www1.afilmywap.bz/movie/920/mla-(2018)-telugu-movie.html
172.67.177.227301 Moved Permanently 0 B URL HTTP/1.1 www1.afilmywap.bz/movie/920/mla-(2018)-telugu-movie.html
IP 172.67.177.227:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /movie/920/mla-(2018)-telugu-movie.html HTTP/1.1
Host: www1.afilmywap.bz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 29 Nov 2022 04:42:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 29 Nov 2022 05:42:23 GMT
Location: https://www1.afilmywap.bz/movie/920/mla-(2018)-telugu-movie.html
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FoSTdJSgkY3JPu4sMw%2FOFL1R%2FB2PjCx%2BvWpZYf7vFboRxbVcRYYGZoC1q3KnPgGvrYWSqGJ4cEzNSp8A8J1Hesc%2BdZCV6fnf3bEUPSIyJalXMfcPkkiKkBFv51uPVzKVA6Q4FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7718ad27ec42b4fa-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4224
Expires: Tue, 29 Nov 2022 05:52:47 GMT
Date: Tue, 29 Nov 2022 04:42:23 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4665
Cache-Control: max-age=112003
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:42:23 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:49:06 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5496
Expires: Tue, 29 Nov 2022 06:13:59 GMT
Date: Tue, 29 Nov 2022 04:42:23 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 04:19:35 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1368
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 009d42ffa2052b06f7c48562781ed50b
92e9bed1e1175d5a31c01259617185450cac8c62
827b0f4514f57ebdbe214ecb7f6d8912ba44fd7c5cd3cde89f886a20bc17675c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "827B0F4514F57EBDBE214ECB7F6D8912BA44FD7C5CD3CDE89F886A20BC17675C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21592
Expires: Tue, 29 Nov 2022 10:42:15 GMT
Date: Tue, 29 Nov 2022 04:42:23 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: v7Wq+KlF0cJ8sPlgPupBf7N4Cc5lGS/ILGsiN7bxYZ9VDU9iLgHCKKEZh3Lfd0aIZCOuMKyO1a6+nyN/3xb94w==
x-amz-request-id: KXXE7W40NBKFTSCV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 03:45:17 GMT
age: 3426
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 04:42:23 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 009d42ffa2052b06f7c48562781ed50b
92e9bed1e1175d5a31c01259617185450cac8c62
827b0f4514f57ebdbe214ecb7f6d8912ba44fd7c5cd3cde89f886a20bc17675c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "827B0F4514F57EBDBE214ECB7F6D8912BA44FD7C5CD3CDE89F886A20BC17675C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21592
Expires: Tue, 29 Nov 2022 10:42:15 GMT
Date: Tue, 29 Nov 2022 04:42:23 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 04:08:56 GMT
cache-control: public,max-age=3600
age: 2007
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2514
Cache-Control: max-age=104785
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:42:24 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 09:48:49 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9f81083447814e24fecc696f60906c19
d0c96469badccd34477f578b4d6ebff79a23c35b
174bb57d9792a8666d90e4bba7e17e547b56a402a8901970444d139bcda7559e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "174BB57D9792A8666D90E4BBA7E17E547B56A402A8901970444D139BCDA7559E"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19225
Expires: Tue, 29 Nov 2022 10:02:49 GMT
Date: Tue, 29 Nov 2022 04:42:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4f5de8bcce1ec4a73a8038b4c62406fb
0a93cb3c9f2d85e5e46f9b1670a16c8e5077f605
ac4ecc99de55563004b61d93b50ffc1c30462114a6d36f086904b174b74fbff9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC4ECC99DE55563004B61D93B50FFC1C30462114A6D36F086904B174B74FBFF9"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13900
Expires: Tue, 29 Nov 2022 08:34:04 GMT
Date: Tue, 29 Nov 2022 04:42:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f1cf33e28268721f31b71f1cf6052744
3f345568f6674a6dc3b177637192d2aed43c6e56
1d11a15d27dc0a32244f04c8a5c7b1cd60fcb3f68e0a247051d9433727cf0b55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D11A15D27DC0A32244F04C8A5C7B1CD60FCB3F68E0A247051D9433727CF0B55"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15451
Expires: Tue, 29 Nov 2022 08:59:55 GMT
Date: Tue, 29 Nov 2022 04:42:24 GMT
Connection: keep-alive
haikcarlage.com/re9hUHGpr95/34243
23.109.82.174200 OK 25 B URL HTTP/1.1 haikcarlage.com/re9hUHGpr95/34243
IP 23.109.82.174:0
File type ASCII text, with no line terminators
Hash d488addc5df5fc9b9ff4135bb4e3a823
6ce56f48e851df4d562b43d3bc1269a504ae83fc
d1e90b8aef655ca37932287e04cbda72092eb029fe90de2bac019c10d3431f60
GET /re9hUHGpr95/34243 HTTP/1.1
Host: haikcarlage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www5.afilmywap.bz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 04:42:24 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www5.afilmywap.bz
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Wed, 30-Nov-2022 04:42:24 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D; expires=Wed, 30-Nov-2022 04:42:24 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
halltrasy.com/gqAKupXAAyO9OdQg/33550
172.255.6.160200 OK 26 B URL HTTP/1.1 halltrasy.com/gqAKupXAAyO9OdQg/33550
IP 172.255.6.160:0
File type ASCII text, with no line terminators
Hash 4e5d65669f8dcd928dad06adf883f025
d771713d758c3348dd7e5b38bb40c7935399ae46
0bebbf029fa045e4f462855e6c44edf8aaa36ded05b07a8ce456b67416d20c95
GET /gqAKupXAAyO9OdQg/33550 HTTP/1.1
Host: halltrasy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www5.afilmywap.bz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 04:42:24 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www5.afilmywap.bz
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Wed, 30-Nov-2022 04:42:24 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D; expires=Wed, 30-Nov-2022 04:42:24 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
www5.afilmywap.bz/movie/920/mla-(2018)-telugu-movie.html
104.21.75.148200 OK 9.3 kB URL HTTP/2 www5.afilmywap.bz/movie/920/mla-(2018)-telugu-movie.html
IP 104.21.75.148:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (812), with CRLF, LF line terminators
Hash 9fa4a0021a7bdec3aebf6c913c7a994e
edb91d03b558474d69eee49bcfc3e6ccb0daea5d
08bd725d0f190066244f7f3d7d0a678dabcba9a6c44ea5e2ab86e96364f7abbd
GET /movie/920/mla-(2018)-telugu-movie.html HTTP/1.1
Host: www5.afilmywap.bz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 04:42:23 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
content-security-policy: frame-ancestors 'none'
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: EXPIRED
x-server-powered-by: Engintron
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HaQOhIsWPR4scTr0vc8XB9onHPgzOLdPkvpcjXdWMH9FLz%2FGUELSCuPk71G7J%2FuiGOdLWCJ9HbtOMPdG7w3KvQ2AtCcu2hB2VFVLDU78ed%2BqU4GUilE9RTYadtZbCffu6%2BT1xQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7718ad2a4f29b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:42:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-198155354-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-198155354-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash ab359bad9f1c7b75f7aba64636945324
e4ec1b234106a7f7b8cf12e22d1149eb6f60dca1
b3788f39e8fc86aaf31dbd7e02cbab82f37da4d3182adbbf406f4dfd687aa242
GET /gtag/js?id=UA-198155354-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www5.afilmywap.bz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 29 Nov 2022 04:42:24 GMT
expires: Tue, 29 Nov 2022 04:42:24 GMT
cache-control: private, max-age=900
last-modified: Tue, 29 Nov 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43681
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:42:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.148.213.75101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.213.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DmhTNkEQem8onVgTxWUBeA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6HBDiLHJ0FTm8NGipR9//bHqxhc=
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af25abbc1f9776cf78b07837dbea38a0
1883049bac2e92f8b3107f6435f00b83d8f4c117
663a6d77de7e3c835bcbb4b567eb28053755bf50ddab14b3f668367a85efdf17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5862
Cache-Control: max-age=116065
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:42:24 GMT
Etag: "6384992b-1d7"
Expires: Wed, 30 Nov 2022 12:56:49 GMT
Last-Modified: Mon, 28 Nov 2022 11:19:07 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
js.wpadmngr.com/static/adManager.m.js
45.133.44.25200 OK 36 kB URL HTTP/2 js.wpadmngr.com/static/adManager.m.js
IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 7509d7586799c3db204235d6a6b8fa3d
31c60b579c61cd4949222cc6fd71112e8b98b916
81a7aeca8e7afe46348fa54beccc3399197393aa24d64e03dd03dcdd0347da78
GET /static/adManager.m.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www5.afilmywap.bz
Connection: keep-alive
Referer: https://www5.afilmywap.bz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 04:42:24 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 15 Nov 2022 13:38:16 GMT
etag: W/"63739648-17810"
content-encoding: gzip
expires: Tue, 29 Nov 2022 04:47:24 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
js.wpadmngr.com/npc/sdk/wp-banners.js
45.133.44.25200 OK 0 B URL HTTP/2 js.wpadmngr.com/npc/sdk/wp-banners.js
IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npc/sdk/wp-banners.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www5.afilmywap.bz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 04:42:24 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 20 Aug 2021 15:14:31 GMT
etag: "611fc6d7-0"
expires: Tue, 29 Nov 2022 04:47:24 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www5.afilmywap.bz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 29 Nov 2022 04:41:08 GMT
expires: Tue, 29 Nov 2022 06:41:08 GMT
cache-control: public, max-age=7200
age: 76
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af25abbc1f9776cf78b07837dbea38a0
1883049bac2e92f8b3107f6435f00b83d8f4c117
663a6d77de7e3c835bcbb4b567eb28053755bf50ddab14b3f668367a85efdf17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5862
Cache-Control: max-age=116065
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:42:24 GMT
Etag: "6384992b-1d7"
Expires: Wed, 30 Nov 2022 12:56:49 GMT
Last-Modified: Mon, 28 Nov 2022 11:19:07 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cd3d47a4888322339c08e27e1f166936
b49e298cad042730978ee0bb1075b2f336c0fb5c
4a290f823a00f2f81d3d2809bf00cdebdbbae76a1e0d49a6ad6b4c98e53639a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A290F823A00F2F81D3D2809BF00CDEBDBBAE76A1E0D49A6AD6B4C98E53639A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3851
Expires: Tue, 29 Nov 2022 05:46:35 GMT
Date: Tue, 29 Nov 2022 04:42:24 GMT
Connection: keep-alive
na.nawpush.com/tags/6720?version_name=b
45.133.44.25200 OK 924 B URL HTTP/2 na.nawpush.com/tags/6720?version_name=b
IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , ASCII text, with very long lines (924), with no line terminators
Hash 45a9ec3dc5e55ed86010c5032738f66c
f00152805fa7d3eb46c56b90826e5a740a94ffa7
2c353320f36dfafc823c883dc049285768df4fa6537ea5b0a4a46bf2ae2586cc
GET /tags/6720?version_name=b HTTP/1.1
Host: na.nawpush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www5.afilmywap.bz
Connection: keep-alive
Referer: https://www5.afilmywap.bz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 04:42:24 GMT
content-type: application/json
content-length: 924
server: nginx/1.18.0
cache-control: max-age=300, public
x-proxy-cache: EXPIRED
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.facebook.com/plugins/comments.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df16e383ed1c36fc%26domain%3Dwww5.afilmywap.bz%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww5.afilmywap.bz%252Ff639c77188d8c%26relation%3Dparent.parent&container_width=1268&height=100&href=https%3A%2F%2Fwww5.afilmywap.bz%2Fmovie%2F920%2Fmla-(2018)-telugu-movie.html&locale=en_GB&sdk=joey&width=470
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/comments.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df16e383ed1c36fc%26domain%3Dwww5.afilmywap.bz%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww5.afilmywap.bz%252Ff639c77188d8c%26relation%3Dparent.parent&container_width=1268&height=100&href=https%3A%2F%2Fwww5.afilmywap.bz%2Fmovie%2F920%2Fmla-(2018)-telugu-movie.html&locale=en_GB&sdk=joey&width=470
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/comments.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df16e383ed1c36fc%26domain%3Dwww5.afilmywap.bz%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fwww5.afilmywap.bz%252Ff639c77188d8c%26relation%3Dparent.parent&container_width=1268&height=100&href=https%3A%2F%2Fwww5.afilmywap.bz%2Fmovie%2F920%2Fmla-(2018)-telugu-movie.html&locale=en_GB&sdk=joey&width=470 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www5.afilmywap.bz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: iIhpMcH46cYRU1GFwbKbPkTtv8n7zioLxQH/qoWvjHxy7PSmiirOZY5rFVL1OvlbhvXe5vBsedwRmv6tdbj/hQ==
content-length: 0
date: Tue, 29 Nov 2022 04:42:24 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
notification.tubecup.net/tags?tag_id=6720&timezone_olson=UTC&version_name=b
88.198.204.166204 No Content 0 B URL HTTP/2 notification.tubecup.net/tags?tag_id=6720&timezone_olson=UTC&version_name=b
IP 88.198.204.166:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tags?tag_id=6720&timezone_olson=UTC&version_name=b HTTP/1.1
Host: notification.tubecup.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www5.afilmywap.bz
Connection: keep-alive
Referer: https://www5.afilmywap.bz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.18.0
date: Tue, 29 Nov 2022 04:42:25 GMT
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
fp.metricswpsh.com/fp?tag_id=6720
157.90.84.242204 No Content 0 B URL HTTP/1.1 fp.metricswpsh.com/fp?tag_id=6720
IP 157.90.84.242:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /fp?tag_id=6720 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www5.afilmywap.bz/
Origin: https://www5.afilmywap.bz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Tue, 29 Nov 2022 04:42:25 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Origin: https://www5.afilmywap.bz
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 737bc06ecd2cf8c9422907c0d6f5dd74
8562cae8b64ed2dd47236ea2bbb97ee5e1ed80c8
188ead5f0cef3f08681ac4e964e84fc25272694a57a52c71121c7e10d1a2a269
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "188EAD5F0CEF3F08681AC4E964E84FC25272694A57A52C71121C7E10D1A2A269"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5151
Expires: Tue, 29 Nov 2022 06:08:16 GMT
Date: Tue, 29 Nov 2022 04:42:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 722fad1bd0c6d414d8522b97eb44ee53
d55bb399ae77080ce6bc9055c073f1a2426a1c7a
d7ffee45454fcfcd7659bad141d51da9b02a1d218df3b0a5d161179c881dfc15
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D7FFEE45454FCFCD7659BAD141D51DA9B02A1D218DF3B0A5D161179C881DFC15"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7689
Expires: Tue, 29 Nov 2022 06:50:34 GMT
Date: Tue, 29 Nov 2022 04:42:25 GMT
Connection: keep-alive
d2ddadac2a.5dd044e588.com/in/track?data=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
45.133.44.24200 OK 0 B URL HTTP/2 d2ddadac2a.5dd044e588.com/in/track?data=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
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /in/track?data=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 HTTP/1.1
Host: d2ddadac2a.5dd044e588.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www5.afilmywap.bz
Connection: keep-alive
Referer: https://www5.afilmywap.bz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 04:42:25 GMT
content-length: 0
server: nginx/1.18.0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
fp.metricswpsh.com/fp?tag_id=6720
157.90.84.242200 OK 28 B URL HTTP/1.1 fp.metricswpsh.com/fp?tag_id=6720
IP 157.90.84.242:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text
Hash e3af49472d683a217237a6ebaf79bcb7
378db4d7e6171a2676ee15c80b4475d7f5ec9742
7714898d715fb8b1ce7a1de73e0e7c9f6394acc8a08cf1a3b342a7829d4de84a
POST /fp?tag_id=6720 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 22286
Origin: https://www5.afilmywap.bz
Connection: keep-alive
Referer: https://www5.afilmywap.bz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 29 Nov 2022 04:42:25 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 28
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www5.afilmywap.bz
Set-Cookie: id=131773157890765098; Expires=Wed, 29 Nov 2023 04:42:25 GMT; Secure; SameSite=None
Vary: Origin
nereserv.com/in/dip?site=native-push&wl=0&event_id=75e0731e-be23-4ef7-b2ff-54dfc5978416&subid=1692255522&sid=3149050539&spot_id=6302&created_at=2022-11-29&timezone=0&ver=8.5.1&is_native=1
168.119.25.22200 OK 0 B URL HTTP/2 nereserv.com/in/dip?site=native-push&wl=0&event_id=75e0731e-be23-4ef7-b2ff-54dfc5978416&subid=1692255522&sid=3149050539&spot_id=6302&created_at=2022-11-29&timezone=0&ver=8.5.1&is_native=1
IP 168.119.25.22:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/dip?site=native-push&wl=0&event_id=75e0731e-be23-4ef7-b2ff-54dfc5978416&subid=1692255522&sid=3149050539&spot_id=6302&created_at=2022-11-29&timezone=0&ver=8.5.1&is_native=1 HTTP/1.1
Host: nereserv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www5.afilmywap.bz
Connection: keep-alive
Referer: https://www5.afilmywap.bz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 29 Nov 2022 04:42:25 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ba59b69dcc0e8a7c063c5e3b3b76dedc
091fc270532c9498779c0bc8a8b61e5b402b6ec8
be0819a746f0790b4db6f956fb2781a5cd41a1405aa57bf6197c6414b7fc3b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE0819A746F0790B4DB6F956FB2781A5CD41A1405AA57BF6197C6414B7FC3B6A"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7674
Expires: Tue, 29 Nov 2022 06:50:19 GMT
Date: Tue, 29 Nov 2022 04:42:25 GMT
Connection: keep-alive
7b7a5435b5.5dd044e588.com/in/multy
168.119.25.22204 No Content 0 B URL HTTP/2 7b7a5435b5.5dd044e588.com/in/multy
IP 168.119.25.22:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /in/multy HTTP/1.1
Host: 7b7a5435b5.5dd044e588.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www5.afilmywap.bz/
Origin: https://www5.afilmywap.bz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.18.0
date: Tue, 29 Nov 2022 04:42:25 GMT
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2430
Expires: Tue, 29 Nov 2022 05:22:55 GMT
Date: Tue, 29 Nov 2022 04:42:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2430
Expires: Tue, 29 Nov 2022 05:22:55 GMT
Date: Tue, 29 Nov 2022 04:42:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2430
Expires: Tue, 29 Nov 2022 05:22:55 GMT
Date: Tue, 29 Nov 2022 04:42:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2430
Expires: Tue, 29 Nov 2022 05:22:55 GMT
Date: Tue, 29 Nov 2022 04:42:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7479fbd-640b-4a65-ac00-893210a725b0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7479fbd-640b-4a65-ac00-893210a725b0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c76e3c4cc159bda9b9e887fcd449ba51
12d90c36bd455b3b859fdb761b6ed49ea9f98f80
fc2aad6b1ec65938249970e01a23d35a19cb9c9acbc3524586dd23f7bdaf9690
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7479fbd-640b-4a65-ac00-893210a725b0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10445
x-amzn-requestid: fb9fc0d4-9f2e-4fab-a259-30300aacdc67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvuDGHaIAMFn_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc659-56786e9b754a48b30b5f79c7;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:06:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fkjT2irjF_lGK2IDx2nzFK13MgMQFXrtUIWv9lR9y-f6VT1bthJfyQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 14:02:53 GMT
age: 52772
etag: "12d90c36bd455b3b859fdb761b6ed49ea9f98f80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5049b423-1bbd-4caa-891e-b46234fc1a6a.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5049b423-1bbd-4caa-891e-b46234fc1a6a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df665be3ae1347cb9bb1443a6a1a33e6
e0617845684a8f7586b37e8be8976bbe6a93563e
15155df8643daa0408633922e15691a3b00b393ee433e1162cf031024e84d0a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5049b423-1bbd-4caa-891e-b46234fc1a6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14856
x-amzn-requestid: 22ec3d7a-91f5-4b67-9621-a93b1e5d09e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYejFKxoAMFe0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d45c-34ffa40356825a715a7eb5cc;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:07:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dVt3gUrJDvRWXxbs32sGuoyZI0Qo3-Dlut29Sref8Qjy2NXrJkhvNg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 03:34:53 GMT
age: 4052
etag: "e0617845684a8f7586b37e8be8976bbe6a93563e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cce27a1fe8c0222811a5ce0e7f89e1cb
28c165bac8cf68cd1b0763c311aece00672cb3a5
4530e34a47ef78c2c2b0d34a0511253a61f1927b192ab42f82361002ff10819e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9376
x-amzn-requestid: c52b3092-90d2-4289-b6e0-ab99c9d4710a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPmz3EVUoAMFWUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382eb4b-39f46c89238eff696e9f2dba;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 04:44:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ofQEhaEiX1vE25a_1xHeab9Px9zgGpk8omlX_aHmLE1oN1aZTPzWxQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:58:57 GMT
age: 24208
etag: "28c165bac8cf68cd1b0763c311aece00672cb3a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
js.wpushsdk.com/npc/sdk/wpu/npush.m.js
45.133.44.25200 OK 83 kB URL HTTP/2 js.wpushsdk.com/npc/sdk/wpu/npush.m.js
IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
Hash c81e14d1dd1d2ba3212d272c84e6743f
df028423197b06e8c084f0d0dd785ff5ecd49f00
738e7b634a4bbd194ad7a91a26a4c06bd741f3c534069a35e17d4474e91422e4
GET /npc/sdk/wpu/npush.m.js HTTP/1.1
Host: js.wpushsdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www5.afilmywap.bz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 04:42:25 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 22 Nov 2022 16:27:58 GMT
etag: W/"637cf88e-48777"
content-encoding: gzip
expires: Tue, 29 Nov 2022 04:47:25 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 22e7d3e11e78242383e452adb9299016
035a1b4a2a7889787532ec2637d5c21e06daf672
990f18423bafc9cc3daaa1bd1290313b6cb3d3a391f642d01fd6797ad4fc9ca8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3004
x-amzn-requestid: 1e6e228a-fb73-4ed3-881b-6b0e5c8297c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrFRXoAMFUJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-45059338501b45d943d7e08c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rb-NFzuOBQEOMHfs7L68ZBeBH_JMqKYfJhxWs4eNYq35L8duYylQdg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 02:07:34 GMT
age: 9291
etag: "035a1b4a2a7889787532ec2637d5c21e06daf672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83c1fedec73299637cc7dc47c48af758
2e3f7326aeea6be8a34bf2c39b34862c07bfdc41
1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4916
x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrELFoAMFaeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 03:01:17 GMT
age: 6068
etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
7b7a5435b5.5dd044e588.com/in/multy
168.119.25.22200 OK 17 kB URL HTTP/2 7b7a5435b5.5dd044e588.com/in/multy
IP 168.119.25.22:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with very long lines (16881), with no line terminators
Hash d199c0d4838d3197a04642532b4e0fe7
ee37d5504b0120d238509bb166e03f11d72e1c15
e945bc569542ff0a4a9ab55cd1fdc7fda66e2601fabd929635b5811a568b5255
Analyzer Verdict Alert quad9 Sinkholed
POST /in/multy HTTP/1.1
Host: 7b7a5435b5.5dd044e588.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 1123
Origin: https://www5.afilmywap.bz
Connection: keep-alive
Referer: https://www5.afilmywap.bz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 29 Nov 2022 04:42:26 GMT
content-type: application/json
content-length: 16881
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
7b7a5435b5.5dd044e588.com/in/show/?mid=8016410225803406659&pid=0&site=native-push-mainstream&sc=NO&usage_type=DCH&subid=1692255522&sid=3149050539&cid=12030&price=0.00056&is_cpm=0&cpm=0&ecpm=0.030011575357054277&crid=&crtid=41e2b054b7d7fdd561f6651d06d511e5&tcid=0&out_id=1&ver=8.5.1&ver_c=&refdom=www5.afilmywap.bz&hostname=auc-inpage-hz-3-c&site_id=316302&spot_id=6302&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=1669783345&created_at=2022-11-29&is_native=2&auction_queue=0&burl=f2HrHyZuuILN2gbNpRw6drbisbUFHyrcGn8yWtGu1XjLs3WuMo_FEH3AZteB_A-hgsb5rT3spTr2uSierPxxCgEOKOaV3nxpoQ5n36JzwED0fN0PC3q_57wZrNk&pop_winurl=&ip=91.90.42.154&testab=0&px_id=536302&adblock=0&auction_host=all&mm=0&yc=0&render_type=hq&campaign_type=lq-pop&uniq=&exp=&resp_type=&iabcat=IAB1-5&min_cpm=0.005041903987410098&placement_type_id=&skin_test=0&verify_hash=6b5b3e3d2cf6ab4c8d27970f3cbe256a&score=58.947557304478515&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D1692255522%26spot_id%3D6302%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fwww5.afilmywap.bz%252F%26idzone%3D0%26sid%3D1885&ml=&tag_ab=b&original_bid=0.00056&user_fp=0&v2_track=0&url=jcPPJr9HBFM7sKRlpieRlvphMILdLFGG-TxntN5S6SEL_fWE42niJ17J1KuL7P9mUrDzCbBxvNy8EbjeOfC9L3ykamFG2TAUKEzvhGNMx8FNQ5M3-ucz3cCzNeoIOm50vZLiHFq3Fm0X6NIjk5SQs8Ab6zhvEZEZwDk3JZzvKJ8Plhx-iQ&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FIN%2FIN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp&skin_id=4&vertical_id=0&real_bid=0.000426496&pr=&user_keywords=&auc_type=1&aid=178&ext_cid=0&device_theme=light&keywords=&mlc=1&format=social-scale-b_r-body&mlf=1&cpa=0f896909-c8be-4c77-8c53-1f6979babb3e
168.119.25.22302 Found 0 B URL HTTP/2 7b7a5435b5.5dd044e588.com/in/show/?mid=8016410225803406659&pid=0&site=native-push-mainstream&sc=NO&usage_type=DCH&subid=1692255522&sid=3149050539&cid=12030&price=0.00056&is_cpm=0&cpm=0&ecpm=0.030011575357054277&crid=&crtid=41e2b054b7d7fdd561f6651d06d511e5&tcid=0&out_id=1&ver=8.5.1&ver_c=&refdom=www5.afilmywap.bz&hostname=auc-inpage-hz-3-c&site_id=316302&spot_id=6302&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=1669783345&created_at=2022-11-29&is_native=2&auction_queue=0&burl=f2HrHyZuuILN2gbNpRw6drbisbUFHyrcGn8yWtGu1XjLs3WuMo_FEH3AZteB_A-hgsb5rT3spTr2uSierPxxCgEOKOaV3nxpoQ5n36JzwED0fN0PC3q_57wZrNk&pop_winurl=&ip=91.90.42.154&testab=0&px_id=536302&adblock=0&auction_host=all&mm=0&yc=0&render_type=hq&campaign_type=lq-pop&uniq=&exp=&resp_type=&iabcat=IAB1-5&min_cpm=0.005041903987410098&placement_type_id=&skin_test=0&verify_hash=6b5b3e3d2cf6ab4c8d27970f3cbe256a&score=58.947557304478515&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D1692255522%26spot_id%3D6302%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fwww5.afilmywap.bz%252F%26idzone%3D0%26sid%3D1885&ml=&tag_ab=b&original_bid=0.00056&user_fp=0&v2_track=0&url=jcPPJr9HBFM7sKRlpieRlvphMILdLFGG-TxntN5S6SEL_fWE42niJ17J1KuL7P9mUrDzCbBxvNy8EbjeOfC9L3ykamFG2TAUKEzvhGNMx8FNQ5M3-ucz3cCzNeoIOm50vZLiHFq3Fm0X6NIjk5SQs8Ab6zhvEZEZwDk3JZzvKJ8Plhx-iQ&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FIN%2FIN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp&skin_id=4&vertical_id=0&real_bid=0.000426496&pr=&user_keywords=&auc_type=1&aid=178&ext_cid=0&device_theme=light&keywords=&mlc=1&format=social-scale-b_r-body&mlf=1&cpa=0f896909-c8be-4c77-8c53-1f6979babb3e
IP 168.119.25.22:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /in/show/?mid=8016410225803406659&pid=0&site=native-push-mainstream&sc=NO&usage_type=DCH&subid=1692255522&sid=3149050539&cid=12030&price=0.00056&is_cpm=0&cpm=0&ecpm=0.030011575357054277&crid=&crtid=41e2b054b7d7fdd561f6651d06d511e5&tcid=0&out_id=1&ver=8.5.1&ver_c=&refdom=www5.afilmywap.bz&hostname=auc-inpage-hz-3-c&site_id=316302&spot_id=6302&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=1669783345&created_at=2022-11-29&is_native=2&auction_queue=0&burl=f2HrHyZuuILN2gbNpRw6drbisbUFHyrcGn8yWtGu1XjLs3WuMo_FEH3AZteB_A-hgsb5rT3spTr2uSierPxxCgEOKOaV3nxpoQ5n36JzwED0fN0PC3q_57wZrNk&pop_winurl=&ip=91.90.42.154&testab=0&px_id=536302&adblock=0&auction_host=all&mm=0&yc=0&render_type=hq&campaign_type=lq-pop&uniq=&exp=&resp_type=&iabcat=IAB1-5&min_cpm=0.005041903987410098&placement_type_id=&skin_test=0&verify_hash=6b5b3e3d2cf6ab4c8d27970f3cbe256a&score=58.947557304478515&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D1692255522%26spot_id%3D6302%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fwww5.afilmywap.bz%252F%26idzone%3D0%26sid%3D1885&ml=&tag_ab=b&original_bid=0.00056&user_fp=0&v2_track=0&url=jcPPJr9HBFM7sKRlpieRlvphMILdLFGG-TxntN5S6SEL_fWE42niJ17J1KuL7P9mUrDzCbBxvNy8EbjeOfC9L3ykamFG2TAUKEzvhGNMx8FNQ5M3-ucz3cCzNeoIOm50vZLiHFq3Fm0X6NIjk5SQs8Ab6zhvEZEZwDk3JZzvKJ8Plhx-iQ&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FIN%2FIN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp&skin_id=4&vertical_id=0&real_bid=0.000426496&pr=&user_keywords=&auc_type=1&aid=178&ext_cid=0&device_theme=light&keywords=&mlc=1&format=social-scale-b_r-body&mlf=1&cpa=0f896909-c8be-4c77-8c53-1f6979babb3e HTTP/1.1
Host: 7b7a5435b5.5dd044e588.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www5.afilmywap.bz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Tue, 29 Nov 2022 04:42:26 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://static.bookmsg.com/creatives/IN/IN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp
X-Firefox-Spdy: h2
7b7a5435b5.5dd044e588.com/in/show/?mid=8016410225803406659&pid=0&site=native-push-mainstream&sc=NO&usage_type=DCH&subid=1692255522&sid=3149050539&cid=2316&price=0.004020000034943223&is_cpm=0&cpm=0&ecpm=0.01553829944130805&crid=&crtid=b9fd333d96713f0a77f0785f16a2be90&tcid=0&out_id=0&ver=8.5.1&ver_c=&refdom=www5.afilmywap.bz&hostname=auc-inpage-hz-3-c&site_id=316302&spot_id=6302&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=1669783345&created_at=2022-11-29&is_native=1&auction_queue=0&burl=_kLr3DSLWRUe-g6xnYHZV23XHDukVVh-zrK9Rj0poSze1oGO_iCt1g&pop_winurl=&ip=91.90.42.154&testab=0&px_id=736302&adblock=0&auction_host=all&mm=0&yc=0&render_type=hq&campaign_type=hq&uniq=&exp=&resp_type=&iabcat=IAB1-5&min_cpm=0.0004101717416386847&placement_type_id=&skin_test=0&verify_hash=ae3ea296a0b22086a0169354f5419613&score=58.947557304478515&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D1692255522%26spot_id%3D6302%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fwww5.afilmywap.bz%252F%26idzone%3D0%26sid%3D1885&ml=&tag_ab=b&original_bid=0.004020000034943223&user_fp=0&v2_track=0&url=KzTPpBKyS0S0vDgfPhmQspOk7X7-aXET86VQyXAfeup1uk6C-COsZs-QNHMcr9jw4xGsPnuIUld9xOjVV20g4aIylHE0GP0FnluBOuYY13N-GscNOc_MdtGqepYJOjYT2hkJ3ESYRxtT_6CKUWapOC7mu6_YMlZeBLSYxT44K7LyxdXkZBWe9E5W7nt4xG9Mw4--X03_wFy-AeOLX9s5jkHAO7-77F-BOR7A0zcSrr2ocyLSOoz_2HXpXDnpCtdE0xEZyNqticX-JGef2oWQMXpbmnxTn8hcVaF0Z3q4nU3NVnaQnji4FHqTSZ6qjFGeZfucDngwGiZ1K4nfNjL-kysWoBqaVKObd6Ky_Qf8aRA0gYTkoJp_PuXb9mjJKM2V-m9MHJALn-yXpwXmskn-M-ij1CCMtUI2r_wWpEptyBQsFauL-Ae_vJR7cOKZ1gH0AkWZi8SREk2xVF4RcbK_yKi8t3nhBPyrzahnsktktA0F-ksimniIpEu0AKcDUCAHSfCss-TAU7npYbgWHe1YMe5EHypP_THBrFeDlN9pczEhTlVtUdEOEH22pD1DN1tG46FMgLCDBVz7ykpp6Vi1Rgwvb5zvcIkS71sbJO6j16ttInpOgSjIgps3271zk7b1DjihOiCkdI6b0KRGzCdhJLLk4cY13p0vit5yZ7b_hnvEmiDOyeMj14NVqf-By5YsQFjJDLBSj4zHC2AUIIkdZCrb0KqsPESt__40iXFblXBsIrjXj3nEBbbmR9hmn1MV2RX1KBzgwrgu56sApycSC-cR_lbMnT4jwQqUg2_Eoc5Z7SBAMMX-IlNJe-nZO4LcLI6sWAnieL6V0QGwHkHqw-M0ZKGleBxfGINvHlV_OXaIwyInBYucaQbSG6eYPxZuRa6Ftln01ruOlrfTgFLPHsjnZQ21KKMETdZsAJRJG3k_RF0OI9TE4X9AlgXYaDgQK7vKfwVFIBYDqb8U_yBDUV-y8qEilQkxMhQbaxs4SkhyjOwW4Tn6_6BrAnNZwe0YnM2dFUBzDQD8XdOzwtd3ORPoz1DZDcmpNnylVIXe_7jpKIyIf8gd41NBmwZdLoFeZCPXV8emGRq_ueIepfNovN-1KENfflIVmEzQEWfXfp8&image_url=https%3A%2F%2Fi.cdnkimg.com%2Fauto%2F492x328%2Fq85%2Fimage%2Fvk%2F9430%2F430%2Frect_6351150b145e2t1666258187r6216.jpg.webp&skin_id=4&vertical_id=5&real_bid=0.002714304023593664&pr=&user_keywords=&auc_type=1&aid=412&ext_cid=0&device_theme=light&keywords=&format=social-scale-b_r-body&cpa=12fd3d85-d415-4da2-bbdc-88d6f91f88ab
168.119.25.22302 Found 0 B URL HTTP/2 7b7a5435b5.5dd044e588.com/in/show/?mid=8016410225803406659&pid=0&site=native-push-mainstream&sc=NO&usage_type=DCH&subid=1692255522&sid=3149050539&cid=2316&price=0.004020000034943223&is_cpm=0&cpm=0&ecpm=0.01553829944130805&crid=&crtid=b9fd333d96713f0a77f0785f16a2be90&tcid=0&out_id=0&ver=8.5.1&ver_c=&refdom=www5.afilmywap.bz&hostname=auc-inpage-hz-3-c&site_id=316302&spot_id=6302&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=1669783345&created_at=2022-11-29&is_native=1&auction_queue=0&burl=_kLr3DSLWRUe-g6xnYHZV23XHDukVVh-zrK9Rj0poSze1oGO_iCt1g&pop_winurl=&ip=91.90.42.154&testab=0&px_id=736302&adblock=0&auction_host=all&mm=0&yc=0&render_type=hq&campaign_type=hq&uniq=&exp=&resp_type=&iabcat=IAB1-5&min_cpm=0.0004101717416386847&placement_type_id=&skin_test=0&verify_hash=ae3ea296a0b22086a0169354f5419613&score=58.947557304478515&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D1692255522%26spot_id%3D6302%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fwww5.afilmywap.bz%252F%26idzone%3D0%26sid%3D1885&ml=&tag_ab=b&original_bid=0.004020000034943223&user_fp=0&v2_track=0&url=KzTPpBKyS0S0vDgfPhmQspOk7X7-aXET86VQyXAfeup1uk6C-COsZs-QNHMcr9jw4xGsPnuIUld9xOjVV20g4aIylHE0GP0FnluBOuYY13N-GscNOc_MdtGqepYJOjYT2hkJ3ESYRxtT_6CKUWapOC7mu6_YMlZeBLSYxT44K7LyxdXkZBWe9E5W7nt4xG9Mw4--X03_wFy-AeOLX9s5jkHAO7-77F-BOR7A0zcSrr2ocyLSOoz_2HXpXDnpCtdE0xEZyNqticX-JGef2oWQMXpbmnxTn8hcVaF0Z3q4nU3NVnaQnji4FHqTSZ6qjFGeZfucDngwGiZ1K4nfNjL-kysWoBqaVKObd6Ky_Qf8aRA0gYTkoJp_PuXb9mjJKM2V-m9MHJALn-yXpwXmskn-M-ij1CCMtUI2r_wWpEptyBQsFauL-Ae_vJR7cOKZ1gH0AkWZi8SREk2xVF4RcbK_yKi8t3nhBPyrzahnsktktA0F-ksimniIpEu0AKcDUCAHSfCss-TAU7npYbgWHe1YMe5EHypP_THBrFeDlN9pczEhTlVtUdEOEH22pD1DN1tG46FMgLCDBVz7ykpp6Vi1Rgwvb5zvcIkS71sbJO6j16ttInpOgSjIgps3271zk7b1DjihOiCkdI6b0KRGzCdhJLLk4cY13p0vit5yZ7b_hnvEmiDOyeMj14NVqf-By5YsQFjJDLBSj4zHC2AUIIkdZCrb0KqsPESt__40iXFblXBsIrjXj3nEBbbmR9hmn1MV2RX1KBzgwrgu56sApycSC-cR_lbMnT4jwQqUg2_Eoc5Z7SBAMMX-IlNJe-nZO4LcLI6sWAnieL6V0QGwHkHqw-M0ZKGleBxfGINvHlV_OXaIwyInBYucaQbSG6eYPxZuRa6Ftln01ruOlrfTgFLPHsjnZQ21KKMETdZsAJRJG3k_RF0OI9TE4X9AlgXYaDgQK7vKfwVFIBYDqb8U_yBDUV-y8qEilQkxMhQbaxs4SkhyjOwW4Tn6_6BrAnNZwe0YnM2dFUBzDQD8XdOzwtd3ORPoz1DZDcmpNnylVIXe_7jpKIyIf8gd41NBmwZdLoFeZCPXV8emGRq_ueIepfNovN-1KENfflIVmEzQEWfXfp8&image_url=https%3A%2F%2Fi.cdnkimg.com%2Fauto%2F492x328%2Fq85%2Fimage%2Fvk%2F9430%2F430%2Frect_6351150b145e2t1666258187r6216.jpg.webp&skin_id=4&vertical_id=5&real_bid=0.002714304023593664&pr=&user_keywords=&auc_type=1&aid=412&ext_cid=0&device_theme=light&keywords=&format=social-scale-b_r-body&cpa=12fd3d85-d415-4da2-bbdc-88d6f91f88ab
IP 168.119.25.22:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /in/show/?mid=8016410225803406659&pid=0&site=native-push-mainstream&sc=NO&usage_type=DCH&subid=1692255522&sid=3149050539&cid=2316&price=0.004020000034943223&is_cpm=0&cpm=0&ecpm=0.01553829944130805&crid=&crtid=b9fd333d96713f0a77f0785f16a2be90&tcid=0&out_id=0&ver=8.5.1&ver_c=&refdom=www5.afilmywap.bz&hostname=auc-inpage-hz-3-c&site_id=316302&spot_id=6302&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=1669783345&created_at=2022-11-29&is_native=1&auction_queue=0&burl=_kLr3DSLWRUe-g6xnYHZV23XHDukVVh-zrK9Rj0poSze1oGO_iCt1g&pop_winurl=&ip=91.90.42.154&testab=0&px_id=736302&adblock=0&auction_host=all&mm=0&yc=0&render_type=hq&campaign_type=hq&uniq=&exp=&resp_type=&iabcat=IAB1-5&min_cpm=0.0004101717416386847&placement_type_id=&skin_test=0&verify_hash=ae3ea296a0b22086a0169354f5419613&score=58.947557304478515&durl=https%3A%2F%2Fts.cvastico.com%2Fin%2F1546%2F%3Fad_sub%3D1692255522%26spot_id%3D6302%26is_adult%3D0%26p%3Dhttps%253A%252F%252Fwww5.afilmywap.bz%252F%26idzone%3D0%26sid%3D1885&ml=&tag_ab=b&original_bid=0.004020000034943223&user_fp=0&v2_track=0&url=KzTPpBKyS0S0vDgfPhmQspOk7X7-aXET86VQyXAfeup1uk6C-COsZs-QNHMcr9jw4xGsPnuIUld9xOjVV20g4aIylHE0GP0FnluBOuYY13N-GscNOc_MdtGqepYJOjYT2hkJ3ESYRxtT_6CKUWapOC7mu6_YMlZeBLSYxT44K7LyxdXkZBWe9E5W7nt4xG9Mw4--X03_wFy-AeOLX9s5jkHAO7-77F-BOR7A0zcSrr2ocyLSOoz_2HXpXDnpCtdE0xEZyNqticX-JGef2oWQMXpbmnxTn8hcVaF0Z3q4nU3NVnaQnji4FHqTSZ6qjFGeZfucDngwGiZ1K4nfNjL-kysWoBqaVKObd6Ky_Qf8aRA0gYTkoJp_PuXb9mjJKM2V-m9MHJALn-yXpwXmskn-M-ij1CCMtUI2r_wWpEptyBQsFauL-Ae_vJR7cOKZ1gH0AkWZi8SREk2xVF4RcbK_yKi8t3nhBPyrzahnsktktA0F-ksimniIpEu0AKcDUCAHSfCss-TAU7npYbgWHe1YMe5EHypP_THBrFeDlN9pczEhTlVtUdEOEH22pD1DN1tG46FMgLCDBVz7ykpp6Vi1Rgwvb5zvcIkS71sbJO6j16ttInpOgSjIgps3271zk7b1DjihOiCkdI6b0KRGzCdhJLLk4cY13p0vit5yZ7b_hnvEmiDOyeMj14NVqf-By5YsQFjJDLBSj4zHC2AUIIkdZCrb0KqsPESt__40iXFblXBsIrjXj3nEBbbmR9hmn1MV2RX1KBzgwrgu56sApycSC-cR_lbMnT4jwQqUg2_Eoc5Z7SBAMMX-IlNJe-nZO4LcLI6sWAnieL6V0QGwHkHqw-M0ZKGleBxfGINvHlV_OXaIwyInBYucaQbSG6eYPxZuRa6Ftln01ruOlrfTgFLPHsjnZQ21KKMETdZsAJRJG3k_RF0OI9TE4X9AlgXYaDgQK7vKfwVFIBYDqb8U_yBDUV-y8qEilQkxMhQbaxs4SkhyjOwW4Tn6_6BrAnNZwe0YnM2dFUBzDQD8XdOzwtd3ORPoz1DZDcmpNnylVIXe_7jpKIyIf8gd41NBmwZdLoFeZCPXV8emGRq_ueIepfNovN-1KENfflIVmEzQEWfXfp8&image_url=https%3A%2F%2Fi.cdnkimg.com%2Fauto%2F492x328%2Fq85%2Fimage%2Fvk%2F9430%2F430%2Frect_6351150b145e2t1666258187r6216.jpg.webp&skin_id=4&vertical_id=5&real_bid=0.002714304023593664&pr=&user_keywords=&auc_type=1&aid=412&ext_cid=0&device_theme=light&keywords=&format=social-scale-b_r-body&cpa=12fd3d85-d415-4da2-bbdc-88d6f91f88ab HTTP/1.1
Host: 7b7a5435b5.5dd044e588.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Tue, 29 Nov 2022 04:42:26 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://s.viichxt.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==?f=https%3A%2F%2Fi.cdnkimg.com%2Fauto%2F192%2Fq85%2Fimage%2Fvk%2F9430%2F430%2F6351150b145e2t1666258187r6216.jpg.webp
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f75defbbac343a961a1725c5680c6502
46452b3db3299f7e30fab0c6b733c7eab14aa36b
5add82387ae71f3fd0c86fce74678d3ac9ae4daa28f1deb2242c4cee8e7aaa2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5ADD82387AE71F3FD0C86FCE74678D3AC9AE4DAA28F1DEB2242C4CEE8E7AAA2A"
Last-Modified: Tue, 29 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8454
Expires: Tue, 29 Nov 2022 07:03:20 GMT
Date: Tue, 29 Nov 2022 04:42:26 GMT
Connection: keep-alive
static.bookmsg.com/creatives/IN/IN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp
116.202.204.12200 OK 790 B URL HTTP/2 static.bookmsg.com/creatives/IN/IN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp
IP 116.202.204.12:0
ASN #24940 Hetzner Online GmbH
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 65156a660e465299370ebd90d84aa461
12ff60b17f579a77e42a8be7b6b1892fc71be33d
e3b2784385cd128d5a6dfdec7f4be2147d6b57fa66c1a36c61c085aaf27f9e18
GET /creatives/IN/IN_da5b583487923e03a815871465a0b6f24c2cb005_icon.webp HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www5.afilmywap.bz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 29 Nov 2022 04:42:26 GMT
content-type: image/webp
content-length: 790
last-modified: Tue, 24 Nov 2020 14:20:43 GMT
etag: "5fbd16bb-316"
cache-control: public, max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7f700819c735fb898806fc36fe571b0b
ed6ef6de604620de05852ec508a326982025909b
c398f4334791472150b060e013f1fc0757f9db68bef08e7cb10175e4b8d7076a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C398F4334791472150B060E013F1FC0757F9DB68BEF08E7CB10175E4B8D7076A"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10712
Expires: Tue, 29 Nov 2022 07:40:58 GMT
Date: Tue, 29 Nov 2022 04:42:26 GMT
Connection: keep-alive
i.cdnkimg.com/auto/492x328/q85/image/vk/9430/430/rect_6351150b145e2t1666258187r6216.jpg.webp
45.133.44.36200 OK 16 kB URL HTTP/2 i.cdnkimg.com/auto/492x328/q85/image/vk/9430/430/rect_6351150b145e2t1666258187r6216.jpg.webp
IP 45.133.44.36:0
ASN #39572 DataWeb Global Group B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4bc559f650caeb20fecb4fba72d6e8eb
84d500ac4e2f0bda2528888cffebf6f4d854ff52
3151c6914dfaa08ce8ed67e524c8a98bb327044d71de484a1713ef4a319d99ea
GET /auto/492x328/q85/image/vk/9430/430/rect_6351150b145e2t1666258187r6216.jpg.webp HTTP/1.1
Host: i.cdnkimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 04:42:26 GMT
content-type: image/webp
content-length: 16488
server: nginx/1.19.0
cache-control: max-age=1209600
x-cache-status: MISS
expires: Tue, 13 Dec 2022 04:42:26 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
s.viichxt.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==?f=https%3A%2F%2Fi.cdnkimg.com%2Fauto%2F192%2Fq85%2Fimage%2Fvk%2F9430%2F430%2F6351150b145e2t1666258187r6216.jpg.webp
185.98.54.153302 Found 0 B URL HTTP/2 s.viichxt.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==?f=https%3A%2F%2Fi.cdnkimg.com%2Fauto%2F192%2Fq85%2Fimage%2Fvk%2F9430%2F430%2F6351150b145e2t1666258187r6216.jpg.webp
IP 185.98.54.153:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET 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==?f=https%3A%2F%2Fi.cdnkimg.com%2Fauto%2F192%2Fq85%2Fimage%2Fvk%2F9430%2F430%2F6351150b145e2t1666258187r6216.jpg.webp HTTP/1.1
Host: s.viichxt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.19.0
date: Tue, 29 Nov 2022 04:42:26 GMT
content-length: 0
location: https://i.cdnkimg.com/auto/192/q85/image/vk/9430/430/6351150b145e2t1666258187r6216.jpg.webp
X-Firefox-Spdy: h2
i.cdnkimg.com/auto/192/q85/image/vk/9430/430/6351150b145e2t1666258187r6216.jpg.webp
45.133.44.36200 OK 9.1 kB URL HTTP/2 i.cdnkimg.com/auto/192/q85/image/vk/9430/430/6351150b145e2t1666258187r6216.jpg.webp
IP 45.133.44.36:0
ASN #39572 DataWeb Global Group B.V.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 92d5e1fb115e5f886baacfc315180121
c86fc4ff569499a9a06a9da795bfb2f06c58b2d0
1cec85e404e543a8d14e8bc5aca13acdace8d4de8c0d8fe090dc2e51d6139969
GET /auto/192/q85/image/vk/9430/430/6351150b145e2t1666258187r6216.jpg.webp HTTP/1.1
Host: i.cdnkimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 04:42:26 GMT
content-type: image/webp
content-length: 9080
server: nginx/1.19.0
cache-control: max-age=1209600
x-cache-status: HIT
expires: Tue, 13 Dec 2022 04:42:26 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
js.wpadmngr.com/static/adManager.js
45.133.44.25200 OK 0 B URL HTTP/2 js.wpadmngr.com/static/adManager.js
IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
GET /static/adManager.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www5.afilmywap.bz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 04:42:24 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Wed, 13 Jul 2022 06:52:04 GMT
etag: W/"62ce6b94-4e2"
content-encoding: gzip
expires: Tue, 29 Nov 2022 04:47:24 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
www1.afilmywap.bz/movie/920/mla-(2018)-telugu-movie.html
104.21.75.148301 Moved Permanently 0 B URL HTTP/2 www1.afilmywap.bz/movie/920/mla-(2018)-telugu-movie.html
IP 104.21.75.148:0
GET /movie/920/mla-(2018)-telugu-movie.html HTTP/1.1
Host: www1.afilmywap.bz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Tue, 29 Nov 2022 04:42:23 GMT
content-type: text/html; charset=UTF-8
location: https://www5.afilmywap.bz/movie/920/mla-(2018)-telugu-movie.html
content-security-policy: frame-ancestors 'none'
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: MISS
x-server-powered-by: Engintron
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QVaM7JPXdvEEss6nUSV56TgTLacFEh8RbrmulCjMk7ITRwb%2BAAChnIvm3G0anIn0DgmEB8KeGlfnMIki%2BeOOCcZVfbMQRQBFf2%2F2rLIY1dMFzC55lh7svVYA77w97NRlaShmhg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7718ad294eb7b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2