Report - www.theflix.com.br/

Report Overview

Submitted URL
www.theflix.com.br/
IP
34.159.75.132
ASN
#396982 GOOGLE-CLOUD-PLATFORM
Submitted
2022-11-18 15:28:09
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
26

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.theflix.com.br	unknown	2022-11-18T16:27:55Z	2022-11-18T16:27:57Z	18 kB	3.4 MB	34.159.75.132
arsnivyr.com	unknown	2022-07-08T14:33:37Z	2023-03-10T17:43:24Z	5.4 kB	133 kB	139.45.197.242
surecheapermoisture.com	unknown	2021-11-19T19:17:51Z	2023-01-16T09:05:33Z	808 B	21 kB	192.243.61.227
onmarshtompor.com	24517	2020-10-19T14:36:32Z	2023-03-09T22:49:28Z	973 B	12 kB	139.45.197.243
interstitial-07.com	36198	2017-03-09T01:00:07Z	2023-03-09T23:50:54Z	6.7 kB	172 kB	139.45.197.152
unphionetor.com	54035	2022-02-11T13:53:49Z	2023-03-10T15:13:35Z	878 B	1.4 kB	139.45.197.236
grewquartersupporting.com	unknown	2022-11-04T04:53:43Z	2023-02-09T16:35:20Z	2.4 kB	5.6 kB	192.243.61.225
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	1.4 kB	2.8 kB	142.250.74.35
yearbookhobblespinal.com	unknown	2022-11-10T11:22:18Z	2023-03-03T05:26:16Z	2.4 kB	5.5 kB	192.243.59.12
cdn.cloudimagesb.com	23099	2021-02-12T17:15:41Z	2023-03-10T05:12:27Z	1.2 kB	484 kB	45.133.44.10
inklinkor.com	unknown	2022-04-01T13:44:00Z	2023-03-10T09:14:24Z	362 B	1.1 kB	104.21.91.63
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	6.4 kB	18 kB	23.36.76.226
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	1.4 kB	2.6 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-10T05:10:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-10T08:04:05Z	1.8 kB	117 kB	104.17.24.14
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	2.0 kB	35 kB	216.58.207.195
my.rtmark.net	9054	2015-02-04T10:54:57Z	2023-03-10T07:03:43Z	430 B	747 B	139.45.195.8
datatechonert.com	46154	2021-12-24T17:44:17Z	2023-03-10T13:12:49Z	498 B	486 B	139.45.195.253
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	350 B	1.0 kB	54.230.245.100
relativelyweptcurls.com	unknown	2022-11-11T07:23:42Z	2023-03-11T05:52:50Z	2.4 kB	5.6 kB	173.233.139.164
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	52.37.79.227
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-10T14:35:32Z	680 B	1.9 kB	104.18.32.68
simplewebanalysis.com	unknown	2022-02-25T05:06:25Z	2023-03-10T06:13:04Z	1.3 kB	1.1 kB	18.195.188.15
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.2 kB	53 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-18	medium	arsnivyr.com	Sinkholed
2022-11-18	medium	arsnivyr.com	Sinkholed
2022-11-18	medium	arsnivyr.com	Sinkholed
2022-11-18	medium	datatechonert.com	Sinkholed
2022-11-18	medium	unphionetor.com	Sinkholed
2022-11-18	medium	unphionetor.com	Sinkholed
2022-11-18	medium	arsnivyr.com	Sinkholed
2022-11-18	medium	relativelyweptcurls.com	Sinkholed
2022-11-18	medium	grewquartersupporting.com	Sinkholed
2022-11-18	medium	relativelyweptcurls.com	Sinkholed
2022-11-18	medium	grewquartersupporting.com	Sinkholed
2022-11-18	medium	arsnivyr.com	Sinkholed
2022-11-18	medium	arsnivyr.com	Sinkholed

JavaScript (28)

	URL	Size	First Seen	Last Seen
	surecheapermoisture.com/a14782589bff5c017ada94609ca686ad/invoke.js	27 kB	2023-03-11	2023-03-11
Pretty URL surecheapermoisture.com/a14782589bff5c017ada94609ca686ad/invoke.js IP 192.243.61.227 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 23:36:10 Times Seen1 Hash 2d4d3d102231c4a3677dc855c322bc45 0e55bb276fd4b5f4a359574735621b698200dcc9 8eb7a0574f918d946026a497ae2f9affdf844b924bd736025338b793bf1dc4b0 Loading...

	www.theflix.com.br/	41 B	2023-03-11	2023-03-11
Pretty URL www.theflix.com.br/ IP 34.159.75.132 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash 2b7ddc66fc2e6742f0777c6c53115f2e 54ae74afed2858495a10846889660262d1f08b8e 995cc3be179660720cea0ce8edbc70594d00802159e2cb68a470a12b8babf074 Loading...

	http:blank	145 B	2023-03-11	2023-03-11
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash 3ee7c76e2b87aa4c8b0ee0d62ead21a7 1633c893868e8bec25ccce53690d7af2462e2284 21f15fe9963e62f3fae291cbc278e75cb2472c5151c9fac5d91d33a6464d82c8 Loading...

	http:blank	145 B	2023-03-11	2023-03-11
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash f32ae65b75fbff3de609e35b1cd12e88 f858ae0484dab1f171e12c1bd0e404d63628dc19 4bf9e55323053e17d8966a434badb8c0fc7b55babf2ee68a4249b08dbb0a0a80 Loading...

	www.theflix.com.br/	193 B	2023-03-11	2023-03-11
Pretty URL www.theflix.com.br/ IP 34.159.75.132 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash 285ed85b0cf496e2c184a1150867e8e4 0d068de3acfb111398bec184bbeeb9925c5f9ad4 4b4e818e1b918b5ea95432e873d90e027904969ced38628be7d0f13d0ee4c033 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 20:22:28 Times Seen37100237 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	arsnivyr.com/1?z=5062129	17 kB	2023-03-11	2023-03-11
Pretty URL arsnivyr.com/1?z=5062129 IP 139.45.197.242 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash 87e8e83f18ddaf7c33dcef8a5b439a11 6c1135ca140accbd52e37c63079dacc230fa6ba6 7d057c75cc01660700a9f9cea8462e86fce4f5484bf019dbd3673abe2a8942c3 Loading...

	www.theflix.com.br/	530 B	2023-03-11	2023-03-11
Pretty URL www.theflix.com.br/ IP 34.159.75.132 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash 0824b9e4b43fd6c249ae0d173b9e3c0c 24e50f37b8d4fa796cc6c81ef026a369e5d7607e db6b70d2cf26cb1430f91a360f8fa7327923da6cb8915cf1497db190467b778b Loading...

	http:blank	145 B	2023-03-11	2023-03-11
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash ee0c1a2c2d0e1e096d933d185c59003e 07609ae62c140307a0e8ab457cf7be52705dfbdc 2c1f60d18e432286a1a3dc2e1573663be4a0903e2ec63d7ace3444e04470284c Loading...

	inklinkor.com/tag.min.js	73 kB	2023-03-11	2023-03-11
Pretty URL inklinkor.com/tag.min.js IP 104.21.91.63 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:01:20 Last Seen2023-03-11 16:00:35 Times Seen1 Hash 5a6802b64fc5325ce19f7e979a83f540 f9359b418ddaee9e081f00b68f8ea29dc6afabc2 280d3111b38f3defc37b2ebbbf228c4e4b1dfd84b83855b5977d2bd3655b83b6 Loading...

	tzegilo.com/stattag.js	13 kB	2023-03-10	2023-03-11
Pretty URL tzegilo.com/stattag.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:53:52 Last Seen2023-03-11 19:05:14 Times Seen1 Hash 44c40fdee96d172d73fdb26f6258c3bf e0fddaf008b67747907ef3bfd11b679866d7a3df 3b791712086001011a3a913120c1bc35bb8238c72e9d3d0dba6f80b687e0d1f4 Loading...

	http:blank	3.4 kB	2023-03-11	2023-03-11
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash 0a26236143c7640b4f670f35e3007106 faa2233a2463680e61399492876994c7bbfda4d3 9c7f39ab3daeb0b409d764a9c4f35cc951c0004afcce7f8533f82c96f9f5e72b Loading...

	interstitial-07.com/?l=oSZzlw5DAOxDMSS&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Farsnivyr.com%2F12%3Frnd%3D1348375174%26z%3D5062129%26b%3D14148812%26c%3D5901940%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62cddf3c85e2d000019d78f1%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3D1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Dff727d01-ec6c-453a-9f20-48f8c1d51b2d%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.theflix.com.br%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D0%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0	1.7 kB	2023-03-11	2023-03-11
Pretty URL interstitial-07.com/?l=oSZzlw5DAOxDMSS&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Farsnivyr.com%2F12%3Frnd%3D1348375174%26z%3D5062129%26b%3D14148812%26c%3D5901940%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62cddf3c85e2d000019d78f1%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3D1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Dff727d01-ec6c-453a-9f20-48f8c1d51b2d%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.theflix.com.br%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D0%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 IP 139.45.197.152 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash 08a9e0bca30f19093c0edd2625e92ed2 2d9bb057cf908a758728eda178362a9388279683 6aaf7e2f0b404b0e1e530ed0e9f7034c87c29872c30a4d4abaa39e96a35bfbf8 Loading...

	http:blank	3.3 kB	2023-03-11	2023-03-11
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash c4f60df583fb201dd0946c5cf8e7b128 0f043d18dff30931441e53a8f70f57d124588704 8b513b490fb326025d03194d101b7da4b4c6da76166f8b87f071461ada420f4e Loading...

	www.theflix.com.br/js/main.js	143 B	2023-03-11	2023-03-11
Pretty URL www.theflix.com.br/js/main.js IP 34.159.75.132 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash d91a8fb656182d16b6f3289f8c3efe61 d21c7904da4a9cc80deb3679ec9bd99dc0508a9c 21d59ed1c2322e4cd10a6fbf0e53e5edcc697dc6ea13209079c300589be18d99 Loading...

	www.theflix.com.br/	529 B	2023-03-11	2023-03-11
Pretty URL www.theflix.com.br/ IP 34.159.75.132 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash ee191d944b9c8fb20ccf895c9494e143 e665ab943d5641082ad27924e9a0496b5b2f2ef8 0208a73b80daaebce10e43cc2b4eed84725ff289fb7a82e9e88a08fd5d6e6420 Loading...

	surecheapermoisture.com/f69f8904cae6b76fcdb5a29064d69860/invoke.js	27 kB	2023-03-11	2023-03-11
Pretty URL surecheapermoisture.com/f69f8904cae6b76fcdb5a29064d69860/invoke.js IP 192.243.61.227 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 16:35:47 Times Seen1 Hash d441fb49f3f4cb3d752d0b1ecab5f958 c4d7de7a4b472a4a2fe97afe238f73010d8cf735 5abe037465bb6e16c3e6ce869ab9d9d8fa1da8779f6fd10eb3de5bfe45f646a0 Loading...

	www.theflix.com.br/	530 B	2023-03-11	2023-03-11
Pretty URL www.theflix.com.br/ IP 34.159.75.132 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash 395412617cce05b4c69f7f633282599a 95b07711da20bb83598348b958096ea24aeadecf 04fb3d368d6d90db29a8e84a93e5cf1c9df533101fff81cbb55dac9ea123fd66 Loading...

	www.theflix.com.br/trailer/jquery-modal-video.min.js	7.4 kB	2023-03-11	2023-03-11
Pretty URL www.theflix.com.br/trailer/jquery-modal-video.min.js IP 34.159.75.132 ASN #396982 GOOGLE-CLOUD-PLATFORM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash 07c9eca3a36e79cf10fe5eb790fbc2d0 d45fe7a1d59275a90d83855a68d82a094c7963ff 8abb49ef0fa69928ed00a6563a707639712eb338522cbc682af45aa9a420cbb1 Loading...

	surecheapermoisture.com/dbb79c1dbe098ca2c6200903b6984cab/invoke.js	27 kB	2023-03-11	2023-03-11
Pretty URL surecheapermoisture.com/dbb79c1dbe098ca2c6200903b6984cab/invoke.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 15:13:28 Times Seen1 Hash 40c8e17f3a3d2caaff27b306456b7f35 6ab6a35048aaba9657f2a2a77febcf474e2beccc 95cb9e580dbbe7278333fb1bbb3fe1a9d2bb52048033ad595a87ae0797ef3ee9 Loading...

	unphionetor.com/fv.js?t=72747&cb=1188022953	5.2 kB	2023-03-07	2024-04-24
Pretty URL unphionetor.com/fv.js?t=72747&cb=1188022953 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-24 01:48:23 Times Seen2355 Hash 563d777535ce88943a94a6be86f378c8 8753745424d367275e3fe55a5661fe51b1e1fb72 0f467a48a494f7f63968707dc43785b728d0c17f93c12937c1e5b12798f3a98a Loading...

	http:blank	3.4 kB	2023-03-11	2023-03-11
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash 807d5dc05b2ab66da8c1e54490b9ab9f d8db86696b1d02317a1a76f01d82ef482dc168e9 cea3355572729d0a2d7bcac40a406336a299edb0c18db1aa760d0258bb706593 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 429d1ba91ad6072eb89e7f18946d3949	2.1 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash 429d1ba91ad6072eb89e7f18946d3949 28da42a1a2d27376166a3bebc697bad05bcf5cc7 265289dc11ebd1351c8d69e84b82a3d89029637d291cef2d334861ec0acdefd3 Loading...

	#2 Eval - 3f6d4554cfea76da5a8701e29b4105dc	2.1 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash 3f6d4554cfea76da5a8701e29b4105dc ece16de319d2dcbe16035533f57f9372e2decf0a 70d2c8c959a3f62a6ef11755b67dc53fa4a0305fb06e727f5e92cf3922706a52 Loading...

	#3 Eval - a6dd5f5ae1463727c87a5a86c541c205	2.1 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash a6dd5f5ae1463727c87a5a86c541c205 5b449cade6932f10068cf9fbf1bcb90650967ea1 4815fbdbf059d7e979ace1ec087207d9f5302e316860ec12428588950b6d5d1d Loading...

		Size	First Seen	Last Seen
	#1 Write - a82df26aedf36c40e214dcd7a050656a	121 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash a82df26aedf36c40e214dcd7a050656a b8b49920bbd891be79368bb979b45ea0af6e05ab 79f52eece745acbe7518fd9fdb35ba4ebe6c38cbe1cb8c64075cd80583a88018 Loading...

	#2 Write - 8d9bf7d0ed7b14274b2244ecb87f5b65	121 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash 8d9bf7d0ed7b14274b2244ecb87f5b65 f051bab9c34033a7ef909223c0ca2e5206e837f2 be12d0a598d1683123e0710774e057c4a9ca13abf057283df0cbe25840cb3eeb Loading...

	#3 Write - 0bb972744fff54d703b2d506f0302374	121 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 14:05:05 Last Seen2023-03-11 14:05:05 Times Seen1 Hash 0bb972744fff54d703b2d506f0302374 c772d5fe4cbe632b53d969929218ca396a6434ad eb8ed804fb810ef7c1bf14e0fc226383ce6ff059076166080be002384f0db419 Loading...

HTTP Transactions (120)

URL IP Response Size

www.theflix.com.br/

34.159.75.132

301 Moved Permanently

42 B

URL HTTP/1.1
www.theflix.com.br/
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with no line terminators
Size
42 B (42 bytes)
Hash
c8903fa4f754e8e449b31df1e86e3153
800f76f96629329b5368b720abff23ae49d46faf
650106ab76b37e4eb91060bb9f6dbd6b40aa1835657c02830ad01aac0ccd6825

HTTP Headers

GET / HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Location: https://www.theflix.com.br/
Server: Netlify
X-Nf-Request-Id: 01GJ5NN2T6M3PXK04STGVK8DE4
Date: Fri, 18 Nov 2022 15:27:57 GMT
Content-Length: 42
Content-Type: text/plain; charset=utf-8

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
30c30d01178fc74ac5266ee64c3ee85b
c0c2af8a864c00aa85a8775d55f85ab107150a3b
c15644f69fbfeb99074c7e9711dfc9452ee164fa78eb981b6bae4fb7e3585f2a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C15644F69FBFEB99074C7E9711DFC9452EE164FA78EB981B6BAE4FB7E3585F2A"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2997
Expires: Fri, 18 Nov 2022 16:17:54 GMT
Date: Fri, 18 Nov 2022 15:27:57 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
67f53a639d57dd6237b5be86fe4f6c1b
287f09532dc331228d09c20b75f4160e91e9800a
41913a8af366685c42af59e9d8e02fccedbe68a3313d2d9fe353deb0c1019075

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4477
Cache-Control: max-age=159466
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 15:27:58 GMT
Etag: "63775eeb-1d7"
Expires: Sun, 20 Nov 2022 11:45:44 GMT
Last-Modified: Fri, 18 Nov 2022 10:31:07 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3a38b6dd8a4cc335c026aebf2ed348b6
8a386e0ccb0ca4dc502746c45b2ebc3aa3f83cf8
8b4040a645cec1841a00a22765eb3a74978559daf15c54bd4b41b6b48aab7f95

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B4040A645CEC1841A00A22765EB3A74978559DAF15C54BD4B41B6B48AAB7F95"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3642
Expires: Fri, 18 Nov 2022 16:28:40 GMT
Date: Fri, 18 Nov 2022 15:27:58 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 18 Nov 2022 14:45:03 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2575
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: q9GAhu2JgjLPhs41l56T/EtLoP0j0D9qWhRbNIyeMBSJuQsNsE+bh73Ti55ic6zESy1JedC3AGg=
x-amz-request-id: KS9GECA31A9EM09M
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 18 Nov 2022 15:15:39 GMT
age: 739
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:58 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c67b812c9dde3d6a2d532e97d450d796
af171548ba9cc9f435c329225eb9187f0af2eee0
39062644531c0aa2f0368b81071993e5ef1323c1530adea4df763e1260f7e022

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39062644531C0AA2F0368B81071993E5EF1323C1530ADEA4DF763E1260F7E022"
Last-Modified: Thu, 17 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 18 Nov 2022 21:27:58 GMT
Date: Fri, 18 Nov 2022 15:27:58 GMT
Connection: keep-alive

www.theflix.com.br/

34.159.75.132

200 OK

3.8 kB

URL HTTP/2
www.theflix.com.br/
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (422), with CRLF line terminators
Size
3.8 kB (3784 bytes)
Hash
6abcc05dcf00b02691865384be10b816
58d7bf693aa00f7b57a6743dfb8edfac318c6271
3c2816dac91cee64ecc3cdd9a6f2bac1089a54c45d7c4342392c01aabcd502ee

HTTP Headers

GET / HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
age: 7558
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/html; charset=UTF-8
date: Fri, 18 Nov 2022 13:22:00 GMT
etag: "23ba7301b401385096165ba3b4e9df5f-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJ5NN3BC2SSASTZWM52G30TK
content-length: 3784
X-Firefox-Spdy: h2

www.theflix.com.br/css/stilo.css

34.159.75.132

200 OK

3.6 kB

URL HTTP/2
www.theflix.com.br/css/stilo.css
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
3.6 kB (3599 bytes)
Hash
50de2ccfbe022faa7d632c2d5ac28df3
1b526a3afa3bc58263ab6b1ede4140ae324989ec
96bb5961a1fc5e23a5f553ad2f4ad52799d588b9586426b3c863672598e6f7e9

HTTP Headers

GET /css/stilo.css HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7558
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/css; charset=UTF-8
date: Fri, 18 Nov 2022 13:22:00 GMT
etag: "d28abde998c72ee35038421fc19be9fa-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJ5NN3FVH027KA0BR555T81V
content-length: 3599
X-Firefox-Spdy: h2

www.theflix.com.br/js/main.js

34.159.75.132

200 OK

143 B

URL HTTP/2
www.theflix.com.br/js/main.js
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with CRLF line terminators
Size
143 B (143 bytes)
Hash
d91a8fb656182d16b6f3289f8c3efe61
d21c7904da4a9cc80deb3679ec9bd99dc0508a9c
21d59ed1c2322e4cd10a6fbf0e53e5edcc697dc6ea13209079c300589be18d99

HTTP Headers

GET /js/main.js HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81584
cache-control: public, max-age=0, must-revalidate
content-type: application/javascript; charset=UTF-8
date: Thu, 17 Nov 2022 16:48:14 GMT
etag: "b265fe989979abc807e944e23a364996-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3G18ZW9A53F0ZA36RJX
content-length: 143
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.8.2/css/all.min.css

104.17.24.14

200 OK

9.8 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.8.2/css/all.min.css
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (54998)
Size
9.8 kB (9802 bytes)
Hash
2b0f6842c4954ea1ac87e102c86b46d6
b2347b42e69fbf8a8f42f55a41e988f93047db9e
d28ca638cc83a512bd0cea5d91ff833b6109fabebecdef0a58e8226c8f21adbf

HTTP Headers

GET /ajax/libs/font-awesome/5.8.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:27:58 GMT
content-type: text/css; charset=utf-8
content-length: 9802
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-d78f"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4445392
expires: Wed, 08 Nov 2023 15:27:58 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m5OjGp2EuBAlOxcLHyW8RPboITLdvt%2BnpV%2FaTmK5Xzz3Cbp3xNyJrToVVzkyTPt6%2FyOe8ypG7fXncXetMxoRQws0G7uJVmikn4huQq27qPRa7DqYdScGpEqNnB305pYfZNMpGo0t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76c1bbb688bd0b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/css/all.min.css

104.17.24.14

200 OK

10 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/css/all.min.css
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (59158)
Size
10 kB (10480 bytes)
Hash
77c1af627ac0cf4a26f1f230c3328544
f99817795a5ae027a7212b040438e49248a483b6
0496a11101ffd6d8230b041623cc1bf58971b25acd684a23fe91d702c486d2c8

HTTP Headers

GET /ajax/libs/font-awesome/5.15.3/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:27:58 GMT
content-type: text/css; charset=utf-8
content-length: 10480
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60510736-e7d0"
last-modified: Tue, 16 Mar 2021 19:29:58 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1893082
expires: Wed, 08 Nov 2023 15:27:58 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=STj2k9SvM7WpRbU%2BGI3Yys1u7UGfmZrJIFDOUKwAi%2BIsV3YZYP9cfb0sA7%2F3QP9N5OfIh9sLy2ecH0J7hv2xuKvb%2FehbM9H8WCpmtiJWHV7aVhgc4NKRK0s9oWrii0EjnvaoNpN9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76c1bbb698c50b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/css/all.min.css

104.17.24.14

200 OK

14 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/css/all.min.css
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65345)
Size
14 kB (14374 bytes)
Hash
642445b86596bdeaa98e92faa2064fc6
6c5539660bf533d34e37b917973c941d1c963374
4a5a39e9f325c5578dccd880c1d516eae190ee39f7539f4a6c6c52d2eee4cbdf

HTTP Headers

GET /ajax/libs/font-awesome/6.0.0-beta2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:27:58 GMT
content-type: text/css; charset=utf-8
content-length: 14374
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61498362-3826"
last-modified: Tue, 21 Sep 2021 07:01:54 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 9665196
expires: Wed, 08 Nov 2023 15:27:58 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ux3BrRc7syIHPRSaFTpw9gt2A%2BylP6BqOJmcsvrbQGNwnAs9%2B4gyaxzJ%2BwzUSCfrprdJQMrtjpQl4fANYHp2IQrKbJCd%2BvMQeNhzM4UPjIVevhaEtJhmo6L%2B6%2BbHNn3zOTSU7aZE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76c1bbb69bddb4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8fae3a87ff96a8b2ee24baab65d04574
a3197549c93a1d8d6f0db6ac32bf62d02814412a
fdd6df915cbb38645fc78cb1609e151a255000d7664141f11b2c75ed97394217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FDD6DF915CBB38645FC78CB1609E151A255000D7664141F11B2C75ED97394217"
Last-Modified: Wed, 16 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1363
Expires: Fri, 18 Nov 2022 15:50:41 GMT
Date: Fri, 18 Nov 2022 15:27:58 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 15:27:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
1c9b41f3190dad3fff7e79f4385b4aac
eb6eb3ee8e182212f0b1658998d3b76c69b98a6a
7fe5cec58ef98e859c52b2dcf45175bdcfa002c75e1a32bc27583d8e48e6185f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5682
Cache-Control: max-age=101256
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 15:27:58 GMT
Etag: "637676d4-116"
Expires: Sat, 19 Nov 2022 19:35:34 GMT
Last-Modified: Thu, 17 Nov 2022 18:00:52 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 278

www.theflix.com.br/js/JQuery3.3.1.js

34.159.75.132

200 OK

78 kB

URL HTTP/2
www.theflix.com.br/js/JQuery3.3.1.js
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with CRLF line terminators
Size
78 kB (77989 bytes)
Hash
0815de56ec0f7b5be8988a48f83e0e16
9087cbe54247ab2578eb4572047ab765b0fc7379
c7a5bf0006965a4a0ba9f7482afc0734531737c52568f6c456b77639f0555dc6

HTTP Headers

GET /js/JQuery3.3.1.js HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81584
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Thu, 17 Nov 2022 16:48:14 GMT
etag: "596f340cf352c603791252cbb53b501b-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJ5NN3G1SS0Z7Q6SED7G9NS6
content-length: 77989
X-Firefox-Spdy: h2

www.theflix.com.br/trailer/modal-video.min.css

34.159.75.132

200 OK

551 B

URL HTTP/2
www.theflix.com.br/trailer/modal-video.min.css
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
ASCII text, with very long lines (2083)
Size
551 B (551 bytes)
Hash
260349630acec48b1126523f9d63ff66
c46d623be6e10d730c0363e63fd28cd560150349
bc69b678f98d9dfe3ba34789ef8443b0adb237023e40e55400e1e4e51252c3bc

HTTP Headers

GET /trailer/modal-video.min.css HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7558
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/css; charset=UTF-8
date: Fri, 18 Nov 2022 13:22:00 GMT
etag: "245854e708439d76e8896ce9655fdc1b-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJ5NN3G2BG6Y04F3J67BBKXF
content-length: 551
X-Firefox-Spdy: h2

www.theflix.com.br/img/logo.webp

34.159.75.132

200 OK

26 kB

URL HTTP/2
www.theflix.com.br/img/logo.webp
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
RIFF (little-endian) data, Web/P image\012- data
Size
26 kB (26360 bytes)
Hash
b5a0576b2420d8f32ff255e34abdf7cd
8959001810c9e27d44739747b6c80f44f7ab87cf
3a9964e5dc006943b397cab11f189ae966f524f16cdc4afee76d48768dacf380

HTTP Headers

GET /img/logo.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7558
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Fri, 18 Nov 2022 13:22:00 GMT
etag: "932b64a71ad9640545545990bed13c29-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3G81W3854NSPZQXM8HH
content-length: 26360
X-Firefox-Spdy: h2

www.theflix.com.br/img/series/pacificador.webp

34.159.75.132

200 OK

26 kB

URL HTTP/2
www.theflix.com.br/img/series/pacificador.webp
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
RIFF (little-endian) data, Web/P image\012- data
Size
26 kB (26022 bytes)
Hash
cf9d86f05db21105b8cb2b1345c84038
2a4fe6c186f5ca17ae4963fe475c238b7daf923a
262a9640364e07d4e056ad442f109f530b06b9b5707c88a78d6a3a507a1d0da5

HTTP Headers

GET /img/series/pacificador.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7558
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Fri, 18 Nov 2022 13:22:00 GMT
etag: "40ffcce7dc62da5a2adebdafcc1c55dc-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3GHT2SK00KDQSR5BWEP
content-length: 26022
X-Firefox-Spdy: h2

www.theflix.com.br/img/series/cavaleiro-da-lua.webp

34.159.75.132

200 OK

7.4 kB

URL HTTP/2
www.theflix.com.br/img/series/cavaleiro-da-lua.webp
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
RIFF (little-endian) data, Web/P image\012- data
Size
7.4 kB (7430 bytes)
Hash
ddc2d419162bba19a64b212784071140
165e8683cd424cc0ce618444f820a83d3bf1a8ed
5d19fc8c50670d81fd2f6b35ff0e1ff70d891ab789f07dbd29370d74f8c0c6ae

HTTP Headers

GET /img/series/cavaleiro-da-lua.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7559
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Fri, 18 Nov 2022 13:22:00 GMT
etag: "1f76c866170bc81f3c1105b29df1740c-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3GHTAFQ2C0E6QDR7JHB
content-length: 7430
X-Firefox-Spdy: h2

www.theflix.com.br/img/series/o-mandaloriano.webp

34.159.75.132

200 OK

15 kB

URL HTTP/2
www.theflix.com.br/img/series/o-mandaloriano.webp
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
RIFF (little-endian) data, Web/P image\012- data
Size
15 kB (14612 bytes)
Hash
6ce591e5773111e3a0c8f55699ce369e
7364ac5c26ac8a5aef1c288690832c49af9e75e7
d09318b717f59fd8a773dd196b30cbe08eb4c1a8c29e22716a30bb4812e17659

HTTP Headers

GET /img/series/o-mandaloriano.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Fri, 18 Nov 2022 13:22:01 GMT
etag: "b05b3a2f1dd0a40eeb22c75ae018f24c-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H38643HDSSYXQA4N66
content-length: 14612
X-Firefox-Spdy: h2

www.theflix.com.br/img/series/loki.webp

34.159.75.132

200 OK

18 kB

URL HTTP/2
www.theflix.com.br/img/series/loki.webp
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
RIFF (little-endian) data, Web/P image\012- data
Size
18 kB (17672 bytes)
Hash
59af3cb787097e99b59b14e73a742ed0
8f951464abfe827590762117fb15ca32e1c1d110
36b8232e6191bd6596273535eeac3053bba754349153fdb5e52b48eb7b4d3892

HTTP Headers

GET /img/series/loki.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "6b961bb14157347483908c97091ab7c8-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H3YFGZT5EZSVMJGTKA
content-length: 17672
X-Firefox-Spdy: h2

www.theflix.com.br/img/filmes/uncharted-fora-do-mapa.webp

34.159.75.132

200 OK

22 kB

URL HTTP/2
www.theflix.com.br/img/filmes/uncharted-fora-do-mapa.webp
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
RIFF (little-endian) data, Web/P image\012- data
Size
22 kB (22180 bytes)
Hash
3be9afea9987facbeff6a68d05bebe36
4be87ca5e53f61b91b740084bcc51babd40d362d
3b18595993a76827e9c649f96e0327f51ce1701739109ccb2697e772192530b1

HTTP Headers

GET /img/filmes/uncharted-fora-do-mapa.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "65ed57e24e0016179f31b161e89fff37-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H0G4Z81BZXHRDZBBZY
content-length: 22180
X-Firefox-Spdy: h2

www.theflix.com.br/trailer/jquery-modal-video.min.js

34.159.75.132

200 OK

2.8 kB

URL HTTP/2
www.theflix.com.br/trailer/jquery-modal-video.min.js
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
Unicode text, UTF-8 text, with very long lines (6615)
Size
2.8 kB (2795 bytes)
Hash
80ff0a32080a12c975616663ed182b02
26ddffe99b24f7aec62d041c7c6d0b79f8c8696f
831fc1822c3920a27fdac7c1606b822512e0a70b5f6b80a08c712e6d76929808

HTTP Headers

GET /trailer/jquery-modal-video.min.js HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7558
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Fri, 18 Nov 2022 13:22:00 GMT
etag: "b5ed5dec8f6082eceba0083ada5d9053-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJ5NN3J19QYMNQXBA2SZ66F6
content-length: 2795
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
1c9b41f3190dad3fff7e79f4385b4aac
eb6eb3ee8e182212f0b1658998d3b76c69b98a6a
7fe5cec58ef98e859c52b2dcf45175bdcfa002c75e1a32bc27583d8e48e6185f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5682
Cache-Control: max-age=101256
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 15:27:58 GMT
Etag: "637676d4-116"
Expires: Sat, 19 Nov 2022 19:35:34 GMT
Last-Modified: Thu, 17 Nov 2022 18:00:52 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 278

www.theflix.com.br/fonts.googleapis.com/css2e442.css?family=Poppins:wght@100;200;300;400;500;600;700;800&display=swap

34.159.75.132

404 Not Found

1.2 kB

URL HTTP/2
www.theflix.com.br/fonts.googleapis.com/css2e442.css?family=Poppins:wght@100;200;300;400;500;600;700;800&display=swap
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (331)
Size
1.2 kB (1245 bytes)
Hash
3530ab3fb068ffb26ab9b3e9184cfcbe
5abe9ee23f42cb727de0567589872f2f5aad57c7
18c9246dec79e05803b6c95c0247f989bf655c1e1809d591b2be37f8bf6f2e22

HTTP Headers

GET /fonts.googleapis.com/css2e442.css?family=Poppins:wght@100;200;300;400;500;600;700;800&amp;display=swap HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/css/stilo.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
age: 7558
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/html; charset=utf-8
date: Fri, 18 Nov 2022 13:22:00 GMT
etag: 1666806741-ssl-df
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GJ5NN3J75K54TD6FYAXYB05T
content-length: 1245
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 15:27:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.theflix.com.br/img/filmes/lou.png

34.159.75.132

200 OK

161 kB

URL HTTP/2
www.theflix.com.br/img/filmes/lou.png
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
161 kB (161001 bytes)
Hash
7a1f463495b21c71d47715febd444e69
199f23b35359db3bab245b0926b2e0676022e524
e1e2ea770712a99c5533d13f407cdd882d1e4c89bd7eebbd880ca6254411ddad

HTTP Headers

GET /img/filmes/lou.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Fri, 18 Nov 2022 13:22:02 GMT
etag: "d31fe4b0a7614263d843511d01b96c2c-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HQQ6DK9KD3S1BHH3P8
content-length: 161001
X-Firefox-Spdy: h2

www.theflix.com.br/img/filmes/sem-saida.png

34.159.75.132

200 OK

202 kB

URL HTTP/2
www.theflix.com.br/img/filmes/sem-saida.png
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
202 kB (201653 bytes)
Hash
1e58ef8f44509cd2f2ba76c2709bf85c
ce2fd4b4f0d45d1dcb312c2ec8b633f9e19d521e
a7bcca0baa67ffbbafffcc4ec02cf8424a3814ebc653cbad15d1cf501ef4e071

HTTP Headers

GET /img/filmes/sem-saida.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Fri, 18 Nov 2022 13:22:02 GMT
etag: "393b4dc83a269a8c304c5040d76a1d2b-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HPHCH9EWAQH77VPQ5T
content-length: 201653
X-Firefox-Spdy: h2

www.theflix.com.br/img/filmes/thor-amor-e-trovao.png

34.159.75.132

200 OK

254 kB

URL HTTP/2
www.theflix.com.br/img/filmes/thor-amor-e-trovao.png
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
254 kB (253672 bytes)
Hash
222ce4a92b25bdbbb0ad0853546e9d60
624ba17be474e54eb07b5bab76337f0894c606ab
a84da17935bbf41110fa3d5fc71ce2d45ea228156faf39e64d0dfea41f8ac773

HTTP Headers

GET /img/filmes/thor-amor-e-trovao.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Fri, 18 Nov 2022 13:22:02 GMT
etag: "197936e36b331f1e4d8ffefc2b67f35d-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HP6ENEHKTTWBJA6RJE
content-length: 253672
X-Firefox-Spdy: h2

www.theflix.com.br/img/filmes/agente-oculto.png

34.159.75.132

200 OK

161 kB

URL HTTP/2
www.theflix.com.br/img/filmes/agente-oculto.png
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
161 kB (161349 bytes)
Hash
16d1e799464752dc8e992c4dbb68df30
a67231a74f947d81923b6f3c830dce0352aca53c
0d0c32b2eedb58b76377657cd43213718df9784aac58fe1af7cc9182b36ea055

HTTP Headers

GET /img/filmes/agente-oculto.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "53ca2d23cc7ef437563cdfb2aa2ddb19-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HPBCGAYMP5TB10PZ8N
content-length: 161349
X-Firefox-Spdy: h2

www.theflix.com.br/img/filmes/dupla-jornada.png

34.159.75.132

200 OK

201 kB

URL HTTP/2
www.theflix.com.br/img/filmes/dupla-jornada.png
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
201 kB (200841 bytes)
Hash
b44d0d6616b03425269144b4c2f2df9f
c96d4b8d4392d4d2e06cf96b0175387b8541f0d0
ab6d7b249d20fa41c8f463ab5d3a97f03ad3a6641667eb3c4e2b4966e3fec39f

HTTP Headers

GET /img/filmes/dupla-jornada.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Fri, 18 Nov 2022 13:22:02 GMT
etag: "668d22d352e5b5ba59750a4ba7d4b0ae-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HPNTP606YHF3PYJFE5
content-length: 200841
X-Firefox-Spdy: h2

www.theflix.com.br/img/filmes/aguas-profundas.png

34.159.75.132

200 OK

165 kB

URL HTTP/2
www.theflix.com.br/img/filmes/aguas-profundas.png
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
165 kB (164943 bytes)
Hash
19766e438c1fae6227106421676c8fd5
291b051d5e969fd63a1df94b90a0e106f22e1dc2
3469f7ce3265b12fcf5d0c67bb5c3d40f8c9a7455f08f3ec203a0226f0125827

HTTP Headers

GET /img/filmes/aguas-profundas.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Fri, 18 Nov 2022 13:22:02 GMT
etag: "7989a7cf59d2d45c731affe19f6c4cc6-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HMR5K6VFDFHW2QH9EC
content-length: 164943
X-Firefox-Spdy: h2

www.theflix.com.br/img/filmes/samaritano.png

34.159.75.132

200 OK

163 kB

URL HTTP/2
www.theflix.com.br/img/filmes/samaritano.png
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
163 kB (162733 bytes)
Hash
17e8ac3f1eb2aae1caa201051e0e718e
8d9c74c1c7682fa3c518a1baede2cee93446d85d
5e1d9fe80acaa5ef33e81e781b52c2d7845a47785e150ebdfcb34f2b7a2f2c7d

HTTP Headers

GET /img/filmes/samaritano.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Fri, 18 Nov 2022 13:22:02 GMT
etag: "89a1573dc9db711cbb38cc48ee08a3df-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HM692YTRTCGK0NBB25
content-length: 162733
X-Firefox-Spdy: h2

www.theflix.com.br/img/filmes/top-gun-maverick.png

34.159.75.132

200 OK

200 kB

URL HTTP/2
www.theflix.com.br/img/filmes/top-gun-maverick.png
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
200 kB (199478 bytes)
Hash
452fdebc3fb01dbc2c23db8650a8529b
298c729676118a148c74c61418ffc66ac8052a07
ff73bbd0b45c8b6ad42749de72264ff1c4529543439e79d7de1f4b6c6c696007

HTTP Headers

GET /img/filmes/top-gun-maverick.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Fri, 18 Nov 2022 13:22:02 GMT
etag: "f20964c2db57da41e0f9d7bf331394d6-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HK9SHG93JE7TRYK9SE
content-length: 199478
X-Firefox-Spdy: h2

www.theflix.com.br/img/filmes/pantera-negra-2.png

34.159.75.132

200 OK

188 kB

URL HTTP/2
www.theflix.com.br/img/filmes/pantera-negra-2.png
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
188 kB (187767 bytes)
Hash
b70c74a19bb2910738839bda950483ea
bd3ce4d664b4d7b8dad6d2e03d7ae1a531b3df72
0ba9e1645494a4620964bff2edb45fd6c414a3d311b256a5106cf3e66a87eba4

HTTP Headers

GET /img/filmes/pantera-negra-2.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Fri, 18 Nov 2022 13:22:02 GMT
etag: "e6ee6ee7304e6b002b09102f6dca01e9-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HEJWYW1T3Z3FVCYWWA
content-length: 187767
X-Firefox-Spdy: h2

www.theflix.com.br/img/filmes/adao-negro.png

34.159.75.132

200 OK

196 kB

URL HTTP/2
www.theflix.com.br/img/filmes/adao-negro.png
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
196 kB (195824 bytes)
Hash
d92078b104452a71f6f2227c559ca4d2
caa28138c06a556ec2efc433b7983a6bf77cbd18
48651a702b9f00de60f43899a7cc4e3b2d0744416c1ac235da27660716b785b9

HTTP Headers

GET /img/filmes/adao-negro.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "8b2312645da04a7ff07739c3be8c9380-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HE56YFVS34CHVR9M7G
content-length: 195824
X-Firefox-Spdy: h2

www.theflix.com.br/img/series/sem-limites.png

34.159.75.132

200 OK

189 kB

URL HTTP/2
www.theflix.com.br/img/series/sem-limites.png
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
189 kB (188849 bytes)
Hash
afd15c0c3a4b8e48edd4870d4d7b651a
5a5dede372db9ebbe5edf6573654d360d585f692
438a52dc2ea6d7c1026fd44cde58e72ab01ed6e92fbeb97950aa17ea15ecc4ab

HTTP Headers

GET /img/series/sem-limites.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "672aa40aab81153ce63230e2764bef36-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HDCRT1VP1S2KP76WFJ
content-length: 188849
X-Firefox-Spdy: h2

www.theflix.com.br/img/series/obi-wan-kenobi.png

34.159.75.132

200 OK

149 kB

URL HTTP/2
www.theflix.com.br/img/series/obi-wan-kenobi.png
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
149 kB (149379 bytes)
Hash
b2c9e899f67548c871d2359c5fd9e25f
003b0259622be4e2a8812af8a0e6f9e8851a1a62
76a4db8f939f53ec86a701be5fd673667f2405dec4fff8d92e10acc841203c7b

HTTP Headers

GET /img/series/obi-wan-kenobi.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "4674506af4d131ea93d363231a82b0b6-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HAF48GVDCNYTMKH1FE
content-length: 149379
X-Firefox-Spdy: h2

www.theflix.com.br/img/series/star-wars-andor.webp

34.159.75.132

200 OK

24 kB

URL HTTP/2
www.theflix.com.br/img/series/star-wars-andor.webp
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
RIFF (little-endian) data, Web/P image\012- data
Size
24 kB (24038 bytes)
Hash
f6fd2f6d8cf19bab875a2f9e88a5f384
b275fbcd226989846a71e3cbe17afad127ca5032
f51eb992192dd6625daad871f859177bc23998f8cd7512e0737bad31b5fce2b4

HTTP Headers

GET /img/series/star-wars-andor.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "ee43b047dccc3b1039d9e623e9af3755-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H5HC92VTC2HV6M2N59
content-length: 24038
X-Firefox-Spdy: h2

www.theflix.com.br/img/series/she-hulk.webp

34.159.75.132

200 OK

11 kB

URL HTTP/2
www.theflix.com.br/img/series/she-hulk.webp
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
RIFF (little-endian) data, Web/P image\012- data
Size
11 kB (11328 bytes)
Hash
e86b1b21d98852562b853eb6362a2f60
3c125f406991593d38cde585747593ac4de903fc
2fb9befaab36b747b8897fb4a464d7781cc5866aae9cd2adb661c28b1cd6a415

HTTP Headers

GET /img/series/she-hulk.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "3ca3a427764c2b17d1aefbe1ef7e8b62-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H5BG64BRSCEESTRZC9
content-length: 11328
X-Firefox-Spdy: h2

www.theflix.com.br/img/series/house-of-the-dragon.webp

34.159.75.132

200 OK

24 kB

URL HTTP/2
www.theflix.com.br/img/series/house-of-the-dragon.webp
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
RIFF (little-endian) data, Web/P image\012- data
Size
24 kB (24256 bytes)
Hash
b70bee808561fc77c118788e280a32ab
8bfa33e828044724476eaf0fda9532839dfb4972
450459b712a28edd5d59e8ecf18e475247fa096c90ef670896dc429fa6761482

HTTP Headers

GET /img/series/house-of-the-dragon.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Fri, 18 Nov 2022 13:22:01 GMT
etag: "aedc298315b161935e55ee417a36470b-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H4GAH4AGA3BE19VFHZ
content-length: 24256
X-Firefox-Spdy: h2

www.theflix.com.br/img/series/dahmer-um-canibal-americano.webp

34.159.75.132

200 OK

23 kB

URL HTTP/2
www.theflix.com.br/img/series/dahmer-um-canibal-americano.webp
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
RIFF (little-endian) data, Web/P image\012- data
Size
23 kB (22874 bytes)
Hash
925ec47c3088bd12cce9546399d65521
5f4848fa7aa5ddd821f406db99fb0d0ef8c1583a
b04c18a9ee088ebc917d6eac589f8e1dc3b00c429019bfc77d0016c35c5931ea

HTTP Headers

GET /img/series/dahmer-um-canibal-americano.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "ceef5f75622d0fd56cc90a99c0a14703-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H4DX90WG1HN99SNQQZ
content-length: 22874
X-Firefox-Spdy: h2

www.theflix.com.br/img/series/carros-na-estrada.png

34.159.75.132

200 OK

234 kB

URL HTTP/2
www.theflix.com.br/img/series/carros-na-estrada.png
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
234 kB (233677 bytes)
Hash
f203440aa8b67dbacaadd5c5fa008b05
bf242143eed11cb9425c8c3d07ec8f19d8ebe1b3
bb2647234890a6bd61a9f072993f2c22830e764551a1fa6ec4e0076e34c5cb92

HTTP Headers

GET /img/series/carros-na-estrada.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "09707b4e441622e0ec63eacf08a24447-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3HA72S7R0WZ550BHS7T
content-length: 233677
X-Firefox-Spdy: h2

www.theflix.com.br/img/series/os-aneis-do-poder.webp

34.159.75.132

200 OK

11 kB

URL HTTP/2
www.theflix.com.br/img/series/os-aneis-do-poder.webp
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
RIFF (little-endian) data, Web/P image\012- data
Size
11 kB (10882 bytes)
Hash
c4707b2b9441270d8aae4048dac82578
f44df0deae953a42db518414a2ea42369922b1f7
b6acbf3df3610b14158c55a7305da65be72a8066df2e0a22447755f96c97eb5c

HTTP Headers

GET /img/series/os-aneis-do-poder.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Fri, 18 Nov 2022 13:22:01 GMT
etag: "e130f7e3c2fb1f87637e8eb6f46ff415-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H4TMAKKYABTWWHXTJ4
content-length: 10882
X-Firefox-Spdy: h2

www.theflix.com.br/img/series/round-6.webp

34.159.75.132

200 OK

24 kB

URL HTTP/2
www.theflix.com.br/img/series/round-6.webp
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
RIFF (little-endian) data, Web/P image\012- data
Size
24 kB (23776 bytes)
Hash
d4780b065ace4d420a292be892d41331
c995de9f0a7510fe7e06318ec8d931f053722df6
f70b9997e5d019913869ca8042e042b9db9326fe07383d26687aa3cc6470191e

HTTP Headers

GET /img/series/round-6.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7557
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Fri, 18 Nov 2022 13:22:01 GMT
etag: "8ebfabc5839f5ceb63aff7853aef832b-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3GW7MN79Z5HPS5KGPFS
content-length: 23776
X-Firefox-Spdy: h2

www.theflix.com.br/img/series/sandman.png

34.159.75.132

200 OK

144 kB

URL HTTP/2
www.theflix.com.br/img/series/sandman.png
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
144 kB (144501 bytes)
Hash
be1f3227953b9364366b7b0d29839d72
dab50ae5fd1fc79fdbed775e7ec238ede9f2281b
2766db805880e1a8faa77db754720c7a9b8b760d3d2e436cf92fa5e8b2c1863e

HTTP Headers

GET /img/series/sandman.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "1e3b7da917042c52f9546b242a4e2aad-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H9471A95KS74Y0AA6X
content-length: 144501
X-Firefox-Spdy: h2

www.theflix.com.br/img/filmes/red-crescer-e-uma-fera.webp

34.159.75.132

200 OK

19 kB

URL HTTP/2
www.theflix.com.br/img/filmes/red-crescer-e-uma-fera.webp
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
RIFF (little-endian) data, Web/P image\012- data
Size
19 kB (18872 bytes)
Hash
d70a86d60870368e3ae8e2adef08dd19
5e4167a24f2cc7528c7256b5bc59cf6d9e57a757
c6f964f0f075c535632aea410de8f61e70111c0c642b7b0fa8923a60410f36bf

HTTP Headers

GET /img/filmes/red-crescer-e-uma-fera.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "963c0981f64e33fc96980452f61c91bc-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H35A3MXDTMCMRDANRH
content-length: 18872
X-Firefox-Spdy: h2

www.theflix.com.br/img/filmes/homem-aranha-no-way-home.webp

34.159.75.132

200 OK

26 kB

URL HTTP/2
www.theflix.com.br/img/filmes/homem-aranha-no-way-home.webp
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
RIFF (little-endian) data, Web/P image\012- data
Size
26 kB (26106 bytes)
Hash
58a706a82d7872641aaad1c5ecfddf2a
7ef62bb64544494b756304729453808418a32643
e1011c0a2cffb7f53cecc6ef64d84bded82c4a1a0bc3fb3fb518051264a82a03

HTTP Headers

GET /img/filmes/homem-aranha-no-way-home.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "7b3464803f9ac7821136707c424f5985-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3GHK26VGGQ41X252SDN
content-length: 26106
X-Firefox-Spdy: h2

www.theflix.com.br/img/filmes/doutor-estranho-no-multiverso-da-loucura.webp

34.159.75.132

200 OK

23 kB

URL HTTP/2
www.theflix.com.br/img/filmes/doutor-estranho-no-multiverso-da-loucura.webp
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
RIFF (little-endian) data, Web/P image\012- data
Size
23 kB (22686 bytes)
Hash
76a251b37de88ff24ecaf232bfd0eec2
4f37cc5ab18c7f63b47b076ec8d008f2b339d1bd
5a7a12fcfc7e9ed5b51a4fd2fd2b1ab8a72b8ea03989678e5d41b077cd8d6f76

HTTP Headers

GET /img/filmes/doutor-estranho-no-multiverso-da-loucura.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "43951f497f19fc65638d02db6c9fd116-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3GWXPM5Z3PSFDQZ067Y
content-length: 22686
X-Firefox-Spdy: h2

www.theflix.com.br/img/filmes/kings-man-a-origem.webp

34.159.75.132

200 OK

17 kB

URL HTTP/2
www.theflix.com.br/img/filmes/kings-man-a-origem.webp
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
RIFF (little-endian) data, Web/P image\012- data
Size
17 kB (17102 bytes)
Hash
d4c7ab5045cf39eb48f219aa08247a54
364c7e97e23820c5eb170fe4cfcc84041cad7a12
ed9820254687a15d978c6008be23929f4e3bb2c641f8a2f944d59126f342dafd

HTTP Headers

GET /img/filmes/kings-man-a-origem.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "43ffc10825e89781e50619dec5b36dae-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3GH96CC86MAWPKD878N
content-length: 17102
X-Firefox-Spdy: h2

www.theflix.com.br/img/posters/filmes/shang-chi.webp

34.159.75.132

200 OK

57 kB

URL HTTP/2
www.theflix.com.br/img/posters/filmes/shang-chi.webp
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
RIFF (little-endian) data, Web/P image\012- data
Size
57 kB (56694 bytes)
Hash
7c8017458d97d2f4991a4ad336129c86
3267709bb54ed430cdd47ff19fc18dc5f00b440d
5b921474b0cf0789a04be7a4007ae0cc04ace49645180ef7e88b62320890460d

HTTP Headers

GET /img/posters/filmes/shang-chi.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "b8a713099cb1c22fc696cf260aa1e53f-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3G8YEEZ7RS6GZFRT93J
content-length: 56694
X-Firefox-Spdy: h2

www.theflix.com.br/img/series/perifericos.png

34.159.75.132

200 OK

188 kB

URL HTTP/2
www.theflix.com.br/img/series/perifericos.png
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
PNG image data, 260 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
188 kB (188121 bytes)
Hash
3e387cd2876e6718033dfca1966d8dda
2acddf3b2b04493ef3b521db6a7690c547c721ca
99696b9be730919acd141acb4aaa389bc85e4f92d93a12c56a8aca96b47f20b2

HTTP Headers

GET /img/series/perifericos.png HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 81583
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Thu, 17 Nov 2022 16:48:15 GMT
etag: "a5a57d8dda96005ed0c6f0515eaab5d9-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3H3811QRK5JKE3NKX8N
content-length: 188121
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/webfonts/fa-solid-900.woff2

104.17.24.14

200 OK

78 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/webfonts/fa-solid-900.woff2
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size
78 kB (78196 bytes)
Hash
e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

HTTP Headers

GET /ajax/libs/font-awesome/5.15.3/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:27:58 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 78196
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "60510736-13174"
last-modified: Tue, 16 Mar 2021 19:29:58 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 165310
expires: Wed, 08 Nov 2023 15:27:58 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zvHyKyK9NL1kyhC7LnCEsXwHTXEhvFmONE1bVkxeLJGmXSjQKCWMHb18ZI8oWJfLice64R%2BNvapo9jjNd45GqKonjrZ7Zd5zdzgsPj7Xq0mP5ie9LDee2bHdCF2NV0jEkvrWCMrv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76c1bbb87dfeb4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.theflix.com.br/img/banners/filmes/shang-chi-full.webp

34.159.75.132

200 OK

107 kB

URL HTTP/2
www.theflix.com.br/img/banners/filmes/shang-chi-full.webp
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
107 kB (106582 bytes)
Hash
3a0c2655634317afcca9ab4a561b06db
d9c075e094d31e2a389dc4f95d1f24db5444847a
3b5380fb8d8a5444aa5ede5ddc71753f33d5d01ddbf04c195e561c3a2105ace6

HTTP Headers

GET /img/banners/filmes/shang-chi-full.webp HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/css/stilo.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7558
cache-control: public, max-age=0, must-revalidate
content-type: image/webp
date: Fri, 18 Nov 2022 13:22:01 GMT
etag: "297e62697f0a3ab6d39c841d687f59c7-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN3SQC99GZAH6FNVQD3HK
content-length: 106582
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 18 Nov 2022 14:44:49 GMT
cache-control: public,max-age=3600
age: 2589
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 15:27:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
09e503d6981d74f9a5e4ff6ca5f26c27
4250a08d82bb0fce2205ce5faecfc105535666fb
94897b9ecd16c1e79a371c0403b0d7112bc1d81467fb6d596ed3a81b257b2175

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94897B9ECD16C1E79A371C0403B0D7112BC1D81467FB6D596ED3A81B257B2175"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8891
Expires: Fri, 18 Nov 2022 17:56:09 GMT
Date: Fri, 18 Nov 2022 15:27:58 GMT
Connection: keep-alive

fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.195

200 OK

7.9 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 21:48:50 GMT
expires: Thu, 16 Nov 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 149948
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 15:27:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
71e2d3da137dfcb058cc20cad1cca41a
71609efda3637da1ceca6267b63113f12ff029e8
6f453e45b937e1eaf9a1ae95930891a9ebfbfcf2238a9f2d657a04a2d0378046

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4081
Cache-Control: max-age=151140
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 15:27:59 GMT
Etag: "63773ff2-117"
Expires: Sun, 20 Nov 2022 09:26:59 GMT
Last-Modified: Fri, 18 Nov 2022 08:18:58 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279

arsnivyr.com/27/baf66709eec2c7c7c82fd8256942b812

139.45.197.242

200 OK

129 kB

URL HTTP/2
arsnivyr.com/27/baf66709eec2c7c7c82fd8256942b812
IP
139.45.197.242:0
ASN
#9002 RETN Limited

File type
data
Size
129 kB (128642 bytes)
Hash
9101557272bbd16ba46a53df257745a6
0c67e311ba42e6348676bf4e74d489925b87fb7f
8edd2cbfe329d26fb00071331015cadc7268813317b4ae1655ee4c8cbca19088

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /27/baf66709eec2c7c7c82fd8256942b812 HTTP/1.1
Host: arsnivyr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Cookie: scm=1; OAID=260fec046532482084b496d59c2e08ce; oaidts=1668785278
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:58 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
cache-control: max-age:290304000, public
last-modified: Fri, 18 Nov 2022 05:30:07 GMT
expires: Fri, 18 Dec 2082 05:30:07 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.37.79.227

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.37.79.227:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aUn2GRjpAgoKKOdbrsDLlQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ypqvMhcu9VA8ZEP2odbAIQNWyDk=

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
419e11329b40f6d11706372a1618331f
f6846a20afbbe22c8ad5be20cc711014bc314a27
91f7516f31fec4ded19345ceda5e923324666f5d20c75c47bc36d95a31c43cf3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 15:27:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 17 Nov 2022 18:25:19 GMT
Expires: Thu, 24 Nov 2022 18:25:18 GMT
Etag: "f6846a20afbbe22c8ad5be20cc711014bc314a27"
Cache-Control: max-age=528438,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c1bbbad8560b59-OSL

my.rtmark.net/gid.js?userId=8db97e748f8648abb69c34adb4294e38

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?userId=8db97e748f8648abb69c34adb4294e38
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
b2d467a8dd60839d488a129931c1e866
9661d654b6924e5e446f91bb42a2aa8598cb25c3
862c75e38d4592935dc3bc605423758fefc8df2e9eed353d142214d94335d1d6

HTTP Headers

GET /gid.js?userId=8db97e748f8648abb69c34adb4294e38 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.theflix.com.br
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=8db97e748f8648abb69c34adb4294e38; expires=Sat, 18 Nov 2023 15:27:59 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d16b4d6a8e31c35eb7d231a6269b86b4
9af67cc182d37d8d0b501f7d21e70ccd0b0314a4
e154c3a25d920723f06a645f269f692e82074d3c63934ac8234ffed6fcc3637e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E154C3A25D920723F06A645F269F692E82074D3C63934AC8234FFED6FCC3637E"
Last-Modified: Wed, 16 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21543
Expires: Fri, 18 Nov 2022 21:27:02 GMT
Date: Fri, 18 Nov 2022 15:27:59 GMT
Connection: keep-alive

arsnivyr.com/9?z=5062129&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&oaid=8db97e748f8648abb69c34adb4294e38

139.45.197.242

204 No Content

0 B

URL HTTP/2
arsnivyr.com/9?z=5062129&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&oaid=8db97e748f8648abb69c34adb4294e38
IP
139.45.197.242:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

OPTIONS /9?z=5062129&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&oaid=8db97e748f8648abb69c34adb4294e38 HTTP/1.1
Host: arsnivyr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.theflix.com.br/
Origin: https://www.theflix.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Fri, 18 Nov 2022 15:27:59 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.theflix.com.br
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b8e85d821df1f9d15a228d4ca52cdedc
9b566e7781db388e65f153f527fdf4e7f31094b0
dd7152c9835730eeaf701ec21b3709abccc654b14d9cb3212fa2fe4649aaec52

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DD7152C9835730EEAF701EC21B3709ABCCC654B14D9CB3212FA2FE4649AAEC52"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11160
Expires: Fri, 18 Nov 2022 18:33:59 GMT
Date: Fri, 18 Nov 2022 15:27:59 GMT
Connection: keep-alive

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
539342595b9286f3bbbe36590aba604c
ecb56df48b861b441763404e9a4e7de5d1a12c15
49fe520866e0b136d16dfa619a8a41a5faf4bcbca533dde8510966dfa0cf2e96

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 15:27:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 18 Nov 2022 13:33:19 GMT
Expires: Fri, 25 Nov 2022 13:33:18 GMT
Etag: "ecb56df48b861b441763404e9a4e7de5d1a12c15"
Cache-Control: max-age=597318,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c1bbbbdd7db517-OSL

arsnivyr.com/11?rnd=3300657521&z=5062129&b=14148812&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk=&ruid=ff727d01-ec6c-453a-9f20-48f8c1d51b2d&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ot=91

139.45.197.242

200 OK

0 B

URL HTTP/2
arsnivyr.com/11?rnd=3300657521&z=5062129&b=14148812&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk=&ruid=ff727d01-ec6c-453a-9f20-48f8c1d51b2d&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ot=91
IP
139.45.197.242:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /11?rnd=3300657521&z=5062129&b=14148812&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk=&ruid=ff727d01-ec6c-453a-9f20-48f8c1d51b2d&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ot=91 HTTP/1.1
Host: arsnivyr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Cookie: scm=1; OAID=8db97e748f8648abb69c34adb4294e38; oaidts=1668785278
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.theflix.com.br
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: e28a94268e1ccfe1620b6616ab8f8c42
access-control-expose-headers: X-Sc
set-cookie: OAID=8db97e748f8648abb69c34adb4294e38; expires=Sat, 18 Nov 2023 15:27:59 GMT; secure; SameSite=None
oaidts=1668785278; expires=Sat, 18 Nov 2023 15:27:59 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

surecheapermoisture.com/f69f8904cae6b76fcdb5a29064d69860/invoke.js

192.243.61.227

200 OK

9.8 kB

URL HTTP/1.1
surecheapermoisture.com/f69f8904cae6b76fcdb5a29064d69860/invoke.js
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type
exported SGML document, ASCII text, with very long lines (26955), with no line terminators
Size
9.8 kB (9783 bytes)
Hash
9a88271f94449f2c7ca3fce86de2c4b5
4418e30de95c1324757a2166db9d4ba11ab1b5bd
20461f734514780a182b7b19ceced9efc95d84ddf853e39e19a89391703d2b0e

HTTP Headers

GET /f69f8904cae6b76fcdb5a29064d69860/invoke.js HTTP/1.1
Host: surecheapermoisture.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 18 Nov 2022 15:27:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: de84a47e3b458c1bda0f4d0649870e9d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f

139.45.195.253

200 OK

12 B

URL HTTP/1.1
datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP
139.45.195.253:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 890
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Fri, 18 Nov 2022 15:27:59 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://www.theflix.com.br
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
db68cc49729904afe4910572afe551b3
56574ee0e7a5e85516ea368ace0787c123919f61
3f4e802675c57240b5ea0dfd1e9f685c49a6875515b4f66b83e7d5e8d2a4ff48

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3F4E802675C57240B5EA0DFD1E9F685C49A6875515B4F66B83E7D5E8D2A4FF48"
Last-Modified: Thu, 17 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19205
Expires: Fri, 18 Nov 2022 20:48:04 GMT
Date: Fri, 18 Nov 2022 15:27:59 GMT
Connection: keep-alive

onmarshtompor.com/?rb=HMD6XugeKPrqCR-i8m86MuVazhpDx-6fmaIrJXwHCPhnNbFcR8eIuUljeI264FThMiWlVAce55iYQx7G5Otx8QvJgvA8scG4Z_pnC4x646NS85KpnrDh66lu4M6MGzPZKyDw31qFMmkWBJ1hzYTcnny42XdP1gt3LE_5L-ImjJV33I96gk0m8kdGKoUgaYj3dTFpfm9B2F_xYwih4-lWZKNnwUYutLWuLlhFWfE_hUopwsV4&request_ab2=0&zoneid=5062136&js_build=iclick-v1.450.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=939&wiw=1280&wfc=0&pl=https%3A%2F%2Fwww.theflix.com.br%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.450.0&bs=bf66231c-6e66-4319-925a-104f46877625&userId=8db97e748f8648abb69c34adb4294e38&m=link

139.45.197.243

200 OK

12 kB

URL HTTP/2
onmarshtompor.com/?rb=HMD6XugeKPrqCR-i8m86MuVazhpDx-6fmaIrJXwHCPhnNbFcR8eIuUljeI264FThMiWlVAce55iYQx7G5Otx8QvJgvA8scG4Z_pnC4x646NS85KpnrDh66lu4M6MGzPZKyDw31qFMmkWBJ1hzYTcnny42XdP1gt3LE_5L-ImjJV33I96gk0m8kdGKoUgaYj3dTFpfm9B2F_xYwih4-lWZKNnwUYutLWuLlhFWfE_hUopwsV4&request_ab2=0&zoneid=5062136&js_build=iclick-v1.450.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=939&wiw=1280&wfc=0&pl=https%3A%2F%2Fwww.theflix.com.br%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.450.0&bs=bf66231c-6e66-4319-925a-104f46877625&userId=8db97e748f8648abb69c34adb4294e38&m=link
IP
139.45.197.243:0
ASN
#9002 RETN Limited

File type
JSON data\012- exported SGML document, ASCII text, with very long lines (29275), with no line terminators
Size
12 kB (11564 bytes)
Hash
bc3c5d480c5169c89c6017d760aa2c80
c211d1fb4b4a28f50c05ea59cdc4efd35391a78d
824da04894fde6cc86f2cd9a366d6f17218a0d6428c6ed9c4798ad1916ba9dea

HTTP Headers

GET /?rb=HMD6XugeKPrqCR-i8m86MuVazhpDx-6fmaIrJXwHCPhnNbFcR8eIuUljeI264FThMiWlVAce55iYQx7G5Otx8QvJgvA8scG4Z_pnC4x646NS85KpnrDh66lu4M6MGzPZKyDw31qFMmkWBJ1hzYTcnny42XdP1gt3LE_5L-ImjJV33I96gk0m8kdGKoUgaYj3dTFpfm9B2F_xYwih4-lWZKNnwUYutLWuLlhFWfE_hUopwsV4&request_ab2=0&zoneid=5062136&js_build=iclick-v1.450.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=939&wiw=1280&wfc=0&pl=https%3A%2F%2Fwww.theflix.com.br%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.450.0&bs=bf66231c-6e66-4319-925a-104f46877625&userId=8db97e748f8648abb69c34adb4294e38&m=link HTTP/1.1
Host: onmarshtompor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.theflix.com.br/
Origin: https://www.theflix.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: application/json
x-trace-id: 751233a8383097bbe96e73956930b216
access-control-allow-origin: https://www.theflix.com.br
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=8db97e748f8648abb69c34adb4294e38; expires=Sat, 18 Nov 2023 15:27:59 GMT; path=/; secure; SameSite=None
oaidts=1668785279; expires=Sat, 18 Nov 2023 15:27:59 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 25 Nov 2022 15:27:59 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
f0a7ae5fe0c925b0517f6494ff5a5d5c
ceda7ce395748306376df68d7d33a4b4ca775afc
fe329b0ac99808d05d1db86e9825270536e66e85b2860eed3b5f0087d99f3753

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=169514
Date: Fri, 18 Nov 2022 15:27:59 GMT
Etag: "63778916-1d7"
Expires: Sun, 20 Nov 2022 14:33:13 GMT
Last-Modified: Fri, 18 Nov 2022 13:31:02 GMT
Server: ECS (bsa/EB13)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AR__IslTcxGCjDO1mHYZGyrj4BbMX3ivobjdRdYme8zyUDWH5CY7Mg==
Age: 3731

simplewebanalysis.com/stats

18.195.188.15

200 OK

40 B

URL HTTP/2
simplewebanalysis.com/stats
IP
18.195.188.15:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
49ae227e21e49f4b6315633115b4a35d
4e4006f98093ceb9cb8b467e003d5d99cb8afc97
e4a09b7958fbcf27906f2b6e087db2cd9bf9b519159845e587daf84a0fa6cc77

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.theflix.com.br
access-control-allow-credentials: true
set-cookie: uid_id2=7d7a87a2-695a-4cb3-b3b5-8ca7384fb146:1:1; expires=Mon, 15 Nov 2032 15:27:59 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

surecheapermoisture.com/a14782589bff5c017ada94609ca686ad/invoke.js

192.243.61.227

200 OK

9.8 kB

URL HTTP/1.1
surecheapermoisture.com/a14782589bff5c017ada94609ca686ad/invoke.js
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type
exported SGML document, ASCII text, with very long lines (26957), with no line terminators
Size
9.8 kB (9785 bytes)
Hash
0db772eac3d593b76f0b7b577f1446b1
dd9c4c575a1ebbd9d44c83ad68e4909f3ebf19fe
ed2b43d32274d9f017cc65249e1ae6eec2ebc69b38b53c2daba065dc9090ff9c

HTTP Headers

GET /a14782589bff5c017ada94609ca686ad/invoke.js HTTP/1.1
Host: surecheapermoisture.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 18 Nov 2022 15:27:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d7b39495e503738bf7eed85611fa7442
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

interstitial-07.com/contents/s/36/d8/c2/9c866059b85b47752a6cc71b81/01636574006222.png

139.45.197.152

200 OK

45 kB

URL HTTP/2
interstitial-07.com/contents/s/36/d8/c2/9c866059b85b47752a6cc71b81/01636574006222.png
IP
139.45.197.152:0
ASN
#9002 RETN Limited

File type
PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Size
45 kB (45133 bytes)
Hash
36d8c29c866059b85b47752a6cc71b81
2d877eabf6710f66f5d7a3e265de997cf258ba32
0bbd2d8d16b4fd96c0a0dabecbd05ca573b30cd7079950d73b5dd68bde69a27b

HTTP Headers

GET /contents/s/36/d8/c2/9c866059b85b47752a6cc71b81/01636574006222.png HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=oSZzlw5DAOxDMSS&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Farsnivyr.com%2F12%3Frnd%3D1348375174%26z%3D5062129%26b%3D14148812%26c%3D5901940%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62cddf3c85e2d000019d78f1%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3D1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Dff727d01-ec6c-453a-9f20-48f8c1d51b2d%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.theflix.com.br%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D0%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: image/png
content-length: 45133
last-modified: Thu, 14 Jul 2022 23:23:43 GMT
etag: "62d0a57f-b04d"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2

simplewebanalysis.com/stats

18.195.188.15

200 OK

40 B

URL HTTP/2
simplewebanalysis.com/stats
IP
18.195.188.15:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
102e2bb9dd3d0565d2aafd1e81ebfaa1
977295ed2ec9cb44fe4d587dd753a3d2966c025c
35163621934473f3d087b29b8e8297c7c5b414f76225226c690914488c038a9d

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.theflix.com.br
access-control-allow-credentials: true
set-cookie: uid_id2=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d:2:1; expires=Mon, 15 Nov 2032 15:27:59 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5b53b7ba5a6f06d437286c4519066e9f
03602c01237dba1ab77745ebf3f584358aac302c
a8ed5421b34fbaa8aa0c9a7a3c57a636fe835b4177724308002b9f298d9beea3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8ED5421B34FBAA8AA0C9A7A3C57A636FE835B4177724308002B9F298D9BEEA3"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2351
Expires: Fri, 18 Nov 2022 16:07:10 GMT
Date: Fri, 18 Nov 2022 15:27:59 GMT
Connection: keep-alive

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2

216.58.207.195

200 OK

7.8 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data
Size
7.8 kB (7840 bytes)
Hash
8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:31:06 GMT
expires: Thu, 16 Nov 2023 19:31:06 GMT
cache-control: public, max-age=31536000
age: 158213
last-modified: Wed, 27 Apr 2022 16:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

216.58.207.195

200 OK

7.8 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:30:59 GMT
expires: Thu, 16 Nov 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 158220
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

simplewebanalysis.com/stats

18.195.188.15

200 OK

40 B

URL HTTP/2
simplewebanalysis.com/stats
IP
18.195.188.15:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
102e2bb9dd3d0565d2aafd1e81ebfaa1
977295ed2ec9cb44fe4d587dd753a3d2966c025c
35163621934473f3d087b29b8e8297c7c5b414f76225226c690914488c038a9d

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Cookie: uid_id2=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d:2:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.theflix.com.br
access-control-allow-credentials: true
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLFj_Z1xlFQ.woff2

216.58.207.195

200 OK

7.9 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLFj_Z1xlFQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7932, version 1.0\012- data
Size
7.9 kB (7932 bytes)
Hash
a7f7eebec745ef48ccf7a3d08c66d84a
2c5f99afe358a3e8570818a99646779aaa607587
6f0c572590421075878908e0b380c5a6d404f72aa7d6d125385943be658f8399

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLFj_Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7932
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 13 Nov 2022 00:50:59 GMT
expires: Mon, 13 Nov 2023 00:50:59 GMT
cache-control: public, max-age=31536000
age: 484620
last-modified: Wed, 27 Apr 2022 16:10:29 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

interstitial-07.com/contents/s/06/81/01/3a2614b7b0b9c1fe8640a337d6/01564863680579.jpeg

139.45.197.152

200 OK

125 kB

URL HTTP/2
interstitial-07.com/contents/s/06/81/01/3a2614b7b0b9c1fe8640a337d6/01564863680579.jpeg
IP
139.45.197.152:0
ASN
#9002 RETN Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 900x600, components 3\012- data
Size
125 kB (125242 bytes)
Hash
0681013a2614b7b0b9c1fe8640a337d6
a422ab7fbf3cd22db2f3edd47aee04eae4355246
f3f918825d47aed0e2003ed3d95563abdfc80592531b6cfd593aafa356959766

HTTP Headers

GET /contents/s/06/81/01/3a2614b7b0b9c1fe8640a337d6/01564863680579.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=oSZzlw5DAOxDMSS&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Farsnivyr.com%2F12%3Frnd%3D1348375174%26z%3D5062129%26b%3D14148812%26c%3D5901940%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62cddf3c85e2d000019d78f1%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3D1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Dff727d01-ec6c-453a-9f20-48f8c1d51b2d%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.theflix.com.br%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D0%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: image/jpeg
content-length: 125242
last-modified: Mon, 18 Jul 2022 20:55:17 GMT
etag: "62d5c8b5-1e93a"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2

www.theflix.com.br/icons/fav-icon/favicon.ico

34.159.75.132

200 OK

15 kB

URL HTTP/2
www.theflix.com.br/icons/fav-icon/favicon.ico
IP
34.159.75.132:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
15 kB (15406 bytes)
Hash
fa6b434f07674ec27acbcaa5e3274fc4
1aeeeb631db6ff87b55c02175fc838c0be392c45
4142f422b92d9f1644b74bf13c1728187f7e8419b3944aa21d22f2d4cce86726

HTTP Headers

GET /icons/fav-icon/favicon.ico HTTP/1.1
Host: www.theflix.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Cookie: prefetchAd_5062136=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 7558
cache-control: public, max-age=0, must-revalidate
content-type: image/vnd.microsoft.icon
date: Fri, 18 Nov 2022 13:22:02 GMT
etag: "6d0d5a7b35b863e88a9af2b19105a297-ssl"
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GJ5NN4YAE84840SRB55ENXW5
content-length: 15406
X-Firefox-Spdy: h2

unphionetor.com/vctx?t=72747

139.45.197.236

204 No Content

0 B

URL HTTP/2
unphionetor.com/vctx?t=72747
IP
139.45.197.236:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /vctx?t=72747 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Fri, 18 Nov 2022 15:27:59 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: e5c58f36f63b5bc37454361080fbf594
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined

139.45.197.236

204 No Content

0 B

URL HTTP/2
unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
IP
139.45.197.236:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /vbl?t=72747&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Fri, 18 Nov 2022 15:28:00 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 1531515841e10c12b337e8ef7f791d13
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

arsnivyr.com/11?rnd=3300657521&z=5062129&b=14148812&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk=&ruid=ff727d01-ec6c-453a-9f20-48f8c1d51b2d&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1

139.45.197.242

200 OK

0 B

URL HTTP/2
arsnivyr.com/11?rnd=3300657521&z=5062129&b=14148812&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk=&ruid=ff727d01-ec6c-453a-9f20-48f8c1d51b2d&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP
139.45.197.242:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /11?rnd=3300657521&z=5062129&b=14148812&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk=&ruid=ff727d01-ec6c-453a-9f20-48f8c1d51b2d&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: arsnivyr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Cookie: scm=1; OAID=8db97e748f8648abb69c34adb4294e38; oaidts=1668785278
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:28:00 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.theflix.com.br
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 24d73b7f78155e1b27eee661b2b49d8c
access-control-expose-headers: X-Sc
set-cookie: OAID=8db97e748f8648abb69c34adb4294e38; expires=Sat, 18 Nov 2023 15:28:00 GMT; secure; SameSite=None
oaidts=1668785278; expires=Sat, 18 Nov 2023 15:28:00 GMT; secure; SameSite=None
oaidvc=1; expires=Sat, 18 Nov 2023 15:28:00 GMT; secure; SameSite=None
CNT=1_v1_zOTXAAEAAAByS3Yg; expires=Fri, 18 Nov 2022 16:28:00 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a133d0b5e7916dc576c7f711fc43beb7
4ab3ffe58034debc1be69738a231dfd272c09538
7f801552f7b204f1d9daf978e48c8191134d5af14b7c6aefc84bf366ba4a3d07

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7F801552F7B204F1D9DAF978E48C8191134D5AF14B7C6AEFC84BF366BA4A3D07"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13301
Expires: Fri, 18 Nov 2022 19:09:41 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
905df2288ce4da17b97590ffed7ce16d
2a632641f66366a9eda190c85fd065bf9bd1f812
a0d7c6e0e519fe4d42ff020e17f609c1dc3f93f38cc51058de2a2fd12729b6fa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0D7C6E0E519FE4D42FF020E17F609C1DC3F93F38CC51058DE2A2FD12729B6FA"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11540
Expires: Fri, 18 Nov 2022 18:40:20 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

1.1 kB

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
gzip compressed data, max compression\012- data
Size
1.1 kB (1131 bytes)
Hash
4f32e0a5a7cc0ba7d8670723744b45a4
a7b0957214e41a70bac77ad9c2168e5c823a61fd
0a2c915107a4c46c57b3532d20eba81a9b21dc9c1fdd64e9a9dedec5732db994

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B17CD870326CAECC35E967E3EA55FB83849219C13BF99D8D363138E69A41923F"
Last-Modified: Thu, 17 Nov 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3502
Expires: Fri, 18 Nov 2022 16:26:22 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16057
Expires: Fri, 18 Nov 2022 19:55:37 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16057
Expires: Fri, 18 Nov 2022 19:55:37 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16057
Expires: Fri, 18 Nov 2022 19:55:37 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16057
Expires: Fri, 18 Nov 2022 19:55:37 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16057
Expires: Fri, 18 Nov 2022 19:55:37 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg

34.120.237.76

200 OK

3.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.8 kB (3759 bytes)
Hash
5d0b6106f00f9fd8b89c2d484a559a1a
399ac393209dcdac7d2188d7aa8d95f04570ef7c
5d8151c9eb558f4a2b8bd2952c6845606ddb0c27e36f6e49aca7e60908cd9fe4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3759
x-amzn-requestid: 8c91ac59-89dc-4218-b69f-0cebb29f301b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-wJHgxoAMF-hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab33-4dac305614a92bc52c038222;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mb2-PTjNmt06Wd5jOjQ5WoLY-0NgI80CKPXtwgzBt4n5km8Pu_WN0Q==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:08:54 GMT
age: 62346
etag: "399ac393209dcdac7d2188d7aa8d95f04570ef7c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b43b0-5ba1-4c6c-9a53-bfae9befdd7d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6344 bytes)
Hash
a9d32fa3866dd741de610a61a93ad893
4cb2141b1ef1e5bf19a3b355995dcd8fa36f695e
4492338de536cfae6fb42fd37170c60f4fbc281a2a924efe6d2b5af352cd102c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b43b0-5ba1-4c6c-9a53-bfae9befdd7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6344
x-amzn-requestid: cac35b04-be3b-4ae1-bb5e-8cedcd7a7db4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: btqOVFCXIAMFcOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63755728-45c28fa333b748520be29b57;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 21:33:28 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: RQqPegf6sdVW0qmrGnUo6EORLuT7BRikwhtF08LAxWNCpLGwGZnG8Q==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:34:03 GMT
age: 64437
etag: "4cb2141b1ef1e5bf19a3b355995dcd8fa36f695e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7631 bytes)
Hash
b2b393e36ee2c9649d90db136aa49542
e88c5832ff0c49bab181d948c3a510d88343bb6f
8b524701df43bff56ac52a021ff0fbd964e06f00e84b4861aa557ec6ae6b4ffd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3007b4f3-f5db-4eb7-b71a-f9f854ae287e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7631
x-amzn-requestid: b47e545d-1fb6-4a62-ab45-28cdb9d3f0b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-vQE0XoAMFS3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab2e-56365eed3d4c082c53b172b3;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qpoQa1Lhe-h27dGooXDCtujesSTg7Tb0Ov-PNLnUP0288ZofwHxkhQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:24:12 GMT
age: 61428
etag: "e88c5832ff0c49bab181d948c3a510d88343bb6f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11667 bytes)
Hash
032386e5c9dffff1ba1ee5e8a322d438
dd4fd6c803a9b333bace9a541c6bd183d0c56bb9
0e9f559a0aa7e114c5810a27ba243c0da7b44dc0bf7aec2b7ab32b8f0e2b536c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: 4778d1bd-28c3-4665-89da-046e356087f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyD1HE-oAMF0QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-53c7330c5fd36d3c4d9e6aed;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CHi9V7-WaWmG6Y0249CZJnhe_RjvleaGFVXoOnJ62cjrcXoLLKwzgw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 07:20:30 GMT
age: 29250
etag: "dd4fd6c803a9b333bace9a541c6bd183d0c56bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb1ea6fe-f968-42eb-9bb6-5965ae4e6ce6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (7045 bytes)
Hash
e5fb6d72b647aabea33ab4017f4a0847
ed93ac946111340a254b92f8ce27e8be93ae87e8
0782ed4ffaea8f9487461d5a9b0c241d30dfe057676753b24e180d0a94efad99

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb1ea6fe-f968-42eb-9bb6-5965ae4e6ce6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7045
x-amzn-requestid: e8dace8b-0cc8-4ea0-b47a-e42a66576f72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-K3EuCIAMFsmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa45-71c191e462be52006858817b;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: S0Sq8vuP-MbcuYVx_WFXTkmrY966mBTY1Qpowx_E_to1tDk1b8R-Bw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:52:11 GMT
age: 63349
etag: "ed93ac946111340a254b92f8ce27e8be93ae87e8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10349 bytes)
Hash
7d16e5ff718353c095d266b080fe547f
fa7c5c9a1d16355859196271f3d13f3850931888
9a94d8eb20cc56d0898b1e2b80c0006ebbef75c15ad94e907050c5be4e19a960

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20ddb38f-d459-45e6-9351-068a5306b3a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10349
x-amzn-requestid: fc85e078-a81a-4fed-899e-15249961f59c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-7tHGLIAMF00Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7d-4224d193517794684fcdc0ad;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UK-XD_8EcfPwfLb-QVwfLr8aG-sqVBoUJcbPb5hKAlQS68eOxdgM5g==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:05:52 GMT
age: 62528
etag: "fa7c5c9a1d16355859196271f3d13f3850931888"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

173.233.139.164

307 Temporary Redirect

0 B

URL HTTP/1.1
relativelyweptcurls.com/watch.1415438315161.js?key=f69f8904cae6b76fcdb5a29064d69860&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=7d7a87a2-695a-4cb3-b3b5-8ca7384fb146%3A1%3A1
IP
173.233.139.164:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /watch.1415438315161.js?key=f69f8904cae6b76fcdb5a29064d69860&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=7d7a87a2-695a-4cb3-b3b5-8ca7384fb146%3A1%3A1 HTTP/1.1
Host: relativelyweptcurls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Fri, 18 Nov 2022 15:28:00 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.theflix.com.br
Access-Control-Allow-Origin: https://www.theflix.com.br
Access-Control-Allow-Credentials: true
Location: https://relativelyweptcurls.com/watch.1415438315161.js?key=f69f8904cae6b76fcdb5a29064d69860&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=7d7a87a2-695a-4cb3-b3b5-8ca7384fb146%3A1%3A1&shu=c7e76e03ac972285990302a77bf90533c2ffc1453ee1d9742bfa8beb1c768bb2df1ea817d5cd7036a0937421d7796dc47ff2a2d5661215d36398a10869623bf440ec7525b74e5dafbec69bc95003ed72b29aad1c152eae8e1167ac2d3e2a05a930&pst=1668785340&rmtc=t
Set-Cookie: u_pl=16673171; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjY3MzE3MSwiayI6ImY2OWY4OTA0Y2FlNmI3NmZjZGI1YTI5MDY0ZDY5ODYwIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNjg0NDcyLCJwaWQiOjM4MDg5MiwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxLCJhaWQiOjIzLCJwdCI6NCwicGsiOiJzYmh4ZHh4NzMiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly93d3cudGhlZmxpeC5jb20uYnIvIn19.bo7tSCrgI7dRWqrqt_AxYytPwmtN4htorpHrlyTaxY4; expires=Fri, 18 Nov 2022 15:29:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dabcc6048a80eec9540cd8cf5ca6a2ed
Strict-Transport-Security: max-age=0; includeSubdomains

192.243.61.225

307 Temporary Redirect

0 B

URL HTTP/1.1
grewquartersupporting.com/watch.377923618158.js?key=dbb79c1dbe098ca2c6200903b6984cab&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1
IP
192.243.61.225:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /watch.377923618158.js?key=dbb79c1dbe098ca2c6200903b6984cab&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1 HTTP/1.1
Host: grewquartersupporting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.22.0
Date: Fri, 18 Nov 2022 15:28:00 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.theflix.com.br
Access-Control-Allow-Origin: https://www.theflix.com.br
Access-Control-Allow-Credentials: true
Location: https://grewquartersupporting.com/watch.377923618158.js?key=dbb79c1dbe098ca2c6200903b6984cab&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1&shu=5a6b070938c9a31a41885299f09fa7243180cc27f983a48c10e4aeced24bde6452f097d4023cd9a182586bd92a6846c59a3236ec0185f4966f483ce305bc8fbd53d76b0954af34bef16376db0f46d6d6cf7682f2&pst=1668785340&rmtc=t
Set-Cookie: u_pl=16976924; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.PFsx1c-WBbFu0fHGDKcUVFQ_vVj8S6ZFJ5YWdI4k51c; expires=Fri, 18 Nov 2022 15:29:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 800cb8dca3f9a361b60012cd6234f5b1
Strict-Transport-Security: max-age=0; includeSubdomains

192.243.59.12

307 Temporary Redirect

0 B

URL HTTP/1.1
yearbookhobblespinal.com/watch.1633087092953.js?key=a14782589bff5c017ada94609ca686ad&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1
IP
192.243.59.12:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.1633087092953.js?key=a14782589bff5c017ada94609ca686ad&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1 HTTP/1.1
Host: yearbookhobblespinal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.6
Date: Fri, 18 Nov 2022 15:28:00 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.theflix.com.br
Access-Control-Allow-Origin: https://www.theflix.com.br
Access-Control-Allow-Credentials: true
Location: https://yearbookhobblespinal.com/watch.1633087092953.js?key=a14782589bff5c017ada94609ca686ad&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1&shu=4f5a32f5905f0d60381bfc5f5317a84772837add9887ea7ecd76cf86c40469554fc4e99e827474b321283e24711e1e6147da5b656413cf3c764d52145535c3fe03e9402308ddcb942a9e0da32e4227942658e1e7&pst=1668785340&rmtc=t
Set-Cookie: u_pl=17098598; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.rF6oGeD1tDAmcPtG2n0rwLmqGYRTtyNt-s7nZw4NMpg; expires=Fri, 18 Nov 2022 15:29:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 74a9740c0c9f7ca34100b67c22742d24
Strict-Transport-Security: max-age=0; includeSubdomains

relativelyweptcurls.com/watch.1415438315161.js?key=f69f8904cae6b76fcdb5a29064d69860&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=7d7a87a2-695a-4cb3-b3b5-8ca7384fb146%3A1%3A1&shu=c7e76e03ac972285990302a77bf90533c2ffc1453ee1d9742bfa8beb1c768bb2df1ea817d5cd7036a0937421d7796dc47ff2a2d5661215d36398a10869623bf440ec7525b74e5dafbec69bc95003ed72b29aad1c152eae8e1167ac2d3e2a05a930&pst=1668785340&rmtc=t

173.233.139.164

200 OK

2.1 kB

URL HTTP/1.1
relativelyweptcurls.com/watch.1415438315161.js?key=f69f8904cae6b76fcdb5a29064d69860&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=7d7a87a2-695a-4cb3-b3b5-8ca7384fb146%3A1%3A1&shu=c7e76e03ac972285990302a77bf90533c2ffc1453ee1d9742bfa8beb1c768bb2df1ea817d5cd7036a0937421d7796dc47ff2a2d5661215d36398a10869623bf440ec7525b74e5dafbec69bc95003ed72b29aad1c152eae8e1167ac2d3e2a05a930&pst=1668785340&rmtc=t
IP
173.233.139.164:0
ASN
#7979 SERVERS-COM

File type
HTML document, ASCII text, with very long lines (2535)
Size
2.1 kB (2056 bytes)
Hash
0a665fbd09bb92fa791556bbe12dd4e7
e158a89f0c35324d081231024a4b2d96aaac9cc0
bc8981630071f3e064ffc83c1beff8eb1f733f57cd93a0a175e475eadd695b5a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /watch.1415438315161.js?key=f69f8904cae6b76fcdb5a29064d69860&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=7d7a87a2-695a-4cb3-b3b5-8ca7384fb146%3A1%3A1&shu=c7e76e03ac972285990302a77bf90533c2ffc1453ee1d9742bfa8beb1c768bb2df1ea817d5cd7036a0937421d7796dc47ff2a2d5661215d36398a10869623bf440ec7525b74e5dafbec69bc95003ed72b29aad1c152eae8e1167ac2d3e2a05a930&pst=1668785340&rmtc=t HTTP/1.1
Host: relativelyweptcurls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Referer: https://www.theflix.com.br/
Connection: keep-alive
Cookie: u_pl=16673171; ain=eyJhbGciOiJIUzI1NiJ9.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.bo7tSCrgI7dRWqrqt_AxYytPwmtN4htorpHrlyTaxY4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 18 Nov 2022 15:28:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.theflix.com.br
Access-Control-Allow-Origin: https://www.theflix.com.br
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=7d7a87a2-695a-4cb3-b3b5-8ca7384fb146:1:1; expires=Fri, 25 Nov 2022 15:28:00 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
uncs=1; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
pdhtkv23=true; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
uncs23=1; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a6cc16e28997e3f4985f52a758c11ad9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

grewquartersupporting.com/watch.377923618158.js?key=dbb79c1dbe098ca2c6200903b6984cab&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1&shu=5a6b070938c9a31a41885299f09fa7243180cc27f983a48c10e4aeced24bde6452f097d4023cd9a182586bd92a6846c59a3236ec0185f4966f483ce305bc8fbd53d76b0954af34bef16376db0f46d6d6cf7682f2&pst=1668785340&rmtc=t

192.243.61.225

200 OK

2.1 kB

URL HTTP/1.1
grewquartersupporting.com/watch.377923618158.js?key=dbb79c1dbe098ca2c6200903b6984cab&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1&shu=5a6b070938c9a31a41885299f09fa7243180cc27f983a48c10e4aeced24bde6452f097d4023cd9a182586bd92a6846c59a3236ec0185f4966f483ce305bc8fbd53d76b0954af34bef16376db0f46d6d6cf7682f2&pst=1668785340&rmtc=t
IP
192.243.61.225:0
ASN
#39572 DataWeb Global Group B.V.

File type
HTML document, ASCII text, with very long lines (2522)
Size
2.1 kB (2056 bytes)
Hash
0089f51f2a16ae796ea0d1c1dfac9644
2c398df90bc7211e327eedbcb3dbb325a596d8bc
f8b6c5287949be43709a46805e1514b4fa80b11032cc43279efa776970a02893

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /watch.377923618158.js?key=dbb79c1dbe098ca2c6200903b6984cab&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1&shu=5a6b070938c9a31a41885299f09fa7243180cc27f983a48c10e4aeced24bde6452f097d4023cd9a182586bd92a6846c59a3236ec0185f4966f483ce305bc8fbd53d76b0954af34bef16376db0f46d6d6cf7682f2&pst=1668785340&rmtc=t HTTP/1.1
Host: grewquartersupporting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Referer: https://www.theflix.com.br/
Connection: keep-alive
Cookie: u_pl=16976924; ain=eyJhbGciOiJIUzI1NiJ9.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.PFsx1c-WBbFu0fHGDKcUVFQ_vVj8S6ZFJ5YWdI4k51c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 18 Nov 2022 15:28:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.theflix.com.br
Access-Control-Allow-Origin: https://www.theflix.com.br
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d:2:1; expires=Fri, 25 Nov 2022 15:28:00 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
uncs=1; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
uncs5=1; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d14057ed3bdba78887a965b7423dc90e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

yearbookhobblespinal.com/watch.1633087092953.js?key=a14782589bff5c017ada94609ca686ad&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1&shu=4f5a32f5905f0d60381bfc5f5317a84772837add9887ea7ecd76cf86c40469554fc4e99e827474b321283e24711e1e6147da5b656413cf3c764d52145535c3fe03e9402308ddcb942a9e0da32e4227942658e1e7&pst=1668785340&rmtc=t

192.243.59.12

200 OK

2.0 kB

URL HTTP/1.1
yearbookhobblespinal.com/watch.1633087092953.js?key=a14782589bff5c017ada94609ca686ad&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1&shu=4f5a32f5905f0d60381bfc5f5317a84772837add9887ea7ecd76cf86c40469554fc4e99e827474b321283e24711e1e6147da5b656413cf3c764d52145535c3fe03e9402308ddcb942a9e0da32e4227942658e1e7&pst=1668785340&rmtc=t
IP
192.243.59.12:0
ASN
#39572 DataWeb Global Group B.V.

File type
HTML document, ASCII text, with very long lines (2490)
Size
2.0 kB (1999 bytes)
Hash
f219e7365ca6790273ac32d70ddee7b5
3a41504d74c4f70139c6f45fefdceb4c02ec1aa0
bc3806b1341f369ebbca4f01afeefd759dd31468d03e087f3c4219c530ee60ec

HTTP Headers

GET /watch.1633087092953.js?key=a14782589bff5c017ada94609ca686ad&kw=%5B%22theflix%22%2C%22assistir%22%2C%22filmes%22%2C%22s%C3%A9ries%22%2C%22online%22%2C%22gr%C3%A1tis%22%5D&refer=https%3A%2F%2Fwww.theflix.com.br%2F&tz=0&dev=e&res=12.1055&uuid=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d%3A2%3A1&shu=4f5a32f5905f0d60381bfc5f5317a84772837add9887ea7ecd76cf86c40469554fc4e99e827474b321283e24711e1e6147da5b656413cf3c764d52145535c3fe03e9402308ddcb942a9e0da32e4227942658e1e7&pst=1668785340&rmtc=t HTTP/1.1
Host: yearbookhobblespinal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.theflix.com.br
Referer: https://www.theflix.com.br/
Connection: keep-alive
Cookie: u_pl=17098598; ain=eyJhbGciOiJIUzI1NiJ9.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.rF6oGeD1tDAmcPtG2n0rwLmqGYRTtyNt-s7nZw4NMpg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Fri, 18 Nov 2022 15:28:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.theflix.com.br
Access-Control-Allow-Origin: https://www.theflix.com.br
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=cc4bdad7-75b7-4037-a8e5-734f6b88ce1d:2:1; expires=Fri, 25 Nov 2022 15:28:00 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
uncs=1; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
pdhtkv26=true; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
uncs26=1; expires=Sat, 19 Nov 2022 15:28:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5d7cb0b041366a144449a840712f7bc1
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
888b2dc96e4a2457515317ed30b9aaa3
31a0141dd136db7e68d80446f4e422367b503249
0ff0adf0101c97a66614f7c954efa7755fadb672e3c564ad3fe1a05181f4d0ff

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF0ADF0101C97A66614F7C954EFA7755FADB672E3C564AD3FE1A05181F4D0FF"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17724
Expires: Fri, 18 Nov 2022 20:23:24 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
888b2dc96e4a2457515317ed30b9aaa3
31a0141dd136db7e68d80446f4e422367b503249
0ff0adf0101c97a66614f7c954efa7755fadb672e3c564ad3fe1a05181f4d0ff

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF0ADF0101C97A66614F7C954EFA7755FADB672E3C564AD3FE1A05181F4D0FF"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17724
Expires: Fri, 18 Nov 2022 20:23:24 GMT
Date: Fri, 18 Nov 2022 15:28:00 GMT
Connection: keep-alive

cdn.cloudimagesb.com/bi/38/5f/6a/385f6ad447951646e4322c710cb60eeb/1647779911.jpg

45.133.44.10

200 OK

97 kB

URL HTTP/2
cdn.cloudimagesb.com/bi/38/5f/6a/385f6ad447951646e4322c710cb60eeb/1647779911.jpg
IP
45.133.44.10:0
ASN
#39572 DataWeb Global Group B.V.

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2022:03:14 18:23:12], baseline, precision 8, 728x90, components 3\012- data
Size
97 kB (96892 bytes)
Hash
04f86589d7febbbbbe39f0aee555691e
26f9dd4d7e28754ffebafadc7018b01be702ebe8
37ef49f0c3228c4398bde621e864d4e66c77dc7d6d6fe6ef67db85678d140de3

HTTP Headers

GET /bi/38/5f/6a/385f6ad447951646e4322c710cb60eeb/1647779911.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:28:00 GMT
content-type: image/jpeg
content-length: 96892
server: nginx/1.17.6
last-modified: Sun, 20 Mar 2022 12:38:37 GMT
etag: "6237204d-17a7c"
expires: Sun, 20 Nov 2022 15:28:00 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/22/f1/a7/22f1a70770bba024f23893a45c6f27e3/1663166142.png

45.133.44.10

200 OK

30 kB

URL HTTP/2
cdn.cloudimagesb.com/cti/22/f1/a7/22f1a70770bba024f23893a45c6f27e3/1663166142.png
IP
45.133.44.10:0
ASN
#39572 DataWeb Global Group B.V.

File type
PNG image data, 160 x 300, 8-bit/color RGB, non-interlaced\012- data
Size
30 kB (30337 bytes)
Hash
bf5dfdf7b7860d47fce49e5a02fb62b9
0ca0237d75af56cc1e0252bb18afa7d6b2fa8c86
a880eec3a53b95c83e8eb547b0fa3e41c6b401e57fbdff1f44c756ec9c2a04b5

HTTP Headers

GET /cti/22/f1/a7/22f1a70770bba024f23893a45c6f27e3/1663166142.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:28:00 GMT
content-type: image/png
content-length: 30337
server: nginx/1.17.6
last-modified: Wed, 14 Sep 2022 14:35:50 GMT
etag: "6321e6c6-7681"
expires: Sun, 20 Nov 2022 15:28:00 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/bi/42/b9/b8/42b9b878c3e0e289a962ddb718ac8c1e/1643387473.gif

45.133.44.10

200 OK

356 kB

URL HTTP/2
cdn.cloudimagesb.com/bi/42/b9/b8/42b9b878c3e0e289a962ddb718ac8c1e/1643387473.gif
IP
45.133.44.10:0
ASN
#39572 DataWeb Global Group B.V.

File type
GIF image data, version 89a, 300 x 250\012- data
Size
356 kB (355625 bytes)
Hash
fed91a409d4267115616b4a098c906b4
c7994b6bdc10a0aeae9b14d0c2393434667dfe09
bf693ed5ed3b3541b880fab0f53b270dc1766d9376b961878b6e63fcbffcd985

HTTP Headers

GET /bi/42/b9/b8/42b9b878c3e0e289a962ddb718ac8c1e/1643387473.gif HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:28:00 GMT
content-type: image/gif
content-length: 355625
server: nginx/1.17.6
last-modified: Fri, 28 Jan 2022 16:31:21 GMT
etag: "61f41a59-56d29"
expires: Sun, 20 Nov 2022 15:28:00 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

interstitial-07.com/?l=oSZzlw5DAOxDMSS&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Farsnivyr.com%2F12%3Frnd%3D1348375174%26z%3D5062129%26b%3D14148812%26c%3D5901940%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62cddf3c85e2d000019d78f1%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3D1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Dff727d01-ec6c-453a-9f20-48f8c1d51b2d%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.theflix.com.br%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D0%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0

139.45.197.152

200 OK

0 B

URL HTTP/2
interstitial-07.com/?l=oSZzlw5DAOxDMSS&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Farsnivyr.com%2F12%3Frnd%3D1348375174%26z%3D5062129%26b%3D14148812%26c%3D5901940%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62cddf3c85e2d000019d78f1%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3D1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Dff727d01-ec6c-453a-9f20-48f8c1d51b2d%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.theflix.com.br%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D0%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
IP
139.45.197.152:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /?l=oSZzlw5DAOxDMSS&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Farsnivyr.com%2F12%3Frnd%3D1348375174%26z%3D5062129%26b%3D14148812%26c%3D5901940%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62cddf3c85e2d000019d78f1%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3D1v_mltdGBzhgJoAbWpdI4QILczpxq8GjSKUOPn3QCZWt8_p5CLQOCS2KsJ4_rmDbI2_Tftk6dGC04t33Twu616yg3sBBBqXxueFezfsVCVAYJJY4pZbqgH-3v-wOYCK2TeVNknjiCxhTad4DkASDiiQcsHRTk9uOPWNcOxfIGAdxTI_FYq4l41arhkIHEXb_JoBwHli8uAxcOt2s5jZMxguPl0r-bH0JBcLAPuff7UEV1OdjVccQe5PqiyNF4BJe-_70Ahzu5pxwq7winukhplMy8KMIq7T-KkbFC31gtRBPhurXdXmnJezE-jGv2QwL9C_x4M9MwbOIh33D0yoYb7IplIiSUwEPFJ6CKhpKJSkXtxXZxcu5Kv2aQp_WN4xRMQSvEjgqM3ms7DjYriF54cDWjWq2rYNTes0Lg4ZfKUOGvt-S06lPzJe9irxHXCx1gB7k8TTMfwnyC78J2ARvckqjN3KDEASpALzYf3PUORxLpOpAgSxYsYgNCxQ0ugPBjEO8owhfTwGqaMm_P1jIsztpYIJPf7S_FtXxrUGXUTQHLP72iwRQPT9GxZiV_e4kR3CdoCRqZ-e7Z1vQfzLWOLhygZ6IRvEBj8i3N5xlkXXJpTtPGpP0G0pDbLFeeh1lUwBH8lMkvfWb3i7rwNw5DaDeIEseinnNKZ1prjujRuwO9mpyAtFj0H-4-REtNaIpkusZzuJ9rwjw8RgsQhj5cmtbLQgZskUotLK8o4fr2P77DwjAatET_TncKDT7h1n-13262MV0Vnk%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Dff727d01-ec6c-453a-9f20-48f8c1d51b2d%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.theflix.com.br%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D0%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.24
set-cookie: reverse=PxOMWieigSnIQWK4hS9k8kB3OUK1umNRq42CbStU-Lw; expires=Fri, 18-Nov-2022 16:27:59 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2

arsnivyr.com/1?z=5062129

139.45.197.242

200 OK

0 B

URL HTTP/2
arsnivyr.com/1?z=5062129
IP
139.45.197.242:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /1?z=5062129 HTTP/1.1
Host: arsnivyr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:58 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 674f8f8c1c529dc342919cdf178e2a52
access-control-expose-headers: X-Sc
x-sc: soP812BFBYVI0wgF_cW953lPR6-XsNk7yI5mI9T-0La3dOccy61miMp0IshutkKu-4y6M70f0OcjJVbwnqnv3IsDcTU=
set-cookie: scm=1; expires=Sat, 18 Nov 2023 15:27:58 GMT; secure; SameSite=None
OAID=260fec046532482084b496d59c2e08ce; expires=Sat, 18 Nov 2023 15:27:58 GMT; secure; SameSite=None
oaidts=1668785278; expires=Sat, 18 Nov 2023 15:27:58 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

139.45.197.242

200 OK

0 B

URL HTTP/2
arsnivyr.com/9?z=5062129&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&oaid=8db97e748f8648abb69c34adb4294e38
IP
139.45.197.242:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /9?z=5062129&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.theflix.com.br%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&oaid=8db97e748f8648abb69c34adb4294e38 HTTP/1.1
Host: arsnivyr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 669
Origin: https://www.theflix.com.br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Cookie: scm=1; OAID=260fec046532482084b496d59c2e08ce; oaidts=1668785278
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 15:27:59 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://www.theflix.com.br
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: fcdf7b2d99ebb03434e468b45aa7df14
access-control-expose-headers: X-Sc
set-cookie: OAID=8db97e748f8648abb69c34adb4294e38; expires=Sat, 18 Nov 2023 15:27:59 GMT; secure; SameSite=None
oaidts=1668785278; expires=Sat, 18 Nov 2023 15:27:59 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

inklinkor.com/tag.min.js

104.21.91.63

200 OK

0 B

URL HTTP/2
inklinkor.com/tag.min.js
IP
104.21.91.63:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: inklinkor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theflix.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 18 Nov 2022 15:27:58 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: 6abbca71295bd0e225d2f3fa0cec5717
cache-control: max-age=86400
last-modified: Fri, 18 Nov 2022 12:18:11 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Sat, 19 Nov 2022 13:32:58 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 6900
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S1O%2F7SfC38SW8QPuKOM74B5TDQaQSxR5ZC7E4H9Dm1fFBZiKkuU9439jOZRILmVqUQaZNuRchVeBjeYtapjITHqldVnwCAfDyma5kgh%2F765EMDDXuAEZ%2B1fT4YyNSR2R"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c1bbb6fa20b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (28)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP