5tJAHzX4vyazwUNw123D3lN2yOtkynvHwsHUcV78X62NtXAVBXaVQN9UNtmCDbztWnNXtUAxGTo5qeD5i1mNWVgRL01480DmrAehmLhJ1kgfTfkGgDOs8Bku51vckBkyIqqObkYdjz-8V-MRLHZ9FV2vwH8taDK3u9oPUAfiSE0bMPoP8pDzapnmKONrfY1dQE0u66W9TAD1naoQtpJOjK0X5OX5SKHkM67JJlpHH52GEnU2zn0Wgbo1pfHR4MAq3rilq1az9aNY1r5MMWLP6zoyCPtr_lvQg32ysMqArMfYljuaYv-s_fWO_Dx95aGMgw3pfkP1nR8xwQkKTmv8dRwYo-qOA1rrDuK6f4xC42fU7BrbpzJ3UDCizAieHoSYP9TmOAtJ3EQjeY1TGkMEzsAP3RNdEsw677Sl7YoRz3FwpywWY-PBBBF1MVr1OIljYwdoolBuAXk1PTJvCZQYPmfPPt85VL_T7jxt-UXDM8P8cpEQ9cXmFcAnOdxo853pEvyquWmUQKPyOgKG6RpYZE=?_z=7134623&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectgishejuy.com
Fingerprint0E:1A:AC:78:15:75:C8:D7:77:E9:9F:1E:8F:A6:05:8C:F6:CA:AC:80
ValidityTue, 02 Apr 2024 05:15:48 GMT - Mon, 01 Jul 2024 05:15:47 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

HTTP Headers

GET /impression/qHSr0as5IcQJNX9P8jQc7btkNQFZPmm4LO-5Ta65UlQO1VUAhmhslf26fbthvBaaRLg7slAX0qb6Awgc3pM1eyK5V2zyLaiKbKsjYzJh_VhAydfLAlagsXMXu8LvO81iRf-ZvVxlxzIr80dImSygJ6UviqcIitczV5LaVQth7Vl_rzB0JQ7GfCGyEMg9h40iXlViyvvISOXPcuJB2LNKUarsCsVEslpI5NJNDGvryjlQVfJ7sX7S9tAFU8Pl5I-LpCf_y98xvKJG5fpm2B4A1lMrO39K0bqEpEXVk5tJAHzX4vyazwUNw123D3lN2yOtkynvHwsHUcV78X62NtXAVBXaVQN9UNtmCDbztWnNXtUAxGTo5qeD5i1mNWVgRL01480DmrAehmLhJ1kgfTfkGgDOs8Bku51vckBkyIqqObkYdjz-8V-MRLHZ9FV2vwH8taDK3u9oPUAfiSE0bMPoP8pDzapnmKONrfY1dQE0u66W9TAD1naoQtpJOjK0X5OX5SKHkM67JJlpHH52GEnU2zn0Wgbo1pfHR4MAq3rilq1az9aNY1r5MMWLP6zoyCPtr_lvQg32ysMqArMfYljuaYv-s_fWO_Dx95aGMgw3pfkP1nR8xwQkKTmv8dRwYo-qOA1rrDuK6f4xC42fU7BrbpzJ3UDCizAieHoSYP9TmOAtJ3EQjeY1TGkMEzsAP3RNdEsw677Sl7YoRz3FwpywWY-PBBBF1MVr1OIljYwdoolBuAXk1PTJvCZQYPmfPPt85VL_T7jxt-UXDM8P8cpEQ9cXmFcAnOdxo853pEvyquWmUQKPyOgKG6RpYZE=?_z=7134623&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 HTTP/1.1
Host: gishejuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Cookie: OAID=008056d3ce95404ce5d3b54185f2acf6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:58:01 GMT
content-type: image/gif
content-length: 43
x-trace-id: c33b1e6a597e782a0406045a232412f6
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

aistekso.net/impression/jC6KuRKyLdc7qkRUvyxWgvbOc-fAFKyzkpYgUAoZ3YdztqlGhNKnmes7vEVQx0TjV58FEJWVUXlTyEn2yHYpIuRyGeYc7yGpq7tOsm8rnpDGuKNVDkNf5dh_ykSEwSoCn4jTkKeGcogYXy9Alvg3WWJwu0or-qPVb9PDyS10exfrPkZyURVyYExxT39HF3Z3nTiFgGH_StbzQLuX1Xf4cF7qGLhmc4hdNqaAlVvqJ9iWwGR6rqE4XUO33iFLIWwLkzMIEXH2peMyL4feV3k9lNPhip6E2nILmgXJfzLaOS7g_nzT5k9BGwi5Gf_b9_UPGs_kodei0NJNQF0jcowjW6IsqQi_SV--Fqey-eFewVQe6JbOXO8TYdJ-C7D9_9YeYBcNGRVtM9sCohD0-jmaWfRAtgl60bcAH4zV0wshBFoyE2MzBIU9p26Ad27m7w3Au-dC4p6IMozgWQfIp3I3RaaQsMGtJ6AjLD4pZjFduIA6aRVwXl_gzeeDw1JA__l2514QQuhpFB-HoVkmGLKvLIZ5JMNWaOTrLIT3IOON8lZs5DwB1VFnoxCYkf2P8wyoSDHXWZPgWcVkbcSQQBXzyMj9ATj-2bec2g_uHGT4J2InRNgtqkMCJ6ZzAl3rvU3StkWmw3BUMMVzZsNYd5t9Pk2QkHcDJU0rqx3RpDJRVsHUGog2e4M7Vt7LbUTvUsAAdw_WXMdl-SzLfVfjZNRROVQjO52A5fexsgQzX29J5VcP1tsyG9yGF0pSbHvynTws0_I1Ijr8L15xp_wXIQ_OOobKMI4sMQ7JgOmaoczFU804TZ2V03epP_IvP24=?_z=7134625&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0

139.45.197.244

200 OK

43 B

URL GET HTTP/2
aistekso.net/impression/jC6KuRKyLdc7qkRUvyxWgvbOc-fAFKyzkpYgUAoZ3YdztqlGhNKnmes7vEVQx0TjV58FEJWVUXlTyEn2yHYpIuRyGeYc7yGpq7tOsm8rnpDGuKNVDkNf5dh_ykSEwSoCn4jTkKeGcogYXy9Alvg3WWJwu0or-qPVb9PDyS10exfrPkZyURVyYExxT39HF3Z3nTiFgGH_StbzQLuX1Xf4cF7qGLhmc4hdNqaAlVvqJ9iWwGR6rqE4XUO33iFLIWwLkzMIEXH2peMyL4feV3k9lNPhip6E2nILmgXJfzLaOS7g_nzT5k9BGwi5Gf_b9_UPGs_kodei0NJNQF0jcowjW6IsqQi_SV--Fqey-eFewVQe6JbOXO8TYdJ-C7D9_9YeYBcNGRVtM9sCohD0-jmaWfRAtgl60bcAH4zV0wshBFoyE2MzBIU9p26Ad27m7w3Au-dC4p6IMozgWQfIp3I3RaaQsMGtJ6AjLD4pZjFduIA6aRVwXl_gzeeDw1JA__l2514QQuhpFB-HoVkmGLKvLIZ5JMNWaOTrLIT3IOON8lZs5DwB1VFnoxCYkf2P8wyoSDHXWZPgWcVkbcSQQBXzyMj9ATj-2bec2g_uHGT4J2InRNgtqkMCJ6ZzAl3rvU3StkWmw3BUMMVzZsNYd5t9Pk2QkHcDJU0rqx3RpDJRVsHUGog2e4M7Vt7LbUTvUsAAdw_WXMdl-SzLfVfjZNRROVQjO52A5fexsgQzX29J5VcP1tsyG9yGF0pSbHvynTws0_I1Ijr8L15xp_wXIQ_OOobKMI4sMQ7JgOmaoczFU804TZ2V03epP_IvP24=?_z=7134625&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectaistekso.net
Fingerprint3E:A5:CE:35:F4:D9:45:6B:A1:3B:2E:9C:B3:9E:78:4D:8A:4B:51:BB
ValiditySun, 24 Mar 2024 05:08:27 GMT - Sat, 22 Jun 2024 05:08:26 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impression/jC6KuRKyLdc7qkRUvyxWgvbOc-fAFKyzkpYgUAoZ3YdztqlGhNKnmes7vEVQx0TjV58FEJWVUXlTyEn2yHYpIuRyGeYc7yGpq7tOsm8rnpDGuKNVDkNf5dh_ykSEwSoCn4jTkKeGcogYXy9Alvg3WWJwu0or-qPVb9PDyS10exfrPkZyURVyYExxT39HF3Z3nTiFgGH_StbzQLuX1Xf4cF7qGLhmc4hdNqaAlVvqJ9iWwGR6rqE4XUO33iFLIWwLkzMIEXH2peMyL4feV3k9lNPhip6E2nILmgXJfzLaOS7g_nzT5k9BGwi5Gf_b9_UPGs_kodei0NJNQF0jcowjW6IsqQi_SV--Fqey-eFewVQe6JbOXO8TYdJ-C7D9_9YeYBcNGRVtM9sCohD0-jmaWfRAtgl60bcAH4zV0wshBFoyE2MzBIU9p26Ad27m7w3Au-dC4p6IMozgWQfIp3I3RaaQsMGtJ6AjLD4pZjFduIA6aRVwXl_gzeeDw1JA__l2514QQuhpFB-HoVkmGLKvLIZ5JMNWaOTrLIT3IOON8lZs5DwB1VFnoxCYkf2P8wyoSDHXWZPgWcVkbcSQQBXzyMj9ATj-2bec2g_uHGT4J2InRNgtqkMCJ6ZzAl3rvU3StkWmw3BUMMVzZsNYd5t9Pk2QkHcDJU0rqx3RpDJRVsHUGog2e4M7Vt7LbUTvUsAAdw_WXMdl-SzLfVfjZNRROVQjO52A5fexsgQzX29J5VcP1tsyG9yGF0pSbHvynTws0_I1Ijr8L15xp_wXIQ_OOobKMI4sMQ7JgOmaoczFU804TZ2V03epP_IvP24=?_z=7134625&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 HTTP/1.1
Host: aistekso.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Cookie: OAID=008056d3ce95404ce5d3b54185f2acf6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:58:02 GMT
content-type: image/gif
content-length: 43
x-trace-id: 8693e40ee7c867632cb4f02e69d3ee0f
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

gishejuy.com/500/7134623?excludes=19845928&oaid=008056d3ce95404ce5d3b54185f2acf6&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0

139.45.197.242

200 OK

0 B

URL OPTIONS HTTP/2
gishejuy.com/500/7134623?excludes=19845928&oaid=008056d3ce95404ce5d3b54185f2acf6&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectgishejuy.com
Fingerprint0E:1A:AC:78:15:75:C8:D7:77:E9:9F:1E:8F:A6:05:8C:F6:CA:AC:80
ValidityTue, 02 Apr 2024 05:15:48 GMT - Mon, 01 Jul 2024 05:15:47 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /500/7134623?excludes=19845928&oaid=008056d3ce95404ce5d3b54185f2acf6&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 HTTP/1.1
Host: gishejuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://primeflix.lol/
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:58:02 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://primeflix.lol
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2

offerimage.com/www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg

172.67.22.216

200 OK

17 kB

URL GET HTTP/2
offerimage.com/www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg
IP
172.67.22.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerGoogle Trust Services LLC
Subjectofferimage.com
Fingerprint5C:87:DE:3A:1B:66:15:11:B1:75:B6:AC:AF:F9:A6:EF:5E:7F:80:72
ValidityFri, 05 Apr 2024 23:50:04 GMT - Thu, 04 Jul 2024 23:50:03 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3
Size
17 kB (17173 bytes)
Hash
9c6355bcf96815c755fbba83f9fd8f64
ce698b45fb51ef1494f80f432b7aff0985247724
2cd74e866757767cd5c88d066a0bc057aded1e6c07171e091dd87f56ffd4a906

HTTP Headers

GET /www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 04:58:02 GMT
content-type: image/jpeg
content-length: 17173
cache-control: max-age=86400
cf-bgj: h2pri
etag: "642af881-4315"
expires: Wed, 08 May 2024 20:15:57 GMT
last-modified: Mon, 03 Apr 2023 16:02:09 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 31325
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806df53894656c6-OSL
X-Firefox-Spdy: h2

offerimage.com/www/images/99f0e3f787fce3e2bb1c9e7e78ad524e.jpg

172.67.22.216

200 OK

8.9 kB

URL GET HTTP/2
offerimage.com/www/images/99f0e3f787fce3e2bb1c9e7e78ad524e.jpg
IP
172.67.22.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerGoogle Trust Services LLC
Subjectofferimage.com
Fingerprint5C:87:DE:3A:1B:66:15:11:B1:75:B6:AC:AF:F9:A6:EF:5E:7F:80:72
ValidityFri, 05 Apr 2024 23:50:04 GMT - Thu, 04 Jul 2024 23:50:03 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3
Size
8.9 kB (8895 bytes)
Hash
99f0e3f787fce3e2bb1c9e7e78ad524e
97bd3d4d6834cf495ef8cb9cf3a84fec854c24d8
523b3ca0ac1601b752db7d74b6dbabd405b423ab65a6de52f8382da7d9917a8d

HTTP Headers

GET /www/images/99f0e3f787fce3e2bb1c9e7e78ad524e.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 04:58:02 GMT
content-type: image/jpeg
content-length: 8895
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
cache-control: max-age=86400
cf-bgj: h2pri
etag: "663a726f-22bf"
expires: Wed, 08 May 2024 18:33:08 GMT
last-modified: Tue, 07 May 2024 18:26:55 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 37494
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806df53b96056c6-OSL
X-Firefox-Spdy: h2

offerimage.com/www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg

172.67.22.216

200 OK

17 kB

URL GET HTTP/2
offerimage.com/www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg
IP
172.67.22.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerGoogle Trust Services LLC
Subjectofferimage.com
Fingerprint5C:87:DE:3A:1B:66:15:11:B1:75:B6:AC:AF:F9:A6:EF:5E:7F:80:72
ValidityFri, 05 Apr 2024 23:50:04 GMT - Thu, 04 Jul 2024 23:50:03 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3
Size
17 kB (17173 bytes)
Hash
9c6355bcf96815c755fbba83f9fd8f64
ce698b45fb51ef1494f80f432b7aff0985247724
2cd74e866757767cd5c88d066a0bc057aded1e6c07171e091dd87f56ffd4a906

HTTP Headers

GET /www/images/9c6355bcf96815c755fbba83f9fd8f64.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 04:58:02 GMT
content-type: image/jpeg
content-length: 17173
cache-control: max-age=86400
cf-bgj: h2pri
etag: "642af881-4315"
expires: Wed, 08 May 2024 20:15:57 GMT
last-modified: Mon, 03 Apr 2023 16:02:09 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 31325
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806df555aba56c6-OSL
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700

142.250.74.106

1.3 kB

URL
fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
gzip compressed data, max compression
Size
1.3 kB (1292 bytes)
Hash
804dc68228bb60a600092bb3c455c60e
47cec6b02bf44000362632b5404d0cb2109a4062
2a44f1dba5375a1063d3f6f4ed8ffec80f5be9f3f23ebc409de0ba8a688ee77f

HTTP Headers

GET /css2?family=Roboto:wght@100;300;400;500;700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 May 2024 04:58:02 GMT
date: Wed, 08 May 2024 04:58:02 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

16 kB

URL
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:55:00 GMT
expires: Fri, 02 May 2025 01:55:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 529382
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

16 kB

URL
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:37 GMT
expires: Sun, 04 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 329365
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

139.45.197.242

200 OK

12 kB

URL OPTIONS HTTP/2
gishejuy.com/500/7134623?excludes=19845928&oaid=008056d3ce95404ce5d3b54185f2acf6&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectgishejuy.com
Fingerprint0E:1A:AC:78:15:75:C8:D7:77:E9:9F:1E:8F:A6:05:8C:F6:CA:AC:80
ValidityTue, 02 Apr 2024 05:15:48 GMT - Mon, 01 Jul 2024 05:15:47 GMT

File type
gzip compressed data, max speed, from Unix
Size
12 kB (11673 bytes)
Hash
a4bcd06e1b05c54908f2ac50ac866254
d85fa591102e850a0a08a25762d6ddff5e152f2e
f2b7297908dbf8ef4a1eb66f0c331d1e6f6c4c1aa02f386283c7ffbf650beec2

HTTP Headers

GET /500/7134623?excludes=19845928&oaid=008056d3ce95404ce5d3b54185f2acf6&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 HTTP/1.1
Host: gishejuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Cookie: OAID=008056d3ce95404ce5d3b54185f2acf6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:58:02 GMT
content-type: application/javascript
x-trace-id: ef3771316da40da0633af22f9f8a25d8
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://primeflix.lol
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=008056d3ce95404ce5d3b54185f2acf6; expires=Thu, 08 May 2025 04:58:02 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

gishejuy.com/impression/O-epy5C6v6fhji2niIKhNYyqZqAw5yga-FXhk4x_MwXgCNRF9RYQWTsrjqZoYMp6n6-xXPfRkMeQ3pzvfvBkFAC7k0LwvdkajBCVT_AXjO-JmbSjko89R3_IFwkeDWjknqTZYaffXUKlUwb1a3sukZBt3_vA8uAPdRvrhsUfrTslTRT9o8_W97b6FUjj_cvYnGR_1mPK4rsxu7OFEDfNsrmNm37xTTDOHhQ2Mmo0k4_Kbxf5me93rIvL_bVPjwDdYQnYfZigQVj9MZcSlOUR-HnJ_6t8JGDnuybQibJXvdgM7RKd_jz8G4IMc6EFy6sjZEBbH3Z8RpNHSczB_xDDIwJD8SF1O973pm4qKaofyNjyiu-G8lNo1V3xF17nJCv0NzTkjsBojbysRWYMjElcodvbp1MnwUG7VkrHxPibRu7Ap5zcPwUWcOG2FjRhHxdPnyQ3a4spnn4prRNeisRofPf6GObt_ebCuNJPOOk6Wd3d0TiA_GVxcGpKYKVVz9jIdAxSTfdvEsIGuzA2iPm1orzZsnpMUUqVNhZvdKnAd2bNn8RnMMxrn32Ax9FQo8YVjtp68SHwAqy_5rcqX4zF8OqsH05QwxPBX6V736HS8KpyzbPEvnSJQBhr6MtJI7BLetB8Er3RbloO2dS1ALgkh2SG0WHajpVc2GHXgj43RgagJ6Itb1yTaqy71EM1sDTv_JJO0X1ss8I94aEHmOVVaqO9hIi0WId77jKJV2_jNwgB6wy7_qsR6--SJFfAJy2hw2LMXSreXCOSDKU8z-HAPVzAlrTCX6sQUqDsYWHlrmqizIFZoMfSmDa8sxE=?_z=7134623&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0

139.45.197.242

200 OK

43 B

URL GET HTTP/2
gishejuy.com/impression/O-epy5C6v6fhji2niIKhNYyqZqAw5yga-FXhk4x_MwXgCNRF9RYQWTsrjqZoYMp6n6-xXPfRkMeQ3pzvfvBkFAC7k0LwvdkajBCVT_AXjO-JmbSjko89R3_IFwkeDWjknqTZYaffXUKlUwb1a3sukZBt3_vA8uAPdRvrhsUfrTslTRT9o8_W97b6FUjj_cvYnGR_1mPK4rsxu7OFEDfNsrmNm37xTTDOHhQ2Mmo0k4_Kbxf5me93rIvL_bVPjwDdYQnYfZigQVj9MZcSlOUR-HnJ_6t8JGDnuybQibJXvdgM7RKd_jz8G4IMc6EFy6sjZEBbH3Z8RpNHSczB_xDDIwJD8SF1O973pm4qKaofyNjyiu-G8lNo1V3xF17nJCv0NzTkjsBojbysRWYMjElcodvbp1MnwUG7VkrHxPibRu7Ap5zcPwUWcOG2FjRhHxdPnyQ3a4spnn4prRNeisRofPf6GObt_ebCuNJPOOk6Wd3d0TiA_GVxcGpKYKVVz9jIdAxSTfdvEsIGuzA2iPm1orzZsnpMUUqVNhZvdKnAd2bNn8RnMMxrn32Ax9FQo8YVjtp68SHwAqy_5rcqX4zF8OqsH05QwxPBX6V736HS8KpyzbPEvnSJQBhr6MtJI7BLetB8Er3RbloO2dS1ALgkh2SG0WHajpVc2GHXgj43RgagJ6Itb1yTaqy71EM1sDTv_JJO0X1ss8I94aEHmOVVaqO9hIi0WId77jKJV2_jNwgB6wy7_qsR6--SJFfAJy2hw2LMXSreXCOSDKU8z-HAPVzAlrTCX6sQUqDsYWHlrmqizIFZoMfSmDa8sxE=?_z=7134623&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectgishejuy.com
Fingerprint0E:1A:AC:78:15:75:C8:D7:77:E9:9F:1E:8F:A6:05:8C:F6:CA:AC:80
ValidityTue, 02 Apr 2024 05:15:48 GMT - Mon, 01 Jul 2024 05:15:47 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

HTTP Headers

GET /impression/O-epy5C6v6fhji2niIKhNYyqZqAw5yga-FXhk4x_MwXgCNRF9RYQWTsrjqZoYMp6n6-xXPfRkMeQ3pzvfvBkFAC7k0LwvdkajBCVT_AXjO-JmbSjko89R3_IFwkeDWjknqTZYaffXUKlUwb1a3sukZBt3_vA8uAPdRvrhsUfrTslTRT9o8_W97b6FUjj_cvYnGR_1mPK4rsxu7OFEDfNsrmNm37xTTDOHhQ2Mmo0k4_Kbxf5me93rIvL_bVPjwDdYQnYfZigQVj9MZcSlOUR-HnJ_6t8JGDnuybQibJXvdgM7RKd_jz8G4IMc6EFy6sjZEBbH3Z8RpNHSczB_xDDIwJD8SF1O973pm4qKaofyNjyiu-G8lNo1V3xF17nJCv0NzTkjsBojbysRWYMjElcodvbp1MnwUG7VkrHxPibRu7Ap5zcPwUWcOG2FjRhHxdPnyQ3a4spnn4prRNeisRofPf6GObt_ebCuNJPOOk6Wd3d0TiA_GVxcGpKYKVVz9jIdAxSTfdvEsIGuzA2iPm1orzZsnpMUUqVNhZvdKnAd2bNn8RnMMxrn32Ax9FQo8YVjtp68SHwAqy_5rcqX4zF8OqsH05QwxPBX6V736HS8KpyzbPEvnSJQBhr6MtJI7BLetB8Er3RbloO2dS1ALgkh2SG0WHajpVc2GHXgj43RgagJ6Itb1yTaqy71EM1sDTv_JJO0X1ss8I94aEHmOVVaqO9hIi0WId77jKJV2_jNwgB6wy7_qsR6--SJFfAJy2hw2LMXSreXCOSDKU8z-HAPVzAlrTCX6sQUqDsYWHlrmqizIFZoMfSmDa8sxE=?_z=7134623&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 HTTP/1.1
Host: gishejuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Cookie: OAID=008056d3ce95404ce5d3b54185f2acf6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:58:04 GMT
content-type: image/gif
content-length: 43
x-trace-id: b5fc1a7d7635b3d2dda7a27086bc7998
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

primeflix.lol/favicon.ico

76.76.21.21

200 OK

14 kB

URL GET HTTP/2
primeflix.lol/favicon.ico
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
14 kB (13543 bytes)
Hash
633a3e14c44e73dfd5c6663d5a3fa9ac
93dbd0a15327e22a76c40b2260f47223ecd6d793
a99cee3a4a05c314013301b2f44472fe3fb2c4e70c386bed82e96c133fa2f8c6

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/tv/1855/season/1
Cookie: prefetchAd_7134622=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
age: 1613469
cache-control: public, max-age=0, must-revalidate
content-disposition: inline
content-encoding: br
content-type: image/x-icon
date: Wed, 08 May 2024 04:57:57 GMT
etag: W/"3591c2427b4dd072f4f2cbae003aa7a3"
server: Vercel
strict-transport-security: max-age=63072000
vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url
x-matched-path: /favicon.ico
x-vercel-cache: HIT
x-vercel-id: arn1::jlt2t-1715144277506-e6571bdb95ed
X-Firefox-Spdy: h2

gishejuy.com/500/7134623?excludes=&oaid=008056d3ce95404ce5d3b54185f2acf6&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0

139.45.197.242

200 OK

13 kB

URL GET HTTP/2
gishejuy.com/500/7134623?excludes=&oaid=008056d3ce95404ce5d3b54185f2acf6&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectgishejuy.com
Fingerprint0E:1A:AC:78:15:75:C8:D7:77:E9:9F:1E:8F:A6:05:8C:F6:CA:AC:80
ValidityTue, 02 Apr 2024 05:15:48 GMT - Mon, 01 Jul 2024 05:15:47 GMT

File type
gzip compressed data, max speed, from Unix
Size
13 kB (12870 bytes)
Hash
6638060b22c6cf639f3b20a4caf72b47
e698ae99f0bff014a34c0dbdf119d3f6c83340f0
7f066e2bdea75043f343603569d8b0a15c31f6f0309ff235da4740b31205ea60

HTTP Headers

GET /500/7134623?excludes=&oaid=008056d3ce95404ce5d3b54185f2acf6&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&tzofs=0&btz=UTC&bto=0&js_build=8&sw_version=v1.337.0 HTTP/1.1
Host: gishejuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Cookie: OAID=03005603a80c4600ff5437d0ff1acd87
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:57 GMT
content-type: application/javascript
x-trace-id: 369c951aa1fecf29dc9e441b58acede2
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://primeflix.lol
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=008056d3ce95404ce5d3b54185f2acf6; expires=Thu, 08 May 2025 04:57:57 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

cameesse.net/11?rnd=2996207572&z=7134624&b=20830638&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=6Y4CeK2dVOGEbmbyMKTi2pRKMDvhmk__1kXaORVouSCk4NaDTdGrSnfdrtsw53uUeUsFel1xCPnnvfq-PhtHX7G5w1Fn2vHHQXmNy8ujT8D8u2Oy3jgl221PHv2tp27sG7bqmCuBRGiB45yCa2wWYGSuvFsP73Kso_aF0sNMAQXOiRzTmwUfz_EHKkrT1IAvWVGYaowFKeC1VPgb3UTDno-2xLDX5JuXPT4VaiwG2DtXbdqlPxIDmVUAvqor2m7p_DhLuclySrhdTd1RzfSzo9JFhSO0Gvu-JePfmG1G8SR-Ee8_HsJBJmaOZ5_Hb7sTOnBMw8v9Nkp8YLEVQK02tWS2_bO-sTN11GKDYg25sPTZUTKiSGJ_RYRX2ctUhwEsZ5xOtGfoIaBx3kP4YaWVHmli2_73BVgHUz-NYOtqfuMWvMr25acp4cfj66n7KGSuzB7ML8kGFn3Qv17nIaW-Wl_Vnio50AJ8bBehM7nAcQJTydc7Hsky4m5OeJclu26GjwBHFUb_Kc0GmwoAzQqdNlaYjN5T7ttj2ymvEog2xWOlbzZfawEV28OIQo1VT_uWXd4HkIR8QBL7YBBousjqnhIgpmXsEWbwXnm6kSTC8II9hEFO&ruid=6dad8cf4-6c7a-4c04-99de-bd219429d323&subid=811936552616730624&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1

139.45.197.242

200 OK

0 B

URL GET HTTP/2
cameesse.net/11?rnd=2996207572&z=7134624&b=20830638&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=6Y4CeK2dVOGEbmbyMKTi2pRKMDvhmk__1kXaORVouSCk4NaDTdGrSnfdrtsw53uUeUsFel1xCPnnvfq-PhtHX7G5w1Fn2vHHQXmNy8ujT8D8u2Oy3jgl221PHv2tp27sG7bqmCuBRGiB45yCa2wWYGSuvFsP73Kso_aF0sNMAQXOiRzTmwUfz_EHKkrT1IAvWVGYaowFKeC1VPgb3UTDno-2xLDX5JuXPT4VaiwG2DtXbdqlPxIDmVUAvqor2m7p_DhLuclySrhdTd1RzfSzo9JFhSO0Gvu-JePfmG1G8SR-Ee8_HsJBJmaOZ5_Hb7sTOnBMw8v9Nkp8YLEVQK02tWS2_bO-sTN11GKDYg25sPTZUTKiSGJ_RYRX2ctUhwEsZ5xOtGfoIaBx3kP4YaWVHmli2_73BVgHUz-NYOtqfuMWvMr25acp4cfj66n7KGSuzB7ML8kGFn3Qv17nIaW-Wl_Vnio50AJ8bBehM7nAcQJTydc7Hsky4m5OeJclu26GjwBHFUb_Kc0GmwoAzQqdNlaYjN5T7ttj2ymvEog2xWOlbzZfawEV28OIQo1VT_uWXd4HkIR8QBL7YBBousjqnhIgpmXsEWbwXnm6kSTC8II9hEFO&ruid=6dad8cf4-6c7a-4c04-99de-bd219429d323&subid=811936552616730624&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectcameesse.net
Fingerprint40:09:71:B1:17:F8:74:15:9B:3D:0A:95:73:15:74:D6:05:A5:5B:44
ValidityFri, 22 Mar 2024 19:24:17 GMT - Thu, 20 Jun 2024 19:24:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /11?rnd=2996207572&z=7134624&b=20830638&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=6Y4CeK2dVOGEbmbyMKTi2pRKMDvhmk__1kXaORVouSCk4NaDTdGrSnfdrtsw53uUeUsFel1xCPnnvfq-PhtHX7G5w1Fn2vHHQXmNy8ujT8D8u2Oy3jgl221PHv2tp27sG7bqmCuBRGiB45yCa2wWYGSuvFsP73Kso_aF0sNMAQXOiRzTmwUfz_EHKkrT1IAvWVGYaowFKeC1VPgb3UTDno-2xLDX5JuXPT4VaiwG2DtXbdqlPxIDmVUAvqor2m7p_DhLuclySrhdTd1RzfSzo9JFhSO0Gvu-JePfmG1G8SR-Ee8_HsJBJmaOZ5_Hb7sTOnBMw8v9Nkp8YLEVQK02tWS2_bO-sTN11GKDYg25sPTZUTKiSGJ_RYRX2ctUhwEsZ5xOtGfoIaBx3kP4YaWVHmli2_73BVgHUz-NYOtqfuMWvMr25acp4cfj66n7KGSuzB7ML8kGFn3Qv17nIaW-Wl_Vnio50AJ8bBehM7nAcQJTydc7Hsky4m5OeJclu26GjwBHFUb_Kc0GmwoAzQqdNlaYjN5T7ttj2ymvEog2xWOlbzZfawEV28OIQo1VT_uWXd4HkIR8QBL7YBBousjqnhIgpmXsEWbwXnm6kSTC8II9hEFO&ruid=6dad8cf4-6c7a-4c04-99de-bd219429d323&subid=811936552616730624&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=0&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Cookie: scm=1; OAID=008056d3ce95404ce5d3b54185f2acf6; oaidts=1715144276
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:58:17 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://primeflix.lol
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 36802504c80091058ad945d2d95d3316
access-control-expose-headers: X-Sc
set-cookie: OAID=008056d3ce95404ce5d3b54185f2acf6; expires=Thu, 08 May 2025 04:58:17 GMT; secure; SameSite=None
oaidts=1715144276; expires=Thu, 08 May 2025 04:58:17 GMT; secure; SameSite=None
oaidvc=1; expires=Thu, 08 May 2025 04:58:17 GMT; secure; SameSite=None
CNT=1_v1_rtk9AQEAAACLTQAA; expires=Wed, 08 May 2024 05:58:17 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

primeflix.lol/_next/static/chunks/8dc5345f-59ab206b15081b67.js

76.76.21.21

200 OK

684 B

URL GET HTTP/2
primeflix.lol/_next/static/chunks/8dc5345f-59ab206b15081b67.js
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (694), with no line terminators
Size
684 B (684 bytes)
Hash
8f7ff2aaca4ff357b77897ad9ca1a14b
7cd0b57e90f12ef493af5e68130e108cb9d1ae29
090391f1256039f3dd659fe5d327d629847a020becad02694db70e02799c25da

HTTP Headers

GET /_next/static/chunks/8dc5345f-59ab206b15081b67.js HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/tv/1855/season/1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1613291
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="8dc5345f-59ab206b15081b67.js"
content-type: application/javascript; charset=utf-8
date: Wed, 08 May 2024 04:57:56 GMT
etag: "511ba7411ca41c0d40e0556923192ca0"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/8dc5345f-59ab206b15081b67.js
x-vercel-cache: HIT
x-vercel-id: arn1::xb74x-1715144276382-02b2cada3f99
content-length: 684
X-Firefox-Spdy: h2

primeflix.lol/?_rsc=1823j

76.76.21.21

200 OK

127 kB

URL GET HTTP/2
primeflix.lol/?_rsc=1823j
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type

Size
127 kB (127333 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?_rsc=1823j HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/tv/1855/season/1
RSC: 1
Next-Router-State-Tree: %5B%22%22%2C%7B%22children%22%3A%5B%22tv%22%2C%7B%22children%22%3A%5B%5B%22slug%22%2C%221855%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22season%22%2C%7B%22children%22%3A%5B%5B%22id%22%2C%221%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%5D%7D%5D%7D%5D%7D%5D%7D%5D%7D%2Cnull%2Cnull%2Ctrue%5D
Next-Router-Prefetch: 1
Next-Url: /tv/1855/season/1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1613469
cache-control: public, max-age=0, must-revalidate
content-disposition: inline
content-encoding: gzip
content-type: text/x-component
date: Wed, 08 May 2024 04:57:56 GMT
etag: W/"b4b70a0467314bc1b4f22c1ad2f3138b"
server: Vercel
strict-transport-security: max-age=63072000
vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url
x-matched-path: /index.rsc
x-vercel-cache: HIT
x-vercel-id: arn1::sxggw-1715144276338-765de2289aff
X-Firefox-Spdy: h2

tzegilo.com/stattag.js

104.21.11.245

200 OK

19 kB

URL GET HTTP/2
tzegilo.com/stattag.js
IP
104.21.11.245:443
ASN
#13335 CLOUDFLARENET

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerGoogle Trust Services LLC
Subjecttzegilo.com
Fingerprint28:2E:D0:DF:04:78:60:5A:D2:5B:1F:EA:59:80:9C:2F:89:C1:9D:D1
ValiditySat, 30 Mar 2024 15:54:48 GMT - Fri, 28 Jun 2024 15:54:47 GMT

File type
JavaScript source, ASCII text, with very long lines (18486)
Size
19 kB (19136 bytes)
Hash
70ebd404c2e1e7bad13998538b56887c
86e57af8ba3cfc2c004da3311835f6b54ba6d848
d71ea61938136a384e4c53c5a7a3c36e68fcc70a68bae691e270987d5d2eb11f

HTTP Headers

GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:56 GMT
content-type: application/javascript
last-modified: Wed, 07 Feb 2024 12:51:13 GMT
etag: W/"65c37cc1-4ac0"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 2656
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sdDkrgYOH9%2B%2F1JfRGecDhnpixzEWyzDmusA%2FR0DtZ9rimNBgXWb5vPMujoY0EqQO141AT4j8O5QNRzLev2kkZnJK2Eq5HhzQFYuMx%2BXIfiMz7AnPrwdKOl7nZDkiaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8806df326c5856aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

primeflix.lol/_next/static/chunks/858-2ee8c30d686ac6a6.js

76.76.21.21

200 OK

280 kB

URL GET HTTP/2
primeflix.lol/_next/static/chunks/858-2ee8c30d686ac6a6.js
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
280 kB (280003 bytes)
Hash
fa0fc89d352b429a5dbf64140b5a10c7
c59939b9820472cde1c4560438b8b6b801d0648f
9c79b287a161187ffa4d51f6f776701e68c24cb14f5f3408f79ed12370e390e5

HTTP Headers

GET /_next/static/chunks/858-2ee8c30d686ac6a6.js HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/tv/1855/season/1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1613290
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="858-2ee8c30d686ac6a6.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 08 May 2024 04:57:55 GMT
etag: W/"fa0fc89d352b429a5dbf64140b5a10c7"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/858-2ee8c30d686ac6a6.js
x-vercel-cache: HIT
x-vercel-id: arn1::n55ps-1715144275775-962ad76c3c0c
X-Firefox-Spdy: h2

primeflix.lol/tv/1855/season/1/stream/4?_rsc=1823j

76.76.21.21

200 OK

226 B

URL GET HTTP/2
primeflix.lol/tv/1855/season/1/stream/4?_rsc=1823j
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
ASCII text, with no line terminators
Size
226 B (226 bytes)
Hash
fcbe5334596a84c062a806df58521793
b22bbd07f2e3cbd5e7eddc053b5962187187fc69
fa46d5da18a5d1a9ba7c9a466102d98ab30673869f2b64dadd275135da2f5b62

HTTP Headers

GET /tv/1855/season/1/stream/4?_rsc=1823j HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/tv/1855/season/1
RSC: 1
Next-Router-State-Tree: %5B%22%22%2C%7B%22children%22%3A%5B%22tv%22%2C%7B%22children%22%3A%5B%5B%22slug%22%2C%221855%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22season%22%2C%7B%22children%22%3A%5B%5B%22id%22%2C%221%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%5D%7D%5D%7D%5D%7D%5D%7D%5D%7D%2Cnull%2Cnull%2Ctrue%5D
Next-Router-Prefetch: 1
Next-Url: /tv/1855/season/1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
age: 0
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: text/x-component
date: Wed, 08 May 2024 04:57:56 GMT
server: Vercel
strict-transport-security: max-age=63072000
vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url
x-matched-path: /tv/[slug]/season/[id]/stream/[eps].rsc
x-powered-by: Next.js
x-vercel-cache: MISS
x-vercel-execution-region: iad1
x-vercel-id: arn1::iad1::xb74x-1715144276386-4e10dacbba2a
X-Firefox-Spdy: h2

primeflix.lol/_next/static/chunks/app/layout-7de5d54b9d4be558.js

76.76.21.21

200 OK

4.6 kB

URL GET HTTP/2
primeflix.lol/_next/static/chunks/app/layout-7de5d54b9d4be558.js
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
JavaScript source, ASCII text, with very long lines (4652), with no line terminators
Size
4.6 kB (4550 bytes)
Hash
5b5a38254dc56f48dc674d9ceba8e83d
daa4ff23da78eab3685f17751f48e83da5a86437
931db5bdddfe5d50cf493d2c49fb73572f5d2ac590e209157acbd19ac5625863

HTTP Headers

GET /_next/static/chunks/app/layout-7de5d54b9d4be558.js HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/tv/1855/season/1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1613042
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="layout-7de5d54b9d4be558.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 08 May 2024 04:57:55 GMT
etag: W/"81d7e6e58cdabdb50c1d5fd3d8b1995c"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/app/layout-7de5d54b9d4be558.js
x-vercel-cache: HIT
x-vercel-id: arn1::jlt2t-1715144275770-32abf50d7835
X-Firefox-Spdy: h2

aistekso.net/401/7134625

139.45.197.244

200 OK

91 kB

URL GET HTTP/2
aistekso.net/401/7134625
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectaistekso.net
Fingerprint3E:A5:CE:35:F4:D9:45:6B:A1:3B:2E:9C:B3:9E:78:4D:8A:4B:51:BB
ValiditySun, 24 Mar 2024 05:08:27 GMT - Sat, 22 Jun 2024 05:08:26 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
91 kB (90705 bytes)
Hash
6656f93cef61fd9865dc65390868dab1
23becd5a438ece0635d71b2f4ac10689e4399ea5
295f0d59f2fd9413fe35d9befe628671289e0dfddcbb120bd384376cf72b731b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /401/7134625 HTTP/1.1
Host: aistekso.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:56 GMT
content-type: application/javascript
x-trace-id: ee78ce04bcb00a50471ba33921683e07
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=03005692cd2344cceb866b457da43d28; expires=Thu, 08 May 2025 04:57:56 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

gishejuy.com/400/7134623

139.45.197.242

200 OK

84 kB

URL GET HTTP/2
gishejuy.com/400/7134623
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectgishejuy.com
Fingerprint0E:1A:AC:78:15:75:C8:D7:77:E9:9F:1E:8F:A6:05:8C:F6:CA:AC:80
ValidityTue, 02 Apr 2024 05:15:48 GMT - Mon, 01 Jul 2024 05:15:47 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
84 kB (83820 bytes)
Hash
7ea763c0270f531bd0d49edce4333bba
cca100a43c3e45ef7cea80ff5dbfd80516efd994
6c2397777ecc20fc66dc5379c65439954cf8bfdd8c219c607cd1b704ad2dd71a

HTTP Headers

GET /400/7134623 HTTP/1.1
Host: gishejuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:56 GMT
content-type: application/javascript
x-trace-id: a2983bddce9a19e1b68793423fbd2a26
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
set-cookie: OAID=03005603a80c4600ff5437d0ff1acd87; expires=Thu, 08 May 2025 04:57:56 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

cameesse.net/1?z=7134624

139.45.197.242

200 OK

43 kB

URL GET HTTP/2
cameesse.net/1?z=7134624
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectcameesse.net
Fingerprint40:09:71:B1:17:F8:74:15:9B:3D:0A:95:73:15:74:D6:05:A5:5B:44
ValidityFri, 22 Mar 2024 19:24:17 GMT - Thu, 20 Jun 2024 19:24:16 GMT

File type
JavaScript source, ASCII text, with very long lines (42427)
Size
43 kB (43417 bytes)
Hash
2a179ec4432914ccc2e09513924dedc9
0db44bfd86aff0c92f3a00c044f78edcf3552f13
2365f4ad97327609fc9f1bd05e38e14a7e0a12fa5006e43b5f82efc676f8d99c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1?z=7134624 HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:56 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 11dc57baceb8626a88fa09a3720e986a
access-control-expose-headers: X-Sc
x-sc: Dwti4MqQZhfxz7F8pozFJU6sho1x2SLhI-Px4U0ZQw-9QABSQR4A1pmL8JpPuAAfcCCeW3aTqJfrucht4H7gulB_luE=
set-cookie: scm=1; expires=Thu, 08 May 2025 04:57:56 GMT; secure; SameSite=None
OAID=04005602fdeb40f4e08ac9e6acdfc33d; expires=Thu, 08 May 2025 04:57:56 GMT; secure; SameSite=None
oaidts=1715144276; expires=Thu, 08 May 2025 04:57:56 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

externalde.com/out/xyhkxckud/?ctrl_id=663b06558c6a0714794649&ctrl_ab=burp&ctrl_ts=1715144277.5751&ctrl_vol_oid=0b046699-9de5-41eb-a62f-5035b56e631b&tg=https://lkbx.me/4KqY7&uid=wepdvdof3c4e1s41j0l79s2c

188.114.96.1

302 Found

1.1 kB

URL GET HTTP/2
externalde.com/out/xyhkxckud/?ctrl_id=663b06558c6a0714794649&ctrl_ab=burp&ctrl_ts=1715144277.5751&ctrl_vol_oid=0b046699-9de5-41eb-a62f-5035b56e631b&tg=https://lkbx.me/4KqY7&uid=wepdvdof3c4e1s41j0l79s2c
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerGoogle Trust Services LLC
Subjectexternalde.com
Fingerprint0D:2A:5D:DC:29:15:BD:05:1C:8E:F1:C5:82:D4:C0:5C:D6:A5:AB:58
ValiditySat, 27 Apr 2024 14:00:09 GMT - Fri, 26 Jul 2024 14:00:08 GMT

File type

Size
1.1 kB (1073 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /out/xyhkxckud/?ctrl_id=663b06558c6a0714794649&ctrl_ab=burp&ctrl_ts=1715144277.5751&ctrl_vol_oid=0b046699-9de5-41eb-a62f-5035b56e631b&tg=https://lkbx.me/4KqY7&uid=wepdvdof3c4e1s41j0l79s2c HTTP/1.1
Host: externalde.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Wed, 08 May 2024 04:57:58 GMT
content-type: text/html; charset=UTF-8
location: https://lkbx.me/4KqY7?uid=wepdvdof3c4e1s41j0l79s2c
referrer-policy: no-referrer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ostRx8YjWAHAAmgyqi8t6IDpRa3aNbMTXc7AzRTqwlr9vcOfNKLAB419ym%2F16Frs1m6gJauae4U6QEzFGbXp%2FMno%2FEzjVMaA7JII3gkWl5yaH5hLIlyk01WR3oZMb5KXYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8806df39bcd5b50c-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

primeflix.lol/_next/static/chunks/fd9d1056-764650a9573d5c26.js

76.76.21.21

200 OK

172 kB

URL GET HTTP/2
primeflix.lol/_next/static/chunks/fd9d1056-764650a9573d5c26.js
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
172 kB (172190 bytes)
Hash
07bed7eba1dceeeb9c638523e777f6dd
92eb0f91bf2da90ff4ad722ce5cd9417c5587c9a
a76c068cf3857b3d68e6a49b85cc7e71ddf0ecdb60dbbf22c5c951e642904201

HTTP Headers

GET /_next/static/chunks/fd9d1056-764650a9573d5c26.js HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/tv/1855/season/1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1613290
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="fd9d1056-764650a9573d5c26.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 08 May 2024 04:57:55 GMT
etag: W/"07bed7eba1dceeeb9c638523e777f6dd"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/fd9d1056-764650a9573d5c26.js
x-vercel-cache: HIT
x-vercel-id: arn1::s6bjd-1715144275768-231606a7c965
X-Firefox-Spdy: h2

primeflix.lol/_next/static/chunks/772-732179aac77444c7.js

76.76.21.21

200 OK

70 kB

URL GET HTTP/2
primeflix.lol/_next/static/chunks/772-732179aac77444c7.js
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type

Size
70 kB (69755 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_next/static/chunks/772-732179aac77444c7.js HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/tv/1855/season/1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1613290
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="772-732179aac77444c7.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 08 May 2024 04:57:55 GMT
etag: W/"cba312463e4e3a4cff2276b7d79e4d3b"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/772-732179aac77444c7.js
x-vercel-cache: HIT
x-vercel-id: arn1::sxggw-1715144275769-5149d3129782
X-Firefox-Spdy: h2

primeflix.lol/tv/1855?_rsc=1823j

76.76.21.21

200 OK

127 B

URL GET HTTP/2
primeflix.lol/tv/1855?_rsc=1823j
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
ASCII text, with no line terminators
Size
127 B (127 bytes)
Hash
ed291cbabff222530c03fea1f58d8e78
9a69fc9244cc3939d1eca6ae7e2c58bef8ebb15c
36f9da8574470c5dca16a76ed811d518e34300e1f1a1f18b1e82be8ea83b4611

HTTP Headers

GET /tv/1855?_rsc=1823j HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/tv/1855/season/1
RSC: 1
Next-Router-State-Tree: %5B%22%22%2C%7B%22children%22%3A%5B%22tv%22%2C%7B%22children%22%3A%5B%5B%22slug%22%2C%221855%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22season%22%2C%7B%22children%22%3A%5B%5B%22id%22%2C%221%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%5D%7D%5D%7D%5D%7D%5D%7D%5D%7D%2Cnull%2Cnull%2Ctrue%5D
Next-Router-Prefetch: 1
Next-Url: /tv/1855/season/1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
age: 0
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: text/x-component
date: Wed, 08 May 2024 04:57:56 GMT
server: Vercel
strict-transport-security: max-age=63072000
vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url
x-matched-path: /tv/[slug].rsc
x-powered-by: Next.js
x-vercel-cache: MISS
x-vercel-execution-region: iad1
x-vercel-id: arn1::iad1::m46f2-1715144276339-06988ea2c8b7
X-Firefox-Spdy: h2

moonoafy.net/pfe/current/defaultSkin.min.js

139.45.197.250

200 OK

57 kB

URL GET HTTP/2
moonoafy.net/pfe/current/defaultSkin.min.js
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectmoonoafy.net
Fingerprint17:AD:95:C9:DA:29:B4:0A:55:33:11:0A:74:DF:AF:4D:05:13:AC:A0
ValidityFri, 29 Mar 2024 05:18:37 GMT - Thu, 27 Jun 2024 05:18:36 GMT

File type

Size
57 kB (57187 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pfe/current/defaultSkin.min.js HTTP/1.1
Host: moonoafy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:57 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 10:48:53 GMT
etag: W/"662a3515-df63"
access-control-allow-origin: https://primeflix.lol
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

lkbx.me/4KqY7?uid=wepdvdof3c4e1s41j0l79s2c

47.89.248.255

200 OK

1.1 kB

URL GET HTTP/2
lkbx.me/4KqY7?uid=wepdvdof3c4e1s41j0l79s2c
IP
47.89.248.255:443
ASN
#45102 Alibaba US Technology Co., Ltd.

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerDigiCert Inc
Subjectlkbx.me
Fingerprint85:1C:F3:96:31:0D:EC:E9:85:9D:6E:27:5F:AE:1D:6C:F2:9B:F5:BD
ValidityMon, 27 Nov 2023 00:00:00 GMT - Tue, 26 Nov 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (1129), with no line terminators
Size
1.1 kB (1073 bytes)
Hash
00e07409a151edb6821bded5cf1a70a1
4e8c1683d0cb11ceb0f04ec71ec39728bd7822d0
5bf7f085b9ed06e2532ee870b1d2a2831a8e87c34dd47bb030fead642cf81e3d

HTTP Headers

GET /4KqY7?uid=wepdvdof3c4e1s41j0l79s2c HTTP/1.1
Host: lkbx.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:59 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: discuz_2132_saltkey=vWCsSgCS; expires=Fri, 07-Jun-2024 04:57:59 GMT; Max-Age=2592000; path=/; secure; httponly
discuz_2132_lang=en; path=/; secure
discuz_2132_lang=en; path=/; secure
content-encoding: gzip
X-Firefox-Spdy: h2

primeflix.lol/tv/1855/season/1/stream/1?_rsc=1823j

76.76.21.21

200 OK

226 B

URL GET HTTP/2
primeflix.lol/tv/1855/season/1/stream/1?_rsc=1823j
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
ASCII text, with no line terminators
Size
226 B (226 bytes)
Hash
1055be91689636e4779f9b664ae85121
7066e20733e55ce2a22ec53fed3583cc4ceb2375
a8f6ec018581b5353a9e7db9088084f151ce702800d5f3ca0ae43d60e2d5a006

HTTP Headers

GET /tv/1855/season/1/stream/1?_rsc=1823j HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/tv/1855/season/1
RSC: 1
Next-Router-State-Tree: %5B%22%22%2C%7B%22children%22%3A%5B%22tv%22%2C%7B%22children%22%3A%5B%5B%22slug%22%2C%221855%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22season%22%2C%7B%22children%22%3A%5B%5B%22id%22%2C%221%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%5D%7D%5D%7D%5D%7D%5D%7D%5D%7D%2Cnull%2Cnull%2Ctrue%5D
Next-Router-Prefetch: 1
Next-Url: /tv/1855/season/1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
age: 0
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: text/x-component
date: Wed, 08 May 2024 04:57:56 GMT
server: Vercel
strict-transport-security: max-age=63072000
vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url
x-matched-path: /tv/[slug]/season/[id]/stream/[eps].rsc
x-powered-by: Next.js
x-vercel-cache: MISS
x-vercel-execution-region: iad1
x-vercel-id: arn1::iad1::l6m6d-1715144276340-4775158be7fb
X-Firefox-Spdy: h2

primeflix.lol/_next/static/chunks/app/page-35b7cd2e7b3fd8bc.js

76.76.21.21

200 OK

9.0 kB

URL GET HTTP/2
primeflix.lol/_next/static/chunks/app/page-35b7cd2e7b3fd8bc.js
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
Unicode text, UTF-8 text, with very long lines (9253), with no line terminators
Size
9.0 kB (8953 bytes)
Hash
fcf990066fafcf03dfa256cf39613d98
b963d4cd2c51cc9db616048c1744d6558746dcfa
4945c92e0ffd46d39a24be3bb1b16308fad3a5890e3c52d6373f353718c20886

HTTP Headers

GET /_next/static/chunks/app/page-35b7cd2e7b3fd8bc.js HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/tv/1855/season/1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1613291
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="page-35b7cd2e7b3fd8bc.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 08 May 2024 04:57:56 GMT
etag: W/"06758a67417c66261af6a64858f47145"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/app/page-35b7cd2e7b3fd8bc.js
x-vercel-cache: HIT
x-vercel-id: arn1::2j9gk-1715144276386-61513716f58a
X-Firefox-Spdy: h2

primeflix.lol/tv/1855/season/1/stream/2?_rsc=1823j

76.76.21.21

200 OK

226 B

URL GET HTTP/2
primeflix.lol/tv/1855/season/1/stream/2?_rsc=1823j
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
ASCII text, with no line terminators
Size
226 B (226 bytes)
Hash
3cb8ab888de13b253693a4302d7764cf
227502de1b6f6ebaf160686a60b955a50215f438
f0e1d7d1802c7daed418dde08783a7a56a44d8932ffa50d527ac4b3889d234fe

HTTP Headers

GET /tv/1855/season/1/stream/2?_rsc=1823j HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/tv/1855/season/1
RSC: 1
Next-Router-State-Tree: %5B%22%22%2C%7B%22children%22%3A%5B%22tv%22%2C%7B%22children%22%3A%5B%5B%22slug%22%2C%221855%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22season%22%2C%7B%22children%22%3A%5B%5B%22id%22%2C%221%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%5D%7D%5D%7D%5D%7D%5D%7D%5D%7D%2Cnull%2Cnull%2Ctrue%5D
Next-Router-Prefetch: 1
Next-Url: /tv/1855/season/1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
age: 0
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: text/x-component
date: Wed, 08 May 2024 04:57:56 GMT
server: Vercel
strict-transport-security: max-age=63072000
vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url
x-matched-path: /tv/[slug]/season/[id]/stream/[eps].rsc
x-powered-by: Next.js
x-vercel-cache: MISS
x-vercel-execution-region: iad1
x-vercel-id: arn1::iad1::5gprf-1715144276343-d455e8ca2c24
X-Firefox-Spdy: h2

primeflix.lol/tv/1855/season/1/stream/3?_rsc=1823j

76.76.21.21

200 OK

226 B

URL GET HTTP/2
primeflix.lol/tv/1855/season/1/stream/3?_rsc=1823j
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
ASCII text, with no line terminators
Size
226 B (226 bytes)
Hash
932358cf7a1a02df869b1b58d7e91445
faa6ee4d426dcd9c391007cc418383265c001a6f
722189805a8eb972ba8afe6237d02b5a9902dd1ba214f515ccd00e2557e7696c

HTTP Headers

GET /tv/1855/season/1/stream/3?_rsc=1823j HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/tv/1855/season/1
RSC: 1
Next-Router-State-Tree: %5B%22%22%2C%7B%22children%22%3A%5B%22tv%22%2C%7B%22children%22%3A%5B%5B%22slug%22%2C%221855%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22season%22%2C%7B%22children%22%3A%5B%5B%22id%22%2C%221%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%5D%7D%5D%7D%5D%7D%5D%7D%5D%7D%2Cnull%2Cnull%2Ctrue%5D
Next-Router-Prefetch: 1
Next-Url: /tv/1855/season/1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
age: 0
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: text/x-component
date: Wed, 08 May 2024 04:57:56 GMT
server: Vercel
strict-transport-security: max-age=63072000
vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url
x-matched-path: /tv/[slug]/season/[id]/stream/[eps].rsc
x-powered-by: Next.js
x-vercel-cache: MISS
x-vercel-execution-region: iad1
x-vercel-id: arn1::iad1::bzg8f-1715144276343-2f17217222bd
X-Firefox-Spdy: h2

track.jefytrack.com/145f6684-c379-407a-a2eb-922622a713e1?zoneid=7134624&campaignid=8121703&carrier=%7Bcarrier%7D&connectiontype=%7Bconnection.type%7D&isp=%7Bisp%7D&cost=&visitor_id=811936552616730624&ctrl_fetch_dest=iframe&ctrl_id=663b06558c6a0714794649&ctrl_ts=1715144277.5751&ctrl_ab=burp

143.204.55.21

302 Found

1.1 kB

URL GET HTTP/2
track.jefytrack.com/145f6684-c379-407a-a2eb-922622a713e1?zoneid=7134624&campaignid=8121703&carrier=%7Bcarrier%7D&connectiontype=%7Bconnection.type%7D&isp=%7Bisp%7D&cost=&visitor_id=811936552616730624&ctrl_fetch_dest=iframe&ctrl_id=663b06558c6a0714794649&ctrl_ts=1715144277.5751&ctrl_ab=burp
IP
143.204.55.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerAmazon
Subjecttrack.jefytrack.com
FingerprintD9:FC:91:D1:FD:F0:F4:2D:48:E9:47:EE:31:A0:1C:23:D3:9A:29:D8
ValiditySun, 21 Apr 2024 00:00:00 GMT - Tue, 20 May 2025 23:59:59 GMT

File type

Size
1.1 kB (1073 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /145f6684-c379-407a-a2eb-922622a713e1?zoneid=7134624&campaignid=8121703&carrier=%7Bcarrier%7D&connectiontype=%7Bconnection.type%7D&isp=%7Bisp%7D&cost=&visitor_id=811936552616730624&ctrl_fetch_dest=iframe&ctrl_id=663b06558c6a0714794649&ctrl_ts=1715144277.5751&ctrl_ab=burp HTTP/1.1
Host: track.jefytrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-length: 0
location: https://externalde.com/out/xyhkxckud/?ctrl_id=663b06558c6a0714794649&ctrl_ab=burp&ctrl_ts=1715144277.5751&ctrl_vol_oid=0b046699-9de5-41eb-a62f-5035b56e631b&tg=https://lkbx.me/4KqY7&uid=wepdvdof3c4e1s41j0l79s2c
date: Wed, 08 May 2024 04:57:57 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: 145f6684-c379-407a-a2eb-922622a713e1-v4=D8j2C-q_B63gqNijNq7aCmtd8MqBkc3ddy56dBLrg74; Max-Age=86400; Expires=Thu, 09-May-2024 04:57:57 GMT; Domain=track.jefytrack.com; Path=/; Secure; HttpOnly;SameSite=None
voluum-cid-v4=%7B%22cid%22%3A%22wepdvdof3c4e1s41j0l79s2c%22%2C%22caid%22%3A%22145f6684-c379-407a-a2eb-922622a713e1%22%7D; Max-Age=31536000; Expires=Thu, 08-May-2025 04:57:57 GMT; Domain=track.jefytrack.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: n97knsTbIDVcG4ZJUNp296U_p2yFTYI2kR7EZEf4dS7o-gbnHcT84g==
X-Firefox-Spdy: h2

moonoafy.net/pfe/current/universal.min.js?v=3.1.504

139.45.197.250

200 OK

90 kB

URL GET HTTP/2
moonoafy.net/pfe/current/universal.min.js?v=3.1.504
IP
139.45.197.250:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectmoonoafy.net
Fingerprint17:AD:95:C9:DA:29:B4:0A:55:33:11:0A:74:DF:AF:4D:05:13:AC:A0
ValidityFri, 29 Mar 2024 05:18:37 GMT - Thu, 27 Jun 2024 05:18:36 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
90 kB (89850 bytes)
Hash
4caad44ecc6a13eba45b63ed7cf9e387
e67dfe90bebd5447495d8fe962d03e55f6d13071
66f95b5eb4bf3dc3a13643e3e6776b18a2b15e0b881328e2ee012c73e679ad00

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pfe/current/universal.min.js?v=3.1.504 HTTP/1.1
Host: moonoafy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:56 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 10:48:53 GMT
etag: W/"662a3515-15efa"
access-control-allow-origin: https://primeflix.lol
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

veepteero.com/?rb=3JrCTZHRtT8wV0IzEI7cX73qPpxkCP1iiQ8TnOpHciH0PkqmxCKwWx-DeVs7WT_ckepXMPNOh7goGOtiVmjKwRRkfsT-nuwnNIyjEfkTFL5-YW_r3kg2LSDN4CZ664hJkmmNKXvpMwfcGgGEECnQISbaYdy-A-DKJLYndwUXCTfTsRYjpH9bytNt4j9qMBn-dP_e3n0EMw7U7Ha2pCH7w5TAHzUBDWDwCxJr_bQtpLy8Q2doP2rAgtdQUn83lmtqrEzdyYCz6go%3D&request_ab2=0&zoneid=7134622&js_build=iclick-v1.788.10-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.788.10-auto&navlng=en-US&pnt=0&pnrc=0&bs=40ff0917-cf39-480a-a29d-0e3e33681176&wasm=1&userId=008056d3ce95404ce5d3b54185f2acf6&m=link

139.45.197.242

200 OK

2.4 kB

URL GET HTTP/2
veepteero.com/?rb=3JrCTZHRtT8wV0IzEI7cX73qPpxkCP1iiQ8TnOpHciH0PkqmxCKwWx-DeVs7WT_ckepXMPNOh7goGOtiVmjKwRRkfsT-nuwnNIyjEfkTFL5-YW_r3kg2LSDN4CZ664hJkmmNKXvpMwfcGgGEECnQISbaYdy-A-DKJLYndwUXCTfTsRYjpH9bytNt4j9qMBn-dP_e3n0EMw7U7Ha2pCH7w5TAHzUBDWDwCxJr_bQtpLy8Q2doP2rAgtdQUn83lmtqrEzdyYCz6go%3D&request_ab2=0&zoneid=7134622&js_build=iclick-v1.788.10-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.788.10-auto&navlng=en-US&pnt=0&pnrc=0&bs=40ff0917-cf39-480a-a29d-0e3e33681176&wasm=1&userId=008056d3ce95404ce5d3b54185f2acf6&m=link
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectveepteero.com
Fingerprint13:68:56:48:EC:67:A6:93:BE:E0:36:BC:FA:04:75:6D:6E:D2:C1:91
ValiditySat, 23 Mar 2024 05:18:36 GMT - Fri, 21 Jun 2024 05:18:35 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2381), with no line terminators
Size
2.4 kB (2359 bytes)
Hash
a32f583370430fcda5b06b179443efdf
ecca0a17bd7e724c1323fa9640393e5522bc7b99
4d0c1c80c8ceaa9f912cfd75012a2af733c68f5a0602fa6717c9e400d9e83e20

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rb=3JrCTZHRtT8wV0IzEI7cX73qPpxkCP1iiQ8TnOpHciH0PkqmxCKwWx-DeVs7WT_ckepXMPNOh7goGOtiVmjKwRRkfsT-nuwnNIyjEfkTFL5-YW_r3kg2LSDN4CZ664hJkmmNKXvpMwfcGgGEECnQISbaYdy-A-DKJLYndwUXCTfTsRYjpH9bytNt4j9qMBn-dP_e3n0EMw7U7Ha2pCH7w5TAHzUBDWDwCxJr_bQtpLy8Q2doP2rAgtdQUn83lmtqrEzdyYCz6go%3D&request_ab2=0&zoneid=7134622&js_build=iclick-v1.788.10-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Fprimeflix.lol%2Ftv%2F1855%2Fseason%2F1&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.788.10-auto&navlng=en-US&pnt=0&pnrc=0&bs=40ff0917-cf39-480a-a29d-0e3e33681176&wasm=1&userId=008056d3ce95404ce5d3b54185f2acf6&m=link HTTP/1.1
Host: veepteero.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:56 GMT
content-type: application/json
x-trace-id: a14c20189f1baeb49d6375236e194372
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://primeflix.lol
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=008056d3ce95404ce5d3b54185f2acf6; expires=Thu, 08 May 2025 04:57:56 GMT; path=/; secure; SameSite=None
oaidts=1715144276; expires=Thu, 08 May 2025 04:57:56 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Wed, 15 May 2024 04:57:56 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=3b4c0b40-d9df-45d1-9539-86f2af18828c

139.45.195.254

200 OK

12 B

URL POST HTTP/1.1
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=3b4c0b40-d9df-45d1-9539-86f2af18828c
IP
139.45.195.254:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerSectigo Limited
Subjectfleraprt.com
Fingerprint32:DB:C5:24:21:ED:1D:C3:40:C3:46:9F:CF:EE:98:4D:72:29:4C:3C
ValidityTue, 09 Jan 2024 00:00:00 GMT - Mon, 13 Jan 2025 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
6949f52318584a4b51c719a9b84a7287
9fbd870c6afd4bdd6fbbd87f52df2c81dd23e905
72603096ec3515dbc615ab8837fd1b15e91ee827bc7af41d71c9882b08699375

HTTP Headers

POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f&ruid=3b4c0b40-d9df-45d1-9539-86f2af18828c HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1750
Origin: https://primeflix.lol
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Wed, 08 May 2024 04:57:57 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://primeflix.lol
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true

primeflix.lol/tv/1855/season/1/stream/5?_rsc=1823j

76.76.21.21

200 OK

226 B

URL GET HTTP/2
primeflix.lol/tv/1855/season/1/stream/5?_rsc=1823j
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
ASCII text, with no line terminators
Size
226 B (226 bytes)
Hash
cd0581c0ec71bdb70b97fba4d4692f7a
262e5441cb34f84de585cefcff7778cbc758c6b6
04bd68ec482d830c881ef30cf0d1c531ca55219ee1d1dc5546f96dfc97b2a4b1

HTTP Headers

GET /tv/1855/season/1/stream/5?_rsc=1823j HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/tv/1855/season/1
RSC: 1
Next-Router-State-Tree: %5B%22%22%2C%7B%22children%22%3A%5B%22tv%22%2C%7B%22children%22%3A%5B%5B%22slug%22%2C%221855%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22season%22%2C%7B%22children%22%3A%5B%5B%22id%22%2C%221%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%5D%7D%5D%7D%5D%7D%5D%7D%5D%7D%2Cnull%2Cnull%2Ctrue%5D
Next-Router-Prefetch: 1
Next-Url: /tv/1855/season/1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
age: 0
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: text/x-component
date: Wed, 08 May 2024 04:57:56 GMT
server: Vercel
strict-transport-security: max-age=63072000
vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url
x-matched-path: /tv/[slug]/season/[id]/stream/[eps].rsc
x-powered-by: Next.js
x-vercel-cache: MISS
x-vercel-execution-region: iad1
x-vercel-id: arn1::iad1::xb74x-1715144276547-fc00f8a51976
X-Firefox-Spdy: h2

primeflix.lol/tv/1855/season/1/stream/10?_rsc=1823j

76.76.21.21

200 OK

227 B

URL GET HTTP/2
primeflix.lol/tv/1855/season/1/stream/10?_rsc=1823j
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
ASCII text, with no line terminators
Size
227 B (227 bytes)
Hash
d97e6e804f94b25f3ca24c278bf66222
3b3c6b735f1412d3b387a93bc4f371faa455737d
0e94e32d0905b63afd18d2fdde6ea3fb6550af46e927a52a7b93050c862ee036

HTTP Headers

GET /tv/1855/season/1/stream/10?_rsc=1823j HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/tv/1855/season/1
RSC: 1
Next-Router-State-Tree: %5B%22%22%2C%7B%22children%22%3A%5B%22tv%22%2C%7B%22children%22%3A%5B%5B%22slug%22%2C%221855%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22season%22%2C%7B%22children%22%3A%5B%5B%22id%22%2C%221%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%5D%7D%5D%7D%5D%7D%5D%7D%5D%7D%2Cnull%2Cnull%2Ctrue%5D
Next-Router-Prefetch: 1
Next-Url: /tv/1855/season/1
DNT: 1
Connection: keep-alive
Cookie: prefetchAd_7134622=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
age: 0
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: text/x-component
date: Wed, 08 May 2024 04:57:56 GMT
server: Vercel
strict-transport-security: max-age=63072000
vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url
x-matched-path: /tv/[slug]/season/[id]/stream/[eps].rsc
x-powered-by: Next.js
x-vercel-cache: MISS
x-vercel-execution-region: iad1
x-vercel-id: arn1::iad1::p7f7v-1715144276807-ca3f2d068ff2
X-Firefox-Spdy: h2

primeflix.lol/_next/static/chunks/465-c13a1673cd976902.js

76.76.21.21

200 OK

400 kB

URL GET HTTP/2
primeflix.lol/_next/static/chunks/465-c13a1673cd976902.js
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
400 kB (399687 bytes)
Hash
97acbd9cfdfabb64a923d6ee6f86ca33
a184b3f6adf98c59cc4f7286e4b590146dda5c3e
b61120e0221eb048d7851bcef315bbd6a9c4232a79c662181e31225f8a7afaea

HTTP Headers

GET /_next/static/chunks/465-c13a1673cd976902.js HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/tv/1855/season/1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1613290
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="465-c13a1673cd976902.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 08 May 2024 04:57:55 GMT
etag: W/"97acbd9cfdfabb64a923d6ee6f86ca33"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/465-c13a1673cd976902.js
x-vercel-cache: HIT
x-vercel-id: arn1::sxggw-1715144275776-21024734e129
X-Firefox-Spdy: h2

primeflix.lol/_next/static/chunks/324-9fa5b5bcca8bd748.js

76.76.21.21

200 OK

90 kB

URL GET HTTP/2
primeflix.lol/_next/static/chunks/324-9fa5b5bcca8bd748.js
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
90 kB (90193 bytes)
Hash
71ac0955ea9c375c58d5fc63e08e1551
a863d999964b505cff3c0fd6bf1c81941b15dec7
1350e082d5bae184cdf5f175de03ac730eb6de67928dd908e1cab4708725e36b

HTTP Headers

GET /_next/static/chunks/324-9fa5b5bcca8bd748.js HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/tv/1855/season/1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1613291
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="324-9fa5b5bcca8bd748.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 08 May 2024 04:57:56 GMT
etag: W/"71ac0955ea9c375c58d5fc63e08e1551"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/324-9fa5b5bcca8bd748.js
x-vercel-cache: HIT
x-vercel-id: arn1::6wpmf-1715144276385-7c3e07c880a5
X-Firefox-Spdy: h2

primeflix.lol/tv/1855/season/1/stream/6?_rsc=1823j

76.76.21.21

200 OK

226 B

URL GET HTTP/2
primeflix.lol/tv/1855/season/1/stream/6?_rsc=1823j
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
ASCII text, with no line terminators
Size
226 B (226 bytes)
Hash
f797627ef7b8bad9be311edeadc8c9ac
0456cc25e3f8108ed1834c2808d0d12a07eed4b8
5bffdd6ea0fc212ef97110d97218487bfc46f9aff14b152b705ef695ca8aa4cb

HTTP Headers

GET /tv/1855/season/1/stream/6?_rsc=1823j HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/tv/1855/season/1
RSC: 1
Next-Router-State-Tree: %5B%22%22%2C%7B%22children%22%3A%5B%22tv%22%2C%7B%22children%22%3A%5B%5B%22slug%22%2C%221855%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22season%22%2C%7B%22children%22%3A%5B%5B%22id%22%2C%221%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%5D%7D%5D%7D%5D%7D%5D%7D%5D%7D%2Cnull%2Cnull%2Ctrue%5D
Next-Router-Prefetch: 1
Next-Url: /tv/1855/season/1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
age: 0
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: text/x-component
date: Wed, 08 May 2024 04:57:56 GMT
server: Vercel
strict-transport-security: max-age=63072000
vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url
x-matched-path: /tv/[slug]/season/[id]/stream/[eps].rsc
x-powered-by: Next.js
x-vercel-cache: MISS
x-vercel-execution-region: iad1
x-vercel-id: arn1::iad1::p7f7v-1715144276547-b7af33a7e71e
X-Firefox-Spdy: h2

cameesse.net/27/7552beb94fc0bdff7bbb33cad3d1ab0a

139.45.197.242

200 OK

413 kB

URL GET HTTP/2
cameesse.net/27/7552beb94fc0bdff7bbb33cad3d1ab0a
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectcameesse.net
Fingerprint40:09:71:B1:17:F8:74:15:9B:3D:0A:95:73:15:74:D6:05:A5:5B:44
ValidityFri, 22 Mar 2024 19:24:17 GMT - Thu, 20 Jun 2024 19:24:16 GMT

File type
JavaScript source, ASCII text, with very long lines (65523)
Size
413 kB (413423 bytes)
Hash
297cc248309ba835cf13a1f82fd3f938
1e6f51ce257a0ee53e25280dd44092ed33339847
b2ba9d8b2216d22f8f31a594bc22ee21f60e2b539474a650be1e87dea87d5ed7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /27/7552beb94fc0bdff7bbb33cad3d1ab0a HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Cookie: scm=1; OAID=04005602fdeb40f4e08ac9e6acdfc33d; oaidts=1715144276
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 04:57:56 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: e32d01d9173d9a3d255dbecee00ec7f5
cache-control: max-age:290304000, public
last-modified: Tue, 09 Apr 2024 03:16:58 GMT
expires: Tue, 09 May 2084 03:16:58 GMT
access-control-expose-headers: X-Sc
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

primeflix.lol/_next/static/chunks/app/tv/%5Bslug%5D/season/%5Bid%5D/page-3a162fec0d4a5e22.js

76.76.21.21

200 OK

4.3 kB

URL GET HTTP/2
primeflix.lol/_next/static/chunks/app/tv/%5Bslug%5D/season/%5Bid%5D/page-3a162fec0d4a5e22.js
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
ASCII text, with very long lines (4477), with no line terminators
Size
4.3 kB (4325 bytes)
Hash
1ba15a5bd39d664efb19fb02d4194707
2bb64156da78352cbee5596e0bb783922692da58
e964a17266c0a57f361c3680fd6b54e21a611f7e2ea34170f8b0bb18cbe96dac

HTTP Headers

GET /_next/static/chunks/app/tv/%5Bslug%5D/season/%5Bid%5D/page-3a162fec0d4a5e22.js HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/tv/1855/season/1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1612865
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="page-3a162fec0d4a5e22.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 08 May 2024 04:57:55 GMT
etag: W/"a5c2a255dc7fca2f048976fcf6a26e82"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/app/tv/%5Bslug%5D/season/%5Bid%5D/page-3a162fec0d4a5e22.js
x-vercel-cache: HIT
x-vercel-id: arn1::jlt2t-1715144275776-0c91ca4997ad
X-Firefox-Spdy: h2

primeflix.lol/tv/1855/season/1/stream/8?_rsc=1823j

76.76.21.21

200 OK

226 B

URL GET HTTP/2
primeflix.lol/tv/1855/season/1/stream/8?_rsc=1823j
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
ASCII text, with no line terminators
Size
226 B (226 bytes)
Hash
7e6cf2c0c05ce09713359bd654a1783f
36f106f8461f5f0f4bbebd31737fa08a8023b8d3
bc5f875aa4c84ebd84e29c9f568df696b05e656694786e6f228014b3c9e5072e

HTTP Headers

GET /tv/1855/season/1/stream/8?_rsc=1823j HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://primeflix.lol/tv/1855/season/1
RSC: 1
Next-Router-State-Tree: %5B%22%22%2C%7B%22children%22%3A%5B%22tv%22%2C%7B%22children%22%3A%5B%5B%22slug%22%2C%221855%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22season%22%2C%7B%22children%22%3A%5B%5B%22id%22%2C%221%22%2C%22d%22%5D%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%5D%7D%5D%7D%5D%7D%5D%7D%5D%7D%2Cnull%2Cnull%2Ctrue%5D
Next-Router-Prefetch: 1
Next-Url: /tv/1855/season/1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
age: 0
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: text/x-component
date: Wed, 08 May 2024 04:57:56 GMT
server: Vercel
strict-transport-security: max-age=63072000
vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url
x-matched-path: /tv/[slug]/season/[id]/stream/[eps].rsc
x-powered-by: Next.js
x-vercel-cache: MISS
x-vercel-execution-region: iad1
x-vercel-id: arn1::iad1::bzg8f-1715144276548-5ab927e6f23e
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/gkeZyTsb4pvlt4PHF4WBzpJW8oB.jpg

169.150.247.40

200 OK

15 kB

URL GET HTTP/2
image.tmdb.org/t/p/original/gkeZyTsb4pvlt4PHF4WBzpJW8oB.jpg
IP
169.150.247.40:443
ASN
#60068 Datacamp Limited

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint40:88:A2:12:27:42:DC:4F:28:09:F9:EB:BC:ED:0F:05:3B:F1:D5:BC
ValidityWed, 10 Apr 2024 15:08:25 GMT - Tue, 09 Jul 2024 15:08:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 448x252, components 3
Size
15 kB (15345 bytes)
Hash
05548056ec0a284628cb18c98bf6f98e
0b315c1b7b35b161011a3aafc3a68f5e23f15353
9aa89721fad74b67187f57d843623c9254dd6ea657018015884f885c76f5dbc1

HTTP Headers

GET /t/p/original/gkeZyTsb4pvlt4PHF4WBzpJW8oB.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 04:57:55 GMT
content-type: image/jpeg
content-length: 15345
server: BunnyCDN-DE1-1075
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "64708ee0-3bf1"
last-modified: Fri, 26 May 2023 10:50:08 GMT
cdn-storageserver: NY-267
cdn-requestpullsuccess: True
cdn-fileserver: 426
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 05/26/2023 11:07:26
cdn-edgestorageid: 1048
cdn-status: 200
cdn-requestid: f63b106793d58096dc76bde35ce90317
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

primeflix.lol/_next/static/chunks/webpack-543f49f6e9e187d0.js

76.76.21.21

200 OK

3.9 kB

URL GET HTTP/2
primeflix.lol/_next/static/chunks/webpack-543f49f6e9e187d0.js
IP
76.76.21.21:443
ASN
#16509 AMAZON-02

Requested by
https://primeflix.lol/tv/1855/season/1
Certificate
IssuerLet's Encrypt
Subject*.primeflix.lol
Fingerprint34:44:5E:C4:CE:25:48:19:29:42:B3:84:2F:3F:70:0C:9E:E8:DE:41
ValidityFri, 19 Apr 2024 06:26:37 GMT - Thu, 18 Jul 2024 06:26:36 GMT

File type
JavaScript source, ASCII text, with very long lines (3932), with no line terminators
Size
3.9 kB (3857 bytes)
Hash
15a93078eec45a60368c685fdcebe9eb
a25399244b2d90f789f3dd85a32deb24d8238c54
1527e717577f0ca94323fca52f93fa8dea68e80b74354f046951fd5b26f1eb18

HTTP Headers

GET /_next/static/chunks/webpack-543f49f6e9e187d0.js HTTP/1.1
Host: primeflix.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://primeflix.lol/tv/1855/season/1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
age: 1613290
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="webpack-543f49f6e9e187d0.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 08 May 2024 04:57:55 GMT
etag: W/"072667d8f4d23fdca15aa274bd4dc408"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/webpack-543f49f6e9e187d0.js
x-vercel-cache: HIT
x-vercel-id: arn1::jlt2t-1715144275766-cb498035028d
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (34)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML