web.bflix.to/series/house-qk23/1-8
104.31.16.126301 Moved Permanently 0 B URL HTTP/1.1 web.bflix.to/series/house-qk23/1-8
IP 104.31.16.126:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /series/house-qk23/1-8 HTTP/1.1
Host: web.bflix.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 18 Nov 2022 21:03:18 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://web.bflix.to/series/house-qk23/1-8
X-Frame-Options: SAMEORIGIN
X-Dynamic-Cache: MISS
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=koUQkERoj0fQVgkgFqLF3uzL9O%2BeNId1nYowv%2F9%2BwKme2XiOvQc9I0yCzvqidVZn0%2FMMrA8G0JPzX9jVVCxoRHh2v2oM5rjnRkHgUcXf2pCVo5eBckqn6w4AbpaZFx8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76c3a6eeaf4db521-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 30c30d01178fc74ac5266ee64c3ee85b
c0c2af8a864c00aa85a8775d55f85ab107150a3b
c15644f69fbfeb99074c7e9711dfc9452ee164fa78eb981b6bae4fb7e3585f2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C15644F69FBFEB99074C7E9711DFC9452EE164FA78EB981B6BAE4FB7E3585F2A"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16001
Expires: Sat, 19 Nov 2022 01:29:59 GMT
Date: Fri, 18 Nov 2022 21:03:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3a38b6dd8a4cc335c026aebf2ed348b6
8a386e0ccb0ca4dc502746c45b2ebc3aa3f83cf8
8b4040a645cec1841a00a22765eb3a74978559daf15c54bd4b41b6b48aab7f95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B4040A645CEC1841A00A22765EB3A74978559DAF15C54BD4B41B6B48AAB7F95"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3211
Expires: Fri, 18 Nov 2022 21:56:49 GMT
Date: Fri, 18 Nov 2022 21:03:18 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 67f53a639d57dd6237b5be86fe4f6c1b
287f09532dc331228d09c20b75f4160e91e9800a
41913a8af366685c42af59e9d8e02fccedbe68a3313d2d9fe353deb0c1019075
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6204
Cache-Control: max-age=141073
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:03:18 GMT
Etag: "63775eeb-1d7"
Expires: Sun, 20 Nov 2022 12:14:31 GMT
Last-Modified: Fri, 18 Nov 2022 10:31:07 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: BUjpILpYJFJ8DKJrfZ6zvjGUyWbg/9J0QSayd+e9aC91D/rsVAu/dsqvuT9sYTi32Ek+l9u0NX6jT2DfllrzBg==
x-amz-request-id: VAMV759X08N5A5QM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 18 Nov 2022 20:15:44 GMT
age: 2855
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 18 Nov 2022 20:44:50 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1109
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d643ba42c7420af81a0ac799eddd77c9
38249459ac784989f8167f5da5716fe9f700b13a
bffaddd5dd15c2841891ad3c1aa8530aa77a9679800b7c6c4b7f5f7035189dc3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4493
Cache-Control: max-age=121354
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:03:19 GMT
Etag: "63771894-117"
Expires: Sun, 20 Nov 2022 06:45:53 GMT
Last-Modified: Fri, 18 Nov 2022 05:31:00 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d643ba42c7420af81a0ac799eddd77c9
38249459ac784989f8167f5da5716fe9f700b13a
bffaddd5dd15c2841891ad3c1aa8530aa77a9679800b7c6c4b7f5f7035189dc3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4493
Cache-Control: max-age=121354
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:03:19 GMT
Etag: "63771894-117"
Expires: Sun, 20 Nov 2022 06:45:53 GMT
Last-Modified: Fri, 18 Nov 2022 05:31:00 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.5.0/js/bootstrap.min.js
104.17.24.14200 OK 13 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.5.0/js/bootstrap.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (59893)
Hash 4fab1eec96fa73ae05128112e3ef4cb6
3d774010eabc43e0fbc017e334d600932fbf0533
77484c7905037ef72fbe72f5c659f09a94928daf091971a646e45de3aacc45a3
GET /ajax/libs/twitter-bootstrap/4.5.0/js/bootstrap.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: application/javascript; charset=utf-8
content-length: 13080
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ebae359-eb0e"
last-modified: Tue, 12 May 2020 17:56:41 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 11849001
expires: Wed, 08 Nov 2023 21:03:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pv952G0hp1CsR1HuEUl4Rq14SgRNJsK72x1AZcQG6xj6LLLecX6yFeQSeFwc%2FhTEjKkMhUOT6WmII2bW2l58cbHfJ0004zQmu%2BeM0pFCkU1IRw2hmlPF2nfbGFjaBbSG3ticwna5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76c3a6f21f85b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery/1.12.4/jquery.min.js
104.17.24.14200 OK 30 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/1.12.4/jquery.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (32077)
Hash 5e4764d3c94d1a1db8c3d0890278b6d1
e5171f2f46e16d32df5f634ba21e47256fa9689c
5077e8927721a6a3ae5d78b456b7041230d627774a0a319beebacc88290b8328
GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: application/javascript; charset=utf-8
content-length: 30360
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-17b8b"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 619953
expires: Wed, 08 Nov 2023 21:03:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WF%2Bu%2Fec9MVoVeXRegL02a0qiWlBpGERAlQSkyVXwFSGhlW6k5euNgYuyvX7IuBbL7Fwky6tH%2Bwn%2F9630H63U6Ln6%2BkJwXzT%2BZGAv6IwNYpJxanPfWVKzF3rASDK0UGIniL63yG9g"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76c3a6f21f82b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.13.1/css/all.min.css
104.17.24.14200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.13.1/css/all.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (58749)
Hash 4a2beef828026de10ee4974679198e36
2f4cfc1a33538d944b61c5828bc09c567a5c2cf3
3d943651835bb396141bcfa98dcdf4f7fea86836b28f605889e57b165dbc477d
GET /ajax/libs/font-awesome/5.13.1/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: text/css; charset=utf-8
content-length: 10392
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eebda3d-e637"
last-modified: Thu, 18 Jun 2020 21:18:53 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1915282
expires: Wed, 08 Nov 2023 21:03:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N0yixFS%2BlkUd7AXC1v%2Bahd9%2FDUNOqH%2BSaZvzNX34Yl5qgiQXWoL8g03vzmhwCuelpCqH1UZW6VQ01zSX4DM5MT68Y7LgR8Dn5kDEin0wKbzi1q%2FJDPIrvNz1O1OanD44HvdKYyKe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76c3a6f21f7eb517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/lazysizes/5.1.1/lazysizes.min.js
104.17.24.14200 OK 3.0 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/lazysizes/5.1.1/lazysizes.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (7031)
Hash 379c5aa33e89ac9f77eb76b172a90412
cf0ec5f99553b412715a023f8f645eb8366cc254
a859d73a0cab8a91abb9abcb384c6e495dee74176769927affef9a1d53a295b0
GET /ajax/libs/lazysizes/5.1.1/lazysizes.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: application/javascript; charset=utf-8
content-length: 2950
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed0-1b91"
last-modified: Mon, 04 May 2020 16:12:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2605799
expires: Wed, 08 Nov 2023 21:03:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=urnpiLgjSMgm0SXMkuRO%2FXcios08AEqBEsS9R4%2FoBCBTD4ZNmJKYzkEmhG4I%2BUCVE8te1zGfw8gwKokCZXRJjuSZQovjw4%2Fwir6Z%2FtlJbjF%2BxY2a9cu1e30ryti1i%2FhBozaYeEAb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76c3a6f21f81b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.3/umd/popper.min.js
104.17.24.14200 OK 6.5 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.3/umd/popper.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (20164)
Hash ae393ccddfcfe335c9b29ee90aaf72cb
6a42536ed79b4ea9e3a71c69db3b5f7205dc7e81
75cbee82410be7ca2b5b5406219b0575725c415510df701ddf1e9e7fdec22aa8
GET /ajax/libs/popper.js/1.14.3/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: application/javascript; charset=utf-8
content-length: 6451
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4f71"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3194725
expires: Wed, 08 Nov 2023 21:03:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=slyXwyiqJI0ShqLk9tU9%2BAvNO1DNTqvWHL858nBvlS6naSVHQ%2BXUR7m3F7ODH0CLbaOlkwWCQZ4mHSr1PmTM6TH7TTOKl4oGhI87GASsnp2fZO2ubiXoZDrgBL0IcaVJC5GhMlLS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76c3a6f21f84b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/Swiper/5.4.5/js/swiper.min.js
104.17.24.14200 OK 31 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/Swiper/5.4.5/js/swiper.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (65284)
Hash 8d255819531e4eb28f976ecb6d44fe7f
e51e978dcd68d86f3c1b6f66cdef9e9d9cfebd43
085e2837521f81d399f348392214b014fcc7f66354fbcb0e5a16ff29a96a074d
GET /ajax/libs/Swiper/5.4.5/js/swiper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: application/javascript; charset=utf-8
content-length: 31065
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ee8d6b2-22681"
last-modified: Tue, 16 Jun 2020 14:26:58 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 703859
expires: Wed, 08 Nov 2023 21:03:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VMgUPM87nmYjJznp3JQdAE7kK7xP9uQuKYyQWFHAdR177rWuITXJUTvC6IOqfwR0tFKXcq7cbNYclc%2FCpDKEctDpYMV103xWzJJ%2BwfbeXhiklyP0uFlzis1BozD6pX4Vp2hfbrHF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76c3a6f21f90b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/Swiper/5.4.5/css/swiper.min.css
104.17.24.14200 OK 3.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/Swiper/5.4.5/css/swiper.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (13425)
Hash ff318a74709abdc0c85e4bdb08fda57e
f29fc2b12719f5e79999e279a6d45bc495564185
36618ab26e321bad4832e98ad4dfe5b43a2ce7a4de672b4e9b65a0a1ea6e275d
GET /ajax/libs/Swiper/5.4.5/css/swiper.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: text/css; charset=utf-8
content-length: 3573
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ee8d6b2-356d"
last-modified: Tue, 16 Jun 2020 14:26:58 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 5188866
expires: Wed, 08 Nov 2023 21:03:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F2%2F4%2BT1tJqTAh6h3chsrSpRkIfvvqTn5aA7fpCQW6FiAqZdApuYLdfAom0Xetjf%2FdRmRxJkEQWXEIJxhcLpYfWa4b3HT2I%2F8QPxpeEFm67gIpMCy4slp5SkBxwcnwmjNRtpWcHjR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76c3a6f21f91b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:03:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f8befa0fdc64402888127af494b82a46
4b9eb5fc57b48c8608f9c83b6b4b714dd7b4c727
79073ed03ae01380304090ba4afef2714ab3a38eba3c23b883b2b700c91f50a2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "79073ED03AE01380304090BA4AFEF2714AB3A38EBA3C23B883B2B700C91F50A2"
Last-Modified: Wed, 16 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14513
Expires: Sat, 19 Nov 2022 01:05:12 GMT
Date: Fri, 18 Nov 2022 21:03:19 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f8befa0fdc64402888127af494b82a46
4b9eb5fc57b48c8608f9c83b6b4b714dd7b4c727
79073ed03ae01380304090ba4afef2714ab3a38eba3c23b883b2b700c91f50a2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "79073ED03AE01380304090BA4AFEF2714AB3A38EBA3C23B883B2B700C91F50A2"
Last-Modified: Wed, 16 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14513
Expires: Sat, 19 Nov 2022 01:05:12 GMT
Date: Fri, 18 Nov 2022 21:03:19 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f8befa0fdc64402888127af494b82a46
4b9eb5fc57b48c8608f9c83b6b4b714dd7b4c727
79073ed03ae01380304090ba4afef2714ab3a38eba3c23b883b2b700c91f50a2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "79073ED03AE01380304090BA4AFEF2714AB3A38EBA3C23B883B2B700C91F50A2"
Last-Modified: Wed, 16 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14513
Expires: Sat, 19 Nov 2022 01:05:12 GMT
Date: Fri, 18 Nov 2022 21:03:19 GMT
Connection: keep-alive
static.bunnycdn.ru/i/cache/images/f/f4/f43aa158597ea5306a1518dfdfeecf41.jpg-w180
172.64.110.21200 OK 8.7 kB URL HTTP/2 static.bunnycdn.ru/i/cache/images/f/f4/f43aa158597ea5306a1518dfdfeecf41.jpg-w180
IP 172.64.110.21:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 180x261, components 3\012- data
Hash ec85d60a49239d67c68034897200cc01
73ca0477a081a6183fe681037399f46c2c4396a3
537f0a95822f65ceac85bef21c53de0252598db7aa021618499d3a43f79d126c
GET /i/cache/images/f/f4/f43aa158597ea5306a1518dfdfeecf41.jpg-w180 HTTP/1.1
Host: static.bunnycdn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: image/jpeg
content-length: 8719
last-modified: Thu, 16 Jul 2020 22:19:08 GMT
etag: W/"5f10d25c-8307"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2294431
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=67XEJtfuCPCfJuQfUL3YSWuUqYhlRGdwo0mmdK%2B0zP758GXPdkN9vs7Y8A%2FRIUEskrnRMsbJKBcGz3Im2VIQbJSA%2Bal2NXEBe9XBetvp9WBS2zRcSX%2B%2BfYTFVVRRrdWb3zKDiHs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a6f2dc808e38-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.bunnycdn.ru/i/cache/images/f/f0/f063537df1bf5e6fc15018cc550dd8ac.jpg-w180
172.64.110.21200 OK 15 kB URL HTTP/2 static.bunnycdn.ru/i/cache/images/f/f0/f063537df1bf5e6fc15018cc550dd8ac.jpg-w180
IP 172.64.110.21:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 180x261, components 3\012- data
Hash a514a6ee17637c35da54a9e3190991e1
17da66b2fab343bc0db596956e9375a37a374740
c9e70b5dbefd16f3c362b9c9c74d697e56cc195e73dfd405ce0d4993b623afee
GET /i/cache/images/f/f0/f063537df1bf5e6fc15018cc550dd8ac.jpg-w180 HTTP/1.1
Host: static.bunnycdn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: image/jpeg
content-length: 14560
last-modified: Thu, 16 Jul 2020 22:19:40 GMT
etag: W/"5f10d27c-e0c3"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2290602
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ykclea0iVzxLR7VobxseTpGIAXShWjTk1bmVtZ6o7A1t1vFMHpvrXqTqhLVnWlxadJzYjhdoe%2Bn%2Bbbf7EmrpjxUk36UqX4Hr%2FcHr%2BdW2HgF2OKhNrLf5hRgyyDhUMcbp3COGI7g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a6f2dc818e38-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.bunnycdn.ru/i/cache/images/7/79/794b630ee551dc462e883179576a7dbb.jpg-w180
172.64.110.21200 OK 7.6 kB URL HTTP/2 static.bunnycdn.ru/i/cache/images/7/79/794b630ee551dc462e883179576a7dbb.jpg-w180
IP 172.64.110.21:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 180x261, components 3\012- data
Hash e7e7d33fdf44c5bf8111c8b0eacd4894
545eaf881850e35e74acc54876aa96979c799653
ca49a37313a72330b6326325d4ce79520c8594e05f8f4bedadd88a6e0bf74bc8
GET /i/cache/images/7/79/794b630ee551dc462e883179576a7dbb.jpg-w180 HTTP/1.1
Host: static.bunnycdn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: image/jpeg
content-length: 7574
last-modified: Thu, 16 Jul 2020 21:33:59 GMT
etag: W/"5f10c7c7-413a"
access-control-allow-origin: *
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1568904
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PvUrFMDGoDTu0Jsq8Kz4Ct1NWeHAPGYajUceIxgWyrEAdVpkGuYr9nnafST%2BXb%2FneH%2F7bkb5VViMWhbrzD2%2Fk19eFCqkA1Pj%2FCj9rOs0FSZsoHUP0EQ%2BuLtV%2FeGKYfqB1%2BT%2FeP0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a6f2dc848e38-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.bunnycdn.ru/i/cache/images/b/b7/b75287d4d6df14aef95f18526580cb87.jpg-w180
172.64.110.21200 OK 10 kB URL HTTP/2 static.bunnycdn.ru/i/cache/images/b/b7/b75287d4d6df14aef95f18526580cb87.jpg-w180
IP 172.64.110.21:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 180x261, components 3\012- data
Hash fb5d60f08374996957d004acb5a24d91
35c3e19d568dbddee8afe6de7c86adb214bc042d
b7c5622dc411cfed47edf6b474f4f9177ed57e8e20e01a9da9a739d1a11132cf
GET /i/cache/images/b/b7/b75287d4d6df14aef95f18526580cb87.jpg-w180 HTTP/1.1
Host: static.bunnycdn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: image/jpeg
content-length: 10501
last-modified: Tue, 11 Oct 2022 02:14:27 GMT
etag: W/"6344d183-b7b9"
access-control-allow-origin: *
cache-control: max-age=31536000
cf-cache-status: HIT
age: 667774
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hQVk28ChafBflUanMdErwvyox6CitR9xnA1dFRGMhBbAjjiRGijYNGcBP3NE9%2B4BD%2FY8C6Y%2FHcsBlYGSOCQPds1nW0nqxRxfGquehoZEw%2FaSWBRJRoM6eQKHSVBFoRYIwBUL66Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a6f2dc828e38-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.bunnycdn.ru/i/cache/images/f/f0/f0a7983c9c372eaf2d1fd7f9070e77cf.jpg-w180
172.64.110.21200 OK 8.7 kB URL HTTP/2 static.bunnycdn.ru/i/cache/images/f/f0/f0a7983c9c372eaf2d1fd7f9070e77cf.jpg-w180
IP 172.64.110.21:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 180x261, components 3\012- data
Hash 6e2b2443223efdaf56a00581e767a0dd
a7c8e16fd05dc9db33628c0ee01e9d066db72902
9da9833f3ef384c3e5d5c12681f633ae39e5a80958bde1432223e7f9b811e8eb
GET /i/cache/images/f/f0/f0a7983c9c372eaf2d1fd7f9070e77cf.jpg-w180 HTTP/1.1
Host: static.bunnycdn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: image/jpeg
content-length: 8695
last-modified: Thu, 16 Jul 2020 22:19:38 GMT
etag: W/"5f10d27a-8642"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2334084
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yshXTZYC2bPka8CuZ30FhxxLzKhXGZOPUMDWUxmqcFgXxw7xGRY0GLyfkaQkA%2B8G4PzNFAKOG3%2FcMeWCY1TjfaReSKKY8B1KFC6eHjG59a4Fu%2BjT%2B3PCEyFqw6Jatn4T9i1n%2BsY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a6f2dc868e38-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s1.bunnycdn.ru/assets/sites/bflix/logo.png
172.64.110.21200 OK 4.7 kB URL HTTP/2 s1.bunnycdn.ru/assets/sites/bflix/logo.png
IP 172.64.110.21:0
File type PNG image data, 261 x 99, 8-bit colormap, non-interlaced\012- data
Hash ef80c69e4951f73e5c1147a564cdcd55
5deecd49e652174f7703ce3000ac6a0cc5f0cf73
4681c4dfe8ef7fb2d1c96a8bac80e966ef7394991891fb61613e2fecfd42738a
GET /assets/sites/bflix/logo.png HTTP/1.1
Host: s1.bunnycdn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: image/png
content-length: 4727
last-modified: Thu, 09 Dec 2021 17:26:02 GMT
etag: "61b23c2a-1277"
x-frame-options: SAMEORIGIN
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2341888
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uzIoBpsnN8Jsq%2FoJf6O66v%2Bp4sAC%2F9RDmzWnNRtbj8Ln3pcUJyZT22icCSe4exFvcNbUbtCq4FDWS7A4mCW7mJ64sLCUEuRSYiyqiT9ZlwVBJP1BOruQCRh8fptGJ%2BMnDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a6f2edfe8924-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.bunnycdn.ru/i/cache/images/e/e8/e88063932e5189161db25635af6f52d2.jpg-w180
172.64.110.21200 OK 13 kB URL HTTP/2 static.bunnycdn.ru/i/cache/images/e/e8/e88063932e5189161db25635af6f52d2.jpg-w180
IP 172.64.110.21:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 180x261, components 3\012- data
Hash 85a9a6ddca8ed591cfa3176617c4f6bd
c5b38d5241aeac79a58d2774145708e941a223a0
863aa76480c0e275882eca207eb39bddbea19fbc4ba243cb93dbcbeca7328a84
GET /i/cache/images/e/e8/e88063932e5189161db25635af6f52d2.jpg-w180 HTTP/1.1
Host: static.bunnycdn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: image/jpeg
content-length: 12609
last-modified: Thu, 16 Jul 2020 22:15:32 GMT
etag: W/"5f10d184-d332"
access-control-allow-origin: *
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1199507
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8fFRhRJYdrnibRze1t2xNYQHqiGNUXsAPvm1iMFjaGwN7iPDyD4V%2FZ%2BkHj%2F0ZTeOKOFRdfxfwriDkIFp3D%2BKSzNAvbrZwrAJgZoA5fn0CdCYBhSnHHri8RJ1pee7Pk6qxJWwrh8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a6f2dc858e38-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.bunnycdn.ru/i/cache/images/f/ff/ffa976901c3ed6f20fe3f3e210bd4d43.jpg-w180
172.64.110.21200 OK 9.9 kB URL HTTP/2 static.bunnycdn.ru/i/cache/images/f/ff/ffa976901c3ed6f20fe3f3e210bd4d43.jpg-w180
IP 172.64.110.21:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 180x261, components 3\012- data
Hash 56a563499227bc4bf6b53a8d51f502da
9ebf4c4733ee5647ce67b9f4a89ffa79923b8c25
46caca131a367b096a52ed1996986ec3a6f181789e406730506ab371d0c335dd
GET /i/cache/images/f/ff/ffa976901c3ed6f20fe3f3e210bd4d43.jpg-w180 HTTP/1.1
Host: static.bunnycdn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: image/jpeg
content-length: 9903
last-modified: Thu, 16 Jul 2020 22:18:08 GMT
etag: W/"5f10d220-a801"
access-control-allow-origin: *
cache-control: max-age=31536000
cf-cache-status: HIT
age: 561222
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lOdMK%2FkuSWAds62Ch%2FbuVBzh%2FHdofrF7PryY%2FQ7ngDABeO1JWGX8wV00wzAo8%2F5KmvY1SZ8PqwXKhjt%2F40c5wr8jsdcoI8XtwNKeD5FoSZkV5%2FKomNCtf%2FThqUur7GHDf5smq9s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a6f2dc888e38-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s1.bunnycdn.ru/assets/sites/bflix/logofooter.png
172.64.110.21200 OK 4.8 kB URL HTTP/2 s1.bunnycdn.ru/assets/sites/bflix/logofooter.png
IP 172.64.110.21:0
File type PNG image data, 261 x 99, 8-bit colormap, non-interlaced\012- data
Hash 0ff784915b4daf8b1101240fdd1c1a67
82938315217fca8560abc3c87125ad91ec6c712d
ef0f3b017722b9f5a4445fc0858bdd3d049ca515be9171a540a4d13f31ec2121
GET /assets/sites/bflix/logofooter.png HTTP/1.1
Host: s1.bunnycdn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: image/png
content-length: 4794
last-modified: Thu, 09 Dec 2021 17:26:02 GMT
etag: "61b23c2a-12ba"
x-frame-options: SAMEORIGIN
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2342266
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T9y3L0NDsle1%2FIXmuhQnB5dbUrJW4eEuMaFW%2F09b7oDH2FukPUEd8AwpJuRwaIC7ZeHp4Xsh79GSMQfm8oGcRkTPNNc4RXmQ6Z1KAAPy%2BdySwxJAxadtjuZQX7E4kf7XEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a6f2fe008924-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.bunnycdn.ru/i/cache/images/e/e3/e3e6b11d9266fb4dd1a54fdb5249dfab.jpg-w180
172.64.110.21200 OK 8.4 kB URL HTTP/2 static.bunnycdn.ru/i/cache/images/e/e3/e3e6b11d9266fb4dd1a54fdb5249dfab.jpg-w180
IP 172.64.110.21:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 180x261, components 3\012- data
Hash 775b77738764d29e030a444ca27f8ebe
d4bd9dd9ac0378aacb0a352b3b781751d0255ba5
243776ba11409bd73fc9cb5ccdcd63ec2803b4f045bf26276b26beedf4f69dad
GET /i/cache/images/e/e3/e3e6b11d9266fb4dd1a54fdb5249dfab.jpg-w180 HTTP/1.1
Host: static.bunnycdn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: image/jpeg
content-length: 8399
last-modified: Mon, 26 Oct 2020 10:43:00 GMT
etag: W/"5f96a834-6eb2"
access-control-allow-origin: *
cache-control: max-age=31536000
cf-cache-status: HIT
age: 887150
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UXobXNaxVXSH1SWHg6YJLqwKiHdbV7mhu%2BUXGp1ebqdZpONNk3%2FKle5%2B4im%2FAL9ElDbD%2F6dfrKzf%2BKGxEq6K6qxo3sDLs4L5GjeHLP3RKgGlAxuuIU%2FXrZhH0XG9ZFSgavug1vw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a6f2dc838e38-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.bunnycdn.ru/i/cache/images/2/26/265245e6c39cebdf3bb8cab2e8092d82.jpg-w180
172.64.110.21200 OK 11 kB URL HTTP/2 static.bunnycdn.ru/i/cache/images/2/26/265245e6c39cebdf3bb8cab2e8092d82.jpg-w180
IP 172.64.110.21:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 180x261, components 3\012- data
Hash 8f5c479bdf8877c60f499c88c123fa17
db8ee3635e11cd0ac03d4db58c8d6e91c4c4b85f
2be9b2173add1640671889e10ca5acfd9128ac30fa46fec8efeb059ca3c36018
GET /i/cache/images/2/26/265245e6c39cebdf3bb8cab2e8092d82.jpg-w180 HTTP/1.1
Host: static.bunnycdn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: image/jpeg
content-length: 11039
last-modified: Thu, 16 Jul 2020 21:40:59 GMT
etag: W/"5f10c96b-7225"
access-control-allow-origin: *
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1328993
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eHYMlSzL2pU4UXE1UTcM3d9H8%2FxbT0t%2Bv3I3pAzdjScujB9LOx4udVfqNAMrcorKnoAnSZcRQBZbq3s5JqAtlAa%2BkhV92HzQkGV0bRpcAokl3xTfDQEFjus9bZeWVLMIdXQaacg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a6f2eca78e38-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash feaeba711c7421b074e726f89ff34e0b
c590c0b76a7a78ab51a4dabcd8f20a1b172b02fb
ebe6e312ea7116713547fbd756805843b1c242ad22269158a79305f1819fa990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:03:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.bunnycdn.ru/i/cache/images/d/d3/d34716b34dd79aebbdc91b2ceb0f7f9b.jpg-w180
172.64.110.21200 OK 13 kB URL HTTP/2 static.bunnycdn.ru/i/cache/images/d/d3/d34716b34dd79aebbdc91b2ceb0f7f9b.jpg-w180
IP 172.64.110.21:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 180x261, components 3\012- data
Hash 4cc4889352713d25d663d6c6d1ec52df
44a62599726faf028c0ed2bc3edc45d7621a0ffc
a64c48911c8f8fe08ae8d55d982b70421e0b59cf147d64bff5eff7501b293a07
GET /i/cache/images/d/d3/d34716b34dd79aebbdc91b2ceb0f7f9b.jpg-w180 HTTP/1.1
Host: static.bunnycdn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: image/jpeg
content-length: 13180
last-modified: Thu, 16 Jul 2020 21:37:31 GMT
etag: W/"5f10c89b-9018"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2291437
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KCaGeXbWFn4iTuDDEvgYQpVCsNjhwDZvFX9uq2tYPCqri0kQIWJKfq314G2LrqoH%2Fst7zSzlTH6EYm3HhV76STN6myozbsJj4zT0dPpz9Gt7XdxUrE4%2BaWSl0Vf9M7sgG%2Fjuqmc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a6f2eca98e38-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 18 Nov 2022 20:44:49 GMT
cache-control: public,max-age=3600
age: 1110
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f8befa0fdc64402888127af494b82a46
4b9eb5fc57b48c8608f9c83b6b4b714dd7b4c727
79073ed03ae01380304090ba4afef2714ab3a38eba3c23b883b2b700c91f50a2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "79073ED03AE01380304090BA4AFEF2714AB3A38EBA3C23B883B2B700C91F50A2"
Last-Modified: Wed, 16 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14513
Expires: Sat, 19 Nov 2022 01:05:12 GMT
Date: Fri, 18 Nov 2022 21:03:19 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f8befa0fdc64402888127af494b82a46
4b9eb5fc57b48c8608f9c83b6b4b714dd7b4c727
79073ed03ae01380304090ba4afef2714ab3a38eba3c23b883b2b700c91f50a2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "79073ED03AE01380304090BA4AFEF2714AB3A38EBA3C23B883B2B700C91F50A2"
Last-Modified: Wed, 16 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14513
Expires: Sat, 19 Nov 2022 01:05:12 GMT
Date: Fri, 18 Nov 2022 21:03:19 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:03:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.bflix.to
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:34:08 GMT
expires: Thu, 16 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 178151
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.bflix.to
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:40:23 GMT
expires: Thu, 16 Nov 2023 19:40:23 GMT
cache-control: public, max-age=31536000
age: 177776
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15764, version 1.0\012- data
Hash 603b8950590bf833546eee7cbc79944a
ebbde06eb829868c5f689afe2d48377608be1e7b
0f303f31706d39866cced9dcc17b61fb8423674278d7f6051d66b3a79ffbca18
GET /s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.bflix.to
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:40:25 GMT
expires: Thu, 16 Nov 2023 19:40:25 GMT
cache-control: public, max-age=31536000
age: 177774
last-modified: Wed, 11 May 2022 19:24:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.bflix.to
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 18:53:49 GMT
expires: Thu, 16 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 180570
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.bflix.to
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 14:07:32 GMT
expires: Thu, 16 Nov 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 197747
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:03:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fe40cc6ea871d80382b6082111393fbe
281f75d0a35dc8ef908bb0500e57abd86bd5388e
6d15422cdf7a6d72d06497188f27af893682314e82ac8a189a0ee2d798cb62d7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6380
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:03:19 GMT
Last-Modified: Fri, 18 Nov 2022 19:16:59 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.69.181.45101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.69.181.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ytEPB5TwALg1UMzeeSn3tA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: oVu2KY3r/nylmCliHd9d1yCGTlY=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e4d9a620103b144a60fd763afd69efb5
38b4782ece06c2d5272adc5f9acea8222b7efec3
19a23e933a1768762a9bc49706ca0e59bc81ff5004d84088869b66889ac029c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "19A23E933A1768762A9BC49706CA0E59BC81FF5004D84088869B66889AC029C3"
Last-Modified: Wed, 16 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3814
Expires: Fri, 18 Nov 2022 22:06:54 GMT
Date: Fri, 18 Nov 2022 21:03:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac5d80752dd4778431de3ad171c0cb38
ecb1d816d858bee01deaea1f1d3c582771753b48
3d9ce9e8d9e804422beaba76de4e6f0341d41ea95bec7297f0417eff2cb4acd1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3D9CE9E8D9E804422BEABA76DE4E6F0341D41EA95BEC7297F0417EFF2CB4ACD1"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5392
Expires: Fri, 18 Nov 2022 22:33:12 GMT
Date: Fri, 18 Nov 2022 21:03:20 GMT
Connection: keep-alive
ugroocuw.net/tag.min.js
139.45.197.239200 OK 23 kB IP 139.45.197.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7584eaab9dbc93a394095eab33d35815
63ae612824aa6193c0f8f41d1f04f5338231018e
a972db07d70ed4ff7690cd4019b428f085107be4737d0204728647c298014d96
Analyzer Verdict Alert fortinet Malware
GET /tag.min.js HTTP/1.1
Host: ugroocuw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 21:03:20 GMT
content-type: text/javascript; charset=utf-8
content-length: 23258
content-encoding: br
x-trace-id: 986789510225090f49fa0fd9d8cd14e4
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Fri, 18 Nov 2022 12:15:42 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.bflix.to
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:34:21 GMT
expires: Thu, 16 Nov 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 178139
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2a15cfaebee41f78d448817041a8f374
94dfac725f6e44486981cccfbda7cf04a8448058
3111401ff2696341e6f19ba5f5eccc5158d70eae50a5d8c5d4a2917569b98229
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3111401FF2696341E6F19BA5F5ECCC5158D70EAE50A5D8C5D4A2917569B98229"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2239
Expires: Fri, 18 Nov 2022 21:40:39 GMT
Date: Fri, 18 Nov 2022 21:03:20 GMT
Connection: keep-alive
likedstring.com/2c/56/c9/2c56c9dbda564dc68f75b3434e4d958e.js
173.233.137.44200 OK 13 kB URL HTTP/1.1 likedstring.com/2c/56/c9/2c56c9dbda564dc68f75b3434e4d958e.js
IP 173.233.137.44:0
File type ASCII text, with very long lines (37139), with no line terminators
Hash c1bfd2e746a99c7f1bf3e4a0a137095d
a48ee4620db2a600ec91103e9802403b23300aee
9ee3c8dc0f91369291126c2e0accc9f9269ce361648a82f7c770db710e510c58
GET /2c/56/c9/2c56c9dbda564dc68f75b3434e4d958e.js HTTP/1.1
Host: likedstring.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 18 Nov 2022 21:03:21 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c82576e707cd69c586d285caa60f7fae
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash feeedf735976d13a4cb0648a74ba1337
e08afef917f85ae74a98eb4a4c0c164b0dc6a5e5
3fc6baf04bc6b7b7ac11e80c1c8f3d3a8bc9d0c08628dd9816343d5e5aa23a6e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "3FC6BAF04BC6B7B7AC11E80C1C8F3D3A8BC9D0C08628DD9816343D5E5AA23A6E"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9358
Expires: Fri, 18 Nov 2022 23:39:19 GMT
Date: Fri, 18 Nov 2022 21:03:21 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash ba2d8195f11d2a233a537cd001648289
c0ca217e04e013abac31d69f076e926332eecacb
6960611aa5ada5f0139cc596d385f9de30c8ecaca752bf354ddac936546cab26
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 21:03:21 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 15 Nov 2022 17:29:18 GMT
Expires: Tue, 22 Nov 2022 17:29:17 GMT
Etag: "c0ca217e04e013abac31d69f076e926332eecacb"
Cache-Control: max-age=332155,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c3a6fd5d790b39-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18219
Expires: Sat, 19 Nov 2022 02:07:00 GMT
Date: Fri, 18 Nov 2022 21:03:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18219
Expires: Sat, 19 Nov 2022 02:07:00 GMT
Date: Fri, 18 Nov 2022 21:03:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18219
Expires: Sat, 19 Nov 2022 02:07:00 GMT
Date: Fri, 18 Nov 2022 21:03:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18219
Expires: Sat, 19 Nov 2022 02:07:00 GMT
Date: Fri, 18 Nov 2022 21:03:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 17af07b019100dc8adb529ce85f827bd
602adaa722e9a3ee89600ebe40cea7033c435483
aec801578f867078e0a82d90e78290f0a3ef4f1f4936eb763801b869e0fae747
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AEC801578F867078E0A82D90E78290F0A3EF4F1F4936EB763801B869E0FAE747"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18219
Expires: Sat, 19 Nov 2022 02:07:00 GMT
Date: Fri, 18 Nov 2022 21:03:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb1ea6fe-f968-42eb-9bb6-5965ae4e6ce6.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb1ea6fe-f968-42eb-9bb6-5965ae4e6ce6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5fb6d72b647aabea33ab4017f4a0847
ed93ac946111340a254b92f8ce27e8be93ae87e8
0782ed4ffaea8f9487461d5a9b0c241d30dfe057676753b24e180d0a94efad99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb1ea6fe-f968-42eb-9bb6-5965ae4e6ce6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7045
x-amzn-requestid: e8dace8b-0cc8-4ea0-b47a-e42a66576f72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-K3EuCIAMFsmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa45-71c191e462be52006858817b;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: S0Sq8vuP-MbcuYVx_WFXTkmrY966mBTY1Qpowx_E_to1tDk1b8R-Bw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:52:11 GMT
age: 83470
etag: "ed93ac946111340a254b92f8ce27e8be93ae87e8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd26f9e-1666-47e7-91b0-4b371ede5e61.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd26f9e-1666-47e7-91b0-4b371ede5e61.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30ad43f65949e7e22e73292e3d684f3d
9404b0071027ac7ec0055a9edfbd607e3a8ae501
b97961cbd2245f9927c1c0406451449d28cca24c98c534cace78321ac62eeeb2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd26f9e-1666-47e7-91b0-4b371ede5e61.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5955
x-amzn-requestid: fe915fbe-b1dc-4fbd-8a10-1cb46e08f56c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: btqPjHloIAMFidw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63755730-16deb73f48305b0139b1d9bd;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 21:33:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qtpQ9y_8ohoqKpvTx-mWM439VyjZnpmTKKCEAEnknL3CVN8ZkiJaYQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:39:46 GMT
age: 84215
etag: "9404b0071027ac7ec0055a9edfbd607e3a8ae501"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d0b6106f00f9fd8b89c2d484a559a1a
399ac393209dcdac7d2188d7aa8d95f04570ef7c
5d8151c9eb558f4a2b8bd2952c6845606ddb0c27e36f6e49aca7e60908cd9fe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3759
x-amzn-requestid: 8c91ac59-89dc-4218-b69f-0cebb29f301b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-wJHgxoAMF-hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab33-4dac305614a92bc52c038222;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mb2-PTjNmt06Wd5jOjQ5WoLY-0NgI80CKPXtwgzBt4n5km8Pu_WN0Q==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:50:49 GMT
age: 83552
etag: "399ac393209dcdac7d2188d7aa8d95f04570ef7c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
IP 34.120.237.76:0
Hash 1f60f4817bfd70c74602559845a0c6ba
7e4dbe4f8b49d93de02d2fbd617ec434ef624e96
7013782874da6946e887b577a7a9213ce36c731e4a0056eed5660e922cc79f16
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: 4778d1bd-28c3-4665-89da-046e356087f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyD1HE-oAMF0QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-53c7330c5fd36d3c4d9e6aed;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CHi9V7-WaWmG6Y0249CZJnhe_RjvleaGFVXoOnJ62cjrcXoLLKwzgw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 18:45:50 GMT
age: 8251
etag: "dd4fd6c803a9b333bace9a541c6bd183d0c56bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e567bc1-d4b1-4dd2-b17e-3595ad1753e5.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e567bc1-d4b1-4dd2-b17e-3595ad1753e5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 35da1192dcadc6e329a9e60c16904301
90a146aef85765630a5e09e46a0a8682e204bec1
816d1387a3a91a82f0bdaa2b703b45aa30be206d30d4dd1e8ac5deca13de57ad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e567bc1-d4b1-4dd2-b17e-3595ad1753e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10281
x-amzn-requestid: 11dffc4e-71d7-4195-8890-62c8a2092728
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-77EWaIAMF3WA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab7f-3c0dc7e43023af827ac26958;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:45:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 48wUhxwMgsEj2J01EWOTCfWLNZPwFrjjXd6V_uSp8yae4YtGTTVlxA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:14:12 GMT
age: 82149
etag: "90a146aef85765630a5e09e46a0a8682e204bec1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b43b0-5ba1-4c6c-9a53-bfae9befdd7d.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b43b0-5ba1-4c6c-9a53-bfae9befdd7d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a9d32fa3866dd741de610a61a93ad893
4cb2141b1ef1e5bf19a3b355995dcd8fa36f695e
4492338de536cfae6fb42fd37170c60f4fbc281a2a924efe6d2b5af352cd102c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b43b0-5ba1-4c6c-9a53-bfae9befdd7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6344
x-amzn-requestid: cac35b04-be3b-4ae1-bb5e-8cedcd7a7db4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: btqOVFCXIAMFcOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63755728-45c28fa333b748520be29b57;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 21:33:28 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: mhgNSp1_LsVmn00ULm116flMHpnfE6G6JABrJwXH5i4q-isv_W1-Ig==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:34:18 GMT
age: 84543
etag: "4cb2141b1ef1e5bf19a3b355995dcd8fa36f695e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 71e2d3da137dfcb058cc20cad1cca41a
71609efda3637da1ceca6267b63113f12ff029e8
6f453e45b937e1eaf9a1ae95930891a9ebfbfcf2238a9f2d657a04a2d0378046
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3347
Cache-Control: max-age=130284
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:03:21 GMT
Etag: "63773ff2-117"
Expires: Sun, 20 Nov 2022 09:14:45 GMT
Last-Modified: Fri, 18 Nov 2022 08:18:58 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 71e2d3da137dfcb058cc20cad1cca41a
71609efda3637da1ceca6267b63113f12ff029e8
6f453e45b937e1eaf9a1ae95930891a9ebfbfcf2238a9f2d657a04a2d0378046
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3347
Cache-Control: max-age=130284
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 21:03:21 GMT
Etag: "63773ff2-117"
Expires: Sun, 20 Nov 2022 09:14:45 GMT
Last-Modified: Fri, 18 Nov 2022 08:18:58 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash f0a7ae5fe0c925b0517f6494ff5a5d5c
ceda7ce395748306376df68d7d33a4b4ca775afc
fe329b0ac99808d05d1db86e9825270536e66e85b2860eed3b5f0087d99f3753
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 18 Nov 2022 21:03:21 GMT
Last-Modified: Fri, 18 Nov 2022 19:42:55 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QhAueo4vleurtAHQUhCR_Hj8r-M1DJlseyizvRmqJfQyYsdEfBjuoA==
Age: 4826
simplewebanalysis.com/stats
52.58.37.100200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.58.37.100:0
File type ASCII text, with no line terminators
Hash 99bc6c4da43bc681aefb2f425cdb2129
bb06e300b26113b5f3dd088a6638bde7ba7b0c25
3e7db13954f66fd88732b54c98ee1a2fea5ba9b3cd9225f2b6eea666dc4cadca
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.bflix.to
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:21 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://web.bflix.to
access-control-allow-credentials: true
set-cookie: uid_id2=1468659e-97f2-4424-b015-380c4ae04fea:2:1; expires=Mon, 15 Nov 2032 21:03:21 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 419e11329b40f6d11706372a1618331f
f6846a20afbbe22c8ad5be20cc711014bc314a27
91f7516f31fec4ded19345ceda5e923324666f5d20c75c47bc36d95a31c43cf3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 21:03:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 17 Nov 2022 18:25:19 GMT
Expires: Thu, 24 Nov 2022 18:25:18 GMT
Etag: "f6846a20afbbe22c8ad5be20cc711014bc314a27"
Cache-Control: max-age=508316,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c3a6feeea40b39-OSL
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash feeedf735976d13a4cb0648a74ba1337
e08afef917f85ae74a98eb4a4c0c164b0dc6a5e5
3fc6baf04bc6b7b7ac11e80c1c8f3d3a8bc9d0c08628dd9816343d5e5aa23a6e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "3FC6BAF04BC6B7B7AC11E80C1C8F3D3A8BC9D0C08628DD9816343D5E5AA23A6E"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9358
Expires: Fri, 18 Nov 2022 23:39:19 GMT
Date: Fri, 18 Nov 2022 21:03:21 GMT
Connection: keep-alive
my.rtmark.net/gid.js?userId=109d131608fa4fafa5319f4975084082
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=109d131608fa4fafa5319f4975084082
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 98e1384ff4cb1ef05986fbefd4b864cd
57a57092f2e07fab2b25332ed8edf698be661baf
a5bf01416afbae7bf0bf2159d24a18ee57c2ef0fea2a627120fba9ebdee15654
GET /gid.js?userId=109d131608fa4fafa5319f4975084082 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.bflix.to
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 21:03:21 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://web.bflix.to
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=109d131608fa4fafa5319f4975084082; expires=Sat, 18 Nov 2023 21:03:21 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 539342595b9286f3bbbe36590aba604c
ecb56df48b861b441763404e9a4e7de5d1a12c15
49fe520866e0b136d16dfa619a8a41a5faf4bcbca533dde8510966dfa0cf2e96
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 21:03:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 18 Nov 2022 13:33:19 GMT
Expires: Fri, 25 Nov 2022 13:33:18 GMT
Etag: "ecb56df48b861b441763404e9a4e7de5d1a12c15"
Cache-Control: max-age=577196,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c3a6ff3f0f0b39-OSL
datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
139.45.195.253200 OK 12 B URL HTTP/1.1 datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP 139.45.195.253:0
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert quad9 Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 905
Origin: https://web.bflix.to
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Fri, 18 Nov 2022 21:03:21 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://web.bflix.to
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123200 OK 116 kB URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (54602)
Size 116 kB (116388 bytes)
Hash fef08c9f8bacc1b0eed3950dbe7d0f87
e9a3b98cad1e2d58eab1e2cbaa51cb979dc45075
55b3d5b3acd46444cc1844a676c75ba25209ce371065791cd4fbdc9da60aea34
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: "5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-type: application/javascript
content-encoding: gzip
content-length: 116388
date: Fri, 18 Nov 2022 21:03:21 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
vidstream.pro/e/QVY9LGK26P2M?sub.info=https%3A%2F%2Fweb.bflix.to%2Fajax%2Fepisode%2Fsubtitles%2F934dc28b9b4fbfb26ac0782731ac7579%3F
172.64.137.29200 OK 26 kB URL HTTP/2 vidstream.pro/e/QVY9LGK26P2M?sub.info=https%3A%2F%2Fweb.bflix.to%2Fajax%2Fepisode%2Fsubtitles%2F934dc28b9b4fbfb26ac0782731ac7579%3F
IP 172.64.137.29:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash a9e097fdb2a0dc79237cd9339a869f1e
6bcc8a88ddb999159f01ddff4824b31582d3dfe0
ef04255cace4ed48f320e5269ad8a26fd393cc33568e7778284ca84421063294
GET /e/QVY9LGK26P2M?sub.info=https%3A%2F%2Fweb.bflix.to%2Fajax%2Fepisode%2Fsubtitles%2F934dc28b9b4fbfb26ac0782731ac7579%3F HTTP/1.1
Host: vidstream.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:21 GMT
content-type: text/html; charset=UTF-8
x-cache: MISS
x-dynamic-cache: BYPASS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gyemOFzb9%2BENlhu7L8uH5yxD85XfuOi9DQdZ1t3bfEcSyhCy6XyOUKf3upBess3oG3y%2Fd%2FszegsfSpXJW2qRzzhhqFhuS0pae8LEctMJgYOe9fVIKKfdqKyUI9Ih4ld8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76c3a6feba547719-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
216.58.211.10200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
IP 216.58.211.10:0
File type ASCII text, with very long lines (32038)
Hash 103708790db3586027df27ded660f8ef
d3f58fbe6e02cb4b8b34c6fd510e011cb325bc70
fdba876856bb6c2783df94cacb0f17b53fe33f1907135539272c0127b4270ffe
GET /ajax/libs/jquery/1.11.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidstream.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33507
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 10:22:54 GMT
expires: Fri, 17 Nov 2023 10:22:54 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 124827
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
52.58.37.100200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.58.37.100:0
File type ASCII text, with no line terminators
Hash 99bc6c4da43bc681aefb2f425cdb2129
bb06e300b26113b5f3dd088a6638bde7ba7b0c25
3e7db13954f66fd88732b54c98ee1a2fea5ba9b3cd9225f2b6eea666dc4cadca
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vidstream.pro
Connection: keep-alive
Referer: https://vidstream.pro/
Cookie: uid_id2=1468659e-97f2-4424-b015-380c4ae04fea:2:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:21 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://vidstream.pro
access-control-allow-credentials: true
X-Firefox-Spdy: h2
z.moatads.com/addthismoatframe568911941483/moatframe.js
23.38.201.146200 OK 948 B URL HTTP/2 z.moatads.com/addthismoatframe568911941483/moatframe.js
IP 23.38.201.146:0
File type ASCII text, with very long lines (523)
Hash f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=23993
date: Fri, 18 Nov 2022 21:03:21 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 57248f161fe42f759d93aa3ff8abf242
dbe9bd4568eb2cfe2dc0318f1562698e812d86d8
85f6dc758b28b87ae3202e90cb0d26cf3c012ad33721b0aa9167cb867ce1f2a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "85F6DC758B28B87AE3202E90CB0D26CF3C012AD33721B0AA9167CB867CE1F2A1"
Last-Modified: Wed, 16 Nov 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17943
Expires: Sat, 19 Nov 2022 02:02:25 GMT
Date: Fri, 18 Nov 2022 21:03:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 19546dca2c27313dd3fce406fd24e816
5349d9758a7e788ffa7ac6a5a362438fb2a19447
68b7b6fc0ae27817796f68dad646c76b115e7bfe109e2cf68b02610a7d23b4be
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "68B7B6FC0AE27817796F68DAD646C76B115E7BFE109E2CF68B02610A7D23B4BE"
Last-Modified: Fri, 18 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2042
Expires: Fri, 18 Nov 2022 21:37:24 GMT
Date: Fri, 18 Nov 2022 21:03:22 GMT
Connection: keep-alive
relativelyweptcurls.com/sbar.json?key=2c56c9dbda564dc68f75b3434e4d958e&uuid=1468659e-97f2-4424-b015-380c4ae04fea%3A2%3A1
173.233.137.44200 OK 4.0 kB URL HTTP/1.1 relativelyweptcurls.com/sbar.json?key=2c56c9dbda564dc68f75b3434e4d958e&uuid=1468659e-97f2-4424-b015-380c4ae04fea%3A2%3A1
IP 173.233.137.44:0
File type JSON data\012- , ASCII text, with very long lines (5816), with no line terminators
Hash 45b0c8838cdc0919d74fee093bcce087
3aa3c0d2b127534efe057ee7730047975e38c70f
83d380ae7fd51849756ddddca89c48592b2c43262d501998136c8ecc310c2e53
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=2c56c9dbda564dc68f75b3434e4d958e&uuid=1468659e-97f2-4424-b015-380c4ae04fea%3A2%3A1 HTTP/1.1
Host: relativelyweptcurls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.bflix.to
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 18 Nov 2022 21:03:22 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://web.bflix.to
Access-Control-Allow-Origin: https://web.bflix.to
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16996137; expires=Sat, 19 Nov 2022 21:03:22 GMT; secure; SameSite=None
uid_id2=1468659e-97f2-4424-b015-380c4ae04fea:2:1; expires=Fri, 25 Nov 2022 21:03:22 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 19 Nov 2022 21:03:22 GMT; secure; SameSite=None
uncs=1; expires=Sat, 19 Nov 2022 21:03:22 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sat, 19 Nov 2022 21:03:22 GMT; secure; SameSite=None
uncs29=1; expires=Sat, 19 Nov 2022 21:03:22 GMT; secure; SameSite=None
slec2c56c9dbda564dc68f75b3434e4d958e=[3789937]; expires=Fri, 18 Nov 2022 21:03:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e9a11cca9f93c09c5b80b7f274ce1014
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ifknittedhurtful.com/pixel/purst?dl=0&th=0&sc=0&rs=3&rd=43&fd=56&bv=22.10.v.9&tmpl=70
192.243.59.12200 OK 0 B URL HTTP/1.1 ifknittedhurtful.com/pixel/purst?dl=0&th=0&sc=0&rs=3&rd=43&fd=56&bv=22.10.v.9&tmpl=70
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=3&rd=43&fd=56&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: ifknittedhurtful.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidstream.pro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Fri, 18 Nov 2022 21:03:22 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
23.38.200.123200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Fri, 18 Nov 2022 21:03:23 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
relativelyweptcurls.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzYscRRytTqIHPSleVJQ5eDDgznbPdM9MG0GMMRKMu0sS2av11bPlVne1Vd3Ts3taDIacZLx57H2zm%2FUjiPkDJDLrRRaEjIIswf0bhEDOMrsjg79D%2FT5eFbz3fnVntzwhPkp6vPax2VZa0%2BWo6TfeXFeZMJVrrNxqBH7Tv9RYV1knvNQYzg47eDvwo6Z%2FsfGh5JtmueUHvh%2F4QeOqsjIxw%2BVTFCq%2FHwfN2G%2BGrWYQhRja%2F%2Feu9OCoBzE4IS9CiekzG789gOITZOlPV6TbLEz%2B1gdpqWlhLAbi4JNsMzNVhnRRJtZDkh3Mb8O4KSHfnIPJDuYKYAZ7MwVgakq8vwKw7GBOE2ywf8aUacgMTDyPajCB1BMoOgE3t6HEIwJwgZVVZOm9FWMrunWG0hk6JReePoGqpuTC3y8hS3%2B8rNWwcdPoslAmcxgmNdRwAtWfIC8PUWx7UNUhePEFlPidLD%2B9jizdW3XaQInjN4Kw0%2BtEsVyKu0lrKQxb4RLzg2ip3fN5SKUfJpKeWqTUBCqZQMsRqDuH0nkolYcy8VDmHlJx3KBRnPh%2BN2FJu90LOeftNudRryMi0Q57iY%2BSzzSMUOQjcD0CtzvI7Q421Qi2%2FAVuo4YTHlxBMBA1KklQOYKKElSKoCoIqkG9L7Rrufqe0K5kwTy35rldj03R36X7pujLjOzmJ%2BSFmXHe%2BfWL2JTHjRaPOjwWTNCoEwre6SXdiLXDdihDEUc9CadqKHcO1HnYVlPy6juPkaspefYrAUYP4fQhuPJAy9dAq3G35YNujMOej%2B3sW5ZoNWwWBsLUyIsLKLa8XX1CXj5dXvzn55D8iMwD3NbIbY3P1K8EfX13fMNUZO%2BGqRx5sJoXKlXbdLbYmwUtpPf9R3KrMlZcu%2BJG373HZ8CsvH9LuuI6zYTK%2Bo78cFkJIe1VY7kkP19z65KtlW7jcmmzMr%2B%2B9v7Va2lupXPKZBNQ9ejTh%2BBqSp5L75x%2B2dcffwllJ7BljbRcMFXmEDzfgcsXM2cIrF70LPdQlfXYtthiqBWBloueshpOHj38579Hi3rX3UXfeqDFbWRpjYGtMdA1qB7BlefHRW6P3v2jfRpg2hszbb09pq3%2B%2Bsxap44bMkr8RPotyZKYJV3qizgJY0bjQHZZRAMUbsqrJ6%2F8CwAA%2F%2F8BAAD%2F%2F2KWpWKKBAAA
173.233.137.44200 OK 7 B URL HTTP/1.1 relativelyweptcurls.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzYscRRytTqIHPSleVJQ5eDDgznbPdM9MG0GMMRKMu0sS2av11bPlVne1Vd3Ts3taDIacZLx57H2zm%2FUjiPkDJDLrRRaEjIIswf0bhEDOMrsjg79D%2FT5eFbz3fnVntzwhPkp6vPax2VZa0%2BWo6TfeXFeZMJVrrNxqBH7Tv9RYV1knvNQYzg47eDvwo6Z%2FsfGh5JtmueUHvh%2F4QeOqsjIxw%2BVTFCq%2FHwfN2G%2BGrWYQhRja%2F%2Feu9OCoBzE4IS9CiekzG789gOITZOlPV6TbLEz%2B1gdpqWlhLAbi4JNsMzNVhnRRJtZDkh3Mb8O4KSHfnIPJDuYKYAZ7MwVgakq8vwKw7GBOE2ywf8aUacgMTDyPajCB1BMoOgE3t6HEIwJwgZVVZOm9FWMrunWG0hk6JReePoGqpuTC3y8hS3%2B8rNWwcdPoslAmcxgmNdRwAtWfIC8PUWx7UNUhePEFlPidLD%2B9jizdW3XaQInjN4Kw0%2BtEsVyKu0lrKQxb4RLzg2ip3fN5SKUfJpKeWqTUBCqZQMsRqDuH0nkolYcy8VDmHlJx3KBRnPh%2BN2FJu90LOeftNudRryMi0Q57iY%2BSzzSMUOQjcD0CtzvI7Q421Qi2%2FAVuo4YTHlxBMBA1KklQOYKKElSKoCoIqkG9L7Rrufqe0K5kwTy35rldj03R36X7pujLjOzmJ%2BSFmXHe%2BfWL2JTHjRaPOjwWTNCoEwre6SXdiLXDdihDEUc9CadqKHcO1HnYVlPy6juPkaspefYrAUYP4fQhuPJAy9dAq3G35YNujMOej%2B3sW5ZoNWwWBsLUyIsLKLa8XX1CXj5dXvzn55D8iMwD3NbIbY3P1K8EfX13fMNUZO%2BGqRx5sJoXKlXbdLbYmwUtpPf9R3KrMlZcu%2BJG373HZ8CsvH9LuuI6zYTK%2Bo78cFkJIe1VY7kkP19z65KtlW7jcmmzMr%2B%2B9v7Va2lupXPKZBNQ9ejTh%2BBqSp5L75x%2B2dcffwllJ7BljbRcMFXmEDzfgcsXM2cIrF70LPdQlfXYtthiqBWBloueshpOHj38579Hi3rX3UXfeqDFbWRpjYGtMdA1qB7BlefHRW6P3v2jfRpg2hszbb09pq3%2B%2Bsxap44bMkr8RPotyZKYJV3qizgJY0bjQHZZRAMUbsqrJ6%2F8CwAA%2F%2F8BAAD%2F%2F2KWpWKKBAAA
IP 173.233.137.44:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSzYscRRytTqIHPSleVJQ5eDDgznbPdM9MG0GMMRKMu0sS2av11bPlVne1Vd3Ts3taDIacZLx57H2zm%2FUjiPkDJDLrRRaEjIIswf0bhEDOMrsjg79D%2FT5eFbz3fnVntzwhPkp6vPax2VZa0%2BWo6TfeXFeZMJVrrNxqBH7Tv9RYV1knvNQYzg47eDvwo6Z%2FsfGh5JtmueUHvh%2F4QeOqsjIxw%2BVTFCq%2FHwfN2G%2BGrWYQhRja%2F%2Feu9OCoBzE4IS9CiekzG789gOITZOlPV6TbLEz%2B1gdpqWlhLAbi4JNsMzNVhnRRJtZDkh3Mb8O4KSHfnIPJDuYKYAZ7MwVgakq8vwKw7GBOE2ywf8aUacgMTDyPajCB1BMoOgE3t6HEIwJwgZVVZOm9FWMrunWG0hk6JReePoGqpuTC3y8hS3%2B8rNWwcdPoslAmcxgmNdRwAtWfIC8PUWx7UNUhePEFlPidLD%2B9jizdW3XaQInjN4Kw0%2BtEsVyKu0lrKQxb4RLzg2ip3fN5SKUfJpKeWqTUBCqZQMsRqDuH0nkolYcy8VDmHlJx3KBRnPh%2BN2FJu90LOeftNudRryMi0Q57iY%2BSzzSMUOQjcD0CtzvI7Q421Qi2%2FAVuo4YTHlxBMBA1KklQOYKKElSKoCoIqkG9L7Rrufqe0K5kwTy35rldj03R36X7pujLjOzmJ%2BSFmXHe%2BfWL2JTHjRaPOjwWTNCoEwre6SXdiLXDdihDEUc9CadqKHcO1HnYVlPy6juPkaspefYrAUYP4fQhuPJAy9dAq3G35YNujMOej%2B3sW5ZoNWwWBsLUyIsLKLa8XX1CXj5dXvzn55D8iMwD3NbIbY3P1K8EfX13fMNUZO%2BGqRx5sJoXKlXbdLbYmwUtpPf9R3KrMlZcu%2BJG373HZ8CsvH9LuuI6zYTK%2Bo78cFkJIe1VY7kkP19z65KtlW7jcmmzMr%2B%2B9v7Va2lupXPKZBNQ9ejTh%2BBqSp5L75x%2B2dcffwllJ7BljbRcMFXmEDzfgcsXM2cIrF70LPdQlfXYtthiqBWBloueshpOHj38579Hi3rX3UXfeqDFbWRpjYGtMdA1qB7BlefHRW6P3v2jfRpg2hszbb09pq3%2B%2Bsxap44bMkr8RPotyZKYJV3qizgJY0bjQHZZRAMUbsqrJ6%2F8CwAA%2F%2F8BAAD%2F%2F2KWpWKKBAAA HTTP/1.1
Host: relativelyweptcurls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Cookie: u_pl=16996137; uid_id2=1468659e-97f2-4424-b015-380c4ae04fea:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2c56c9dbda564dc68f75b3434e4d958e=[3789937]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 18 Nov 2022 21:03:23 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b20a33bc6b2c596770b09516c316755d
Strict-Transport-Security: max-age=0; includeSubdomains
m.addthis.com/live/red_lojson/300lo.json?si=6377f317de0b232c&bkl=0&bl=1&pdt=496&sid=6377f317de0b232c&pub=ra-5a4bbf5745d3e51e&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=web.bflix.to&fp=series%2Fhouse-qk23%2F1-8&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=house%20md&colc=1668805401577&jsl=1&uvs=6377f317f0f149d7000&skipb=1&callback=addthis.cbs.jsonp__78521766806857860
23.38.200.123200 OK 89 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=6377f317de0b232c&bkl=0&bl=1&pdt=496&sid=6377f317de0b232c&pub=ra-5a4bbf5745d3e51e&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=web.bflix.to&fp=series%2Fhouse-qk23%2F1-8&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=house%20md&colc=1668805401577&jsl=1&uvs=6377f317f0f149d7000&skipb=1&callback=addthis.cbs.jsonp__78521766806857860
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash 8c63d29a1024b740fcdc5e24f5241069
4c9c43dc96451b5d3ce5316ef06cfe9835cc6568
78d4846bafa80e9233e4e24682906253601a1f2463da2578ede2b59859b5deaa
GET /live/red_lojson/300lo.json?si=6377f317de0b232c&bkl=0&bl=1&pdt=496&sid=6377f317de0b232c&pub=ra-5a4bbf5745d3e51e&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=web.bflix.to&fp=series%2Fhouse-qk23%2F1-8&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=house%20md&colc=1668805401577&jsl=1&uvs=6377f317f0f149d7000&skipb=1&callback=addthis.cbs.jsonp__78521766806857860 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 89
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Fri, 18 Nov 2022 21:03:23 GMT
X-Firefox-Spdy: h2
v1.addthisedge.com/live/boost/ra-5a4bbf5745d3e51e/_ate.track.config_resp
23.38.200.123200 OK 810 B URL HTTP/2 v1.addthisedge.com/live/boost/ra-5a4bbf5745d3e51e/_ate.track.config_resp
IP 23.38.200.123:0
File type ASCII text, with very long lines (4414), with no line terminators
Hash 90d06f36a306147405d512fb8d82e96c
b28c715163ba9fffebd531d4ccfb94c9d3ce5531
b8ff4bb7750f841827a79bdde60e5b16cdfa7a1c8fe58e3d3460de970a345425
GET /live/boost/ra-5a4bbf5745d3e51e/_ate.track.config_resp HTTP/1.1
Host: v1.addthisedge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 810
etag: -189841643--gzip
content-disposition: attachment; filename=1.txt
content-encoding: gzip
cache-control: public, max-age=33, s-maxage=86400
date: Fri, 18 Nov 2022 21:03:23 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
disqus.com/embed/comments/?base=default&f=free-movies-online-1&t_i=jj62&t_u=https%3A%2F%2Fweb.bflix.to%2Fwatch%2Fqk23&t_d=BFLIX%20%7C%20Watch%20House%20(2004)%20Online%20Free%20on%20bflix.to&t_t=BFLIX%20%7C%20Watch%20House%20(2004)%20Online%20Free%20on%20bflix.to&s_o=default
151.101.0.134200 OK 14 kB URL HTTP/1.1 disqus.com/embed/comments/?base=default&f=free-movies-online-1&t_i=jj62&t_u=https%3A%2F%2Fweb.bflix.to%2Fwatch%2Fqk23&t_d=BFLIX%20%7C%20Watch%20House%20(2004)%20Online%20Free%20on%20bflix.to&t_t=BFLIX%20%7C%20Watch%20House%20(2004)%20Online%20Free%20on%20bflix.to&s_o=default
IP 151.101.0.134:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (61137)
Hash 2497f3b9ba4698ffd3ed9b14cfd77e9b
61d1335fae88eb1fbe9fa988c9da999c8f2262d7
d06cc33b438df67729cdaa21b2ff8fc07f07094d40a708b937861fe0cd37c05e
GET /embed/comments/?base=default&f=free-movies-online-1&t_i=jj62&t_u=https%3A%2F%2Fweb.bflix.to%2Fwatch%2Fqk23&t_d=BFLIX%20%7C%20Watch%20House%20(2004)%20Online%20Free%20on%20bflix.to&t_t=BFLIX%20%7C%20Watch%20House%20(2004)%20Online%20Free%20on%20bflix.to&s_o=default HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 13645
Server: nginx
Content-Security-Policy: script-src https://*.twitter.com:* https://www.gstatic.com/recaptcha/ https://a.disquscdn.com https://c.disquscdn.com c.disquscdn.com https://*.services.disqus.com:* https://cdn.boomtrain.com/p13n/ https://com-disqus.netmng.com:* 'unsafe-inline' https://referrer.disqus.com/juggler/ https://connect.facebook.net/en_US/sdk.js https://cdn.syndication.twimg.com/tweets.json https://apis.google.com https://www.google.com/recaptcha/ https://cf.ignitionone.com:* https://disqus.com
Link: <https://c.disquscdn.com>;rel=preconnect,<https://c.disquscdn.com>;rel=dns-prefetch
Cache-Control: stale-if-error=3600, s-stalewhilerevalidate=3600, stale-while-revalidate=30, no-cache, must-revalidate, public, s-maxage=5
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Type: text/html; charset=utf-8
Last-Modified: Wed, 16 Nov 2022 23:19:28 GMT
ETag: W/"lounge:view:8825377364.7cd77396194ce0aaab1e0dd795885391.2"
Referrer-Policy: no-referrer-when-downgrade
Content-Encoding: gzip
Date: Fri, 18 Nov 2022 21:03:23 GMT
Age: 0
Vary: Accept-Encoding
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
c.disquscdn.com/next/embed/lounge.load.1a8f225073ea43edcfdba5143a573682.js
54.230.111.73200 OK 496 B URL HTTP/2 c.disquscdn.com/next/embed/lounge.load.1a8f225073ea43edcfdba5143a573682.js
IP 54.230.111.73:0
File type ASCII text, with very long lines (958), with no line terminators
Hash 310e3bca5f7204b6ac52942cf03bd4a0
d0c479a17694d1ed61028f383abfaf06cb0ae822
8cee7585a559a895ee4f2bfa7c8a6d14df5bed5a7164d199561623bc68c1c8af
GET /next/embed/lounge.load.1a8f225073ea43edcfdba5143a573682.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://disqus.com
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 496
date: Fri, 18 Nov 2022 19:01:52 GMT
server: nginx
last-modified: Fri, 18 Nov 2022 18:55:43 GMT
etag: "6377d52f-1f0"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 18 Nov 2023 19:01:52 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: edRw-f9nvgc8Y1exway7nt3W6Fn5kle3Hc7RtoHtqxtyd-Xi-aqf6A==
age: 7291
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/common.bundle.a0092a9b6d9c06bf965e6c41a81f2c09.js
54.230.111.73200 OK 95 kB URL HTTP/2 c.disquscdn.com/next/embed/common.bundle.a0092a9b6d9c06bf965e6c41a81f2c09.js
IP 54.230.111.73:0
File type ASCII text, with very long lines (32023)
Hash c9c608ebeeeab51653f150074c319e46
c2953b376c9944f4d904c4d12218d059132a4a4d
84bac428b70cc6b09501c0a236a4e7c04511190f57361296a80ccd50d219c83a
GET /next/embed/common.bundle.a0092a9b6d9c06bf965e6c41a81f2c09.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 94854
date: Mon, 14 Nov 2022 23:24:00 GMT
server: nginx
last-modified: Mon, 14 Nov 2022 23:10:44 GMT
etag: "6372caf4-17286"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 14 Nov 2023 23:24:00 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4gf4oUVbQAhp8lpPVjrm2X7tEDgHdyTcsePdY75QUVLWZa92N6c7Iw==
age: 337163
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/styles/lounge.a3d492534a84e3d01c2ce69a20cb7077.css
54.230.111.73200 OK 30 kB URL HTTP/2 c.disquscdn.com/next/embed/styles/lounge.a3d492534a84e3d01c2ce69a20cb7077.css
IP 54.230.111.73:0
File type ASCII text, with very long lines (65469)
Hash b95dff42561ea35d4a5231165bf8123e
50f827a1b2b6904d032876f075d670afacf712d6
23bb2f01c7ecb8d2bff0aeca5c10314b2a7652fdd28abec8a73339a0b3c74bfb
GET /next/embed/styles/lounge.a3d492534a84e3d01c2ce69a20cb7077.css HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-length: 30511
date: Fri, 18 Nov 2022 14:12:34 GMT
server: nginx
last-modified: Fri, 18 Nov 2022 14:08:16 GMT
etag: "637791d0-772f"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 18 Nov 2023 14:12:34 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HDXhfOah_4U6draZjLzTBMAOifnzB7MOKcuVknYLUTBhNiLbpCuX2Q==
age: 24649
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/lounge.bundle.78456f13f59d6341a764379d4a0aa8eb.js
54.230.111.73200 OK 128 kB URL HTTP/2 c.disquscdn.com/next/embed/lounge.bundle.78456f13f59d6341a764379d4a0aa8eb.js
IP 54.230.111.73:0
File type ASCII text, with very long lines (32010)
Size 128 kB (128353 bytes)
Hash d61baa13e55fd5bd17308b9404791914
dd985fec1bca83a3e0a1b1125c75dd9799fe854d
f5fcfadc956bffe21b2e78e15ffbdb7c0bddc0a27e5f0b8ec0944ffad65ed8f5
GET /next/embed/lounge.bundle.78456f13f59d6341a764379d4a0aa8eb.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 128353
date: Fri, 18 Nov 2022 19:02:00 GMT
server: nginx
last-modified: Fri, 18 Nov 2022 18:55:43 GMT
etag: "6377d52f-1f561"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 18 Nov 2023 19:02:00 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 01iQooKjV9kqsh5MsFZofYzhh6FoLXVSGBSUCT-ksl5-H4Br9E-cMA==
age: 7283
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b2be1d5d6075f7e33a3c4fe0e403be9a
472e908ed0edaca51d1f10c1cc6dc35fd1a3286e
5398cac90b928890e1bb2ff89accd0f321fe44f45e5b067d116d72f04957c0be
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5398CAC90B928890E1BB2FF89ACCD0F321FE44F45E5B067D116D72F04957C0BE"
Last-Modified: Wed, 16 Nov 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2825
Expires: Fri, 18 Nov 2022 21:50:28 GMT
Date: Fri, 18 Nov 2022 21:03:23 GMT
Connection: keep-alive
ifknittedhurtful.com/pixel/pure
192.243.59.12204 No Content 0 B URL HTTP/1.1 ifknittedhurtful.com/pixel/pure
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
OPTIONS /pixel/pure HTTP/1.1
Host: ifknittedhurtful.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://vidstream.pro/
Origin: https://vidstream.pro
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.17.6
Date: Fri, 18 Nov 2022 21:03:23 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 1728000
Content-Type: text/plain; charset=utf-8
Content-Length: 0
ifknittedhurtful.com/pixel/pure
192.243.59.12204 No Content 0 B URL HTTP/1.1 ifknittedhurtful.com/pixel/pure
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
OPTIONS /pixel/pure HTTP/1.1
Host: ifknittedhurtful.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://vidstream.pro/
Origin: https://vidstream.pro
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.17.6
Date: Fri, 18 Nov 2022 21:03:23 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 1728000
Content-Type: text/plain; charset=utf-8
Content-Length: 0
s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
23.38.200.123200 OK 78 kB URL HTTP/2 s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
IP 23.38.200.123:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 9a77dff666eebb6cf4bbc4c67c7b563b
9e98d7824a7b4e34665c2690d6f52caddad1fe4b
6cdf8e597f3cbe759531153fd926d51aeaebd836a1c9bc1436e079645bfd3ad7
GET /static/layers.fa6cd1947ce26e890d3d.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-41cf5"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 77672
date: Fri, 18 Nov 2022 21:03:23 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
tzegilo.com/stattag.js
172.67.194.45200 OK 128 kB IP 172.67.194.45:0
File type ASCII text, with very long lines (13017), with no line terminators
Size 128 kB (128520 bytes)
Hash bbb19564d66f1a5a4784f89cdd3aaf44
c5e390b51f599c466f784396e7a573c1cc22f416
e6ed6e6033003b0de3344892e817339d2466b761f74740e94260fb27727afb59
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:21 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 14:05:58 GMT
etag: W/"634eb2c6-32d9"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 5183
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eyszo5snF%2F09dhA1FBVaM5s6YMu%2Bujjf8gJfO7WgzlnPDaxWiMOqXGsnWsCQOsBeyraBLkrzrUShQIoh8rBo0%2FlmYGp3nEw8B%2F4NaDy6dwBPZUCdHUZTEeFTxK8f3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a6fe1da1b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ifknittedhurtful.com/pixel/pure
192.243.59.12200 OK 0 B URL HTTP/1.1 ifknittedhurtful.com/pixel/pure
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
POST /pixel/pure HTTP/1.1
Host: ifknittedhurtful.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 73
Origin: https://vidstream.pro
Connection: keep-alive
Referer: https://vidstream.pro/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Fri, 18 Nov 2022 21:03:23 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
ifknittedhurtful.com/pixel/pure
192.243.59.12200 OK 0 B URL HTTP/1.1 ifknittedhurtful.com/pixel/pure
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
POST /pixel/pure HTTP/1.1
Host: ifknittedhurtful.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 73
Origin: https://vidstream.pro
Connection: keep-alive
Referer: https://vidstream.pro/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Fri, 18 Nov 2022 21:03:23 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
relativelyweptcurls.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fus%2Fadult%2Fdesc%2F1%2Findex.html&l=1604&fd=446
173.233.137.44200 OK 0 B URL HTTP/1.1 relativelyweptcurls.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fus%2Fadult%2Fdesc%2F1%2Findex.html&l=1604&fd=446
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fus%2Fadult%2Fdesc%2F1%2Findex.html&l=1604&fd=446 HTTP/1.1
Host: relativelyweptcurls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Cookie: u_pl=16996137; uid_id2=1468659e-97f2-4424-b015-380c4ae04fea:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2c56c9dbda564dc68f75b3434e4d958e=[3789937]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 18 Nov 2022 21:03:23 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
disqus.com/api/3.0/forums/details?forum=free-movies-online-1&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
151.101.0.134200 OK 3.0 kB URL HTTP/1.1 disqus.com/api/3.0/forums/details?forum=free-movies-online-1&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
IP 151.101.0.134:0
File type JSON data\012- , ASCII text, with very long lines (3043), with no line terminators
Hash ecbdea764f65df81ff994faa90802147
9f6facf5b0946b81815d9d6444b400f05d35dcca
8950aa20afb74107307c52057bd82a160b8bb7ba46db3be9f25c0c505aff7cf4
GET /api/3.0/forums/details?forum=free-movies-online-1&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=free-movies-online-1&t_i=jj62&t_u=https%3A%2F%2Fweb.bflix.to%2Fwatch%2Fqk23&t_d=BFLIX%20%7C%20Watch%20House%20(2004)%20Online%20Free%20on%20bflix.to&t_t=BFLIX%20%7C%20Watch%20House%20(2004)%20Online%20Free%20on%20bflix.to&s_o=default
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 3043
Server: nginx
Content-Type: application/json
X-Frame-Options: SAMEORIGIN
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Fri, 18 Nov 2022 21:03:24 GMT
Age: 19
Vary: Origin, Cookie
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 03a91498bb5c902fd8900cec3af9299d
2d7f9203166e5b15ff31de68929155e44e285e98
5d2c8c4facc6a4f2a3a6876cf43fd5ff9bb58b8e4fb3577427744c3b75c98558
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "5D2C8C4FACC6A4F2A3A6876CF43FD5FF9BB58B8E4FB3577427744C3B75C98558"
Last-Modified: Fri, 18 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8929
Expires: Fri, 18 Nov 2022 23:32:13 GMT
Date: Fri, 18 Nov 2022 21:03:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash caec4a1a26fd07aa93b58ad4b9acbfbc
48d64fc3ff12e2ee9830b7bde835ffeca3bc81c4
6d9c743445b0fd01f831a54a62dca46f4f64de8260d5d84973c273e3f5d20253
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D9C743445B0FD01F831A54A62DCA46F4F64DE8260D5D84973C273E3F5D20253"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9022
Expires: Fri, 18 Nov 2022 23:33:46 GMT
Date: Fri, 18 Nov 2022 21:03:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1f35203e647097801695fad87f09fb44
91fdb8cc7ca06c6ce32bf0f34d5613dae26582a7
b989b86a3747feb7355723140ff09f0ad76b66edf017b5880eb287e55ce83fc0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B989B86A3747FEB7355723140FF09F0AD76B66EDF017B5880EB287E55CE83FC0"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3824
Expires: Fri, 18 Nov 2022 22:07:08 GMT
Date: Fri, 18 Nov 2022 21:03:24 GMT
Connection: keep-alive
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/us/adult/desc/1/img/CLOSE.png
172.64.108.13200 OK 7.0 kB URL HTTP/2 cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/us/adult/desc/1/img/CLOSE.png
IP 172.64.108.13:0
File type PNG image data, 46 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash bff204d9ae1fa57a3f99f5699abe32c2
6f6ba7ca538b3164fa18d6b0a612bf10eb9b6404
1ac1d5aa4b673a0d1e87ac7bf4c4fcca0d38070329342ce456db34f1179404ca
GET /sb/notifications/games/hentai-heroes/us/adult/desc/1/img/CLOSE.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:24 GMT
content-type: image/png
content-length: 6989
last-modified: Thu, 18 Aug 2022 09:43:01 GMT
etag: "62fe09a5-1b4d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 284938
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kx8v%2F9Ftg0pl46imYtSZF5soO%2Br1Xij9KFtWIZziSoAwwdym3Qcu8xJnE16AKABCyIcZXirw8pM60lg2KqewZF1YRM1XZ24d8wsnrAgfaSYFLUTwewOyiXFcmbwwrnzX62xSzhWrdyfv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a70feedf731a-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/us/adult/desc/1/img/play.png
172.64.108.13200 OK 15 kB URL HTTP/2 cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/us/adult/desc/1/img/play.png
IP 172.64.108.13:0
File type PNG image data, 112 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash 179a02e1eff01a29bea0b1252324937e
921b511757b312246303d4bf8d0f542afa3399c3
e8f1574434b503e8bdf0510cfde2b732e2ebea6bee22d1c23e199be3dda25e64
GET /sb/notifications/games/hentai-heroes/us/adult/desc/1/img/play.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:24 GMT
content-type: image/png
content-length: 15132
last-modified: Thu, 18 Aug 2022 09:43:00 GMT
etag: "62fe09a4-3b1c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 285064
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LexGc%2FY6FoZk7eTxm%2BkabxQwynBNsrfAyAJeEtk4e8W8LvWxlDtIOasAxIOlqeQNF8WcnOEjFU02%2BOlybh1qO4PSaWu5%2F7fHtzIkWoonj5EOPluBa%2BOnQEu64rD8sxpGqXhjHj%2Bgqkao"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a70feee9731a-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
relativelyweptcurls.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fus%2Fadult%2Fdesc%2F1%2Fcss%2Fanimate.css&l=79245&fd=103
173.233.137.44200 OK 0 B URL HTTP/1.1 relativelyweptcurls.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fus%2Fadult%2Fdesc%2F1%2Fcss%2Fanimate.css&l=79245&fd=103
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fus%2Fadult%2Fdesc%2F1%2Fcss%2Fanimate.css&l=79245&fd=103 HTTP/1.1
Host: relativelyweptcurls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Cookie: u_pl=16996137; uid_id2=1468659e-97f2-4424-b015-380c4ae04fea:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2c56c9dbda564dc68f75b3434e4d958e=[3789937]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 18 Nov 2022 21:03:24 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/us/adult/desc/1/img/base.png
172.64.108.13200 OK 26 kB URL HTTP/2 cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/us/adult/desc/1/img/base.png
IP 172.64.108.13:0
File type PNG image data, 367 x 224, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d72b18d01abc22c598d778e38097686
f37829f41642cd9dfc081e56907db5b76683bb0a
f04bd4b97deb48d1864f36b341e4599d8652f6264637f8c6fb6bf0bf2493e3b8
GET /sb/notifications/games/hentai-heroes/us/adult/desc/1/img/base.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:24 GMT
content-type: image/png
content-length: 25927
last-modified: Thu, 18 Aug 2022 09:43:00 GMT
etag: "62fe09a4-6547"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 284938
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K%2FQcSCH0qSSMvg8loXLGJHee3J80XPpfDu95%2FWawSa20UVlUtGWxi%2BbcfHUGFlidECfXAAjad8qY8d%2F6Hbh6qywyq%2B2ph0J2pmREV2GvAtgSH%2BwnrYQJCksiJXBIQ8%2F0j5jF8c5tgJt%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a70feee1731a-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/us/adult/desc/1/img/girl.png
172.64.108.13200 OK 89 kB URL HTTP/2 cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/us/adult/desc/1/img/girl.png
IP 172.64.108.13:0
File type PNG image data, 175 x 282, 8-bit/color RGBA, non-interlaced\012- data
Hash 237adbb16774eca98f1bfd9d75d48db8
c9d428429ef2bc4628286d69c85956a5572e3de8
926a625cbb91d166cf89240e99d97868d02ff0567ee3486ad8492ce905076b76
GET /sb/notifications/games/hentai-heroes/us/adult/desc/1/img/girl.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:24 GMT
content-type: image/png
content-length: 88721
last-modified: Thu, 18 Aug 2022 09:43:00 GMT
etag: "62fe09a4-15a91"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 285064
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yoKMGiwWbRxYHFX%2F7yov9ZFaZcN6e%2FnOVjQuPFb9jkm%2FO7sqotQDTxhLVvNfESUFaWP%2BqCE3LeaIP9ymkVbBGp8a0Nxa6tYgL4fI0L32eME%2BSrIh%2FwwrYpBjo%2Fq%2BgTXwYCZU6BLY7f5E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a70feee2731a-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg
54.230.111.73200 OK 13 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg
IP 54.230.111.73:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (13079), with no line terminators
Hash 4da5413f5086c5755b46094b813dbfcd
87669f231ce245cdd9b7d80ebf8194e2ae62e7b1
3270642c89180c12db93775e2a774b6dadd9bd98cffc963075c85afd2c17b6e4
GET /next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.a3d492534a84e3d01c2ce69a20cb7077.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 13079
date: Fri, 04 Nov 2022 03:33:20 GMT
server: nginx
last-modified: Wed, 02 Nov 2022 16:07:12 GMT
etag: "636295b0-3317"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 04 Nov 2023 03:33:20 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9fG0Jycm0m4TEqaObUYEE18Tmt_lTWSpUAMMpOKN-yEtNR4OZ_RH_g==
age: 1272604
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif
54.230.111.73200 OK 3.0 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif
IP 54.230.111.73:0
File type GIF image data, version 87a, 62 x 20\012- data
Hash ba7c86e8b4b6135bb668d05223f8f127
ae07a576af9eab682281921075436798438e902e
4c4491dcfa94cb46fb73742fc2caf49a1cd59027304af1830c7dc6ce1889857c
GET /next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.a3d492534a84e3d01c2ce69a20cb7077.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 2971
date: Mon, 31 Oct 2022 00:55:21 GMT
server: nginx
last-modified: Thu, 27 Oct 2022 21:17:31 GMT
etag: "635af56b-b9b"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 31 Oct 2023 00:55:21 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9mhwAw4iS6qufJnQrLv1LQPPX4fBSKBTHcuGmKwDo45kPC0r3y70Sg==
age: 1627683
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png
54.230.111.73200 OK 1.8 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png
IP 54.230.111.73:0
File type PNG image data, 172 x 81, 8-bit colormap, non-interlaced\012- data
Hash ad630a07080a45451f139a7487853ff8
c2673d7404fc947fab20eed21416f9656149018d
9714221c828961b20f45a782c3281c0596f6652cfe1299bee18097f98e8fb7b3
GET /next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.a3d492534a84e3d01c2ce69a20cb7077.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1763
date: Sat, 05 Nov 2022 01:16:36 GMT
server: nginx
last-modified: Wed, 02 Nov 2022 16:07:12 GMT
etag: "636295b0-6e3"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sun, 05 Nov 2023 01:16:36 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Jfp1aa5YP-EnzIksdSb19qQtasBYdUTYfFSyH8WRtDX6-Vd0DBPb0Q==
age: 1194408
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2
54.230.111.73200 OK 7.9 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2
IP 54.230.111.73:0
File type Web Open Font Format (Version 2), TrueType, length 7900, version 1.0\012- data
Hash 4cc7a703d2fdfe684151ff8ac24d45f1
046adee74e5ce76db11491906a21c09399391571
f2a341fc815d45c21da726d4c843c2c5d3e1f333465347c3c75d040d556df4e5
GET /next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2 HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
Connection: keep-alive
Referer: https://c.disquscdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 7900
date: Sat, 05 Nov 2022 01:01:02 GMT
server: nginx
last-modified: Wed, 02 Nov 2022 16:07:12 GMT
etag: "636295b0-1edc"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sun, 05 Nov 2023 01:01:02 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: q1Bk2cp8MMFNufek90FUul7gBHt11-mP9xuBMTsO_z78-pXO5wm_IA==
age: 1195342
X-Firefox-Spdy: h2
relativelyweptcurls.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fus%2Fadult%2Fdesc%2F1%2Fcss%2Fstyle.css&l=6428&fd=107
173.233.137.44200 OK 0 B URL HTTP/1.1 relativelyweptcurls.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fus%2Fadult%2Fdesc%2F1%2Fcss%2Fstyle.css&l=6428&fd=107
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fus%2Fadult%2Fdesc%2F1%2Fcss%2Fstyle.css&l=6428&fd=107 HTTP/1.1
Host: relativelyweptcurls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Cookie: u_pl=16996137; uid_id2=1468659e-97f2-4424-b015-380c4ae04fea:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2c56c9dbda564dc68f75b3434e4d958e=[3789937]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 18 Nov 2022 21:03:24 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
banquetunarmedgrater.com/advertisers.js
173.233.137.44200 OK 0 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidstream.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 18 Nov 2022 21:03:24 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dd22b73b602cfc36e67ce33051b63760
Strict-Transport-Security: max-age=0; includeSubdomains
vidstream.pro/EE/pioneersuspectedjury.com/e3/5f/ff/e35fff0d600aad048bac0f7b692e007b.js
172.64.137.29200 OK 17 kB URL HTTP/2 vidstream.pro/EE/pioneersuspectedjury.com/e3/5f/ff/e35fff0d600aad048bac0f7b692e007b.js
IP 172.64.137.29:0
File type HTML document, ASCII text, with very long lines (60145), with no line terminators
Hash 07a76e71dc259e9a93d3b739df3168b1
fea5a88a27a68f0654ecf4443e7e065d492f95f8
60bdfbab351d2aee6c768d3c0604463be8ba2a22355ede1211dfbbec0ab090aa
GET /EE/pioneersuspectedjury.com/e3/5f/ff/e35fff0d600aad048bac0f7b692e007b.js HTTP/1.1
Host: vidstream.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidstream.pro/e/QVY9LGK26P2M?sub.info=https%3A%2F%2Fweb.bflix.to%2Fajax%2Fepisode%2Fsubtitles%2F934dc28b9b4fbfb26ac0782731ac7579%3F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:21 GMT
content-type: application/javascript
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-request-id: da7e41a034d821b6fc2a8d779a3e04f7
strict-transport-security: max-age=0; includeSubdomains
x-cache: HIT
x-dynamic-cache: BYPASS
cache-control: max-age=14400
cf-cache-status: HIT
age: 6584
last-modified: Fri, 18 Nov 2022 19:13:37 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zA33ReXVklEFVVENwoSYhdz4U9h%2BF9SNLmItV%2BDDy9UNoVLfXarX5DLHxh%2FjWJJPFMfSTZlYW6l21OOq7jubYsa9a3ElXUvdi1eDoFII52oPs9ya7lxEEcXdz2oFPrhO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a6ffec7a7719-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s7.addthis.com/static/159.1c3fceccbc80f2a3615f.js
23.38.200.123200 OK 2.6 kB URL HTTP/2 s7.addthis.com/static/159.1c3fceccbc80f2a3615f.js
IP 23.38.200.123:0
Hash 21175ce6442a4fa907fe843b7cd6a6bb
4772da74e083104132afae87f15bb086f7c4b9be
b6230ce36814a2828773fcaa27bcb22934bc7655c8b193752fa19b086b629c2f
GET /static/159.1c3fceccbc80f2a3615f.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-234"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 394
date: Fri, 18 Nov 2022 21:03:24 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
a.disquscdn.com/1668443441/images/noavatar92.png
151.101.86.49200 OK 1.6 kB URL HTTP/2 a.disquscdn.com/1668443441/images/noavatar92.png
IP 151.101.86.49:0
File type PNG image data, 92 x 92, 8-bit/color RGB, non-interlaced\012- data
Hash 675fb4b91ca717db030507f2d84bcfdf
c8728df74487f907230358a1b08ae1a1b25f9ed4
36ef66124133ca33c8b44c487293c3180e5ab681ff3cad3c728ea4f894ec3444
GET /1668443441/images/noavatar92.png HTTP/1.1
Host: a.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
server: nginx
last-modified: Fri, 26 Feb 2021 20:50:09 GMT
etag: "60395f01-66c"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 17 Dec 2022 15:17:21 GMT
cache-control: max-age=2592000
cross-origin-resource-policy: cross-origin
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 5jOcp7ZrxH_QP-anBdpxd4jymgR2jnU0w8efi16t4yWllUlIDXje4w==
date: Fri, 18 Nov 2022 21:03:24 GMT
age: 107162
strict-transport-security: max-age=300; includeSubdomains
content-length: 1644
X-Firefox-Spdy: h2
relativelyweptcurls.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fus%2Fadult%2Fdesc%2F1%2Fjs%2Fscript.js&l=4111&fd=45
173.233.137.44200 OK 32 kB URL HTTP/1.1 relativelyweptcurls.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fus%2Fadult%2Fdesc%2F1%2Fjs%2Fscript.js&l=4111&fd=45
IP 173.233.137.44:0
Hash c1fcfdd480feeb47a41cfc787b7346e4
e5fd5e809695ffc4c9ba9ac6fbc5a8bd79483e11
fb47644686a2ccbd35fd6316eabfff765993e80a872c3a16da6268c0cc36a879
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fus%2Fadult%2Fdesc%2F1%2Fjs%2Fscript.js&l=4111&fd=45 HTTP/1.1
Host: relativelyweptcurls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Cookie: u_pl=16996137; uid_id2=1468659e-97f2-4424-b015-380c4ae04fea:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2c56c9dbda564dc68f75b3434e4d958e=[3789937]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 18 Nov 2022 21:03:24 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&load_time=379&event=init_embed&thread=8825377364&forum=free-movies-online-1&forum_id=7001393&imp=85et23u2cmupif&thread_slug=123series_watch_house_2004_online_free_on_123seriesru&user_type=anon&referrer=https%3A%2F%2Fweb.bflix.to%2F&theme=next&dnt=0&tracking_enabled=0&experiment=iabcategorization_hidden&variant=active&service=dynamic&promoted_enabled=false&max_enabled=false
151.101.84.134200 OK 43 B URL HTTP/1.1 referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&load_time=379&event=init_embed&thread=8825377364&forum=free-movies-online-1&forum_id=7001393&imp=85et23u2cmupif&thread_slug=123series_watch_house_2004_online_free_on_123seriesru&user_type=anon&referrer=https%3A%2F%2Fweb.bflix.to%2F&theme=next&dnt=0&tracking_enabled=0&experiment=iabcategorization_hidden&variant=active&service=dynamic&promoted_enabled=false&max_enabled=false
IP 151.101.84.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/event.gif?abe=0&embed_hidden=0&load_time=379&event=init_embed&thread=8825377364&forum=free-movies-online-1&forum_id=7001393&imp=85et23u2cmupif&thread_slug=123series_watch_house_2004_online_free_on_123seriesru&user_type=anon&referrer=https%3A%2F%2Fweb.bflix.to%2F&theme=next&dnt=0&tracking_enabled=0&experiment=iabcategorization_hidden&variant=active&service=dynamic&promoted_enabled=false&max_enabled=false HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=free-movies-online-1&t_i=jj62&t_u=https%3A%2F%2Fweb.bflix.to%2Fwatch%2Fqk23&t_d=BFLIX%20%7C%20Watch%20House%20(2004)%20Online%20Free%20on%20bflix.to&t_t=BFLIX%20%7C%20Watch%20House%20(2004)%20Online%20Free%20on%20bflix.to&s_o=default
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Fri, 18 Nov 2022 21:03:24 GMT
Cross-Origin-Resource-Policy: cross-origin
api-public.addthis.com/url/serviceapi/shares-post.json?services=sFbt&url=https%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8
23.38.200.123200 OK 2 B URL HTTP/2 api-public.addthis.com/url/serviceapi/shares-post.json?services=sFbt&url=https%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8
IP 23.38.200.123:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /url/serviceapi/shares-post.json?services=sFbt&url=https%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8 HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Origin: https://web.bflix.to
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
content-length: 2
cache-control: no-transform, max-age=0, s-maxage=14400
surrogate-key: sFbt=https://web.bflix.to/series/house-qk23/1-8
last-modified: Fri, 18 Nov 2022 21:00:00 GMT
access-control-allow-origin: https://web.bflix.to
access-control-allow-credentials: true
strict-transport-security: max-age=15724800; includeSubDomains
date: Fri, 18 Nov 2022 21:03:24 GMT
X-Firefox-Spdy: h2
api-public.addthis.com/url/shares.json?url=https%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8&callback=_ate.cbs.rcb_cddw0
23.38.200.123200 OK 53 B URL HTTP/2 api-public.addthis.com/url/shares.json?url=https%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8&callback=_ate.cbs.rcb_cddw0
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash 90147c23e08612fd717baf5d86c7e09c
538808385407af5c899c01535679ec5bdfbef6a8
e1cb1aab6b89e4eae3e830d540c7d8b206b4c9484a40f880acb86966f45a4abd
GET /url/shares.json?url=https%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8&callback=_ate.cbs.rcb_cddw0 HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
cache-control: no-transform, must-revalidate, max-age=0, s-maxage=3600
surrogate-key: web.bflix.to/series/house-qk23/1-8
last-modified: Fri, 18 Nov 2022 21:03:24 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 53
date: Fri, 18 Nov 2022 21:03:24 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
api-public.addthis.com/url/shares.json?url=http%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8&callback=_ate.cbs.rcb_exd30
23.38.200.123200 OK 53 B URL HTTP/2 api-public.addthis.com/url/shares.json?url=http%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8&callback=_ate.cbs.rcb_exd30
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash 8d8d872c2b03444a830e771d0a6913e8
075cd29874ac4f82405aaaa1373cba9f8a2d8585
ebf5dcb43b48bbfd81973d7a18579967fb075fd94e7e1bbfed981206acb663b2
GET /url/shares.json?url=http%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8&callback=_ate.cbs.rcb_exd30 HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
cache-control: no-transform, must-revalidate, max-age=0, s-maxage=3600
surrogate-key: web.bflix.to/series/house-qk23/1-8
last-modified: Fri, 18 Nov 2022 21:03:24 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 53
date: Fri, 18 Nov 2022 21:03:24 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
relativelyweptcurls.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRit3l096EnxoqLMwYMLZtI93T3T4wpiXCPBmITdlVytrqqelKnuaqu6pyc5BReXPcl489h5k2z8sYj7B8jKxIsEhB0FCYv5G4SFPcskI4Pfob4frwree1%2Fd2S%2FPiIuSnm58rHelUnQxbLqNNzdlxnVlG2u3Gp7bdK81NmXWDq41BtPD9N%2F23LDpXm18KNi2Xmy5nut6rtdYlkYkerB4jkLm97tes%2Bs2g1bTCwMMzP97Wzqw1AHvn5EXIfnkma3fHkCyMbL0p%2BvCbhc6f%2BuDtFS00AZ9fvRJtp3pKkM6LxPjIMmOZreh7YSQby5BZ0czBdD9g6kCxHJCnL88xNnRjCbi%2FuEF01hBZIj586j6Ywg1hqRjMH0bkj8iAONYW0eW3lvTpqI7FyidohNy5ekTyGpCrvz9ErL0xyUlB42bWpWF1JnFIKkhB2PI3hh5eYxi14GsjsGKLyD572Tx6Sqy9GDdKg3JT9%2FwgnbUDrtiodtJWgtB0AoWYtcLF%2FzIZQEVbpAIem6RlGPIZAwlhqD2EkrroJQOysRBmTtI%2BWmDht3EdTtJnPh%2BFDDGfJ%2BxMGrzkPtBlLgo2VTDEEU%2BBFNDMLOH3OxhWw5hyl9gt2pY7sAWBH1eoxIElSWoKEElCaqCoOrXh1zZlq3vcWXL2Jvl1iz79UgXvX16qIueyMh%2BfkZemBrnXN68im1x2mixsM26POY0bAectaOkE8Z%2B4Aci4N0wErCyhrSXQK2DXTkhr77zGLmckGe%2F4ojpMaw6BpMOaPkaaDXqtFzQrVEQudjNvo0TJQfNQoPrGnlxBcWOs6%2FOyMvny%2Bv%2B%2BTkEOyGzADM1clPjM%2FkrQU%2FdHd3QFTm4oStLHqznhUzlLp0u9mZBC%2BF8%2F5HYqbThK9ft8Lv32BSYlvdvCVus0ozLrGfJD0uSc2GWtWGC%2FLxiN0W8UdqtpdJkZb668f7ySpobYa3U2RhUPvr0IZickOfSO%2Bdf9vXHX0KaMUxZIy3nTKU%2BBsv3YPP5zGoCo%2BZ9nDuoynpkWvF8qCSBEvOexjWsOHn4z3%2BP5vW%2BvYuecUCL28jSGn1To69qUDWELS%2BPitycvPuHfx6IlTOKlXEOYmXU1xfWWnnaCL1ARHHUYZzHgnGv0%2FIj33VbnAedrvC6KOyEVU9e%2BRcAAP%2F%2FAQAA%2F%2F92niuEigQAAA%3D%3D
173.233.137.44200 OK 7 B URL HTTP/1.1 relativelyweptcurls.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRit3l096EnxoqLMwYMLZtI93T3T4wpiXCPBmITdlVytrqqelKnuaqu6pyc5BReXPcl489h5k2z8sYj7B8jKxIsEhB0FCYv5G4SFPcskI4Pfob4frwree1%2Fd2S%2FPiIuSnm58rHelUnQxbLqNNzdlxnVlG2u3Gp7bdK81NmXWDq41BtPD9N%2F23LDpXm18KNi2Xmy5nut6rtdYlkYkerB4jkLm97tes%2Bs2g1bTCwMMzP97Wzqw1AHvn5EXIfnkma3fHkCyMbL0p%2BvCbhc6f%2BuDtFS00AZ9fvRJtp3pKkM6LxPjIMmOZreh7YSQby5BZ0czBdD9g6kCxHJCnL88xNnRjCbi%2FuEF01hBZIj586j6Ywg1hqRjMH0bkj8iAONYW0eW3lvTpqI7FyidohNy5ekTyGpCrvz9ErL0xyUlB42bWpWF1JnFIKkhB2PI3hh5eYxi14GsjsGKLyD572Tx6Sqy9GDdKg3JT9%2FwgnbUDrtiodtJWgtB0AoWYtcLF%2FzIZQEVbpAIem6RlGPIZAwlhqD2EkrroJQOysRBmTtI%2BWmDht3EdTtJnPh%2BFDDGfJ%2BxMGrzkPtBlLgo2VTDEEU%2BBFNDMLOH3OxhWw5hyl9gt2pY7sAWBH1eoxIElSWoKEElCaqCoOrXh1zZlq3vcWXL2Jvl1iz79UgXvX16qIueyMh%2BfkZemBrnXN68im1x2mixsM26POY0bAectaOkE8Z%2B4Aci4N0wErCyhrSXQK2DXTkhr77zGLmckGe%2F4ojpMaw6BpMOaPkaaDXqtFzQrVEQudjNvo0TJQfNQoPrGnlxBcWOs6%2FOyMvny%2Bv%2B%2BTkEOyGzADM1clPjM%2FkrQU%2FdHd3QFTm4oStLHqznhUzlLp0u9mZBC%2BF8%2F5HYqbThK9ft8Lv32BSYlvdvCVus0ozLrGfJD0uSc2GWtWGC%2FLxiN0W8UdqtpdJkZb668f7ySpobYa3U2RhUPvr0IZickOfSO%2Bdf9vXHX0KaMUxZIy3nTKU%2BBsv3YPP5zGoCo%2BZ9nDuoynpkWvF8qCSBEvOexjWsOHn4z3%2BP5vW%2BvYuecUCL28jSGn1To69qUDWELS%2BPitycvPuHfx6IlTOKlXEOYmXU1xfWWnnaCL1ARHHUYZzHgnGv0%2FIj33VbnAedrvC6KOyEVU9e%2BRcAAP%2F%2FAQAA%2F%2F92niuEigQAAA%3D%3D
IP 173.233.137.44:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRit3l096EnxoqLMwYMLZtI93T3T4wpiXCPBmITdlVytrqqelKnuaqu6pyc5BReXPcl489h5k2z8sYj7B8jKxIsEhB0FCYv5G4SFPcskI4Pfob4frwree1%2Fd2S%2FPiIuSnm58rHelUnQxbLqNNzdlxnVlG2u3Gp7bdK81NmXWDq41BtPD9N%2F23LDpXm18KNi2Xmy5nut6rtdYlkYkerB4jkLm97tes%2Bs2g1bTCwMMzP97Wzqw1AHvn5EXIfnkma3fHkCyMbL0p%2BvCbhc6f%2BuDtFS00AZ9fvRJtp3pKkM6LxPjIMmOZreh7YSQby5BZ0czBdD9g6kCxHJCnL88xNnRjCbi%2FuEF01hBZIj586j6Ywg1hqRjMH0bkj8iAONYW0eW3lvTpqI7FyidohNy5ekTyGpCrvz9ErL0xyUlB42bWpWF1JnFIKkhB2PI3hh5eYxi14GsjsGKLyD572Tx6Sqy9GDdKg3JT9%2FwgnbUDrtiodtJWgtB0AoWYtcLF%2FzIZQEVbpAIem6RlGPIZAwlhqD2EkrroJQOysRBmTtI%2BWmDht3EdTtJnPh%2BFDDGfJ%2BxMGrzkPtBlLgo2VTDEEU%2BBFNDMLOH3OxhWw5hyl9gt2pY7sAWBH1eoxIElSWoKEElCaqCoOrXh1zZlq3vcWXL2Jvl1iz79UgXvX16qIueyMh%2BfkZemBrnXN68im1x2mixsM26POY0bAectaOkE8Z%2B4Aci4N0wErCyhrSXQK2DXTkhr77zGLmckGe%2F4ojpMaw6BpMOaPkaaDXqtFzQrVEQudjNvo0TJQfNQoPrGnlxBcWOs6%2FOyMvny%2Bv%2B%2BTkEOyGzADM1clPjM%2FkrQU%2FdHd3QFTm4oStLHqznhUzlLp0u9mZBC%2BF8%2F5HYqbThK9ft8Lv32BSYlvdvCVus0ozLrGfJD0uSc2GWtWGC%2FLxiN0W8UdqtpdJkZb668f7ySpobYa3U2RhUPvr0IZickOfSO%2Bdf9vXHX0KaMUxZIy3nTKU%2BBsv3YPP5zGoCo%2BZ9nDuoynpkWvF8qCSBEvOexjWsOHn4z3%2BP5vW%2BvYuecUCL28jSGn1To69qUDWELS%2BPitycvPuHfx6IlTOKlXEOYmXU1xfWWnnaCL1ARHHUYZzHgnGv0%2FIj33VbnAedrvC6KOyEVU9e%2BRcAAP%2F%2FAQAA%2F%2F92niuEigQAAA%3D%3D HTTP/1.1
Host: relativelyweptcurls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Cookie: u_pl=16996137; uid_id2=1468659e-97f2-4424-b015-380c4ae04fea:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2c56c9dbda564dc68f75b3434e4d958e=[3789937]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 18 Nov 2022 21:03:24 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9073f10f7dc3044566e6ba6a394e66a9
Strict-Transport-Security: max-age=0; includeSubdomains
relativelyweptcurls.com/pixel/sbs?c=1
173.233.137.44200 OK 0 B URL HTTP/1.1 relativelyweptcurls.com/pixel/sbs?c=1
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: relativelyweptcurls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Cookie: u_pl=16996137; uid_id2=1468659e-97f2-4424-b015-380c4ae04fea:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec2c56c9dbda564dc68f75b3434e4d958e=[3789937]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 18 Nov 2022 21:03:24 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
c.disquscdn.com/next/embed/styles/realtime.b23ff3c36dd0169627f8e54ca1621eca.css
54.230.111.73200 OK 244 B URL HTTP/2 c.disquscdn.com/next/embed/styles/realtime.b23ff3c36dd0169627f8e54ca1621eca.css
IP 54.230.111.73:0
File type ASCII text, with very long lines (337), with no line terminators
Hash f74fc76abba12fe71950760c586845c2
0e2456bb947e89d92afdde9a0f1f7043e0e0e12a
f6a934d83fa1c7116ec650c15cdd07d227fa43423024920345ac5ebf0b10532a
GET /next/embed/styles/realtime.b23ff3c36dd0169627f8e54ca1621eca.css HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-length: 244
date: Fri, 28 Oct 2022 14:13:46 GMT
server: nginx
last-modified: Thu, 27 Oct 2022 21:17:31 GMT
etag: "635af56b-f4"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 28 Oct 2023 14:13:46 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: J3x2tTyK8ScWsheTB5tTpmW5rRFRY_7bXJHxT3TuzG7886NxJXyfQA==
age: 1838979
X-Firefox-Spdy: h2
realtime.services.disqus.com/ws/2/thread/8825377364?
52.5.112.135101 Switching Protocols 0 B URL HTTP/1.1 realtime.services.disqus.com/ws/2/thread/8825377364?
IP 52.5.112.135:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/2/thread/8825377364? HTTP/1.1
Host: realtime.services.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://disqus.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Z4To+4m4boOoD0aJVqOC3w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 18 Nov 2022 21:03:25 GMT
Content-Length: 0
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://disqus.com
Sec-WebSocket-Accept: TTxzygqYLkqybwqyYO82plbD3Xo=
Upgrade: websocket
X-Served-By: realtime-5
X-Cache: MISS
X-Cache-Hits: 0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
s1.bunnycdn.ru/assets/template_2/min/all.js?636f2814
172.64.110.21200 OK 0 B URL HTTP/2 s1.bunnycdn.ru/assets/template_2/min/all.js?636f2814
IP 172.64.110.21:0
GET /assets/template_2/min/all.js?636f2814 HTTP/1.1
Host: s1.bunnycdn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: application/javascript
last-modified: Sat, 12 Nov 2022 05:03:30 GMT
vary: Accept-Encoding
etag: W/"636f2922-2e9fd"
x-frame-options: SAMEORIGIN
access-control-allow-origin: *
cache-control: max-age=31536000
cf-cache-status: HIT
age: 575979
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ohvbpXnspopNvfJ4Yu6j%2FdTBLhhgKpFEyNpzLmGiOqRA%2BqUS0jnzh9mc6KoEknppb6DsOMW6CvGUOoudHeeXPI2iN6H9X1ZGYybhKuF171ykgpsuQ79hf1TQjQEFFtkAFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76c3a6f2edfc8924-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
172.64.203.23200 OK 0 B URL HTTP/2 friendshipmale.com/sfp.js
IP 172.64.203.23:0
Analyzer Verdict Alert quad9 Sinkholed
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:21 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 79d76a70c1ef4cb8993459b2e2053966
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 18 Nov 2022 21:03:20 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PzBclJJ1gnYG9cfhSfZwnBeeN5mPzG4FGlxdoLT6%2FNk6ijbTUo87HgClOULUvrMl2aW8YaadVSYlYgoiRe4Cb56f%2BcUEvmFBOI7VaHRIM51aiZnk8Fhnga9p7QUiLytEF0jbQcI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a6fdc841f43b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
widgets.pinterest.com/v1/urls/count.json?url=http%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8&callback=window._ate.cbs.rcb_7t6e0
151.101.84.84200 OK 0 B URL HTTP/2 widgets.pinterest.com/v1/urls/count.json?url=http%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8&callback=window._ate.cbs.rcb_7t6e0
IP 151.101.84.84:0
GET /v1/urls/count.json?url=http%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8&callback=window._ate.cbs.rcb_7t6e0 HTTP/1.1
Host: widgets.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/javascript
cache-control: must-revalidate, max-age=887
expires: Fri, 18 Nov 2022 21:18:24 GMT
x-envoy-upstream-service-time: 2
x-pinterest-rid: 9548100985058187
date: Fri, 18 Nov 2022 21:03:24 GMT
age: 0
content-encoding: br
vary: accept-encoding
accept-ranges: none
X-Firefox-Spdy: h2
ugroocuw.net/?rb=0Ys47KaVlaPmTd7Q3b7eTEWA3M7euDcdzL6SnLWDwv2UT6qdRMnean6YqZjakfAkTD-4j_9318pVYyg2DAOY_kKse1FZuhTYfCggmo7Rw_X4_rVpuGwa-TcZMqtrcAGEzilsmUh19P_SuW2Ntag1_NHTQ13g_L-6W0Dj-JG9YF9I7IDjXubbRPo2jil3wIdlc0TeJ4GNtLC5XOPHuA1qZ7BJRrtlVZtPCa0L3w%3D%3D&request_ab2=0&zoneid=4847463&js_build=iclick-v1.450.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=898&wiw=1280&wfc=1&pl=https%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.450.0&bs=1e946c15-a6fe-420c-93ef-869ede230544&userId=109d131608fa4fafa5319f4975084082&m=link
139.45.197.239200 OK 0 B URL HTTP/2 ugroocuw.net/?rb=0Ys47KaVlaPmTd7Q3b7eTEWA3M7euDcdzL6SnLWDwv2UT6qdRMnean6YqZjakfAkTD-4j_9318pVYyg2DAOY_kKse1FZuhTYfCggmo7Rw_X4_rVpuGwa-TcZMqtrcAGEzilsmUh19P_SuW2Ntag1_NHTQ13g_L-6W0Dj-JG9YF9I7IDjXubbRPo2jil3wIdlc0TeJ4GNtLC5XOPHuA1qZ7BJRrtlVZtPCa0L3w%3D%3D&request_ab2=0&zoneid=4847463&js_build=iclick-v1.450.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=898&wiw=1280&wfc=1&pl=https%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.450.0&bs=1e946c15-a6fe-420c-93ef-869ede230544&userId=109d131608fa4fafa5319f4975084082&m=link
IP 139.45.197.239:0
GET /?rb=0Ys47KaVlaPmTd7Q3b7eTEWA3M7euDcdzL6SnLWDwv2UT6qdRMnean6YqZjakfAkTD-4j_9318pVYyg2DAOY_kKse1FZuhTYfCggmo7Rw_X4_rVpuGwa-TcZMqtrcAGEzilsmUh19P_SuW2Ntag1_NHTQ13g_L-6W0Dj-JG9YF9I7IDjXubbRPo2jil3wIdlc0TeJ4GNtLC5XOPHuA1qZ7BJRrtlVZtPCa0L3w%3D%3D&request_ab2=0&zoneid=4847463&js_build=iclick-v1.450.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=898&wiw=1280&wfc=1&pl=https%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.450.0&bs=1e946c15-a6fe-420c-93ef-869ede230544&userId=109d131608fa4fafa5319f4975084082&m=link HTTP/1.1
Host: ugroocuw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.bflix.to/
Origin: https://web.bflix.to
Connection: keep-alive
Cookie: OAID=109d131608fa4fafa5319f4975084082; oaidts=1668805400
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 21:03:21 GMT
content-type: application/json
x-trace-id: 0d08a05cfd5fa8ca31f6ad7bfd6ac854
access-control-allow-origin: https://web.bflix.to
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=109d131608fa4fafa5319f4975084082; expires=Sat, 18 Nov 2023 21:03:21 GMT; path=/; secure; SameSite=None
oaidts=1668805401; expires=Sat, 18 Nov 2023 21:03:21 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 25 Nov 2022 21:03:21 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
web.bflix.to/series/house-qk23/1-8
104.31.16.126200 OK 0 B URL HTTP/2 web.bflix.to/series/house-qk23/1-8
IP 104.31.16.126:0
GET /series/house-qk23/1-8 HTTP/1.1
Host: web.bflix.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
x-dynamic-cache: MISS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=szyE60ewJZhUi1QPaXKA1jM%2FrHgylgzwEKoVZ%2FG1BfscKZzhA6Am7995LFukD5r6B%2F9PE5nHzT0osuunKrmIeqCosB%2FNVY2yYfI4vyLKuUrAcoFOXDHJj0S5Ympno6c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76c3a6f04f27fab8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ugroocuw.net/5/4847463/?oo=1&aab=1
139.45.197.239200 OK 0 B URL HTTP/2 ugroocuw.net/5/4847463/?oo=1&aab=1
IP 139.45.197.239:0
GET /5/4847463/?oo=1&aab=1 HTTP/1.1
Host: ugroocuw.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.bflix.to
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 21:03:20 GMT
content-type: application/json
x-trace-id: 90c1a66a9cff5e9dc944def3325438c8
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: https://web.bflix.to
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=109d131608fa4fafa5319f4975084082; expires=Sat, 18 Nov 2023 21:03:20 GMT; path=/; secure; SameSite=None
oaidts=1668805400; expires=Sat, 18 Nov 2023 21:03:20 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
vidstream.pro/assets/players/jwplayer-8.24.3/jwplayer.js
172.64.137.29200 OK 0 B URL HTTP/2 vidstream.pro/assets/players/jwplayer-8.24.3/jwplayer.js
IP 172.64.137.29:0
GET /assets/players/jwplayer-8.24.3/jwplayer.js HTTP/1.1
Host: vidstream.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidstream.pro/e/QVY9LGK26P2M?sub.info=https%3A%2F%2Fweb.bflix.to%2Fajax%2Fepisode%2Fsubtitles%2F934dc28b9b4fbfb26ac0782731ac7579%3F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:21 GMT
content-type: application/javascript
last-modified: Sat, 23 Jul 2022 16:29:51 GMT
etag: W/"62dc21ff-1bdd5"
x-cache: MISS
expires: Sat, 03 Dec 2022 11:04:01 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 1331959
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZoBTo6VCuqmNsjAVfrNOxHMcvJbKmWYaFKuzPf4XDEw0oPiFvLyxEWHVJgOSW89BmNBkBWUOszc%2BIAOxEC8HA85o34qNGpIuQaltRQgBWF%2FGfBlBXyzIhyq%2FVMRLj5Qy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a6fffc817719-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/us/adult/desc/1/css/style.css
172.64.108.13200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/us/adult/desc/1/css/style.css
IP 172.64.108.13:0
GET /sb/notifications/games/hentai-heroes/us/adult/desc/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.bflix.to
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:24 GMT
content-type: text/css
last-modified: Wed, 21 Sep 2022 07:22:59 GMT
etag: W/"632abbd3-191c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 262212
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3FKnbx5L1kf5XlNMoQKhOD42o8vroO7FvIxnOv1%2BJJaCDc4m2TOV53XYD9zwZ0RRI3l%2FS6NmWqY0%2BYqPhxfTIKUWrbIzgM4NbuR7TStEtpoJSQxaoQtqILYwPZ%2BsMvyuXdJ55VHpixON"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a70f3dc9731a-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
widgets.pinterest.com/v1/urls/count.json?url=https%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8&callback=window._ate.cbs.rcb_cfz60
151.101.84.84200 OK 0 B URL HTTP/2 widgets.pinterest.com/v1/urls/count.json?url=https%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8&callback=window._ate.cbs.rcb_cfz60
IP 151.101.84.84:0
GET /v1/urls/count.json?url=https%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8&callback=window._ate.cbs.rcb_cfz60 HTTP/1.1
Host: widgets.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/javascript
cache-control: must-revalidate, max-age=887
expires: Fri, 18 Nov 2022 21:18:24 GMT
x-envoy-upstream-service-time: 1
x-pinterest-rid: 1181464287006404
date: Fri, 18 Nov 2022 21:03:24 GMT
age: 0
content-encoding: br
vary: accept-encoding
accept-ranges: none
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600;700&family=Roboto:wght@100;300;400;500;700;900&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600;700&family=Roboto:wght@100;300;400;500;700;900&display=swap
IP 142.250.74.10:0
GET /css2?family=Montserrat:wght@300;400;500;600;700&family=Roboto:wght@100;300;400;500;700;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 18 Nov 2022 21:03:19 GMT
date: Fri, 18 Nov 2022 21:03:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
vidstream.pro/assets/vidstream/cache/styles.css?v=1668801608
172.64.137.29200 OK 0 B URL HTTP/2 vidstream.pro/assets/vidstream/cache/styles.css?v=1668801608
IP 172.64.137.29:0
GET /assets/vidstream/cache/styles.css?v=1668801608 HTTP/1.1
Host: vidstream.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vidstream.pro/e/QVY9LGK26P2M?sub.info=https%3A%2F%2Fweb.bflix.to%2Fajax%2Fepisode%2Fsubtitles%2F934dc28b9b4fbfb26ac0782731ac7579%3F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:21 GMT
content-type: text/css
last-modified: Fri, 18 Nov 2022 20:00:03 GMT
etag: W/"6377e443-27a37"
x-cache: MISS
expires: Sun, 18 Dec 2022 20:00:10 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3791
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FYLZApjhU4kMGWqg7OwZcK%2BZpKonLIjsTFTE%2BzNXFHGaSGWYfRq26w4vBHiv2snmsE3K%2FiENSGPewghnf%2FX51OIXZuWxnJOYdCIM%2FT7bIoqlT2LTq%2FfGjrTro92TXaMH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a6ffec787719-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s1.bunnycdn.ru/assets/template_2/style_1/min/all.css?636f2814
172.64.110.21200 OK 0 B URL HTTP/2 s1.bunnycdn.ru/assets/template_2/style_1/min/all.css?636f2814
IP 172.64.110.21:0
GET /assets/template_2/style_1/min/all.css?636f2814 HTTP/1.1
Host: s1.bunnycdn.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:19 GMT
content-type: text/css
last-modified: Tue, 06 Sep 2022 07:31:29 GMT
vary: Accept-Encoding
etag: W/"6316f751-3d158"
x-frame-options: SAMEORIGIN
access-control-allow-origin: *
cache-control: max-age=31536000
cf-cache-status: HIT
age: 575979
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PA%2BSp0%2FdCuVBc6yJ4UiIEu0L4A%2BdRzCcoZD5Os13Ig%2FQWXF%2FaBms7MKClTZcaXz%2FfPUeXGqTjhwslskS0tS5zx0KfudHjbqCu4QdCe7FhAQ5tPsmaECiDcpDe3V18bvxOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76c3a6f2fe138924-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
whos.amung.us/pingjs/?k=ae983da07814&c=s&x=https%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8&v=29&r=7769
172.67.8.141200 OK 0 B URL HTTP/2 whos.amung.us/pingjs/?k=ae983da07814&c=s&x=https%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8&v=29&r=7769
IP 172.67.8.141:0
GET /pingjs/?k=ae983da07814&c=s&x=https%3A%2F%2Fweb.bflix.to%2Fseries%2Fhouse-qk23%2F1-8&v=29&r=7769 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.bflix.to
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:21 GMT
content-type: text/javascript;charset=UTF-8
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76c3a6fdbf82b51d-OSL
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/us/adult/desc/1/css/animate.css
172.64.108.13200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/us/adult/desc/1/css/animate.css
IP 172.64.108.13:0
GET /sb/notifications/games/hentai-heroes/us/adult/desc/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.bflix.to
Connection: keep-alive
Referer: https://web.bflix.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 21:03:24 GMT
content-type: text/css
last-modified: Thu, 18 Aug 2022 09:42:50 GMT
etag: W/"62fe099a-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 262212
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LVBZaCuLWPiZs2DJ5IGJqzlv1wWNbnlLNgb9kg2NnRbDIoO8AyGVncUUZU%2BbAMoNlXCUijJE920yNCDNCiZJmK12TULTY0MyQ%2BH5AYbHKuTq%2BSbZb03C89uUtM9LWCKZrohuszc96YuZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c3a70f2dba731a-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2