| teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ | 199.36.158.100 | 200 OK | 1.5 kB |
URL User Request GET HTTP/2teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ IP199.36.158.100:443
CertificateIssuerGoogle Trust Services LLC Subjectfirebaseapp.com Fingerprint6D:BD:C9:A0:A6:73:A0:9B:87:1C:93:A6:7E:16:92:6F:B5:1B:FB:4D ValidityThu, 21 Mar 2024 15:15:15 GMT - Wed, 19 Jun 2024 15:15:14 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash85abe2a9744b01cc0b294b001dac7353 3a356bd0eb087bfa2f5141ec7e1be5aa6f655320 b8e25261f6156d7b868a122a921761f7ab118428d8e2ad209d525ebe23e9c981
GET /?watch_id=11130/ HTTP/1.1
Host: teenflix-watch-facebook.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "c2cf8ea1aab8e435579d68371be73aec4ca8c0c68a619e5115fb98ca6765710a-br"
last-modified: Mon, 18 Mar 2024 09:05:36 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 04 May 2024 13:55:54 GMT
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714830954.968537,VS0,VE120
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1466
X-Firefox-Spdy: h2
|
|
| haullollipop.com/328d2dde268e80f96dd3decc123c5560/invoke.js | 192.243.61.227 | 200 OK | 12 kB |
URL GET HTTP/1.1haullollipop.com/328d2dde268e80f96dd3decc123c5560/invoke.js IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerLet's Encrypt Subjecthaullollipop.com Fingerprint3A:7A:E4:19:87:68:79:C3:CF:F0:A5:9B:E0:2F:6C:46:E1:8F:51:1D ValiditySun, 10 Mar 2024 09:46:39 GMT - Sat, 08 Jun 2024 09:46:38 GMT
File typeJavaScript source, ASCII text, with very long lines (31306), with no line terminators Hash5a779286ef417317853778271ff4ab87 6329ccb92a51bb14616a0d32d2a7c521f9719f33 cea1212be05364d9d1df5ace3a9fd4ad23cbbc3345835ec4030af751352fef76
GET /328d2dde268e80f96dd3decc123c5560/invoke.js HTTP/1.1
Host: haullollipop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teenflix-watch-facebook.firebaseapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 13:55:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 30e4fb98875e119bfc1837040d211ee7
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| haullollipop.com/28b78359e5439ecd104c0a0ca507dd86/invoke.js | 192.243.61.227 | 200 OK | 9.8 kB |
URL GET HTTP/1.1haullollipop.com/28b78359e5439ecd104c0a0ca507dd86/invoke.js IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerLet's Encrypt Subjecthaullollipop.com Fingerprint3A:7A:E4:19:87:68:79:C3:CF:F0:A5:9B:E0:2F:6C:46:E1:8F:51:1D ValiditySun, 10 Mar 2024 09:46:39 GMT - Sat, 08 Jun 2024 09:46:38 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (26562), with no line terminators Hash16bf2970b79b2e3fdf910cd310bad566 e1a0efd28eeba932108c996862cb001f1b7618c8 c188015264e81717c7926f6bf8fb798d464ffd0ccbf0c965cbe4728a4ce62c83
GET /28b78359e5439ecd104c0a0ca507dd86/invoke.js HTTP/1.1
Host: haullollipop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teenflix-watch-facebook.firebaseapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 13:55:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 84f38f418566964ceda02005cc5b1fb9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| haullollipop.com/328d2dde268e80f96dd3decc123c5560/invoke.js | 192.243.61.227 | 200 OK | 12 kB |
URL GET HTTP/1.1haullollipop.com/328d2dde268e80f96dd3decc123c5560/invoke.js IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerLet's Encrypt Subjecthaullollipop.com Fingerprint3A:7A:E4:19:87:68:79:C3:CF:F0:A5:9B:E0:2F:6C:46:E1:8F:51:1D ValiditySun, 10 Mar 2024 09:46:39 GMT - Sat, 08 Jun 2024 09:46:38 GMT
File typeJavaScript source, ASCII text, with very long lines (31312), with no line terminators Hashc438efc718544ba97b72957269d98277 18aca47e2d393f8186a74e47c9dfb894e38f0c30 b959d208dd89956223d317a39de2e68e272ef6db215031c50998d7a8c176c7b9
GET /328d2dde268e80f96dd3decc123c5560/invoke.js HTTP/1.1
Host: haullollipop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teenflix-watch-facebook.firebaseapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 13:55:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6017ffb8f986f1127e2a38de4b5fd4ee
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| proftrafficcounter.com/stats | 52.29.105.35 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP52.29.105.35:443
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash308eb09bde4c7959e4bf6e7812fa273b 5c16ff4b2dc65a59939bf39b299a83169f0cb674 74a33aaa1ef36df1f2c56bf416bdbb58ddb5cc0d05c0feceb20a1512813b87ee
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://teenflix-watch-facebook.firebaseapp.com
DNT: 1
Connection: keep-alive
Referer: https://teenflix-watch-facebook.firebaseapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 13:55:55 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://teenflix-watch-facebook.firebaseapp.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=8bbcd5a6-1211-4647-83c5-81851a59125d:1:1; expires=Tue, 02 May 2034 13:55:55 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 52.29.105.35 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP52.29.105.35:443
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash308eb09bde4c7959e4bf6e7812fa273b 5c16ff4b2dc65a59939bf39b299a83169f0cb674 74a33aaa1ef36df1f2c56bf416bdbb58ddb5cc0d05c0feceb20a1512813b87ee
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://teenflix-watch-facebook.firebaseapp.com
DNT: 1
Connection: keep-alive
Referer: https://teenflix-watch-facebook.firebaseapp.com/
Cookie: uid_id2=8bbcd5a6-1211-4647-83c5-81851a59125d:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 13:55:55 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://teenflix-watch-facebook.firebaseapp.com
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 52.29.105.35 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP52.29.105.35:443
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash308eb09bde4c7959e4bf6e7812fa273b 5c16ff4b2dc65a59939bf39b299a83169f0cb674 74a33aaa1ef36df1f2c56bf416bdbb58ddb5cc0d05c0feceb20a1512813b87ee
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://teenflix-watch-facebook.firebaseapp.com
DNT: 1
Connection: keep-alive
Referer: https://teenflix-watch-facebook.firebaseapp.com/
Cookie: uid_id2=8bbcd5a6-1211-4647-83c5-81851a59125d:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 13:55:55 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://teenflix-watch-facebook.firebaseapp.com
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| coexistsafetyghost.com/watch.435074972822.js?key=328d2dde268e80f96dd3decc123c5560&kw=%5B%5D&refer=https%3A%2F%2Fteenflix-watch-facebook.firebaseapp.com%2F%3Fwatch_id%3D11130%2F&tz=0&dev=e&res=14.2071&uuid=8bbcd5a6-1211-4647-83c5-81851a59125d%3A1%3A1 | 192.243.59.12 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1coexistsafetyghost.com/watch.435074972822.js?key=328d2dde268e80f96dd3decc123c5560&kw=%5B%5D&refer=https%3A%2F%2Fteenflix-watch-facebook.firebaseapp.com%2F%3Fwatch_id%3D11130%2F&tz=0&dev=e&res=14.2071&uuid=8bbcd5a6-1211-4647-83c5-81851a59125d%3A1%3A1 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerLet's Encrypt Subjectcoexistsafetyghost.com Fingerprint4D:41:7B:FB:11:3F:3C:36:DB:78:BA:88:80:F1:D4:F5:CC:80:DD:9C ValidityMon, 29 Apr 2024 13:15:24 GMT - Sun, 28 Jul 2024 13:15:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.435074972822.js?key=328d2dde268e80f96dd3decc123c5560&kw=%5B%5D&refer=https%3A%2F%2Fteenflix-watch-facebook.firebaseapp.com%2F%3Fwatch_id%3D11130%2F&tz=0&dev=e&res=14.2071&uuid=8bbcd5a6-1211-4647-83c5-81851a59125d%3A1%3A1 HTTP/1.1
Host: coexistsafetyghost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://teenflix-watch-facebook.firebaseapp.com
DNT: 1
Connection: keep-alive
Referer: https://teenflix-watch-facebook.firebaseapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sat, 04 May 2024 13:55:55 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://teenflix-watch-facebook.firebaseapp.com
Access-Control-Allow-Origin: https://teenflix-watch-facebook.firebaseapp.com
Access-Control-Allow-Credentials: true
Location: https://coexistsafetyghost.com/watch.435074972822.js?dev=e&key=328d2dde268e80f96dd3decc123c5560&kw=%5B%5D&pst=1714831015&refer=https%3A%2F%2Fteenflix-watch-facebook.firebaseapp.com%2F%3Fwatch_id%3D11130%2F&res=14.2071&rmtc=t&shu=8259d7f7a07f07f0d4df5e368e059e0ecf42158b3798ac0a503c0abba5df74d618fdd2e235e9e5a67dc7fea6c77ae9b1eb0211d3f9710b6594748716eee7173aa3d42e0682019026ca3ddf33d83a36ae9ebc395f7f51695b615f1f1626&tz=0&uuid=8bbcd5a6-1211-4647-83c5-81851a59125d%3A1%3A1
Set-Cookie: u_pl=22718138; expires=Sun, 05 May 2024 13:55:55 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.7z-lOyA1wqUrmJaOvs3t1yDricKEJK8ux85La53EGLo; expires=Sat, 04 May 2024 13:56:55 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e363b43889aaed0ab805e7737954eb46
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| conformityproportion.com/watch.880679609260.js?key=328d2dde268e80f96dd3decc123c5560&kw=%5B%5D&refer=https%3A%2F%2Fteenflix-watch-facebook.firebaseapp.com%2F%3Fwatch_id%3D11130%2F&tz=0&dev=e&res=14.2071&uuid=8bbcd5a6-1211-4647-83c5-81851a59125d%3A1%3A1 | 192.243.59.13 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1conformityproportion.com/watch.880679609260.js?key=328d2dde268e80f96dd3decc123c5560&kw=%5B%5D&refer=https%3A%2F%2Fteenflix-watch-facebook.firebaseapp.com%2F%3Fwatch_id%3D11130%2F&tz=0&dev=e&res=14.2071&uuid=8bbcd5a6-1211-4647-83c5-81851a59125d%3A1%3A1 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerLet's Encrypt Subjectconformityproportion.com Fingerprint1C:44:13:DE:25:A3:30:4A:A4:3C:F8:1A:A2:0F:50:AC:C0:9B:79:94 ValidityMon, 29 Apr 2024 12:57:39 GMT - Sun, 28 Jul 2024 12:57:38 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.880679609260.js?key=328d2dde268e80f96dd3decc123c5560&kw=%5B%5D&refer=https%3A%2F%2Fteenflix-watch-facebook.firebaseapp.com%2F%3Fwatch_id%3D11130%2F&tz=0&dev=e&res=14.2071&uuid=8bbcd5a6-1211-4647-83c5-81851a59125d%3A1%3A1 HTTP/1.1
Host: conformityproportion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://teenflix-watch-facebook.firebaseapp.com
DNT: 1
Connection: keep-alive
Referer: https://teenflix-watch-facebook.firebaseapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sat, 04 May 2024 13:55:55 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://teenflix-watch-facebook.firebaseapp.com
Access-Control-Allow-Origin: https://teenflix-watch-facebook.firebaseapp.com
Access-Control-Allow-Credentials: true
Location: https://conformityproportion.com/watch.880679609260.js?dev=e&key=328d2dde268e80f96dd3decc123c5560&kw=%5B%5D&pst=1714831015&refer=https%3A%2F%2Fteenflix-watch-facebook.firebaseapp.com%2F%3Fwatch_id%3D11130%2F&res=14.2071&rmtc=t&shu=23eef8017dce79d1f1a2662735c271fe60a8622f5f762e7cb3685c1633ac69c9031dcc4f9ac415a4a57d8546c679120e5386b1aa1bedf1a5b95d374d78d7f037bba4fbb3b0a8aaa426ce9c53d227eb00456244aaf3634b097bab35d90f918a&tz=0&uuid=8bbcd5a6-1211-4647-83c5-81851a59125d%3A1%3A1
Set-Cookie: u_pl=22718138; expires=Sun, 05 May 2024 13:55:55 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.7z-lOyA1wqUrmJaOvs3t1yDricKEJK8ux85La53EGLo; expires=Sat, 04 May 2024 13:56:55 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 791b591364ff1904b29a3c27d8f39a13
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| api.themoviedb.org/3/movie/11130/?api_key=3ed72f657ce5c5779383b2191d6d0111 | 54.230.111.34 | 404 Not Found | 2.4 kB |
URL GET HTTP/2api.themoviedb.org/3/movie/11130/?api_key=3ed72f657ce5c5779383b2191d6d0111 IP54.230.111.34:443
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerAmazon Subject*.themoviedb.org Fingerprint8E:CC:33:46:6C:32:03:67:25:D5:8E:A2:6E:BD:24:2A:88:EC:61:50 ValiditySun, 20 Aug 2023 00:00:00 GMT - Tue, 17 Sep 2024 23:59:59 GMT
Hash59b9e47ed13c0df8bd994dd7e4d8b514 8dcd05df6561f26f098a4373c6968e91a947b7d6 6001c1d4105f2f67beabf59d00458908d9c0894dc95adc1a2b40fdba648371a6
GET /3/movie/11130/?api_key=3ed72f657ce5c5779383b2191d6d0111 HTTP/1.1
Host: api.themoviedb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://teenflix-watch-facebook.firebaseapp.com/
Origin: https://teenflix-watch-facebook.firebaseapp.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: application/json;charset=utf-8
date: Sat, 04 May 2024 13:55:55 GMT
server: openresty
x-cascade: pass
content-encoding: br
vary: Accept-Encoding,accept-encoding
x-cache: Error from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 0_Mm-K-03DGJ-joEOAJzEUEf51-VYyM2XWRE-3EwglhgpqI92gwb7Q==
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
|
|
| conformityproportion.com/watch.880679609260.js?dev=e&key=328d2dde268e80f96dd3decc123c5560&kw=%5B%5D&pst=1714831015&refer=https%3A%2F%2Fteenflix-watch-facebook.firebaseapp.com%2F%3Fwatch_id%3D11130%2F&res=14.2071&rmtc=t&shu=23eef8017dce79d1f1a2662735c271fe60a8622f5f762e7cb3685c1633ac69c9031dcc4f9ac415a4a57d8546c679120e5386b1aa1bedf1a5b95d374d78d7f037bba4fbb3b0a8aaa426ce9c53d227eb00456244aaf3634b097bab35d90f918a&tz=0&uuid=8bbcd5a6-1211-4647-83c5-81851a59125d%3A1%3A1 | 192.243.59.13 | 200 OK | 2.1 kB |
URL GET HTTP/1.1conformityproportion.com/watch.880679609260.js?dev=e&key=328d2dde268e80f96dd3decc123c5560&kw=%5B%5D&pst=1714831015&refer=https%3A%2F%2Fteenflix-watch-facebook.firebaseapp.com%2F%3Fwatch_id%3D11130%2F&res=14.2071&rmtc=t&shu=23eef8017dce79d1f1a2662735c271fe60a8622f5f762e7cb3685c1633ac69c9031dcc4f9ac415a4a57d8546c679120e5386b1aa1bedf1a5b95d374d78d7f037bba4fbb3b0a8aaa426ce9c53d227eb00456244aaf3634b097bab35d90f918a&tz=0&uuid=8bbcd5a6-1211-4647-83c5-81851a59125d%3A1%3A1 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerLet's Encrypt Subjectconformityproportion.com Fingerprint1C:44:13:DE:25:A3:30:4A:A4:3C:F8:1A:A2:0F:50:AC:C0:9B:79:94 ValidityMon, 29 Apr 2024 12:57:39 GMT - Sun, 28 Jul 2024 12:57:38 GMT
File typeJavaScript source, ASCII text, with very long lines (2645) Hash9c4eda091895849933f5b366c8cbf492 ca86a0eccaa442699f469ba2e9c22cad447c0b91 a5c375df1c823b6e1c4586d38663557da7a8fe1f5982e30a90dac92a5e8d64ba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.880679609260.js?dev=e&key=328d2dde268e80f96dd3decc123c5560&kw=%5B%5D&pst=1714831015&refer=https%3A%2F%2Fteenflix-watch-facebook.firebaseapp.com%2F%3Fwatch_id%3D11130%2F&res=14.2071&rmtc=t&shu=23eef8017dce79d1f1a2662735c271fe60a8622f5f762e7cb3685c1633ac69c9031dcc4f9ac415a4a57d8546c679120e5386b1aa1bedf1a5b95d374d78d7f037bba4fbb3b0a8aaa426ce9c53d227eb00456244aaf3634b097bab35d90f918a&tz=0&uuid=8bbcd5a6-1211-4647-83c5-81851a59125d%3A1%3A1 HTTP/1.1
Host: conformityproportion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://teenflix-watch-facebook.firebaseapp.com
Referer: https://teenflix-watch-facebook.firebaseapp.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22718138; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMjcxODEzOCwiayI6IjMyOGQyZGRlMjY4ZTgwZjk2ZGQzZGVjYzEyM2M1NTYwIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjozNjczMDY1LCJwaWQiOjU1NTg2LCJhbiI6dHJ1ZSwibGFuIjp0cnVlLCJjaWQiOjEsImFpZCI6MzIsInB0Ijo0LCJwayI6ImVkZ2FxMzU5bTkiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly90ZWVuZmxpeC13YXRjaC1mYWNlYm9vay5maXJlYmFzZWFwcC5jb20vP3dhdGNoX2lkPTExMTMwLyIsImFyIjpbXX19.7z-lOyA1wqUrmJaOvs3t1yDricKEJK8ux85La53EGLo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 13:55:55 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://teenflix-watch-facebook.firebaseapp.com
Access-Control-Allow-Origin: https://teenflix-watch-facebook.firebaseapp.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=8bbcd5a6-1211-4647-83c5-81851a59125d:1:1; expires=Sat, 11 May 2024 13:55:55 GMT; secure; SameSite=None
iprca4766d743b830e9674b13713094a7080=3570421; expires=Sat, 04 May 2024 17:55:55 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 05 May 2024 13:55:55 GMT; secure; SameSite=None
uncs=1; expires=Sun, 05 May 2024 13:55:55 GMT; secure; SameSite=None
pdhtkv32=true; expires=Sun, 05 May 2024 13:55:55 GMT; secure; SameSite=None
uncs32=1; expires=Sun, 05 May 2024 13:55:55 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 37f7c516162d80c1c7f2c83a90caac84
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| coexistsafetyghost.com/watch.435074972822.js?dev=e&key=328d2dde268e80f96dd3decc123c5560&kw=%5B%5D&pst=1714831015&refer=https%3A%2F%2Fteenflix-watch-facebook.firebaseapp.com%2F%3Fwatch_id%3D11130%2F&res=14.2071&rmtc=t&shu=8259d7f7a07f07f0d4df5e368e059e0ecf42158b3798ac0a503c0abba5df74d618fdd2e235e9e5a67dc7fea6c77ae9b1eb0211d3f9710b6594748716eee7173aa3d42e0682019026ca3ddf33d83a36ae9ebc395f7f51695b615f1f1626&tz=0&uuid=8bbcd5a6-1211-4647-83c5-81851a59125d%3A1%3A1 | 192.243.59.12 | 200 OK | 2.1 kB |
URL GET HTTP/1.1coexistsafetyghost.com/watch.435074972822.js?dev=e&key=328d2dde268e80f96dd3decc123c5560&kw=%5B%5D&pst=1714831015&refer=https%3A%2F%2Fteenflix-watch-facebook.firebaseapp.com%2F%3Fwatch_id%3D11130%2F&res=14.2071&rmtc=t&shu=8259d7f7a07f07f0d4df5e368e059e0ecf42158b3798ac0a503c0abba5df74d618fdd2e235e9e5a67dc7fea6c77ae9b1eb0211d3f9710b6594748716eee7173aa3d42e0682019026ca3ddf33d83a36ae9ebc395f7f51695b615f1f1626&tz=0&uuid=8bbcd5a6-1211-4647-83c5-81851a59125d%3A1%3A1 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerLet's Encrypt Subjectcoexistsafetyghost.com Fingerprint4D:41:7B:FB:11:3F:3C:36:DB:78:BA:88:80:F1:D4:F5:CC:80:DD:9C ValidityMon, 29 Apr 2024 13:15:24 GMT - Sun, 28 Jul 2024 13:15:23 GMT
File typeJavaScript source, ASCII text, with very long lines (2615) Hashe226ac7bc1c6d5dae63d712b16f1f6d0 9cb8aab89530b3fe9ddd745e002f99b36257a647 c2afdf1a1242c805c89483b65b220562b895900885e551e54ae56ed2707b4fd9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.435074972822.js?dev=e&key=328d2dde268e80f96dd3decc123c5560&kw=%5B%5D&pst=1714831015&refer=https%3A%2F%2Fteenflix-watch-facebook.firebaseapp.com%2F%3Fwatch_id%3D11130%2F&res=14.2071&rmtc=t&shu=8259d7f7a07f07f0d4df5e368e059e0ecf42158b3798ac0a503c0abba5df74d618fdd2e235e9e5a67dc7fea6c77ae9b1eb0211d3f9710b6594748716eee7173aa3d42e0682019026ca3ddf33d83a36ae9ebc395f7f51695b615f1f1626&tz=0&uuid=8bbcd5a6-1211-4647-83c5-81851a59125d%3A1%3A1 HTTP/1.1
Host: coexistsafetyghost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://teenflix-watch-facebook.firebaseapp.com
Referer: https://teenflix-watch-facebook.firebaseapp.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22718138; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMjcxODEzOCwiayI6IjMyOGQyZGRlMjY4ZTgwZjk2ZGQzZGVjYzEyM2M1NTYwIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjozNjczMDY1LCJwaWQiOjU1NTg2LCJhbiI6dHJ1ZSwibGFuIjp0cnVlLCJjaWQiOjEsImFpZCI6MzIsInB0Ijo0LCJwayI6ImVkZ2FxMzU5bTkiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly90ZWVuZmxpeC13YXRjaC1mYWNlYm9vay5maXJlYmFzZWFwcC5jb20vP3dhdGNoX2lkPTExMTMwLyIsImFyIjpbXX19.7z-lOyA1wqUrmJaOvs3t1yDricKEJK8ux85La53EGLo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 13:55:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://teenflix-watch-facebook.firebaseapp.com
Access-Control-Allow-Origin: https://teenflix-watch-facebook.firebaseapp.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=8bbcd5a6-1211-4647-83c5-81851a59125d:1:1; expires=Sat, 11 May 2024 13:55:55 GMT; secure; SameSite=None
iprc170711280e9d761a3b09a56715fb7531=3570421; expires=Sat, 04 May 2024 17:55:56 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 05 May 2024 13:55:56 GMT; secure; SameSite=None
uncs=1; expires=Sun, 05 May 2024 13:55:56 GMT; secure; SameSite=None
pdhtkv32=true; expires=Sun, 05 May 2024 13:55:56 GMT; secure; SameSite=None
uncs32=1; expires=Sun, 05 May 2024 13:55:56 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3153990d712621dcbb04d320193a2a2e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg | 45.133.44.9 | 200 OK | 25 kB |
URL GET HTTP/2cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg IP45.133.44.9:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typeJPEG image data, baseline, precision 8, 320x50, components 3 Hashd465d02b90e928dfd9d9846e102a9dac 22f7333777bec813bd9a7b870913a2b79b6d2fe4 e393d4f1c6b5d4973e157f0f10764b92037dc18239500f42b72bed8ecef462fd
GET /cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 13:55:56 GMT
content-type: image/jpeg
content-length: 24714
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 14:06:18 GMT
etag: "62e1465a-608a"
expires: Mon, 06 May 2024 13:55:56 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg | 45.133.44.9 | 200 OK | 25 kB |
URL GET HTTP/2cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg IP45.133.44.9:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typeJPEG image data, baseline, precision 8, 320x50, components 3 Hashd465d02b90e928dfd9d9846e102a9dac 22f7333777bec813bd9a7b870913a2b79b6d2fe4 e393d4f1c6b5d4973e157f0f10764b92037dc18239500f42b72bed8ecef462fd
GET /cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 13:55:56 GMT
content-type: image/jpeg
content-length: 24714
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 14:06:18 GMT
etag: "62e1465a-608a"
expires: Mon, 06 May 2024 13:55:56 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| traumavirus.com/ntv.json?key=28b78359e5439ecd104c0a0ca507dd86&vstc=1 | 192.243.59.12 | 200 OK | 4.2 kB |
URL GET HTTP/1.1traumavirus.com/ntv.json?key=28b78359e5439ecd104c0a0ca507dd86&vstc=1 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerLet's Encrypt Subjecttraumavirus.com FingerprintE5:B4:49:C6:60:6B:2C:34:A5:BE:9E:DB:C9:21:62:FD:02:33:5F:6F ValidityMon, 29 Apr 2024 08:39:30 GMT - Sun, 28 Jul 2024 08:39:29 GMT
Hash6d6eb688252ddbfcacffd832eb70401a 6242439839aed8d48f73d8cd88356ae1e8c4beef 7e5664b31fb11c7112beebf110620c5d483c989bdcb492800c7a7db827182cca
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ntv.json?key=28b78359e5439ecd104c0a0ca507dd86&vstc=1 HTTP/1.1
Host: traumavirus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://teenflix-watch-facebook.firebaseapp.com
DNT: 1
Connection: keep-alive
Referer: https://teenflix-watch-facebook.firebaseapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 13:55:56 GMT
Content-Type: application/json
Content-Length: 4227
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://teenflix-watch-facebook.firebaseapp.com
Access-Control-Allow-Origin: https://teenflix-watch-facebook.firebaseapp.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=22718108; expires=Sun, 05 May 2024 13:55:56 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 05 May 2024 13:55:56 GMT; secure; SameSite=None
uncs=1; expires=Sun, 05 May 2024 13:55:56 GMT; secure; SameSite=None
pdhtkv49=true; expires=Sun, 05 May 2024 13:55:56 GMT; secure; SameSite=None
uncs49=1; expires=Sun, 05 May 2024 13:55:56 GMT; secure; SameSite=None
nlec28b78359e5439ecd104c0a0ca507dd86=[2229329]; expires=Sat, 04 May 2024 13:56:01 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fddd72e57f25e37a1708ce75f02fa464
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| teenflix-watch-facebook.firebaseapp.com/favicon.ico | 199.36.158.100 | 404 Not Found | 853 B |
URL GET HTTP/3teenflix-watch-facebook.firebaseapp.com/favicon.ico IP199.36.158.100:443
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerGoogle Trust Services LLC Subjectfirebaseapp.com Fingerprint6D:BD:C9:A0:A6:73:A0:9B:87:1C:93:A6:7E:16:92:6F:B5:1B:FB:4D ValidityThu, 21 Mar 2024 15:15:15 GMT - Wed, 19 Jun 2024 15:15:14 GMT
File typeHTML document, ASCII text Hash0a27a4163254fc8fce870c8cc3a3f94f f27cf04699668916346eee510eab7e5a17e83997 b77b97fe780d35d18248abd1d2f42f444afbabe43f6abcd8fa8ebb3d47825eee
GET /favicon.ico HTTP/1.1
Host: teenflix-watch-facebook.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=8bbcd5a6-1211-4647-83c5-81851a59125d%3A1%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
content-length: 853
cache-control: max-age=3600
content-encoding: gzip
content-type: text/html; charset=utf-8
etag: "daa499dd96d8229e73235345702ba32f0793f0c8e5c0d30e40e37a5872be57aa"
last-modified: Mon, 18 Mar 2024 09:05:36 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 04 May 2024 13:55:56 GMT
x-served-by: cache-hel1410032-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1714830956.269227,VS0,VE87
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| cdn.cloudimagesb.com/cti/f7/13/0e/f7130e7f47db248dc886c97a1e4c3e2b/1588233482.jpg | 45.133.44.9 | 200 OK | 32 kB |
URL GET HTTP/2cdn.cloudimagesb.com/cti/f7/13/0e/f7130e7f47db248dc886c97a1e4c3e2b/1588233482.jpg IP45.133.44.9:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 321x240, components 3 Hash3528385dd0c31dbd2e5bfc4af7a6bec5 832c580ffd7711115d6c036ab4232f5bd88480a4 bfbfeebfcb679ca578055235614cc679b0757bad272996ef89b7fd5615a2db75
GET /cti/f7/13/0e/f7130e7f47db248dc886c97a1e4c3e2b/1588233482.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teenflix-watch-facebook.firebaseapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 13:55:56 GMT
content-type: image/jpeg
content-length: 32471
server: nginx/1.21.6
last-modified: Thu, 30 Apr 2020 07:58:05 GMT
etag: "5eaa850d-7ed7"
expires: Mon, 06 May 2024 13:55:56 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| traumavirus.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuXueU9eCPvXkZFgQFmXTPj54ZF12MMRKMm%2F2hKF6kuqpmUqa6q6nqnp7MKbgge5w9Kh4q3%2BQHahD9A1xksrBIUMhcJAdz9%2BBJWDzKzA6O%2B6B476vvK%2Fjee%2FXFXn5Bqsjp%2Ber7eiCVosuNil9%2B5eMguFbekEneL%2Fdb4adh%2FVrZ9F5vhxX%2F1fK7gm3r5aof%2BH7gB%2BU1aURH95enJGR63A4qbb9Sr1aCRh198zS2uQdLPfDeBXkBkk9KD70rkGyMJP5hVdjtTKevvRPnimbaoMePPky2E10kiBdlx3joJEdzNbQ9W3sAnRzM7EL3%2FhNGckK8Rw8QJUdzk4h6%2BzOfkYJIEPHLKHpjCDWGpGMwfReSnxGAcdzYRBIf3tCmoDtPWDplJ6T0%2BG%2FIYkJKf1xBEn%2B%2FomS%2FfEerPJM6seh3HGR%2FDNkdI81PkA0uQRYnYNnnkPw3svx4A0m8v2mVhuRu1ruUY8jOGEoMQa2HfHqkh7zjIU89xPy8zIIgaPqcUb%2FVZqzGmyIKuR%2FQZieggR%2B2kLOpvSGydAimhmBmF6nZxba8f%2FZsCSb%2FGXbLwXIPNpsQ79YuetyhEASFJSgoQSEJioyg6LkDrmzVukOubB4F81yd55ob6ay7Rw901hUJATVDGO720gvy%2FHRE3ieHX2NbnJerrajZqjXaolGvtQXjgV9nPvUZbfhNzlshrHSQ9tKs64GckNblP5HKCSHnVxHRE1h1AiY90DwALRzolsMgOc6ESDpK9iv9nQG4dkizErIdb09dkJdmS7paugXBTq8%2FWnojHf2%2BBGYcUuPwmXxI0FX3Rrd1QfZv68KSHzfTTMZyQKcLvJPRTDzz7Xtip9CGr6%2Fa4TdvsSkxLY8%2FEDbboAmXSdeS71Yk58KsacME%2BWndfiSim7ndWslNkqcbN99eW49TI6yVOhmDyrPNf8DkhJRefnH2M5%2F79S9IM4bJHeL8lMwDUp%2BApbuw6cK91QRGLTRR6qHI3chUo8WlkgRKLDCNHOz%2FcLSoR4ZOX1Pp9uw9dI0Hmt1FEjv0jENPOVA1hM2XRllqTq%2F%2F8uU0vkKkvFGkjLcfKaPuPxmyleflZq3m07DdCJpNKppRvdrqhAGntFoPq2FIa8jspBO%2Bqf4FAAD%2F%2FwEAAP%2F%2FRrfsGm4EAAA%3D | 192.243.59.12 | 200 OK | 7 B |
URL GET HTTP/1.1traumavirus.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuXueU9eCPvXkZFgQFmXTPj54ZF12MMRKMm%2F2hKF6kuqpmUqa6q6nqnp7MKbgge5w9Kh4q3%2BQHahD9A1xksrBIUMhcJAdz9%2BBJWDzKzA6O%2B6B476vvK%2Fjee%2FXFXn5Bqsjp%2Ber7eiCVosuNil9%2B5eMguFbekEneL%2Fdb4adh%2FVrZ9F5vhxX%2F1fK7gm3r5aof%2BH7gB%2BU1aURH95enJGR63A4qbb9Sr1aCRh198zS2uQdLPfDeBXkBkk9KD70rkGyMJP5hVdjtTKevvRPnimbaoMePPky2E10kiBdlx3joJEdzNbQ9W3sAnRzM7EL3%2FhNGckK8Rw8QJUdzk4h6%2BzOfkYJIEPHLKHpjCDWGpGMwfReSnxGAcdzYRBIf3tCmoDtPWDplJ6T0%2BG%2FIYkJKf1xBEn%2B%2FomS%2FfEerPJM6seh3HGR%2FDNkdI81PkA0uQRYnYNnnkPw3svx4A0m8v2mVhuRu1ruUY8jOGEoMQa2HfHqkh7zjIU89xPy8zIIgaPqcUb%2FVZqzGmyIKuR%2FQZieggR%2B2kLOpvSGydAimhmBmF6nZxba8f%2FZsCSb%2FGXbLwXIPNpsQ79YuetyhEASFJSgoQSEJioyg6LkDrmzVukOubB4F81yd55ob6ay7Rw901hUJATVDGO720gvy%2FHRE3ieHX2NbnJerrajZqjXaolGvtQXjgV9nPvUZbfhNzlshrHSQ9tKs64GckNblP5HKCSHnVxHRE1h1AiY90DwALRzolsMgOc6ESDpK9iv9nQG4dkizErIdb09dkJdmS7paugXBTq8%2FWnojHf2%2BBGYcUuPwmXxI0FX3Rrd1QfZv68KSHzfTTMZyQKcLvJPRTDzz7Xtip9CGr6%2Fa4TdvsSkxLY8%2FEDbboAmXSdeS71Yk58KsacME%2BWndfiSim7ndWslNkqcbN99eW49TI6yVOhmDyrPNf8DkhJRefnH2M5%2F79S9IM4bJHeL8lMwDUp%2BApbuw6cK91QRGLTRR6qHI3chUo8WlkgRKLDCNHOz%2FcLSoR4ZOX1Pp9uw9dI0Hmt1FEjv0jENPOVA1hM2XRllqTq%2F%2F8uU0vkKkvFGkjLcfKaPuPxmyleflZq3m07DdCJpNKppRvdrqhAGntFoPq2FIa8jspBO%2Bqf4FAAD%2F%2FwEAAP%2F%2FRrfsGm4EAAA%3D IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerLet's Encrypt Subjecttraumavirus.com FingerprintE5:B4:49:C6:60:6B:2C:34:A5:BE:9E:DB:C9:21:62:FD:02:33:5F:6F ValidityMon, 29 Apr 2024 08:39:30 GMT - Sun, 28 Jul 2024 08:39:29 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuXueU9eCPvXkZFgQFmXTPj54ZF12MMRKMm%2F2hKF6kuqpmUqa6q6nqnp7MKbgge5w9Kh4q3%2BQHahD9A1xksrBIUMhcJAdz9%2BBJWDzKzA6O%2B6B476vvK%2Fjee%2FXFXn5Bqsjp%2Ber7eiCVosuNil9%2B5eMguFbekEneL%2Fdb4adh%2FVrZ9F5vhxX%2F1fK7gm3r5aof%2BH7gB%2BU1aURH95enJGR63A4qbb9Sr1aCRh198zS2uQdLPfDeBXkBkk9KD70rkGyMJP5hVdjtTKevvRPnimbaoMePPky2E10kiBdlx3joJEdzNbQ9W3sAnRzM7EL3%2FhNGckK8Rw8QJUdzk4h6%2BzOfkYJIEPHLKHpjCDWGpGMwfReSnxGAcdzYRBIf3tCmoDtPWDplJ6T0%2BG%2FIYkJKf1xBEn%2B%2FomS%2FfEerPJM6seh3HGR%2FDNkdI81PkA0uQRYnYNnnkPw3svx4A0m8v2mVhuRu1ruUY8jOGEoMQa2HfHqkh7zjIU89xPy8zIIgaPqcUb%2FVZqzGmyIKuR%2FQZieggR%2B2kLOpvSGydAimhmBmF6nZxba8f%2FZsCSb%2FGXbLwXIPNpsQ79YuetyhEASFJSgoQSEJioyg6LkDrmzVukOubB4F81yd55ob6ay7Rw901hUJATVDGO720gvy%2FHRE3ieHX2NbnJerrajZqjXaolGvtQXjgV9nPvUZbfhNzlshrHSQ9tKs64GckNblP5HKCSHnVxHRE1h1AiY90DwALRzolsMgOc6ESDpK9iv9nQG4dkizErIdb09dkJdmS7paugXBTq8%2FWnojHf2%2BBGYcUuPwmXxI0FX3Rrd1QfZv68KSHzfTTMZyQKcLvJPRTDzz7Xtip9CGr6%2Fa4TdvsSkxLY8%2FEDbboAmXSdeS71Yk58KsacME%2BWndfiSim7ndWslNkqcbN99eW49TI6yVOhmDyrPNf8DkhJRefnH2M5%2F79S9IM4bJHeL8lMwDUp%2BApbuw6cK91QRGLTRR6qHI3chUo8WlkgRKLDCNHOz%2FcLSoR4ZOX1Pp9uw9dI0Hmt1FEjv0jENPOVA1hM2XRllqTq%2F%2F8uU0vkKkvFGkjLcfKaPuPxmyleflZq3m07DdCJpNKppRvdrqhAGntFoPq2FIa8jspBO%2Bqf4FAAD%2F%2FwEAAP%2F%2FRrfsGm4EAAA%3D HTTP/1.1
Host: traumavirus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teenflix-watch-facebook.firebaseapp.com/
Cookie: u_pl=22718108; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec28b78359e5439ecd104c0a0ca507dd86=[2229329]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 13:55:56 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 43e1a38025f9c8b6dc093f1c9ce19b56
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| traumavirus.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzWskRRSvXueU9eDH3rwMC4KCTLrne1x0McZIMG72Q1G8SH31pEx1V1PVPT2ZU3BB9jh7VDx0fpMP1CD6B7jIZGGRoJC5SA7m7sGTsHiUmR0c90Hx3q9%2Bv4Lfe6%2B%2B2MsuSBUZPV993wyU1nS5UfHLr3wcBNfKGyrO%2BuV%2Bu%2Flps36tbHuvd5oV%2F9Xyu5Jvm%2BWqH%2Fh%2B4AflNWVlaPrLUxIqOe4ElY5fqVcrQaOOvn0au8yDox5E74K8ACUmpYfeFSg%2BRhz9sCrddmqS196JMk1TY9ETRx%2FG27HJY0SLMrQewvhoroZxZ2sPYOKDmV2Y3n9CpibEe%2FQALD6amwTr7c98Mg0Zg4nLyHtjSD2GomNwcxdKnBGAC9zYRBwd3jA2pztPWDplJ6T0%2BG%2BofEJKf1xBHH2%2FolW%2FfMfoLFUmduiHBVR%2FDNUdI8lOkA4uQeUn4OnnUOI3svx4A3G0v%2Bm0gRLFrHelxlDhGFoOQZ2HbHqUhyz0kCUeInFe5kEQtHzBqd%2FucF4TLcmawg9oKwxo4DfbyPjU3hBpMgTXQ3C7i8TuYlvdP3u2BJv9DLdVwAkPLp0Q79YueqJALglyR5BTglwR5ClB3isOhHZVVxwK7TIWzHN1nmvFyKTdPXpg0q6MCagdwopiL7kgz09H5H1y%2BDW25Xm52matdq3RkY16rSO5CPw696nPacNvCdFuwqkCyl2adT1QE9K%2B%2FCcSNSHk%2FCoYPYHTJ%2BDKA80C0LwA3SowiI9TKeNQq36lvzOAMAWStIR0x9vTF%2BSl2ZKulm5B8tPrj5beSEa%2FL4HbAokt8Jl6SNDV90a3TU72b5vckR83k1RFakCnC7yT0lQ%2B8%2B17cic3VqyvuuE3b%2FEpMS2PP5Au3aCxUHHXke9WlBDSrhnLJflp3X0k2c3Mba1kNs6SjZtvr61HiZXOKROPQdXZ5j%2FgakJKL784%2B5nP%2FfoXlB3DZgWi7JTMA8qcgCe7cMnCvTMEVi80LPGQZ8XIVtniUisCLReYsgLuf5gt6pGl09dUFXvuHrrWA03vIo4K9GyBni5A9RAuWxqliT29%2FsuX0%2FgKTHsjpq23z7TV958M2anzcs0XLSZD2WKy3qiHkgvWaDCfh5zVRLvNkbpJ2HxT%2FwsAAP%2F%2FAQAA%2F%2F%2FGYznybgQAAA%3D%3D | 192.243.59.12 | 200 OK | 7 B |
URL GET HTTP/1.1traumavirus.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzWskRRSvXueU9eDH3rwMC4KCTLrne1x0McZIMG72Q1G8SH31pEx1V1PVPT2ZU3BB9jh7VDx0fpMP1CD6B7jIZGGRoJC5SA7m7sGTsHiUmR0c90Hx3q9%2Bv4Lfe6%2B%2B2MsuSBUZPV993wyU1nS5UfHLr3wcBNfKGyrO%2BuV%2Bu%2Flps36tbHuvd5oV%2F9Xyu5Jvm%2BWqH%2Fh%2B4AflNWVlaPrLUxIqOe4ElY5fqVcrQaOOvn0au8yDox5E74K8ACUmpYfeFSg%2BRhz9sCrddmqS196JMk1TY9ETRx%2FG27HJY0SLMrQewvhoroZxZ2sPYOKDmV2Y3n9CpibEe%2FQALD6amwTr7c98Mg0Zg4nLyHtjSD2GomNwcxdKnBGAC9zYRBwd3jA2pztPWDplJ6T0%2BG%2BofEJKf1xBHH2%2FolW%2FfMfoLFUmduiHBVR%2FDNUdI8lOkA4uQeUn4OnnUOI3svx4A3G0v%2Bm0gRLFrHelxlDhGFoOQZ2HbHqUhyz0kCUeInFe5kEQtHzBqd%2FucF4TLcmawg9oKwxo4DfbyPjU3hBpMgTXQ3C7i8TuYlvdP3u2BJv9DLdVwAkPLp0Q79YueqJALglyR5BTglwR5ClB3isOhHZVVxwK7TIWzHN1nmvFyKTdPXpg0q6MCagdwopiL7kgz09H5H1y%2BDW25Xm52matdq3RkY16rSO5CPw696nPacNvCdFuwqkCyl2adT1QE9K%2B%2FCcSNSHk%2FCoYPYHTJ%2BDKA80C0LwA3SowiI9TKeNQq36lvzOAMAWStIR0x9vTF%2BSl2ZKulm5B8tPrj5beSEa%2FL4HbAokt8Jl6SNDV90a3TU72b5vckR83k1RFakCnC7yT0lQ%2B8%2B17cic3VqyvuuE3b%2FEpMS2PP5Au3aCxUHHXke9WlBDSrhnLJflp3X0k2c3Mba1kNs6SjZtvr61HiZXOKROPQdXZ5j%2FgakJKL784%2B5nP%2FfoXlB3DZgWi7JTMA8qcgCe7cMnCvTMEVi80LPGQZ8XIVtniUisCLReYsgLuf5gt6pGl09dUFXvuHrrWA03vIo4K9GyBni5A9RAuWxqliT29%2FsuX0%2FgKTHsjpq23z7TV958M2anzcs0XLSZD2WKy3qiHkgvWaDCfh5zVRLvNkbpJ2HxT%2FwsAAP%2F%2FAQAA%2F%2F%2FGYznybgQAAA%3D%3D IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerLet's Encrypt Subjecttraumavirus.com FingerprintE5:B4:49:C6:60:6B:2C:34:A5:BE:9E:DB:C9:21:62:FD:02:33:5F:6F ValidityMon, 29 Apr 2024 08:39:30 GMT - Sun, 28 Jul 2024 08:39:29 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSzWskRRSvXueU9eDH3rwMC4KCTLrne1x0McZIMG72Q1G8SH31pEx1V1PVPT2ZU3BB9jh7VDx0fpMP1CD6B7jIZGGRoJC5SA7m7sGTsHiUmR0c90Hx3q9%2Bv4Lfe6%2B%2B2MsuSBUZPV993wyU1nS5UfHLr3wcBNfKGyrO%2BuV%2Bu%2Flps36tbHuvd5oV%2F9Xyu5Jvm%2BWqH%2Fh%2B4AflNWVlaPrLUxIqOe4ElY5fqVcrQaOOvn0au8yDox5E74K8ACUmpYfeFSg%2BRhz9sCrddmqS196JMk1TY9ETRx%2FG27HJY0SLMrQewvhoroZxZ2sPYOKDmV2Y3n9CpibEe%2FQALD6amwTr7c98Mg0Zg4nLyHtjSD2GomNwcxdKnBGAC9zYRBwd3jA2pztPWDplJ6T0%2BG%2BofEJKf1xBHH2%2FolW%2FfMfoLFUmduiHBVR%2FDNUdI8lOkA4uQeUn4OnnUOI3svx4A3G0v%2Bm0gRLFrHelxlDhGFoOQZ2HbHqUhyz0kCUeInFe5kEQtHzBqd%2FucF4TLcmawg9oKwxo4DfbyPjU3hBpMgTXQ3C7i8TuYlvdP3u2BJv9DLdVwAkPLp0Q79YueqJALglyR5BTglwR5ClB3isOhHZVVxwK7TIWzHN1nmvFyKTdPXpg0q6MCagdwopiL7kgz09H5H1y%2BDW25Xm52matdq3RkY16rSO5CPw696nPacNvCdFuwqkCyl2adT1QE9K%2B%2FCcSNSHk%2FCoYPYHTJ%2BDKA80C0LwA3SowiI9TKeNQq36lvzOAMAWStIR0x9vTF%2BSl2ZKulm5B8tPrj5beSEa%2FL4HbAokt8Jl6SNDV90a3TU72b5vckR83k1RFakCnC7yT0lQ%2B8%2B17cic3VqyvuuE3b%2FEpMS2PP5Au3aCxUHHXke9WlBDSrhnLJflp3X0k2c3Mba1kNs6SjZtvr61HiZXOKROPQdXZ5j%2FgakJKL784%2B5nP%2FfoXlB3DZgWi7JTMA8qcgCe7cMnCvTMEVi80LPGQZ8XIVtniUisCLReYsgLuf5gt6pGl09dUFXvuHrrWA03vIo4K9GyBni5A9RAuWxqliT29%2FsuX0%2FgKTHsjpq23z7TV958M2anzcs0XLSZD2WKy3qiHkgvWaDCfh5zVRLvNkbpJ2HxT%2FwsAAP%2F%2FAQAA%2F%2F%2FGYznybgQAAA%3D%3D HTTP/1.1
Host: traumavirus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teenflix-watch-facebook.firebaseapp.com/
Cookie: u_pl=22718108; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec28b78359e5439ecd104c0a0ca507dd86=[2229329]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 13:55:56 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 966ca1654ade03a0803137d92ca9b3a3
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| image.tmdb.org/t/p/w500/undefined | 138.199.36.11 | 400 Bad Request | 0 B |
URL GET HTTP/2image.tmdb.org/t/p/w500/undefined IP138.199.36.11:443 ASN#60068 Datacamp Limited
Requested byhttps://teenflix-watch-facebook.firebaseapp.com/?watch_id=11130/ CertificateIssuerLet's Encrypt Subjectimage.tmdb.org Fingerprint40:88:A2:12:27:42:DC:4F:28:09:F9:EB:BC:ED:0F:05:3B:F1:D5:BC ValidityWed, 10 Apr 2024 15:08:25 GMT - Tue, 09 Jul 2024 15:08:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/p/w500/undefined HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://teenflix-watch-facebook.firebaseapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 400 Bad Request
date: Sat, 04 May 2024 13:55:55 GMT
content-type: text/html
server: BunnyCDN-DE1-1054
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: public, max-age=5
perma-cache: MISS
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 400
cdn-cachedat: 05/04/2024 13:53:57
cdn-edgestorageid: 1053
cdn-status: 400
cdn-requestid: f8d7b3872c081f19393278534e550586
cdn-cache: STALE
X-Firefox-Spdy: h2
|
|