www.theflix.com.br/
34.159.75.132301 Moved Permanently 42 B IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with no line terminators
Hash c8903fa4f754e8e449b31df1e86e3153
800f76f96629329b5368b720abff23ae49d46faf
650106ab76b37e4eb91060bb9f6dbd6b40aa1835657c02830ad01aac0ccd6825
GET / HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.theflix.com.br/
Server: Netlify
X-Nf-Request-Id: 01GJ5NN2T6M3PXK04STGVK8DE4
Date: Fri, 18 Nov 2022 15:27:57 GMT
Content-Length: 42
Content-Type: text/plain; charset=utf-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 30c30d01178fc74ac5266ee64c3ee85b
c0c2af8a864c00aa85a8775d55f85ab107150a3b
c15644f69fbfeb99074c7e9711dfc9452ee164fa78eb981b6bae4fb7e3585f2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C15644F69FBFEB99074C7E9711DFC9452EE164FA78EB981B6BAE4FB7E3585F2A"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2997
Expires: Fri, 18 Nov 2022 16:17:54 GMT
Date: Fri, 18 Nov 2022 15:27:57 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 67f53a639d57dd6237b5be86fe4f6c1b
287f09532dc331228d09c20b75f4160e91e9800a
41913a8af366685c42af59e9d8e02fccedbe68a3313d2d9fe353deb0c1019075
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4477
Cache-Control: max-age=159466
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 15:27:58 GMT
Etag: "63775eeb-1d7"
Expires: Sun, 20 Nov 2022 11:45:44 GMT
Last-Modified: Fri, 18 Nov 2022 10:31:07 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3a38b6dd8a4cc335c026aebf2ed348b6
8a386e0ccb0ca4dc502746c45b2ebc3aa3f83cf8
8b4040a645cec1841a00a22765eb3a74978559daf15c54bd4b41b6b48aab7f95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B4040A645CEC1841A00A22765EB3A74978559DAF15C54BD4B41B6B48AAB7F95"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3642
Expires: Fri, 18 Nov 2022 16:28:40 GMT
Date: Fri, 18 Nov 2022 15:27:58 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 18 Nov 2022 14:45:03 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2575
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: q9GAhu2JgjLPhs41l56T/EtLoP0j0D9qWhRbNIyeMBSJuQsNsE+bh73Ti55ic6zESy1JedC3AGg=
x-amz-request-id: KS9GECA31A9EM09M
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 18 Nov 2022 15:15:39 GMT
age: 739
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:58 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c67b812c9dde3d6a2d532e97d450d796
af171548ba9cc9f435c329225eb9187f0af2eee0
39062644531c0aa2f0368b81071993e5ef1323c1530adea4df763e1260f7e022
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39062644531C0AA2F0368B81071993E5EF1323C1530ADEA4DF763E1260F7E022"
Last-Modified: Thu, 17 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 18 Nov 2022 21:27:58 GMT
Date: Fri, 18 Nov 2022 15:27:58 GMT
Connection: keep-alive
www.theflix.com.br/
34.159.75.132200 OK 3.8 kB IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (422), with CRLF line terminators
Hash 6abcc05dcf00b02691865384be10b816
58d7bf693aa00f7b57a6743dfb8edfac318c6271
3c2816dac91cee64ecc3cdd9a6f2bac1089a54c45d7c4342392c01aabcd502ee
GET / HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
age: 7558
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/html; charset=UTF-8
date: Fri, 18 Nov 2022 13:22:00 GMT
etag: "23ba7301b401385096165ba3b4e9df5f-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJ5NN3BC2SSASTZWM52G30TK
content-length: 3784
X-Firefox-Spdy: h2
www.theflix.com.br/css/stilo.css
34.159.75.132200 OK 3.6 kB URL HTTP/2 www.theflix.com.br/css/stilo.css
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 50de2ccfbe022faa7d632c2d5ac28df3
1b526a3afa3bc58263ab6b1ede4140ae324989ec
96bb5961a1fc5e23a5f553ad2f4ad52799d588b9586426b3c863672598e6f7e9
GET /css/stilo.css HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7558
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/css; charset=UTF-8
date: Fri, 18 Nov 2022 13:22:00 GMT
etag: "d28abde998c72ee35038421fc19be9fa-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJ5NN3FVH027KA0BR555T81V
content-length: 3599
X-Firefox-Spdy: h2
www.theflix.com.br/js/main.js
34.159.75.132200 OK 143 B URL HTTP/2 www.theflix.com.br/js/main.js
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with CRLF line terminators
Hash d91a8fb656182d16b6f3289f8c3efe61
d21c7904da4a9cc80deb3679ec9bd99dc0508a9c
21d59ed1c2322e4cd10a6fbf0e53e5edcc697dc6ea13209079c300589be18d99
GET /js/main.js HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81584
cache-control: public, max-age=0, must-revalidate
content-type: application/javascript; charset=UTF-8
date: Thu, 17 Nov 2022 16:48:14 GMT
etag: "b265fe989979abc807e944e23a364996-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3G18ZW9A53F0ZA36RJX
content-length: 143
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.8.2/css/all.min.css
104.17.24.14200 OK 9.8 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.8.2/css/all.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (54998)
Hash 2b0f6842c4954ea1ac87e102c86b46d6
b2347b42e69fbf8a8f42f55a41e988f93047db9e
d28ca638cc83a512bd0cea5d91ff833b6109fabebecdef0a58e8226c8f21adbf
GET /ajax/libs/font-awesome/5.8.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:27:58 GMT
content-type: text/css; charset=utf-8
content-length: 9802
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-d78f"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4445392
expires: Wed, 08 Nov 2023 15:27:58 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m5OjGp2EuBAlOxcLHyW8RPboITLdvt%2BnpV%2FaTmK5Xzz3Cbp3xNyJrToVVzkyTPt6%2FyOe8ypG7fXncXetMxoRQws0G7uJVmikn4huQq27qPRa7DqYdScGpEqNnB305pYfZNMpGo0t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76c1bbb688bd0b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/css/all.min.css
104.17.24.14200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/css/all.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (59158)
Hash 77c1af627ac0cf4a26f1f230c3328544
f99817795a5ae027a7212b040438e49248a483b6
0496a11101ffd6d8230b041623cc1bf58971b25acd684a23fe91d702c486d2c8
GET /ajax/libs/font-awesome/5.15.3/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:27:58 GMT
content-type: text/css; charset=utf-8
content-length: 10480
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60510736-e7d0"
last-modified: Tue, 16 Mar 2021 19:29:58 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1893082
expires: Wed, 08 Nov 2023 15:27:58 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=STj2k9SvM7WpRbU%2BGI3Yys1u7UGfmZrJIFDOUKwAi%2BIsV3YZYP9cfb0sA7%2F3QP9N5OfIh9sLy2ecH0J7hv2xuKvb%2FehbM9H8WCpmtiJWHV7aVhgc4NKRK0s9oWrii0EjnvaoNpN9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76c1bbb698c50b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/css/all.min.css
104.17.24.14200 OK 14 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/css/all.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (65345)
Hash 642445b86596bdeaa98e92faa2064fc6
6c5539660bf533d34e37b917973c941d1c963374
4a5a39e9f325c5578dccd880c1d516eae190ee39f7539f4a6c6c52d2eee4cbdf
GET /ajax/libs/font-awesome/6.0.0-beta2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:27:58 GMT
content-type: text/css; charset=utf-8
content-length: 14374
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61498362-3826"
last-modified: Tue, 21 Sep 2021 07:01:54 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 9665196
expires: Wed, 08 Nov 2023 15:27:58 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ux3BrRc7syIHPRSaFTpw9gt2A%2BylP6BqOJmcsvrbQGNwnAs9%2B4gyaxzJ%2BwzUSCfrprdJQMrtjpQl4fANYHp2IQrKbJCd%2BvMQeNhzM4UPjIVevhaEtJhmo6L%2B6%2BbHNn3zOTSU7aZE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76c1bbb69bddb4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8fae3a87ff96a8b2ee24baab65d04574
a3197549c93a1d8d6f0db6ac32bf62d02814412a
fdd6df915cbb38645fc78cb1609e151a255000d7664141f11b2c75ed97394217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FDD6DF915CBB38645FC78CB1609E151A255000D7664141F11B2C75ED97394217"
Last-Modified: Wed, 16 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1363
Expires: Fri, 18 Nov 2022 15:50:41 GMT
Date: Fri, 18 Nov 2022 15:27:58 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 15:27:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1c9b41f3190dad3fff7e79f4385b4aac
eb6eb3ee8e182212f0b1658998d3b76c69b98a6a
7fe5cec58ef98e859c52b2dcf45175bdcfa002c75e1a32bc27583d8e48e6185f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5682
Cache-Control: max-age=101256
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 15:27:58 GMT
Etag: "637676d4-116"
Expires: Sat, 19 Nov 2022 19:35:34 GMT
Last-Modified: Thu, 17 Nov 2022 18:00:52 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 278
www.theflix.com.br/js/JQuery3.3.1.js
34.159.75.132200 OK 78 kB URL HTTP/2 www.theflix.com.br/js/JQuery3.3.1.js
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with CRLF line terminators
Hash 0815de56ec0f7b5be8988a48f83e0e16
9087cbe54247ab2578eb4572047ab765b0fc7379
c7a5bf0006965a4a0ba9f7482afc0734531737c52568f6c456b77639f0555dc6
GET /js/JQuery3.3.1.js HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81584
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Thu, 17 Nov 2022 16:48:14 GMT
etag: "596f340cf352c603791252cbb53b501b-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJ5NN3G1SS0Z7Q6SED7G9NS6
content-length: 77989
X-Firefox-Spdy: h2
www.theflix.com.br/trailer/modal-video.min.css
34.159.75.132200 OK 551 B URL HTTP/2 www.theflix.com.br/trailer/modal-video.min.css
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2083)
Hash 260349630acec48b1126523f9d63ff66
c46d623be6e10d730c0363e63fd28cd560150349
bc69b678f98d9dfe3ba34789ef8443b0adb237023e40e55400e1e4e51252c3bc
GET /trailer/modal-video.min.css HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7558
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/css; charset=UTF-8
date: Fri, 18 Nov 2022 13:22:00 GMT
etag: "245854e708439d76e8896ce9655fdc1b-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJ5NN3G2BG6Y04F3J67BBKXF
content-length: 551
X-Firefox-Spdy: h2
www.theflix.com.br/img/logo.webp
34.159.75.132200 OK 26 kB URL HTTP/2 www.theflix.com.br/img/logo.webp
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash b5a0576b2420d8f32ff255e34abdf7cd
8959001810c9e27d44739747b6c80f44f7ab87cf
3a9964e5dc006943b397cab11f189ae966f524f16cdc4afee76d48768dacf380
GET /img/logo.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7558
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Fri, 18 Nov 2022 13:22:00 GMT
etag: "932b64a71ad9640545545990bed13c29-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3G81W3854NSPZQXM8HH
content-length: 26360
X-Firefox-Spdy: h2
www.theflix.com.br/img/series/pacificador.webp
34.159.75.132200 OK 26 kB URL HTTP/2 www.theflix.com.br/img/series/pacificador.webp
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash cf9d86f05db21105b8cb2b1345c84038
2a4fe6c186f5ca17ae4963fe475c238b7daf923a
262a9640364e07d4e056ad442f109f530b06b9b5707c88a78d6a3a507a1d0da5
GET /img/series/pacificador.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7558
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Fri, 18 Nov 2022 13:22:00 GMT
etag: "40ffcce7dc62da5a2adebdafcc1c55dc-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3GHT2SK00KDQSR5BWEP
content-length: 26022
X-Firefox-Spdy: h2
www.theflix.com.br/img/series/cavaleiro-da-lua.webp
34.159.75.132200 OK 7.4 kB URL HTTP/2 www.theflix.com.br/img/series/cavaleiro-da-lua.webp
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash ddc2d419162bba19a64b212784071140
165e8683cd424cc0ce618444f820a83d3bf1a8ed
5d19fc8c50670d81fd2f6b35ff0e1ff70d891ab789f07dbd29370d74f8c0c6ae
GET /img/series/cavaleiro-da-lua.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7559
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Fri, 18 Nov 2022 13:22:00 GMT
etag: "1f76c866170bc81f3c1105b29df1740c-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3GHTAFQ2C0E6QDR7JHB
content-length: 7430
X-Firefox-Spdy: h2
www.theflix.com.br/img/series/o-mandaloriano.webp
34.159.75.132200 OK 15 kB URL HTTP/2 www.theflix.com.br/img/series/o-mandaloriano.webp
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6ce591e5773111e3a0c8f55699ce369e
7364ac5c26ac8a5aef1c288690832c49af9e75e7
d09318b717f59fd8a773dd196b30cbe08eb4c1a8c29e22716a30bb4812e17659
GET /img/series/o-mandaloriano.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Fri, 18 Nov 2022 13:22:01 GMT
etag: "b05b3a2f1dd0a40eeb22c75ae018f24c-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H38643HDSSYXQA4N66
content-length: 14612
X-Firefox-Spdy: h2
www.theflix.com.br/img/series/loki.webp
34.159.75.132200 OK 18 kB URL HTTP/2 www.theflix.com.br/img/series/loki.webp
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 59af3cb787097e99b59b14e73a742ed0
8f951464abfe827590762117fb15ca32e1c1d110
36b8232e6191bd6596273535eeac3053bba754349153fdb5e52b48eb7b4d3892
GET /img/series/loki.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "6b961bb14157347483908c97091ab7c8-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H3YFGZT5EZSVMJGTKA
content-length: 17672
X-Firefox-Spdy: h2
www.theflix.com.br/img/filmes/uncharted-fora-do-mapa.webp
34.159.75.132200 OK 22 kB URL HTTP/2 www.theflix.com.br/img/filmes/uncharted-fora-do-mapa.webp
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3be9afea9987facbeff6a68d05bebe36
4be87ca5e53f61b91b740084bcc51babd40d362d
3b18595993a76827e9c649f96e0327f51ce1701739109ccb2697e772192530b1
GET /img/filmes/uncharted-fora-do-mapa.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "65ed57e24e0016179f31b161e89fff37-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H0G4Z81BZXHRDZBBZY
content-length: 22180
X-Firefox-Spdy: h2
www.theflix.com.br/trailer/jquery-modal-video.min.js
34.159.75.132200 OK 2.8 kB URL HTTP/2 www.theflix.com.br/trailer/jquery-modal-video.min.js
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (6615)
Hash 80ff0a32080a12c975616663ed182b02
26ddffe99b24f7aec62d041c7c6d0b79f8c8696f
831fc1822c3920a27fdac7c1606b822512e0a70b5f6b80a08c712e6d76929808
GET /trailer/jquery-modal-video.min.js HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7558
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 18 Nov 2022 13:22:00 GMT
etag: "b5ed5dec8f6082eceba0083ada5d9053-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJ5NN3J19QYMNQXBA2SZ66F6
content-length: 2795
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1c9b41f3190dad3fff7e79f4385b4aac
eb6eb3ee8e182212f0b1658998d3b76c69b98a6a
7fe5cec58ef98e859c52b2dcf45175bdcfa002c75e1a32bc27583d8e48e6185f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5682
Cache-Control: max-age=101256
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 15:27:58 GMT
Etag: "637676d4-116"
Expires: Sat, 19 Nov 2022 19:35:34 GMT
Last-Modified: Thu, 17 Nov 2022 18:00:52 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 278
www.theflix.com.br/fonts.googleapis.com/css2e442.css?family=Poppins:wght@100;200;300;400;500;600;700;800&display=swap
34.159.75.132404 Not Found 1.2 kB URL HTTP/2 www.theflix.com.br/fonts.googleapis.com/css2e442.css?family=Poppins:wght@100;200;300;400;500;600;700;800&display=swap
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (331)
Hash 3530ab3fb068ffb26ab9b3e9184cfcbe
5abe9ee23f42cb727de0567589872f2f5aad57c7
18c9246dec79e05803b6c95c0247f989bf655c1e1809d591b2be37f8bf6f2e22
GET /fonts.googleapis.com/css2e442.css?family=Poppins:wght@100;200;300;400;500;600;700;800&display=swap HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/css/stilo.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
age: 7558
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/html; charset=utf-8
date: Fri, 18 Nov 2022 13:22:00 GMT
etag: 1666806741-ssl-df
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJ5NN3J75K54TD6FYAXYB05T
content-length: 1245
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 15:27:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.theflix.com.br/img/filmes/lou.png
34.159.75.132200 OK 161 kB URL HTTP/2 www.theflix.com.br/img/filmes/lou.png
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 161 kB (161001 bytes)
Hash 7a1f463495b21c71d47715febd444e69
199f23b35359db3bab245b0926b2e0676022e524
e1e2ea770712a99c5533d13f407cdd882d1e4c89bd7eebbd880ca6254411ddad
GET /img/filmes/lou.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Fri, 18 Nov 2022 13:22:02 GMT
etag: "d31fe4b0a7614263d843511d01b96c2c-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HQQ6DK9KD3S1BHH3P8
content-length: 161001
X-Firefox-Spdy: h2
www.theflix.com.br/img/filmes/sem-saida.png
34.159.75.132200 OK 202 kB URL HTTP/2 www.theflix.com.br/img/filmes/sem-saida.png
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 202 kB (201653 bytes)
Hash 1e58ef8f44509cd2f2ba76c2709bf85c
ce2fd4b4f0d45d1dcb312c2ec8b633f9e19d521e
a7bcca0baa67ffbbafffcc4ec02cf8424a3814ebc653cbad15d1cf501ef4e071
GET /img/filmes/sem-saida.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Fri, 18 Nov 2022 13:22:02 GMT
etag: "393b4dc83a269a8c304c5040d76a1d2b-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HPHCH9EWAQH77VPQ5T
content-length: 201653
X-Firefox-Spdy: h2
www.theflix.com.br/img/filmes/thor-amor-e-trovao.png
34.159.75.132200 OK 254 kB URL HTTP/2 www.theflix.com.br/img/filmes/thor-amor-e-trovao.png
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 254 kB (253672 bytes)
Hash 222ce4a92b25bdbbb0ad0853546e9d60
624ba17be474e54eb07b5bab76337f0894c606ab
a84da17935bbf41110fa3d5fc71ce2d45ea228156faf39e64d0dfea41f8ac773
GET /img/filmes/thor-amor-e-trovao.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Fri, 18 Nov 2022 13:22:02 GMT
etag: "197936e36b331f1e4d8ffefc2b67f35d-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HP6ENEHKTTWBJA6RJE
content-length: 253672
X-Firefox-Spdy: h2
www.theflix.com.br/img/filmes/agente-oculto.png
34.159.75.132200 OK 161 kB URL HTTP/2 www.theflix.com.br/img/filmes/agente-oculto.png
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 161 kB (161349 bytes)
Hash 16d1e799464752dc8e992c4dbb68df30
a67231a74f947d81923b6f3c830dce0352aca53c
0d0c32b2eedb58b76377657cd43213718df9784aac58fe1af7cc9182b36ea055
GET /img/filmes/agente-oculto.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "53ca2d23cc7ef437563cdfb2aa2ddb19-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HPBCGAYMP5TB10PZ8N
content-length: 161349
X-Firefox-Spdy: h2
www.theflix.com.br/img/filmes/dupla-jornada.png
34.159.75.132200 OK 201 kB URL HTTP/2 www.theflix.com.br/img/filmes/dupla-jornada.png
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 201 kB (200841 bytes)
Hash b44d0d6616b03425269144b4c2f2df9f
c96d4b8d4392d4d2e06cf96b0175387b8541f0d0
ab6d7b249d20fa41c8f463ab5d3a97f03ad3a6641667eb3c4e2b4966e3fec39f
GET /img/filmes/dupla-jornada.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Fri, 18 Nov 2022 13:22:02 GMT
etag: "668d22d352e5b5ba59750a4ba7d4b0ae-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HPNTP606YHF3PYJFE5
content-length: 200841
X-Firefox-Spdy: h2
www.theflix.com.br/img/filmes/aguas-profundas.png
34.159.75.132200 OK 165 kB URL HTTP/2 www.theflix.com.br/img/filmes/aguas-profundas.png
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 165 kB (164943 bytes)
Hash 19766e438c1fae6227106421676c8fd5
291b051d5e969fd63a1df94b90a0e106f22e1dc2
3469f7ce3265b12fcf5d0c67bb5c3d40f8c9a7455f08f3ec203a0226f0125827
GET /img/filmes/aguas-profundas.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Fri, 18 Nov 2022 13:22:02 GMT
etag: "7989a7cf59d2d45c731affe19f6c4cc6-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HMR5K6VFDFHW2QH9EC
content-length: 164943
X-Firefox-Spdy: h2
www.theflix.com.br/img/filmes/samaritano.png
34.159.75.132200 OK 163 kB URL HTTP/2 www.theflix.com.br/img/filmes/samaritano.png
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 163 kB (162733 bytes)
Hash 17e8ac3f1eb2aae1caa201051e0e718e
8d9c74c1c7682fa3c518a1baede2cee93446d85d
5e1d9fe80acaa5ef33e81e781b52c2d7845a47785e150ebdfcb34f2b7a2f2c7d
GET /img/filmes/samaritano.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Fri, 18 Nov 2022 13:22:02 GMT
etag: "89a1573dc9db711cbb38cc48ee08a3df-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HM692YTRTCGK0NBB25
content-length: 162733
X-Firefox-Spdy: h2
www.theflix.com.br/img/filmes/top-gun-maverick.png
34.159.75.132200 OK 200 kB URL HTTP/2 www.theflix.com.br/img/filmes/top-gun-maverick.png
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 200 kB (199478 bytes)
Hash 452fdebc3fb01dbc2c23db8650a8529b
298c729676118a148c74c61418ffc66ac8052a07
ff73bbd0b45c8b6ad42749de72264ff1c4529543439e79d7de1f4b6c6c696007
GET /img/filmes/top-gun-maverick.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Fri, 18 Nov 2022 13:22:02 GMT
etag: "f20964c2db57da41e0f9d7bf331394d6-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HK9SHG93JE7TRYK9SE
content-length: 199478
X-Firefox-Spdy: h2
www.theflix.com.br/img/filmes/pantera-negra-2.png
34.159.75.132200 OK 188 kB URL HTTP/2 www.theflix.com.br/img/filmes/pantera-negra-2.png
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 188 kB (187767 bytes)
Hash b70c74a19bb2910738839bda950483ea
bd3ce4d664b4d7b8dad6d2e03d7ae1a531b3df72
0ba9e1645494a4620964bff2edb45fd6c414a3d311b256a5106cf3e66a87eba4
GET /img/filmes/pantera-negra-2.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Fri, 18 Nov 2022 13:22:02 GMT
etag: "e6ee6ee7304e6b002b09102f6dca01e9-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HEJWYW1T3Z3FVCYWWA
content-length: 187767
X-Firefox-Spdy: h2
www.theflix.com.br/img/filmes/adao-negro.png
34.159.75.132200 OK 196 kB URL HTTP/2 www.theflix.com.br/img/filmes/adao-negro.png
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 196 kB (195824 bytes)
Hash d92078b104452a71f6f2227c559ca4d2
caa28138c06a556ec2efc433b7983a6bf77cbd18
48651a702b9f00de60f43899a7cc4e3b2d0744416c1ac235da27660716b785b9
GET /img/filmes/adao-negro.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "8b2312645da04a7ff07739c3be8c9380-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HE56YFVS34CHVR9M7G
content-length: 195824
X-Firefox-Spdy: h2
www.theflix.com.br/img/series/sem-limites.png
34.159.75.132200 OK 189 kB URL HTTP/2 www.theflix.com.br/img/series/sem-limites.png
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 189 kB (188849 bytes)
Hash afd15c0c3a4b8e48edd4870d4d7b651a
5a5dede372db9ebbe5edf6573654d360d585f692
438a52dc2ea6d7c1026fd44cde58e72ab01ed6e92fbeb97950aa17ea15ecc4ab
GET /img/series/sem-limites.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "672aa40aab81153ce63230e2764bef36-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HDCRT1VP1S2KP76WFJ
content-length: 188849
X-Firefox-Spdy: h2
www.theflix.com.br/img/series/obi-wan-kenobi.png
34.159.75.132200 OK 149 kB URL HTTP/2 www.theflix.com.br/img/series/obi-wan-kenobi.png
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 149 kB (149379 bytes)
Hash b2c9e899f67548c871d2359c5fd9e25f
003b0259622be4e2a8812af8a0e6f9e8851a1a62
76a4db8f939f53ec86a701be5fd673667f2405dec4fff8d92e10acc841203c7b
GET /img/series/obi-wan-kenobi.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "4674506af4d131ea93d363231a82b0b6-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HAF48GVDCNYTMKH1FE
content-length: 149379
X-Firefox-Spdy: h2
www.theflix.com.br/img/series/star-wars-andor.webp
34.159.75.132200 OK 24 kB URL HTTP/2 www.theflix.com.br/img/series/star-wars-andor.webp
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash f6fd2f6d8cf19bab875a2f9e88a5f384
b275fbcd226989846a71e3cbe17afad127ca5032
f51eb992192dd6625daad871f859177bc23998f8cd7512e0737bad31b5fce2b4
GET /img/series/star-wars-andor.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "ee43b047dccc3b1039d9e623e9af3755-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H5HC92VTC2HV6M2N59
content-length: 24038
X-Firefox-Spdy: h2
www.theflix.com.br/img/series/she-hulk.webp
34.159.75.132200 OK 11 kB URL HTTP/2 www.theflix.com.br/img/series/she-hulk.webp
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash e86b1b21d98852562b853eb6362a2f60
3c125f406991593d38cde585747593ac4de903fc
2fb9befaab36b747b8897fb4a464d7781cc5866aae9cd2adb661c28b1cd6a415
GET /img/series/she-hulk.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "3ca3a427764c2b17d1aefbe1ef7e8b62-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H5BG64BRSCEESTRZC9
content-length: 11328
X-Firefox-Spdy: h2
www.theflix.com.br/img/series/house-of-the-dragon.webp
34.159.75.132200 OK 24 kB URL HTTP/2 www.theflix.com.br/img/series/house-of-the-dragon.webp
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash b70bee808561fc77c118788e280a32ab
8bfa33e828044724476eaf0fda9532839dfb4972
450459b712a28edd5d59e8ecf18e475247fa096c90ef670896dc429fa6761482
GET /img/series/house-of-the-dragon.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Fri, 18 Nov 2022 13:22:01 GMT
etag: "aedc298315b161935e55ee417a36470b-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H4GAH4AGA3BE19VFHZ
content-length: 24256
X-Firefox-Spdy: h2
www.theflix.com.br/img/series/dahmer-um-canibal-americano.webp
34.159.75.132200 OK 23 kB URL HTTP/2 www.theflix.com.br/img/series/dahmer-um-canibal-americano.webp
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 925ec47c3088bd12cce9546399d65521
5f4848fa7aa5ddd821f406db99fb0d0ef8c1583a
b04c18a9ee088ebc917d6eac589f8e1dc3b00c429019bfc77d0016c35c5931ea
GET /img/series/dahmer-um-canibal-americano.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "ceef5f75622d0fd56cc90a99c0a14703-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H4DX90WG1HN99SNQQZ
content-length: 22874
X-Firefox-Spdy: h2
www.theflix.com.br/img/series/carros-na-estrada.png
34.159.75.132200 OK 234 kB URL HTTP/2 www.theflix.com.br/img/series/carros-na-estrada.png
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 234 kB (233677 bytes)
Hash f203440aa8b67dbacaadd5c5fa008b05
bf242143eed11cb9425c8c3d07ec8f19d8ebe1b3
bb2647234890a6bd61a9f072993f2c22830e764551a1fa6ec4e0076e34c5cb92
GET /img/series/carros-na-estrada.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "09707b4e441622e0ec63eacf08a24447-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HA72S7R0WZ550BHS7T
content-length: 233677
X-Firefox-Spdy: h2
www.theflix.com.br/img/series/os-aneis-do-poder.webp
34.159.75.132200 OK 11 kB URL HTTP/2 www.theflix.com.br/img/series/os-aneis-do-poder.webp
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash c4707b2b9441270d8aae4048dac82578
f44df0deae953a42db518414a2ea42369922b1f7
b6acbf3df3610b14158c55a7305da65be72a8066df2e0a22447755f96c97eb5c
GET /img/series/os-aneis-do-poder.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Fri, 18 Nov 2022 13:22:01 GMT
etag: "e130f7e3c2fb1f87637e8eb6f46ff415-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H4TMAKKYABTWWHXTJ4
content-length: 10882
X-Firefox-Spdy: h2
www.theflix.com.br/img/series/round-6.webp
34.159.75.132200 OK 24 kB URL HTTP/2 www.theflix.com.br/img/series/round-6.webp
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash d4780b065ace4d420a292be892d41331
c995de9f0a7510fe7e06318ec8d931f053722df6
f70b9997e5d019913869ca8042e042b9db9326fe07383d26687aa3cc6470191e
GET /img/series/round-6.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Fri, 18 Nov 2022 13:22:01 GMT
etag: "8ebfabc5839f5ceb63aff7853aef832b-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3GW7MN79Z5HPS5KGPFS
content-length: 23776
X-Firefox-Spdy: h2
www.theflix.com.br/img/series/sandman.png
34.159.75.132200 OK 144 kB URL HTTP/2 www.theflix.com.br/img/series/sandman.png
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 144 kB (144501 bytes)
Hash be1f3227953b9364366b7b0d29839d72
dab50ae5fd1fc79fdbed775e7ec238ede9f2281b
2766db805880e1a8faa77db754720c7a9b8b760d3d2e436cf92fa5e8b2c1863e
GET /img/series/sandman.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "1e3b7da917042c52f9546b242a4e2aad-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H9471A95KS74Y0AA6X
content-length: 144501
X-Firefox-Spdy: h2
www.theflix.com.br/img/filmes/red-crescer-e-uma-fera.webp
34.159.75.132200 OK 19 kB URL HTTP/2 www.theflix.com.br/img/filmes/red-crescer-e-uma-fera.webp
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash d70a86d60870368e3ae8e2adef08dd19
5e4167a24f2cc7528c7256b5bc59cf6d9e57a757
c6f964f0f075c535632aea410de8f61e70111c0c642b7b0fa8923a60410f36bf
GET /img/filmes/red-crescer-e-uma-fera.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "963c0981f64e33fc96980452f61c91bc-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H35A3MXDTMCMRDANRH
content-length: 18872
X-Firefox-Spdy: h2
www.theflix.com.br/img/filmes/homem-aranha-no-way-home.webp
34.159.75.132200 OK 26 kB URL HTTP/2 www.theflix.com.br/img/filmes/homem-aranha-no-way-home.webp
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 58a706a82d7872641aaad1c5ecfddf2a
7ef62bb64544494b756304729453808418a32643
e1011c0a2cffb7f53cecc6ef64d84bded82c4a1a0bc3fb3fb518051264a82a03
GET /img/filmes/homem-aranha-no-way-home.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "7b3464803f9ac7821136707c424f5985-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3GHK26VGGQ41X252SDN
content-length: 26106
X-Firefox-Spdy: h2
www.theflix.com.br/img/filmes/doutor-estranho-no-multiverso-da-loucura.webp
34.159.75.132200 OK 23 kB URL HTTP/2 www.theflix.com.br/img/filmes/doutor-estranho-no-multiverso-da-loucura.webp
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 76a251b37de88ff24ecaf232bfd0eec2
4f37cc5ab18c7f63b47b076ec8d008f2b339d1bd
5a7a12fcfc7e9ed5b51a4fd2fd2b1ab8a72b8ea03989678e5d41b077cd8d6f76
GET /img/filmes/doutor-estranho-no-multiverso-da-loucura.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "43951f497f19fc65638d02db6c9fd116-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3GWXPM5Z3PSFDQZ067Y
content-length: 22686
X-Firefox-Spdy: h2
www.theflix.com.br/img/filmes/kings-man-a-origem.webp
34.159.75.132200 OK 17 kB URL HTTP/2 www.theflix.com.br/img/filmes/kings-man-a-origem.webp
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash d4c7ab5045cf39eb48f219aa08247a54
364c7e97e23820c5eb170fe4cfcc84041cad7a12
ed9820254687a15d978c6008be23929f4e3bb2c641f8a2f944d59126f342dafd
GET /img/filmes/kings-man-a-origem.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "43ffc10825e89781e50619dec5b36dae-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3GH96CC86MAWPKD878N
content-length: 17102
X-Firefox-Spdy: h2
www.theflix.com.br/img/posters/filmes/shang-chi.webp
34.159.75.132200 OK 57 kB URL HTTP/2 www.theflix.com.br/img/posters/filmes/shang-chi.webp
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7c8017458d97d2f4991a4ad336129c86
3267709bb54ed430cdd47ff19fc18dc5f00b440d
5b921474b0cf0789a04be7a4007ae0cc04ace49645180ef7e88b62320890460d
GET /img/posters/filmes/shang-chi.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "b8a713099cb1c22fc696cf260aa1e53f-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3G8YEEZ7RS6GZFRT93J
content-length: 56694
X-Firefox-Spdy: h2
www.theflix.com.br/img/series/perifericos.png
34.159.75.132200 OK 188 kB URL HTTP/2 www.theflix.com.br/img/series/perifericos.png
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 188 kB (188121 bytes)
Hash 3e387cd2876e6718033dfca1966d8dda
2acddf3b2b04493ef3b521db6a7690c547c721ca
99696b9be730919acd141acb4aaa389bc85e4f92d93a12c56a8aca96b47f20b2
GET /img/series/perifericos.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "a5a57d8dda96005ed0c6f0515eaab5d9-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H3811QRK5JKE3NKX8N
content-length: 188121
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/webfonts/fa-solid-900.woff2
104.17.24.14200 OK 78 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/webfonts/fa-solid-900.woff2
IP 104.17.24.14:0
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
GET /ajax/libs/font-awesome/5.15.3/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:27:58 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 78196
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "60510736-13174"
last-modified: Tue, 16 Mar 2021 19:29:58 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 165310
expires: Wed, 08 Nov 2023 15:27:58 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zvHyKyK9NL1kyhC7LnCEsXwHTXEhvFmONE1bVkxeLJGmXSjQKCWMHb18ZI8oWJfLice64R%2BNvapo9jjNd45GqKonjrZ7Zd5zdzgsPj7Xq0mP5ie9LDee2bHdCF2NV0jEkvrWCMrv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76c1bbb87dfeb4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.theflix.com.br/img/banners/filmes/shang-chi-full.webp
34.159.75.132200 OK 107 kB URL HTTP/2 www.theflix.com.br/img/banners/filmes/shang-chi-full.webp
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 107 kB (106582 bytes)
Hash 3a0c2655634317afcca9ab4a561b06db
d9c075e094d31e2a389dc4f95d1f24db5444847a
3b5380fb8d8a5444aa5ede5ddc71753f33d5d01ddbf04c195e561c3a2105ace6
GET /img/banners/filmes/shang-chi-full.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/css/stilo.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7558
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Fri, 18 Nov 2022 13:22:01 GMT
etag: "297e62697f0a3ab6d39c841d687f59c7-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3SQC99GZAH6FNVQD3HK
content-length: 106582
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 18 Nov 2022 14:44:49 GMT
cache-control: public,max-age=3600
age: 2589
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 15:27:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09e503d6981d74f9a5e4ff6ca5f26c27
4250a08d82bb0fce2205ce5faecfc105535666fb
94897b9ecd16c1e79a371c0403b0d7112bc1d81467fb6d596ed3a81b257b2175
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94897B9ECD16C1E79A371C0403B0D7112BC1D81467FB6D596ED3A81B257B2175"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8891
Expires: Fri, 18 Nov 2022 17:56:09 GMT
Date: Fri, 18 Nov 2022 15:27:58 GMT
Connection: keep-alive
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.195200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 21:48:50 GMT
expires: Thu, 16 Nov 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 149948
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 15:27:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 71e2d3da137dfcb058cc20cad1cca41a
71609efda3637da1ceca6267b63113f12ff029e8
6f453e45b937e1eaf9a1ae95930891a9ebfbfcf2238a9f2d657a04a2d0378046
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4081
Cache-Control: max-age=151140
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 15:27:59 GMT
Etag: "63773ff2-117"
Expires: Sun, 20 Nov 2022 09:26:59 GMT
Last-Modified: Fri, 18 Nov 2022 08:18:58 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
arsnivyr.com/27/baf66709eec2c7c7c82fd8256942b812
139.45.197.242200 OK 129 kB URL HTTP/2 arsnivyr.com/27/baf66709eec2c7c7c82fd8256942b812
IP 139.45.197.242:0
Size 129 kB (128642 bytes)
Hash 9101557272bbd16ba46a53df257745a6
0c67e311ba42e6348676bf4e74d489925b87fb7f
8edd2cbfe329d26fb00071331015cadc7268813317b4ae1655ee4c8cbca19088
Analyzer Verdict Alert quad9 Sinkholed
GET /27/baf66709eec2c7c7c82fd8256942b812 HTTP/1.1
Host: arsnivyr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Cookie: scm=1; OAID=260fec046532482084b496d59c2e08ce; oaidts=1668785278
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:58 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
cache-control: max-age:290304000, public
last-modified: Fri, 18 Nov 2022 05:30:07 GMT
expires: Fri, 18 Dec 2082 05:30:07 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.37.79.227101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.37.79.227:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aUn2GRjpAgoKKOdbrsDLlQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ypqvMhcu9VA8ZEP2odbAIQNWyDk=
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 419e11329b40f6d11706372a1618331f
f6846a20afbbe22c8ad5be20cc711014bc314a27
91f7516f31fec4ded19345ceda5e923324666f5d20c75c47bc36d95a31c43cf3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 15:27:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 17 Nov 2022 18:25:19 GMT
Expires: Thu, 24 Nov 2022 18:25:18 GMT
Etag: "f6846a20afbbe22c8ad5be20cc711014bc314a27"
Cache-Control: max-age=528438,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c1bbbad8560b59-OSL
my.rtmark.net/gid.js?userId=8db97e748f8648abb69c34adb4294e38
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=8db97e748f8648abb69c34adb4294e38
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash b2d467a8dd60839d488a129931c1e866
9661d654b6924e5e446f91bb42a2aa8598cb25c3
862c75e38d4592935dc3bc605423758fefc8df2e9eed353d142214d94335d1d6
GET /gid.js?userId=8db97e748f8648abb69c34adb4294e38 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.theflix.com.br
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=8db97e748f8648abb69c34adb4294e38; expires=Sat, 18 Nov 2023 15:27:59 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d16b4d6a8e31c35eb7d231a6269b86b4
9af67cc182d37d8d0b501f7d21e70ccd0b0314a4
e154c3a25d920723f06a645f269f692e82074d3c63934ac8234ffed6fcc3637e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E154C3A25D920723F06A645F269F692E82074D3C63934AC8234FFED6FCC3637E"
Last-Modified: Wed, 16 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21543
Expires: Fri, 18 Nov 2022 21:27:02 GMT
Date: Fri, 18 Nov 2022 15:27:59 GMT
Connection: keep-alive
arsnivyr.com/9?z=5062129&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&oaid=8db97e748f8648abb69c34adb4294e38
139.45.197.242204 No Content 0 B URL HTTP/2 arsnivyr.com/9?z=5062129&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&oaid=8db97e748f8648abb69c34adb4294e38
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /9?z=5062129&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&oaid=8db97e748f8648abb69c34adb4294e38 HTTP/1.1
Host: arsnivyr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.theflix.com.br/
Origin: https://www.theflix.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 18 Nov 2022 15:27:59 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.theflix.com.br
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b8e85d821df1f9d15a228d4ca52cdedc
9b566e7781db388e65f153f527fdf4e7f31094b0
dd7152c9835730eeaf701ec21b3709abccc654b14d9cb3212fa2fe4649aaec52
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DD7152C9835730EEAF701EC21B3709ABCCC654B14D9CB3212FA2FE4649AAEC52"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11160
Expires: Fri, 18 Nov 2022 18:33:59 GMT
Date: Fri, 18 Nov 2022 15:27:59 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 539342595b9286f3bbbe36590aba604c
ecb56df48b861b441763404e9a4e7de5d1a12c15
49fe520866e0b136d16dfa619a8a41a5faf4bcbca533dde8510966dfa0cf2e96
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 15:27:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 18 Nov 2022 13:33:19 GMT
Expires: Fri, 25 Nov 2022 13:33:18 GMT
Etag: "ecb56df48b861b441763404e9a4e7de5d1a12c15"
Cache-Control: max-age=597318,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c1bbbbdd7db517-OSL
arsnivyr.com/11?rnd=3300657521&z=5062129&b=14148812&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk=&ruid=ff727d01-ec6c-453a-9f20-48f8c1d51b2d&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ot=91
139.45.197.242200 OK 0 B URL HTTP/2 arsnivyr.com/11?rnd=3300657521&z=5062129&b=14148812&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk=&ruid=ff727d01-ec6c-453a-9f20-48f8c1d51b2d&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ot=91
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /11?rnd=3300657521&z=5062129&b=14148812&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk=&ruid=ff727d01-ec6c-453a-9f20-48f8c1d51b2d&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ot=91 HTTP/1.1
Host: arsnivyr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Cookie: scm=1; OAID=8db97e748f8648abb69c34adb4294e38; oaidts=1668785278
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.theflix.com.br
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: e28a94268e1ccfe1620b6616ab8f8c42
access-control-expose-headers: X-Sc
set-cookie: OAID=8db97e748f8648abb69c34adb4294e38; expires=Sat, 18 Nov 2023 15:27:59 GMT; secure; SameSite=None
oaidts=1668785278; expires=Sat, 18 Nov 2023 15:27:59 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
surecheapermoisture.com/f69f8904cae6b76fcdb5a29064d69860/invoke.js
192.243.61.227200 OK 9.8 kB URL HTTP/1.1 surecheapermoisture.com/f69f8904cae6b76fcdb5a29064d69860/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26955), with no line terminators
Hash 9a88271f94449f2c7ca3fce86de2c4b5
4418e30de95c1324757a2166db9d4ba11ab1b5bd
20461f734514780a182b7b19ceced9efc95d84ddf853e39e19a89391703d2b0e
GET /f69f8904cae6b76fcdb5a29064d69860/invoke.js HTTP/1.1
Host: surecheapermoisture.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 18 Nov 2022 15:27:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: de84a47e3b458c1bda0f4d0649870e9d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
139.45.195.253200 OK 12 B URL HTTP/1.1 datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP 139.45.195.253:0
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert quad9 Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 890
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Fri, 18 Nov 2022 15:27:59 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://www.theflix.com.br
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash db68cc49729904afe4910572afe551b3
56574ee0e7a5e85516ea368ace0787c123919f61
3f4e802675c57240b5ea0dfd1e9f685c49a6875515b4f66b83e7d5e8d2a4ff48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3F4E802675C57240B5EA0DFD1E9F685C49A6875515B4F66B83E7D5E8D2A4FF48"
Last-Modified: Thu, 17 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19205
Expires: Fri, 18 Nov 2022 20:48:04 GMT
Date: Fri, 18 Nov 2022 15:27:59 GMT
Connection: keep-alive
onmarshtompor.com/?rb=HMD6XugeKPrqCR-i8m86MuVazhpDx-6fmaIrJXwHCPhnNbFcR8eIuUljeI264FThMiWlVAce55iYQx7G5Otx8QvJgvA8scG4Z_pnC4x646NS85KpnrDh66lu4M6MGzPZKyDw31qFMmkWBJ1hzYTcnny42XdP1gt3LE_5L-ImjJV33I96gk0m8kdGKoUgaYj3dTFpfm9B2F_xYwih4-lWZKNnwUYutLWuLlhFWfE_hUopwsV4&request_ab2=0&zoneid=5062136&js_build=iclick-v1.450.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=939&wiw=1280&wfc=0&pl=https%3A%2F%2Fwww.theflix.com.br%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.450.0&bs=bf66231c-6e66-4319-925a-104f46877625&userId=8db97e748f8648abb69c34adb4294e38&m=link
139.45.197.243200 OK 12 kB URL HTTP/2 onmarshtompor.com/?rb=HMD6XugeKPrqCR-i8m86MuVazhpDx-6fmaIrJXwHCPhnNbFcR8eIuUljeI264FThMiWlVAce55iYQx7G5Otx8QvJgvA8scG4Z_pnC4x646NS85KpnrDh66lu4M6MGzPZKyDw31qFMmkWBJ1hzYTcnny42XdP1gt3LE_5L-ImjJV33I96gk0m8kdGKoUgaYj3dTFpfm9B2F_xYwih4-lWZKNnwUYutLWuLlhFWfE_hUopwsV4&request_ab2=0&zoneid=5062136&js_build=iclick-v1.450.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=939&wiw=1280&wfc=0&pl=https%3A%2F%2Fwww.theflix.com.br%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.450.0&bs=bf66231c-6e66-4319-925a-104f46877625&userId=8db97e748f8648abb69c34adb4294e38&m=link
IP 139.45.197.243:0
File type JSON data\012- exported SGML document, ASCII text, with very long lines (29275), with no line terminators
Hash bc3c5d480c5169c89c6017d760aa2c80
c211d1fb4b4a28f50c05ea59cdc4efd35391a78d
824da04894fde6cc86f2cd9a366d6f17218a0d6428c6ed9c4798ad1916ba9dea
GET /?rb=HMD6XugeKPrqCR-i8m86MuVazhpDx-6fmaIrJXwHCPhnNbFcR8eIuUljeI264FThMiWlVAce55iYQx7G5Otx8QvJgvA8scG4Z_pnC4x646NS85KpnrDh66lu4M6MGzPZKyDw31qFMmkWBJ1hzYTcnny42XdP1gt3LE_5L-ImjJV33I96gk0m8kdGKoUgaYj3dTFpfm9B2F_xYwih4-lWZKNnwUYutLWuLlhFWfE_hUopwsV4&request_ab2=0&zoneid=5062136&js_build=iclick-v1.450.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=939&wiw=1280&wfc=0&pl=https%3A%2F%2Fwww.theflix.com.br%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.450.0&bs=bf66231c-6e66-4319-925a-104f46877625&userId=8db97e748f8648abb69c34adb4294e38&m=link HTTP/1.1
Host: onmarshtompor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.theflix.com.br/
Origin: https://www.theflix.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: application/json
x-trace-id: 751233a8383097bbe96e73956930b216
access-control-allow-origin: https://www.theflix.com.br
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=8db97e748f8648abb69c34adb4294e38; expires=Sat, 18 Nov 2023 15:27:59 GMT; path=/; secure; SameSite=None
oaidts=1668785279; expires=Sat, 18 Nov 2023 15:27:59 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 25 Nov 2022 15:27:59 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash f0a7ae5fe0c925b0517f6494ff5a5d5c
ceda7ce395748306376df68d7d33a4b4ca775afc
fe329b0ac99808d05d1db86e9825270536e66e85b2860eed3b5f0087d99f3753
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=169514
Date: Fri, 18 Nov 2022 15:27:59 GMT
Etag: "63778916-1d7"
Expires: Sun, 20 Nov 2022 14:33:13 GMT
Last-Modified: Fri, 18 Nov 2022 13:31:02 GMT
Server: ECS (bsa/EB13)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AR__IslTcxGCjDO1mHYZGyrj4BbMX3ivobjdRdYme8zyUDWH5CY7Mg==
Age: 3731
simplewebanalysis.com/stats
18.195.188.15200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.195.188.15:0
File type ASCII text, with no line terminators
Hash 49ae227e21e49f4b6315633115b4a35d
4e4006f98093ceb9cb8b467e003d5d99cb8afc97
e4a09b7958fbcf27906f2b6e087db2cd9bf9b519159845e587daf84a0fa6cc77
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.theflix.com.br
access-control-allow-credentials: true
set-cookie: uid_id2=7d7a87a2-695a-4cb3-b3b5-8ca7384fb146:1:1; expires=Mon, 15 Nov 2032 15:27:59 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
surecheapermoisture.com/a14782589bff5c017ada94609ca686ad/invoke.js
192.243.61.227200 OK 9.8 kB URL HTTP/1.1 surecheapermoisture.com/a14782589bff5c017ada94609ca686ad/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26957), with no line terminators
Hash 0db772eac3d593b76f0b7b577f1446b1
dd9c4c575a1ebbd9d44c83ad68e4909f3ebf19fe
ed2b43d32274d9f017cc65249e1ae6eec2ebc69b38b53c2daba065dc9090ff9c
GET /a14782589bff5c017ada94609ca686ad/invoke.js HTTP/1.1
Host: surecheapermoisture.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 18 Nov 2022 15:27:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d7b39495e503738bf7eed85611fa7442
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
interstitial-07.com/contents/s/36/d8/c2/9c866059b85b47752a6cc71b81/01636574006222.png
139.45.197.152200 OK 45 kB URL HTTP/2 interstitial-07.com/contents/s/36/d8/c2/9c866059b85b47752a6cc71b81/01636574006222.png
IP 139.45.197.152:0
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash 36d8c29c866059b85b47752a6cc71b81
2d877eabf6710f66f5d7a3e265de997cf258ba32
0bbd2d8d16b4fd96c0a0dabecbd05ca573b30cd7079950d73b5dd68bde69a27b
GET /contents/s/36/d8/c2/9c866059b85b47752a6cc71b81/01636574006222.png HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=oSZzlw5DAOxDMSS&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Farsnivyr.com%2F12%3Frnd%3D1348375174%26z%3D5062129%26b%3D14148812%26c%3D5901940%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62cddf3c85e2d000019d78f1%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3D1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Dff727d01-ec6c-453a-9f20-48f8c1d51b2d%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.theflix.com.br%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D0%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: image/png
content-length: 45133
last-modified: Thu, 14 Jul 2022 23:23:43 GMT
etag: "62d0a57f-b04d"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
18.195.188.15200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.195.188.15:0
File type ASCII text, with no line terminators
Hash 102e2bb9dd3d0565d2aafd1e81ebfaa1
977295ed2ec9cb44fe4d587dd753a3d2966c025c
35163621934473f3d087b29b8e8297c7c5b414f76225226c690914488c038a9d
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.theflix.com.br
access-control-allow-credentials: true
set-cookie: uid_id2=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d:2:1; expires=Mon, 15 Nov 2032 15:27:59 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5b53b7ba5a6f06d437286c4519066e9f
03602c01237dba1ab77745ebf3f584358aac302c
a8ed5421b34fbaa8aa0c9a7a3c57a636fe835b4177724308002b9f298d9beea3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8ED5421B34FBAA8AA0C9A7A3C57A636FE835B4177724308002B9F298D9BEEA3"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2351
Expires: Fri, 18 Nov 2022 16:07:10 GMT
Date: Fri, 18 Nov 2022 15:27:59 GMT
Connection: keep-alive
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
216.58.207.195200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data
Hash 8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb
GET /s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:31:06 GMT
expires: Thu, 16 Nov 2023 19:31:06 GMT
cache-control: public, max-age=31536000
age: 158213
last-modified: Wed, 27 Apr 2022 16:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
216.58.207.195200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:30:59 GMT
expires: Thu, 16 Nov 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 158220
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
18.195.188.15200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.195.188.15:0
File type ASCII text, with no line terminators
Hash 102e2bb9dd3d0565d2aafd1e81ebfaa1
977295ed2ec9cb44fe4d587dd753a3d2966c025c
35163621934473f3d087b29b8e8297c7c5b414f76225226c690914488c038a9d
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Cookie: uid_id2=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d:2:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.theflix.com.br
access-control-allow-credentials: true
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLFj_Z1xlFQ.woff2
216.58.207.195200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLFj_Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7932, version 1.0\012- data
Hash a7f7eebec745ef48ccf7a3d08c66d84a
2c5f99afe358a3e8570818a99646779aaa607587
6f0c572590421075878908e0b380c5a6d404f72aa7d6d125385943be658f8399
GET /s/poppins/v20/pxiByp8kv8JHgFVrLFj_Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7932
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 13 Nov 2022 00:50:59 GMT
expires: Mon, 13 Nov 2023 00:50:59 GMT
cache-control: public, max-age=31536000
age: 484620
last-modified: Wed, 27 Apr 2022 16:10:29 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
interstitial-07.com/contents/s/06/81/01/3a2614b7b0b9c1fe8640a337d6/01564863680579.jpeg
139.45.197.152200 OK 125 kB URL HTTP/2 interstitial-07.com/contents/s/06/81/01/3a2614b7b0b9c1fe8640a337d6/01564863680579.jpeg
IP 139.45.197.152:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 900x600, components 3\012- data
Size 125 kB (125242 bytes)
Hash 0681013a2614b7b0b9c1fe8640a337d6
a422ab7fbf3cd22db2f3edd47aee04eae4355246
f3f918825d47aed0e2003ed3d95563abdfc80592531b6cfd593aafa356959766
GET /contents/s/06/81/01/3a2614b7b0b9c1fe8640a337d6/01564863680579.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=oSZzlw5DAOxDMSS&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Farsnivyr.com%2F12%3Frnd%3D1348375174%26z%3D5062129%26b%3D14148812%26c%3D5901940%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62cddf3c85e2d000019d78f1%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3D1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Dff727d01-ec6c-453a-9f20-48f8c1d51b2d%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.theflix.com.br%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D0%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: image/jpeg
content-length: 125242
last-modified: Mon, 18 Jul 2022 20:55:17 GMT
etag: "62d5c8b5-1e93a"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
www.theflix.com.br/icons/fav-icon/favicon.ico
34.159.75.132200 OK 15 kB URL HTTP/2 www.theflix.com.br/icons/fav-icon/favicon.ico
IP 34.159.75.132:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash fa6b434f07674ec27acbcaa5e3274fc4
1aeeeb631db6ff87b55c02175fc838c0be392c45
4142f422b92d9f1644b74bf13c1728187f7e8419b3944aa21d22f2d4cce86726
GET /icons/fav-icon/favicon.ico HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Cookie: prefetchAd_5062136=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 7558
cache-control: public, max-age=0, must-revalidate
content-type: image/vnd.microsoft.icon
date: Fri, 18 Nov 2022 13:22:02 GMT
etag: "6d0d5a7b35b863e88a9af2b19105a297-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN4YAE84840SRB55ENXW5
content-length: 15406
X-Firefox-Spdy: h2
unphionetor.com/vctx?t=72747
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vctx?t=72747
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /vctx?t=72747 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 18 Nov 2022 15:27:59 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: e5c58f36f63b5bc37454361080fbf594
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vbl?t=72747&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 18 Nov 2022 15:28:00 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 1531515841e10c12b337e8ef7f791d13
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
arsnivyr.com/11?rnd=3300657521&z=5062129&b=14148812&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk=&ruid=ff727d01-ec6c-453a-9f20-48f8c1d51b2d&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
139.45.197.242200 OK 0 B URL HTTP/2 arsnivyr.com/11?rnd=3300657521&z=5062129&b=14148812&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk=&ruid=ff727d01-ec6c-453a-9f20-48f8c1d51b2d&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /11?rnd=3300657521&z=5062129&b=14148812&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk=&ruid=ff727d01-ec6c-453a-9f20-48f8c1d51b2d&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: arsnivyr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Cookie: scm=1; OAID=8db97e748f8648abb69c34adb4294e38; oaidts=1668785278
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:28:00 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.theflix.com.br
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 24d73b7f78155e1b27eee661b2b49d8c
access-control-expose-headers: X-Sc
set-cookie: OAID=8db97e748f8648abb69c34adb4294e38; expires=Sat, 18 Nov 2023 15:28:00 GMT; secure; SameSite=None
oaidts=1668785278; expires=Sat, 18 Nov 2023 15:28:00 GMT; secure; SameSite=None
oaidvc=1; expires=Sat, 18 Nov 2023 15:28:00 GMT; secure; SameSite=None
CNT=1_v1_zOTXAAEAAAByS3Yg; expires=Fri, 18 Nov 2022 16:28:00 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a133d0b5e7916dc576c7f711fc43beb7
4ab3ffe58034debc1be69738a231dfd272c09538
7f801552f7b204f1d9daf978e48c8191134d5af14b7c6aefc84bf366ba4a3d07
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7F801552F7B204F1D9DAF978E48C8191134D5AF14B7C6AEFC84BF366BA4A3D07"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13301
Expires: Fri, 18 Nov 2022 19:09:41 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 905df2288ce4da17b97590ffed7ce16d
2a632641f66366a9eda190c85fd065bf9bd1f812
a0d7c6e0e519fe4d42ff020e17f609c1dc3f93f38cc51058de2a2fd12729b6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0D7C6E0E519FE4D42FF020E17F609C1DC3F93F38CC51058DE2A2FD12729B6FA"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11540
Expires: Fri, 18 Nov 2022 18:40:20 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 1.1 kB IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
File type gzip compressed data, max compression\012- data
Hash 4f32e0a5a7cc0ba7d8670723744b45a4
a7b0957214e41a70bac77ad9c2168e5c823a61fd
0a2c915107a4c46c57b3532d20eba81a9b21dc9c1fdd64e9a9dedec5732db994
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B17CD870326CAECC35E967E3EA55FB83849219C13BF99D8D363138E69A41923F"
Last-Modified: Thu, 17 Nov 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3502
Expires: Fri, 18 Nov 2022 16:26:22 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16057
Expires: Fri, 18 Nov 2022 19:55:37 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16057
Expires: Fri, 18 Nov 2022 19:55:37 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16057
Expires: Fri, 18 Nov 2022 19:55:37 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16057
Expires: Fri, 18 Nov 2022 19:55:37 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16057
Expires: Fri, 18 Nov 2022 19:55:37 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d0b6106f00f9fd8b89c2d484a559a1a
399ac393209dcdac7d2188d7aa8d95f04570ef7c
5d8151c9eb558f4a2b8bd2952c6845606ddb0c27e36f6e49aca7e60908cd9fe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3759
x-amzn-requestid: 8c91ac59-89dc-4218-b69f-0cebb29f301b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-wJHgxoAMF-hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab33-4dac305614a92bc52c038222;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mb2-PTjNmt06Wd5jOjQ5WoLY-0NgI80CKPXtwgzBt4n5km8Pu_WN0Q==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:08:54 GMT
age: 62346
etag: "399ac393209dcdac7d2188d7aa8d95f04570ef7c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b43b0-5ba1-4c6c-9a53-bfae9befdd7d.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b43b0-5ba1-4c6c-9a53-bfae9befdd7d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a9d32fa3866dd741de610a61a93ad893
4cb2141b1ef1e5bf19a3b355995dcd8fa36f695e
4492338de536cfae6fb42fd37170c60f4fbc281a2a924efe6d2b5af352cd102c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b43b0-5ba1-4c6c-9a53-bfae9befdd7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6344
x-amzn-requestid: cac35b04-be3b-4ae1-bb5e-8cedcd7a7db4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: btqOVFCXIAMFcOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63755728-45c28fa333b748520be29b57;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 21:33:28 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: RQqPegf6sdVW0qmrGnUo6EORLuT7BRikwhtF08LAxWNCpLGwGZnG8Q==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:34:03 GMT
age: 64437
etag: "4cb2141b1ef1e5bf19a3b355995dcd8fa36f695e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b2b393e36ee2c9649d90db136aa49542
e88c5832ff0c49bab181d948c3a510d88343bb6f
8b524701df43bff56ac52a021ff0fbd964e06f00e84b4861aa557ec6ae6b4ffd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7631
x-amzn-requestid: b47e545d-1fb6-4a62-ab45-28cdb9d3f0b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-vQE0XoAMFS3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab2e-56365eed3d4c082c53b172b3;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qpoQa1Lhe-h27dGooXDCtujesSTg7Tb0Ov-PNLnUP0288ZofwHxkhQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:24:12 GMT
age: 61428
etag: "e88c5832ff0c49bab181d948c3a510d88343bb6f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 032386e5c9dffff1ba1ee5e8a322d438
dd4fd6c803a9b333bace9a541c6bd183d0c56bb9
0e9f559a0aa7e114c5810a27ba243c0da7b44dc0bf7aec2b7ab32b8f0e2b536c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: 4778d1bd-28c3-4665-89da-046e356087f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyD1HE-oAMF0QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-53c7330c5fd36d3c4d9e6aed;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CHi9V7-WaWmG6Y0249CZJnhe_RjvleaGFVXoOnJ62cjrcXoLLKwzgw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 07:20:30 GMT
age: 29250
etag: "dd4fd6c803a9b333bace9a541c6bd183d0c56bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb1ea6fe-f968-42eb-9bb6-5965ae4e6ce6.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb1ea6fe-f968-42eb-9bb6-5965ae4e6ce6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5fb6d72b647aabea33ab4017f4a0847
ed93ac946111340a254b92f8ce27e8be93ae87e8
0782ed4ffaea8f9487461d5a9b0c241d30dfe057676753b24e180d0a94efad99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb1ea6fe-f968-42eb-9bb6-5965ae4e6ce6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7045
x-amzn-requestid: e8dace8b-0cc8-4ea0-b47a-e42a66576f72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-K3EuCIAMFsmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa45-71c191e462be52006858817b;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: S0Sq8vuP-MbcuYVx_WFXTkmrY966mBTY1Qpowx_E_to1tDk1b8R-Bw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:52:11 GMT
age: 63349
etag: "ed93ac946111340a254b92f8ce27e8be93ae87e8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7d16e5ff718353c095d266b080fe547f
fa7c5c9a1d16355859196271f3d13f3850931888
9a94d8eb20cc56d0898b1e2b80c0006ebbef75c15ad94e907050c5be4e19a960
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10349
x-amzn-requestid: fc85e078-a81a-4fed-899e-15249961f59c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-7tHGLIAMF00Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7d-4224d193517794684fcdc0ad;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UK-XD_8EcfPwfLb-QVwfLr8aG-sqVBoUJcbPb5hKAlQS68eOxdgM5g==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:05:52 GMT
age: 62528
etag: "fa7c5c9a1d16355859196271f3d13f3850931888"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
relativelyweptcurls.com/watch.1415438315161.js?key=f69f8904cae6b76fcdb5a29064d69860&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=7d7a87a2-695a-4cb3-b3b5-8ca7384fb146%3A1%3A1
173.233.139.164307 Temporary Redirect 0 B URL HTTP/1.1 relativelyweptcurls.com/watch.1415438315161.js?key=f69f8904cae6b76fcdb5a29064d69860&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=7d7a87a2-695a-4cb3-b3b5-8ca7384fb146%3A1%3A1
IP 173.233.139.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1415438315161.js?key=f69f8904cae6b76fcdb5a29064d69860&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=7d7a87a2-695a-4cb3-b3b5-8ca7384fb146%3A1%3A1 HTTP/1.1
Host: relativelyweptcurls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Fri, 18 Nov 2022 15:28:00 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.theflix.com.br
Access-Control-Allow-Origin: https://www.theflix.com.br
Access-Control-Allow-Credentials: true
Location: https://relativelyweptcurls.com/watch.1415438315161.js?key=f69f8904cae6b76fcdb5a29064d69860&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=7d7a87a2-695a-4cb3-b3b5-8ca7384fb146%3A1%3A1&shu=c7e76e03ac972285990302a77bf90533c2ffc1453ee1d9742bfa8beb1c768bb2df1ea817d5cd7036a0937421d7796dc47ff2a2d5661215d36398a10869623bf440ec7525b74e5dafbec69bc95003ed72b29aad1c152eae8e1167ac2d3e2a05a930&pst=1668785340&rmtc=t
Set-Cookie: u_pl=16673171; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.bo7tSCrgI7dRWqrqt_AxYytPwmtN4htorpHrlyTaxY4; expires=Fri, 18 Nov 2022 15:29:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dabcc6048a80eec9540cd8cf5ca6a2ed
Strict-Transport-Security: max-age=0; includeSubdomains
grewquartersupporting.com/watch.377923618158.js?key=dbb79c1dbe098ca2c6200903b6984cab&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1
192.243.61.225307 Temporary Redirect 0 B URL HTTP/1.1 grewquartersupporting.com/watch.377923618158.js?key=dbb79c1dbe098ca2c6200903b6984cab&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.377923618158.js?key=dbb79c1dbe098ca2c6200903b6984cab&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1 HTTP/1.1
Host: grewquartersupporting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.22.0
Date: Fri, 18 Nov 2022 15:28:00 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.theflix.com.br
Access-Control-Allow-Origin: https://www.theflix.com.br
Access-Control-Allow-Credentials: true
Location: https://grewquartersupporting.com/watch.377923618158.js?key=dbb79c1dbe098ca2c6200903b6984cab&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1&shu=5a6b070938c9a31a41885299f09fa7243180cc27f983a48c10e4aeced24bde6452f097d4023cd9a182586bd92a6846c59a3236ec0185f4966f483ce305bc8fbd53d76b0954af34bef16376db0f46d6d6cf7682f2&pst=1668785340&rmtc=t
Set-Cookie: u_pl=16976924; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjk3NjkyNCwiayI6ImRiYjc5YzFkYmUwOThjYTJjNjIwMDkwM2I2OTg0Y2FiIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNzc4NTIxLCJwaWQiOjM4MDg5MiwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxLCJhaWQiOjUsInB0Ijo0LCJwayI6Inl1ZTJhNWZxMiIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo5MDc1MzQ1NywiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjM4OTE0LCJvbiI6IldpbmRvd3MiLCJvdiI6IjEwLjAiLCJiaWQiOjEyMDYyNSwiYm4iOiJGaXJlZm94IiwiYnYiOiIxMDUuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL3d3dy50aGVmbGl4LmNvbS5ici8ifX0.PFsx1c-WBbFu0fHGDKcUVFQ_vVj8S6ZFJ5YWdI4k51c; expires=Fri, 18 Nov 2022 15:29:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 800cb8dca3f9a361b60012cd6234f5b1
Strict-Transport-Security: max-age=0; includeSubdomains
yearbookhobblespinal.com/watch.1633087092953.js?key=a14782589bff5c017ada94609ca686ad&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1
192.243.59.12307 Temporary Redirect 0 B URL HTTP/1.1 yearbookhobblespinal.com/watch.1633087092953.js?key=a14782589bff5c017ada94609ca686ad&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.1633087092953.js?key=a14782589bff5c017ada94609ca686ad&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1 HTTP/1.1
Host: yearbookhobblespinal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.6
Date: Fri, 18 Nov 2022 15:28:00 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.theflix.com.br
Access-Control-Allow-Origin: https://www.theflix.com.br
Access-Control-Allow-Credentials: true
Location: https://yearbookhobblespinal.com/watch.1633087092953.js?key=a14782589bff5c017ada94609ca686ad&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1&shu=4f5a32f5905f0d60381bfc5f5317a84772837add9887ea7ecd76cf86c40469554fc4e99e827474b321283e24711e1e6147da5b656413cf3c764d52145535c3fe03e9402308ddcb942a9e0da32e4227942658e1e7&pst=1668785340&rmtc=t
Set-Cookie: u_pl=17098598; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.rF6oGeD1tDAmcPtG2n0rwLmqGYRTtyNt-s7nZw4NMpg; expires=Fri, 18 Nov 2022 15:29:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 74a9740c0c9f7ca34100b67c22742d24
Strict-Transport-Security: max-age=0; includeSubdomains
relativelyweptcurls.com/watch.1415438315161.js?key=f69f8904cae6b76fcdb5a29064d69860&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=7d7a87a2-695a-4cb3-b3b5-8ca7384fb146%3A1%3A1&shu=c7e76e03ac972285990302a77bf90533c2ffc1453ee1d9742bfa8beb1c768bb2df1ea817d5cd7036a0937421d7796dc47ff2a2d5661215d36398a10869623bf440ec7525b74e5dafbec69bc95003ed72b29aad1c152eae8e1167ac2d3e2a05a930&pst=1668785340&rmtc=t
173.233.139.164200 OK 2.1 kB URL HTTP/1.1 relativelyweptcurls.com/watch.1415438315161.js?key=f69f8904cae6b76fcdb5a29064d69860&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=7d7a87a2-695a-4cb3-b3b5-8ca7384fb146%3A1%3A1&shu=c7e76e03ac972285990302a77bf90533c2ffc1453ee1d9742bfa8beb1c768bb2df1ea817d5cd7036a0937421d7796dc47ff2a2d5661215d36398a10869623bf440ec7525b74e5dafbec69bc95003ed72b29aad1c152eae8e1167ac2d3e2a05a930&pst=1668785340&rmtc=t
IP 173.233.139.164:0
File type HTML document, ASCII text, with very long lines (2535)
Hash 0a665fbd09bb92fa791556bbe12dd4e7
e158a89f0c35324d081231024a4b2d96aaac9cc0
bc8981630071f3e064ffc83c1beff8eb1f733f57cd93a0a175e475eadd695b5a
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1415438315161.js?key=f69f8904cae6b76fcdb5a29064d69860&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=7d7a87a2-695a-4cb3-b3b5-8ca7384fb146%3A1%3A1&shu=c7e76e03ac972285990302a77bf90533c2ffc1453ee1d9742bfa8beb1c768bb2df1ea817d5cd7036a0937421d7796dc47ff2a2d5661215d36398a10869623bf440ec7525b74e5dafbec69bc95003ed72b29aad1c152eae8e1167ac2d3e2a05a930&pst=1668785340&rmtc=t HTTP/1.1
Host: relativelyweptcurls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Referer: https://www.theflix.com.br/
Connection: keep-alive
Cookie: u_pl=16673171; ain=eyJhbGciOiJIUzI1NiJ9.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.bo7tSCrgI7dRWqrqt_AxYytPwmtN4htorpHrlyTaxY4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 18 Nov 2022 15:28:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.theflix.com.br
Access-Control-Allow-Origin: https://www.theflix.com.br
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=7d7a87a2-695a-4cb3-b3b5-8ca7384fb146:1:1; expires=Fri, 25 Nov 2022 15:28:00 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
uncs=1; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
pdhtkv23=true; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
uncs23=1; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a6cc16e28997e3f4985f52a758c11ad9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
grewquartersupporting.com/watch.377923618158.js?key=dbb79c1dbe098ca2c6200903b6984cab&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1&shu=5a6b070938c9a31a41885299f09fa7243180cc27f983a48c10e4aeced24bde6452f097d4023cd9a182586bd92a6846c59a3236ec0185f4966f483ce305bc8fbd53d76b0954af34bef16376db0f46d6d6cf7682f2&pst=1668785340&rmtc=t
192.243.61.225200 OK 2.1 kB URL HTTP/1.1 grewquartersupporting.com/watch.377923618158.js?key=dbb79c1dbe098ca2c6200903b6984cab&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1&shu=5a6b070938c9a31a41885299f09fa7243180cc27f983a48c10e4aeced24bde6452f097d4023cd9a182586bd92a6846c59a3236ec0185f4966f483ce305bc8fbd53d76b0954af34bef16376db0f46d6d6cf7682f2&pst=1668785340&rmtc=t
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (2522)
Hash 0089f51f2a16ae796ea0d1c1dfac9644
2c398df90bc7211e327eedbcb3dbb325a596d8bc
f8b6c5287949be43709a46805e1514b4fa80b11032cc43279efa776970a02893
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.377923618158.js?key=dbb79c1dbe098ca2c6200903b6984cab&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1&shu=5a6b070938c9a31a41885299f09fa7243180cc27f983a48c10e4aeced24bde6452f097d4023cd9a182586bd92a6846c59a3236ec0185f4966f483ce305bc8fbd53d76b0954af34bef16376db0f46d6d6cf7682f2&pst=1668785340&rmtc=t HTTP/1.1
Host: grewquartersupporting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Referer: https://www.theflix.com.br/
Connection: keep-alive
Cookie: u_pl=16976924; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjk3NjkyNCwiayI6ImRiYjc5YzFkYmUwOThjYTJjNjIwMDkwM2I2OTg0Y2FiIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNzc4NTIxLCJwaWQiOjM4MDg5MiwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxLCJhaWQiOjUsInB0Ijo0LCJwayI6Inl1ZTJhNWZxMiIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo5MDc1MzQ1NywiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjM4OTE0LCJvbiI6IldpbmRvd3MiLCJvdiI6IjEwLjAiLCJiaWQiOjEyMDYyNSwiYm4iOiJGaXJlZm94IiwiYnYiOiIxMDUuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL3d3dy50aGVmbGl4LmNvbS5ici8ifX0.PFsx1c-WBbFu0fHGDKcUVFQ_vVj8S6ZFJ5YWdI4k51c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 18 Nov 2022 15:28:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.theflix.com.br
Access-Control-Allow-Origin: https://www.theflix.com.br
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d:2:1; expires=Fri, 25 Nov 2022 15:28:00 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
uncs=1; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
uncs5=1; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d14057ed3bdba78887a965b7423dc90e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
yearbookhobblespinal.com/watch.1633087092953.js?key=a14782589bff5c017ada94609ca686ad&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1&shu=4f5a32f5905f0d60381bfc5f5317a84772837add9887ea7ecd76cf86c40469554fc4e99e827474b321283e24711e1e6147da5b656413cf3c764d52145535c3fe03e9402308ddcb942a9e0da32e4227942658e1e7&pst=1668785340&rmtc=t
192.243.59.12200 OK 2.0 kB URL HTTP/1.1 yearbookhobblespinal.com/watch.1633087092953.js?key=a14782589bff5c017ada94609ca686ad&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1&shu=4f5a32f5905f0d60381bfc5f5317a84772837add9887ea7ecd76cf86c40469554fc4e99e827474b321283e24711e1e6147da5b656413cf3c764d52145535c3fe03e9402308ddcb942a9e0da32e4227942658e1e7&pst=1668785340&rmtc=t
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (2490)
Hash f219e7365ca6790273ac32d70ddee7b5
3a41504d74c4f70139c6f45fefdceb4c02ec1aa0
bc3806b1341f369ebbca4f01afeefd759dd31468d03e087f3c4219c530ee60ec
GET /watch.1633087092953.js?key=a14782589bff5c017ada94609ca686ad&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1&shu=4f5a32f5905f0d60381bfc5f5317a84772837add9887ea7ecd76cf86c40469554fc4e99e827474b321283e24711e1e6147da5b656413cf3c764d52145535c3fe03e9402308ddcb942a9e0da32e4227942658e1e7&pst=1668785340&rmtc=t HTTP/1.1
Host: yearbookhobblespinal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Referer: https://www.theflix.com.br/
Connection: keep-alive
Cookie: u_pl=17098598; ain=eyJhbGciOiJIUzI1NiJ9.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.rF6oGeD1tDAmcPtG2n0rwLmqGYRTtyNt-s7nZw4NMpg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Fri, 18 Nov 2022 15:28:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.theflix.com.br
Access-Control-Allow-Origin: https://www.theflix.com.br
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d:2:1; expires=Fri, 25 Nov 2022 15:28:00 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
uncs=1; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
pdhtkv26=true; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
uncs26=1; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5d7cb0b041366a144449a840712f7bc1
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 888b2dc96e4a2457515317ed30b9aaa3
31a0141dd136db7e68d80446f4e422367b503249
0ff0adf0101c97a66614f7c954efa7755fadb672e3c564ad3fe1a05181f4d0ff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF0ADF0101C97A66614F7C954EFA7755FADB672E3C564AD3FE1A05181F4D0FF"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17724
Expires: Fri, 18 Nov 2022 20:23:24 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 888b2dc96e4a2457515317ed30b9aaa3
31a0141dd136db7e68d80446f4e422367b503249
0ff0adf0101c97a66614f7c954efa7755fadb672e3c564ad3fe1a05181f4d0ff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF0ADF0101C97A66614F7C954EFA7755FADB672E3C564AD3FE1A05181F4D0FF"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17724
Expires: Fri, 18 Nov 2022 20:23:24 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive
cdn.cloudimagesb.com/bi/38/5f/6a/385f6ad447951646e4322c710cb60eeb/1647779911.jpg
45.133.44.10200 OK 97 kB URL HTTP/2 cdn.cloudimagesb.com/bi/38/5f/6a/385f6ad447951646e4322c710cb60eeb/1647779911.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2022:03:14 18:23:12], baseline, precision 8, 728x90, components 3\012- data
Hash 04f86589d7febbbbbe39f0aee555691e
26f9dd4d7e28754ffebafadc7018b01be702ebe8
37ef49f0c3228c4398bde621e864d4e66c77dc7d6d6fe6ef67db85678d140de3
GET /bi/38/5f/6a/385f6ad447951646e4322c710cb60eeb/1647779911.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:28:00 GMT
content-type: image/jpeg
content-length: 96892
server: nginx/1.17.6
last-modified: Sun, 20 Mar 2022 12:38:37 GMT
etag: "6237204d-17a7c"
expires: Sun, 20 Nov 2022 15:28:00 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/22/f1/a7/22f1a70770bba024f23893a45c6f27e3/1663166142.png
45.133.44.10200 OK 30 kB URL HTTP/2 cdn.cloudimagesb.com/cti/22/f1/a7/22f1a70770bba024f23893a45c6f27e3/1663166142.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 160 x 300, 8-bit/color RGB, non-interlaced\012- data
Hash bf5dfdf7b7860d47fce49e5a02fb62b9
0ca0237d75af56cc1e0252bb18afa7d6b2fa8c86
a880eec3a53b95c83e8eb547b0fa3e41c6b401e57fbdff1f44c756ec9c2a04b5
GET /cti/22/f1/a7/22f1a70770bba024f23893a45c6f27e3/1663166142.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:28:00 GMT
content-type: image/png
content-length: 30337
server: nginx/1.17.6
last-modified: Wed, 14 Sep 2022 14:35:50 GMT
etag: "6321e6c6-7681"
expires: Sun, 20 Nov 2022 15:28:00 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/bi/42/b9/b8/42b9b878c3e0e289a962ddb718ac8c1e/1643387473.gif
45.133.44.10200 OK 356 kB URL HTTP/2 cdn.cloudimagesb.com/bi/42/b9/b8/42b9b878c3e0e289a962ddb718ac8c1e/1643387473.gif
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type GIF image data, version 89a, 300 x 250\012- data
Size 356 kB (355625 bytes)
Hash fed91a409d4267115616b4a098c906b4
c7994b6bdc10a0aeae9b14d0c2393434667dfe09
bf693ed5ed3b3541b880fab0f53b270dc1766d9376b961878b6e63fcbffcd985
GET /bi/42/b9/b8/42b9b878c3e0e289a962ddb718ac8c1e/1643387473.gif HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:28:00 GMT
content-type: image/gif
content-length: 355625
server: nginx/1.17.6
last-modified: Fri, 28 Jan 2022 16:31:21 GMT
etag: "61f41a59-56d29"
expires: Sun, 20 Nov 2022 15:28:00 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
interstitial-07.com/?l=oSZzlw5DAOxDMSS&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Farsnivyr.com%2F12%3Frnd%3D1348375174%26z%3D5062129%26b%3D14148812%26c%3D5901940%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62cddf3c85e2d000019d78f1%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3D1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Dff727d01-ec6c-453a-9f20-48f8c1d51b2d%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.theflix.com.br%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D0%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
139.45.197.152200 OK 0 B URL HTTP/2 interstitial-07.com/?l=oSZzlw5DAOxDMSS&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Farsnivyr.com%2F12%3Frnd%3D1348375174%26z%3D5062129%26b%3D14148812%26c%3D5901940%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62cddf3c85e2d000019d78f1%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3D1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Dff727d01-ec6c-453a-9f20-48f8c1d51b2d%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.theflix.com.br%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D0%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
IP 139.45.197.152:0
GET /?l=oSZzlw5DAOxDMSS&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Farsnivyr.com%2F12%3Frnd%3D1348375174%26z%3D5062129%26b%3D14148812%26c%3D5901940%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62cddf3c85e2d000019d78f1%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3D1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Dff727d01-ec6c-453a-9f20-48f8c1d51b2d%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.theflix.com.br%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D0%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.24
set-cookie: reverse=PxOMWieigSnIQWK4hS9k8kB3OUK1umNRq42CbStU-Lw; expires=Fri, 18-Nov-2022 16:27:59 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2
arsnivyr.com/1?z=5062129
139.45.197.242200 OK 0 B IP 139.45.197.242:0
Analyzer Verdict Alert quad9 Sinkholed
GET /1?z=5062129 HTTP/1.1
Host: arsnivyr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:58 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 674f8f8c1c529dc342919cdf178e2a52
access-control-expose-headers: X-Sc
x-sc: soP812BFBYVI0wgF_cW953lPR6-XsNk7yI5mI9T-0La3dOccy61miMp0IshutkKu-4y6M70f0OcjJVbwnqnv3IsDcTU=
set-cookie: scm=1; expires=Sat, 18 Nov 2023 15:27:58 GMT; secure; SameSite=None
OAID=260fec046532482084b496d59c2e08ce; expires=Sat, 18 Nov 2023 15:27:58 GMT; secure; SameSite=None
oaidts=1668785278; expires=Sat, 18 Nov 2023 15:27:58 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
arsnivyr.com/9?z=5062129&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&oaid=8db97e748f8648abb69c34adb4294e38
139.45.197.242200 OK 0 B URL HTTP/2 arsnivyr.com/9?z=5062129&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&oaid=8db97e748f8648abb69c34adb4294e38
IP 139.45.197.242:0
Analyzer Verdict Alert quad9 Sinkholed
POST /9?z=5062129&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&oaid=8db97e748f8648abb69c34adb4294e38 HTTP/1.1
Host: arsnivyr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 669
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Cookie: scm=1; OAID=260fec046532482084b496d59c2e08ce; oaidts=1668785278
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://www.theflix.com.br
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: fcdf7b2d99ebb03434e468b45aa7df14
access-control-expose-headers: X-Sc
set-cookie: OAID=8db97e748f8648abb69c34adb4294e38; expires=Sat, 18 Nov 2023 15:27:59 GMT; secure; SameSite=None
oaidts=1668785278; expires=Sat, 18 Nov 2023 15:27:59 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
inklinkor.com/tag.min.js
104.21.91.63200 OK 0 B IP 104.21.91.63:0
GET /tag.min.js HTTP/1.1
Host: inklinkor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:27:58 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: 6abbca71295bd0e225d2f3fa0cec5717
cache-control: max-age=86400
last-modified: Fri, 18 Nov 2022 12:18:11 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Sat, 19 Nov 2022 13:32:58 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 6900
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S1O%2F7SfC38SW8QPuKOM74B5TDQaQSxR5ZC7E4H9Dm1fFBZiKkuU9439jOZRILmVqUQaZNuRchVeBjeYtapjITHqldVnwCAfDyma5kgh%2F765EMDDXuAEZ%2B1fT4YyNSR2R"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c1bbb6fa20b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2