fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-%20
149.202.74.222301 Moved Permanently 410 B URL HTTP/1.1 fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-%20
IP 149.202.74.222:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash aae1fbd14f1ca0568206f24eb6b8f675
c774e052534b9269c5876f62d330dd70199345d9
0536a51626aa0f84b6fe90d978bf600f11b7fe5fbc9047af6f26b04f8ccf5f40
Analyzer Verdict Alert openphish Facebook, Inc.
fortinet Phishing
GET /direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-%20 HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 11 Sep 2022 21:08:46 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Location: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Content-Length: 410
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 11 Sep 2022 20:48:35 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SPJRK89k2DMc5wG1NmqMhGl-D_1HPr7WRnJBNXv8d8Mlm29bVJ5f0g==
Age: 1211
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2401
Expires: Sun, 11 Sep 2022 21:48:47 GMT
Date: Sun, 11 Sep 2022 21:08:46 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 11 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VHJ1UGUoaL9-xIv9HrV4hdZuR9vYbzrtn3Xa4LvlI0XLn0qxbiBuhQ==
age: 49894
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 3593c318da759736e0e02725c17fe43e
5561027e66497a47365ea761c1016aa8e7595a98
1acb35c10748aa11c9db5a7b5d915d71993476eb564626c0a5587db6ccb666fb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1ACB35C10748AA11C9DB5A7B5D915D71993476EB564626C0A5587DB6CCB666FB"
Last-Modified: Sat, 10 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8292
Expires: Sun, 11 Sep 2022 23:26:58 GMT
Date: Sun, 11 Sep 2022 21:08:46 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 21:08:46 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
149.202.74.222200 OK 79 kB URL HTTP/1.1 fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
IP 149.202.74.222:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (41161)
Hash 2b1efa52c17d235a3241fb2ee6608c18
dd253bf290da097cc2e2f05d2f4b4d66d3241b46
5b50249544dd6e7fb532caa23f2d9a256325537ae928ce726921b3b30702fcd2
Analyzer Verdict Alert openphish Facebook, Inc.
fortinet Phishing
GET /direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q- HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:46 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr; Domain=fr.movieproxy.com; Path=/
vary: Accept-Encoding
Pragma: no-cache, no-cache
Cache-Control: no-store, no-cache, must-revalidate, private, no-cache, no-store, must-revalidate
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/mobile.facebook.com\/ajax\/mtouch_error_reports\/?device_level=unknown"}]}
x-content-type-options: nosniff
cross-origin-opener-policy: same-origin-allow-popups
x-fb-zr-redirect: 02|1663016926|
x-fb-debug: PgocTrPhO4s6vW9WLMv+KS+clU53gVaz3PeJBwKCv1wIlQhU0tz7tyePjsKf/BC5uZx2wtZDbI5oRL5PxKZxbQ==
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
access-control-allow-origin: *
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_WW2~jrEXYhVA9hsBFh81MqRMZelxE6IKFe2HmE94AP75w59UBXeHiQR~K4ol4oSPvwvq954jpLjvuPDWlfcdZn
149.202.74.222200 OK 11 kB URL HTTP/1.1 fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_WW2~jrEXYhVA9hsBFh81MqRMZelxE6IKFe2HmE94AP75w59UBXeHiQR~K4ol4oSPvwvq954jpLjvuPDWlfcdZn
IP 149.202.74.222:0
File type ASCII text, with very long lines (2754)
Hash a01e09abe014c2a1d8d80539ff1b7c80
53b8e6fef723e2e24eb3d2f97033c4ce0f7aa7a9
7b3f9a5dd25f4174382e5b45496f1e9793e83b369e56816de83bfe7330adc358
Analyzer Verdict Alert fortinet Phishing
GET /secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_WW2~jrEXYhVA9hsBFh81MqRMZelxE6IKFe2HmE94AP75w59UBXeHiQR~K4ol4oSPvwvq954jpLjvuPDWlfcdZn HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:46 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Mon, 11 Sep 2023 17:56:38 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: rnC528QHb2OrBRmvXaRhjA==
x-fb-debug: WRGqh3lYBrNIcIx24GfjS7Si8g/pRvIUAUj6dTTCxciCDds68ZGUgHvmgHfKoqvH2EGXN+Z2jyqbRQLhq6sM2w==
priority: u=3,i
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=99
Transfer-Encoding: chunked
Content-Type: text/css; charset=utf-8
code.jquery.com/jquery-2.2.1.min.js
69.16.175.10200 OK 30 kB URL HTTP/2 code.jquery.com/jquery-2.2.1.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (32019)
Hash 5b423a4bde44e2d03668c8fc2e230758
60fb13614d1bfe3685d09e070ffc654f2b0729f4
26a46a57e001319776582d64bc222e2bb0fccb213486d170fa60980996f70bce
GET /jquery-2.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 21:08:47 GMT
content-encoding: gzip
content-length: 29882
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-14e7e"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1662930527.dop232.sk1.t,1662930527.cds066.sk1.hn,1662930527.cds263.sk1.c
X-Firefox-Spdy: h2
fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_WXgo~ef1lMHRDrkDfEQBzsEmdp3kLjzgM5cUQGkHdBCK1MIHfbqdZcsTQFtB08iMc-
149.202.74.222200 OK 23 kB URL HTTP/1.1 fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_WXgo~ef1lMHRDrkDfEQBzsEmdp3kLjzgM5cUQGkHdBCK1MIHfbqdZcsTQFtB08iMc-
IP 149.202.74.222:0
File type C source, ASCII text, with very long lines (7258)
Hash 78d23c5b69330712699f4d414651361a
afade4a2e946675c9b0671b7b8aecc66bc4bc4ab
608c3b1816c7eea6f97e346eaa5b60b62321221ee9eb1f6dd904ef4b59ff753b
Analyzer Verdict Alert fortinet Phishing
GET /secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_WXgo~ef1lMHRDrkDfEQBzsEmdp3kLjzgM5cUQGkHdBCK1MIHfbqdZcsTQFtB08iMc- HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Mon, 11 Sep 2023 17:26:55 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ODuX+bbkBm3bbvtysi0Skg==
x-fb-debug: q2zoUQQuwdGvZvy4KffJKAIFhLbtBD0sc5DpTd9G6C+uU57crV8/2syigC17piPwXSEV1dvWvSFOEn2GO80q2Q==
priority: u=3,i
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=98
Transfer-Encoding: chunked
Content-Type: application/x-javascript; charset=utf-8
fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_Wq3y09D8Od0HcTFOzClp7apywB7tPrSUrNbfnRPcQnuk5yllSfeuEK89OCFS7hpR9y0YEz60kA2_7RGRFXJ3CA
149.202.74.222200 OK 3.0 kB URL HTTP/1.1 fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_Wq3y09D8Od0HcTFOzClp7apywB7tPrSUrNbfnRPcQnuk5yllSfeuEK89OCFS7hpR9y0YEz60kA2_7RGRFXJ3CA
IP 149.202.74.222:0
File type ASCII text, with very long lines (2201)
Hash aad802f58e46ea607d4d6b580da4bfd4
a94d2ce08a0ca2cda8a62500dc0680c3749e5a2a
3dc76f9b6f372bd4b1dcc099ecb3fb20e1ec28818d59c73e67a2acaaa75760b0
Analyzer Verdict Alert fortinet Phishing
GET /secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_Wq3y09D8Od0HcTFOzClp7apywB7tPrSUrNbfnRPcQnuk5yllSfeuEK89OCFS7hpR9y0YEz60kA2_7RGRFXJ3CA HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Thu, 31 Aug 2023 17:08:10 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 3uooRztRH/PISmg3mAEnbg==
x-fb-debug: TaEqoIxEcVWckQ+cqskYIrc7s9S7lxPLBrlT2bq9u7h+Eyy02Jgc3wamoatX2bESFN5me/XFL19/1+Dkzm/A2g==
priority: u=3,i
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Content-Length: 2989
Keep-Alive: timeout=5, max=100
Content-Type: text/css; charset=utf-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 11 Sep 2022 20:56:07 GMT
Expires: Sun, 11 Sep 2022 21:30:08 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DuiC0AKRaLutHtfJgUV36TqPR2hlBGsqfV4E2wGEWDuSDHn67RMmSA==
Age: 759
fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_XFGtjEYsf6ZiqyzaRVKGjN7JBS5r1OkM60UaslcA4sPu2sx0HrANT5i02W18OhmmXR1zW7QhySER4td7CWaVhs
149.202.74.222200 OK 40 kB URL HTTP/1.1 fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_XFGtjEYsf6ZiqyzaRVKGjN7JBS5r1OkM60UaslcA4sPu2sx0HrANT5i02W18OhmmXR1zW7QhySER4td7CWaVhs
IP 149.202.74.222:0
File type C source, ASCII text, with very long lines (10494)
Hash 6adaa8cd17e878b65f5690b9fca7dbaf
34aaa5cdae0c920b4a9a5edeb5ed05f9077c0a73
39c605288527fb94b8a776f0796703c0cd56562523162063d9fe6b9fcd242589
Analyzer Verdict Alert fortinet Phishing
GET /secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_XFGtjEYsf6ZiqyzaRVKGjN7JBS5r1OkM60UaslcA4sPu2sx0HrANT5i02W18OhmmXR1zW7QhySER4td7CWaVhs HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Mon, 11 Sep 2023 17:26:55 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: CXN6UvQgHVONuw2Euf1ywA==
x-fb-debug: fUHydB4Vt0V9qUclxTGz37I19j4LimPEvSDEcLOU0sjQTEoIuCoD9ugIXqeGsBkmGxPTfqAAVmLSJ0e7n0gVzQ==
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: application/x-javascript; charset=utf-8
fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_WBxclFY4xKrrd6dU0rA2EfN~IS~5EWusgJjzv35LhcHLgFxGJ2P53q~K4FMm_JUvA-
149.202.74.222200 OK 36 kB URL HTTP/1.1 fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_WBxclFY4xKrrd6dU0rA2EfN~IS~5EWusgJjzv35LhcHLgFxGJ2P53q~K4FMm_JUvA-
IP 149.202.74.222:0
File type ASCII text, with very long lines (7854)
Hash be256935081d4590258583737297325d
fb1ae74db3aa5a48bf1839f0c76c59be5d9b666d
e27926eab67297b70b1e869fcbf9f0b20778eb0646b6e692c503b3227822fce4
Analyzer Verdict Alert fortinet Phishing
GET /secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_WBxclFY4xKrrd6dU0rA2EfN~IS~5EWusgJjzv35LhcHLgFxGJ2P53q~K4FMm_JUvA- HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Mon, 11 Sep 2023 17:26:55 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Wm3FqWEqsmkS4BrvmeOGjA==
x-fb-debug: 5wkUsR/88c4GjzlyODWlAgXOTG+QEOMXGmH+jAB3xsjs2IumqLpN0j1D3qbEktM2z4tl+JpY8zdlVIBdu3r6uA==
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: application/x-javascript; charset=utf-8
fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_V7609Hd7acHvriU2yPXtvhtf6B~NROtSBexyOQDWWe79kv9ycOjtPbOxZyA9aOC80-
149.202.74.222200 OK 8.4 kB URL HTTP/1.1 fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_V7609Hd7acHvriU2yPXtvhtf6B~NROtSBexyOQDWWe79kv9ycOjtPbOxZyA9aOC80-
IP 149.202.74.222:0
File type ASCII text, with very long lines (5814)
Hash 35ec87f9cbc851b626342d4f7dea626d
016574d5bbf8f77ddbf34e5233fc72a6faa6c6c1
5cd872d9d949756fbb388cffd1e35ce06ddde808b0f89cd99ce338db6574ca2f
Analyzer Verdict Alert fortinet Phishing
GET /secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_V7609Hd7acHvriU2yPXtvhtf6B~NROtSBexyOQDWWe79kv9ycOjtPbOxZyA9aOC80- HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Mon, 11 Sep 2023 17:28:39 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: pkLE7bnIJfzuGjQnDY4Dnw==
x-fb-debug: r9PuQ4Bq57nh9QimLAsyrgeG6GT170vEyDkgd52UOawW/bIAGYsazDLN/CfA/HKNAZxc1o/OamtQITroW9Bbrw==
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=97
Transfer-Encoding: chunked
Content-Type: application/x-javascript; charset=utf-8
fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_X4_yqXIwuSWZLCIP~kbfNbbVQwp7jAztL3qFdjvuiCqOPU4hl2YtXzaBloqpvB0Xg-
149.202.74.222200 OK 49 kB URL HTTP/1.1 fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_X4_yqXIwuSWZLCIP~kbfNbbVQwp7jAztL3qFdjvuiCqOPU4hl2YtXzaBloqpvB0Xg-
IP 149.202.74.222:0
File type ASCII text, with very long lines (5830)
Hash 5d50ba57ee4ff1aeaa876583a353bcdc
5b16adbfb6ca2d1e8a9bc1779b795250c361ff52
f1b7b2e82f157243314e4e90c84a2ccee230ee4c0968fafcaf28a76552aad605
Analyzer Verdict Alert fortinet Phishing
GET /secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_X4_yqXIwuSWZLCIP~kbfNbbVQwp7jAztL3qFdjvuiCqOPU4hl2YtXzaBloqpvB0Xg- HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Tue, 05 Sep 2023 15:26:34 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: tPK3EmaszJaiskX3/d0bdQ==
x-fb-debug: O1H8qlv6arzxGMxVnGUghGMB0bFt+YjPN+qojkiQRRqJ7Zsp16JDoBdrskk8adLQu64D5y9+zEaOMm6kYtSqvQ==
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: application/x-javascript; charset=utf-8
fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_VQVZyGWPwI4hOjrBn0aSB0Ef894URhvCBBKsbPoxL7F7zQDMSbuqS5hlicbxr7BSDz5nhuYsljcHtk3iASn9y3
149.202.74.222200 OK 37 kB URL HTTP/1.1 fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_VQVZyGWPwI4hOjrBn0aSB0Ef894URhvCBBKsbPoxL7F7zQDMSbuqS5hlicbxr7BSDz5nhuYsljcHtk3iASn9y3
IP 149.202.74.222:0
File type ASCII text, with very long lines (6645)
Hash d4c161de6c2665f063b32752c8cf5595
9796b2ebcbac80cfe5c2446e42edc3bbdc97420a
c6ed167394f4f49e7a61b73d102ac675e327af2f7d6b86cf09f2fd618703bfea
Analyzer Verdict Alert fortinet Phishing
GET /secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_VQVZyGWPwI4hOjrBn0aSB0Ef894URhvCBBKsbPoxL7F7zQDMSbuqS5hlicbxr7BSDz5nhuYsljcHtk3iASn9y3 HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Mon, 11 Sep 2023 18:47:01 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: DGrv9EUt8Ktv/vqs3GIS1w==
x-fb-debug: Y7Ja26Gt5KUvxQrBbTG6rGhEpYtnqGdD/PeP+5nhkdRtqg2zaXJaf5PZCkJ14uX+TrPD+dinVv5Vih0X7i0lRg==
priority: u=3,i
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=99
Transfer-Encoding: chunked
Content-Type: text/css; charset=utf-8
fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_Vonyxe36TwBZN0Ff3w1Ujxg6dwP07F2ttdbcKEuG1BVJ3hpmazefdoH3ssXvgze8hJmTw~9Cxrmsyiiu7dIJPJ
149.202.74.222200 OK 38 kB URL HTTP/1.1 fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_Vonyxe36TwBZN0Ff3w1Ujxg6dwP07F2ttdbcKEuG1BVJ3hpmazefdoH3ssXvgze8hJmTw~9Cxrmsyiiu7dIJPJ
IP 149.202.74.222:0
File type ASCII text, with very long lines (9228)
Hash 9ffdb6c6e4fce8a4c80cab8325ac8cf0
b753c1f17871c237d0e56f7b6691cb8518f257cd
1f57000714948e4727be477871de5b0a2233a715e69ac10ea0b30916be96c9f5
Analyzer Verdict Alert fortinet Phishing
GET /secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_Vonyxe36TwBZN0Ff3w1Ujxg6dwP07F2ttdbcKEuG1BVJ3hpmazefdoH3ssXvgze8hJmTw~9Cxrmsyiiu7dIJPJ HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Mon, 11 Sep 2023 18:47:01 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: sk7S7OLQNb48LXTWoe0s8w==
x-fb-debug: iega4dgeFwdSQRnXugORYbg3FQ/NMCTzjZVa0WBs19OMEb5mBd3Hvmo7QdnF1jtK2LsEAcV67W/DzF4B79DbxA==
priority: u=3,i
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=99
Transfer-Encoding: chunked
Content-Type: text/css; charset=utf-8
fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_VfDQ69N1oCxjlrJuyK4LKg~Bslh0htDH8GVKL42Cvh~p97Syn6f8laMdgMOPAwnD8KQpkzyNTPQa1pMsegIy8I
149.202.74.222200 OK 19 kB URL HTTP/1.1 fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_VfDQ69N1oCxjlrJuyK4LKg~Bslh0htDH8GVKL42Cvh~p97Syn6f8laMdgMOPAwnD8KQpkzyNTPQa1pMsegIy8I
IP 149.202.74.222:0
File type ASCII text, with very long lines (9262)
Hash 2361b5231fe238a01146daa196cd3705
a184fb2a23cf04ee37c02d324903505dad75ea9d
9ba9db16a1c97207415e50a32ba545be5ed7fcba242b13f11f36d1919b6c2628
Analyzer Verdict Alert fortinet Phishing
GET /secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_VfDQ69N1oCxjlrJuyK4LKg~Bslh0htDH8GVKL42Cvh~p97Syn6f8laMdgMOPAwnD8KQpkzyNTPQa1pMsegIy8I HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Sat, 09 Sep 2023 18:32:07 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: IaDmWYJ4c4dSunbxINGsWw==
x-fb-debug: OEttL4juvKoj93i7UMQc61bFgEI1c9axSPYePquoSoSQXrEZqsRwVxmTbQQdgO7ulJOzhw+2Y+sg6KZvWyMgtA==
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=99
Transfer-Encoding: chunked
Content-Type: text/css; charset=utf-8
fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_XRXWJts7BFaVy0ATR~jjxBjb0J89LLTHIb3d~EE7cBGdAmPGfd9_tg~4UDHr79Id5IQ1ZI3pLBHRG3E3fl75aA
149.202.74.222200 OK 168 kB URL HTTP/1.1 fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_XRXWJts7BFaVy0ATR~jjxBjb0J89LLTHIb3d~EE7cBGdAmPGfd9_tg~4UDHr79Id5IQ1ZI3pLBHRG3E3fl75aA
IP 149.202.74.222:0
File type C source, ASCII text, with very long lines (7157)
Size 168 kB (167521 bytes)
Hash 96e33c6ba536aa85d5f69db4cc8cdee9
8b05129e80338b9e6a10ea59e2b696cfac128339
b72348a189eea906fba01538d8c9e3294796c27558db37b378e963e07375ad67
Analyzer Verdict Alert fortinet Phishing
GET /secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_XRXWJts7BFaVy0ATR~jjxBjb0J89LLTHIb3d~EE7cBGdAmPGfd9_tg~4UDHr79Id5IQ1ZI3pLBHRG3E3fl75aA HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Fri, 08 Sep 2023 19:55:32 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: hQ7muS7ouwMx9xl9fazRYw==
x-fb-debug: K9Z1WeQUIM9eW0i+/206vYaMCCjSjqgJl03SdPdYJMgUk3OGnaGo1SHqlnlcfAkcg7tpViKewL0yFYxhAHsXLA==
priority: u=3,i
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=96
Transfer-Encoding: chunked
Content-Type: application/x-javascript; charset=utf-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 26e829ba5f754918e20cbd316dc4348e
ba198501da0812dd11ca3b38a51325b5de6cfa60
4352c25d4af7637a8435b0df6d042fc606d37a348e966b99fecce8a853b8ebc0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2530
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 21:08:47 GMT
Last-Modified: Sun, 11 Sep 2022 20:26:37 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.39.126.109101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.126.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xl95WLki8y9BWrY02CkUeg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3O5clkDGUGvoR2KDGT0/utXx9Zs=
fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_XRXWJts7BFaVy0ATR~jjxBjb0J89LLTHIb3d~EE7cBGdAmPGfd9_tg~4UDHr79Id5IQ1ZI3pLBHRG3E3fl75aA
149.202.74.222200 OK 168 kB URL HTTP/1.1 fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_XRXWJts7BFaVy0ATR~jjxBjb0J89LLTHIb3d~EE7cBGdAmPGfd9_tg~4UDHr79Id5IQ1ZI3pLBHRG3E3fl75aA
IP 149.202.74.222:0
File type C source, ASCII text, with very long lines (7157)
Size 168 kB (167521 bytes)
Hash 96e33c6ba536aa85d5f69db4cc8cdee9
8b05129e80338b9e6a10ea59e2b696cfac128339
b72348a189eea906fba01538d8c9e3294796c27558db37b378e963e07375ad67
Analyzer Verdict Alert fortinet Phishing
GET /secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_XRXWJts7BFaVy0ATR~jjxBjb0J89LLTHIb3d~EE7cBGdAmPGfd9_tg~4UDHr79Id5IQ1ZI3pLBHRG3E3fl75aA HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Fri, 08 Sep 2023 19:55:32 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: hQ7muS7ouwMx9xl9fazRYw==
x-fb-debug: K9Z1WeQUIM9eW0i+/206vYaMCCjSjqgJl03SdPdYJMgUk3OGnaGo1SHqlnlcfAkcg7tpViKewL0yFYxhAHsXLA==
priority: u=3,i
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=95
Transfer-Encoding: chunked
Content-Type: application/x-javascript; charset=utf-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c52f00dc203483501330b93da8673ea
bb58935fa272c810572d3290a9835e1390a8ef35
4cbe66c98fdaa1bdce29769a8dda769b7b46e14a8bdab5c61bba9e171ec925f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6075
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 21:08:47 GMT
Last-Modified: Sun, 11 Sep 2022 19:27:32 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c52f00dc203483501330b93da8673ea
bb58935fa272c810572d3290a9835e1390a8ef35
4cbe66c98fdaa1bdce29769a8dda769b7b46e14a8bdab5c61bba9e171ec925f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6075
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 21:08:47 GMT
Last-Modified: Sun, 11 Sep 2022 19:27:32 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c52f00dc203483501330b93da8673ea
bb58935fa272c810572d3290a9835e1390a8ef35
4cbe66c98fdaa1bdce29769a8dda769b7b46e14a8bdab5c61bba9e171ec925f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6075
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 21:08:47 GMT
Last-Modified: Sun, 11 Sep 2022 19:27:32 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzaUxsZTQveTQvbC9lbl9VUy9CQ2VuMHJvSHFTei5qcz9fbmNfeD1JajNXcDhsZzVLeg--+
149.202.74.222200 OK 40 kB URL HTTP/1.1 fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzaUxsZTQveTQvbC9lbl9VUy9CQ2VuMHJvSHFTei5qcz9fbmNfeD1JajNXcDhsZzVLeg--+
IP 149.202.74.222:0
File type C source, ASCII text, with very long lines (10494)
Hash 6adaa8cd17e878b65f5690b9fca7dbaf
34aaa5cdae0c920b4a9a5edeb5ed05f9077c0a73
39c605288527fb94b8a776f0796703c0cd56562523162063d9fe6b9fcd242589
Analyzer Verdict Alert fortinet Phishing
GET /direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzaUxsZTQveTQvbC9lbl9VUy9CQ2VuMHJvSHFTei5qcz9fbmNfeD1JajNXcDhsZzVLeg--+ HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Mon, 11 Sep 2023 17:26:55 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: CXN6UvQgHVONuw2Euf1ywA==
x-fb-debug: fUHydB4Vt0V9qUclxTGz37I19j4LimPEvSDEcLOU0sjQTEoIuCoD9ugIXqeGsBkmGxPTfqAAVmLSJ0e7n0gVzQ==
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=98
Transfer-Encoding: chunked
Content-Type: application/x-javascript; charset=utf-8
fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3l3L3Ivdy0zT0pPeFVZTVkuanM_X25jX3g9SWozV3A4bGc1S3o-+
149.202.74.222200 OK 23 kB URL HTTP/1.1 fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3l3L3Ivdy0zT0pPeFVZTVkuanM_X25jX3g9SWozV3A4bGc1S3o-+
IP 149.202.74.222:0
File type C source, ASCII text, with very long lines (7258)
Hash 78d23c5b69330712699f4d414651361a
afade4a2e946675c9b0671b7b8aecc66bc4bc4ab
608c3b1816c7eea6f97e346eaa5b60b62321221ee9eb1f6dd904ef4b59ff753b
Analyzer Verdict Alert fortinet Phishing
GET /direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3l3L3Ivdy0zT0pPeFVZTVkuanM_X25jX3g9SWozV3A4bGc1S3o-+ HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Mon, 11 Sep 2023 17:26:55 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ODuX+bbkBm3bbvtysi0Skg==
x-fb-debug: q2zoUQQuwdGvZvy4KffJKAIFhLbtBD0sc5DpTd9G6C+uU57crV8/2syigC17piPwXSEV1dvWvSFOEn2GO80q2Q==
priority: u=3,i
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=98
Transfer-Encoding: chunked
Content-Type: application/x-javascript; charset=utf-8
fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_Xok14VcjyM7gMDSWwf~pe8sEuAEPOh9d1QwaaJICwENBMo_7eMY29e4mpwtfPpoCk-
149.202.74.222200 OK 36 kB URL HTTP/1.1 fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_Xok14VcjyM7gMDSWwf~pe8sEuAEPOh9d1QwaaJICwENBMo_7eMY29e4mpwtfPpoCk-
IP 149.202.74.222:0
File type ASCII text, with very long lines (7854)
Hash be256935081d4590258583737297325d
fb1ae74db3aa5a48bf1839f0c76c59be5d9b666d
e27926eab67297b70b1e869fcbf9f0b20778eb0646b6e692c503b3227822fce4
Analyzer Verdict Alert fortinet Phishing
GET /secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_Xok14VcjyM7gMDSWwf~pe8sEuAEPOh9d1QwaaJICwENBMo_7eMY29e4mpwtfPpoCk- HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Wed, 06 Sep 2023 21:54:26 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: gqsMkJ8x1u8/alwrHjS5WQ==
x-fb-debug: MKMkfN/Ov8pYBiImsfLFkhwlVNcSdgtty6R9/lfNLFX19jIBKXGNvwq4wIUOdifYHAHJloG/yM2wMSbQGu3N9Q==
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: application/x-javascript; charset=utf-8
static.xx.fbcdn.net/rsrc.php/v3/y6/r/isUdtRPfvUN.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 14 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y6/r/isUdtRPfvUN.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (5830)
Hash c0ba25548a5750f0c2d071e8a194d429
cc9bc7f449c34d790942d5adcb1d4c64f6e824d7
84c4eea4d16da8ab2fa6dea6325d6f6f2622ffac7df9d32ddbc5cbe32c358b85
GET /rsrc.php/v3/y6/r/isUdtRPfvUN.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fr.movieproxy.com
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 10 Sep 2023 01:31:45 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: wLolVIpXUPDC0HHooZTUKQ==
x-fb-debug: ScqdZ0kHS/mz0Lygw330s5bsqAjCxfhJKrLRZdaqPnKMOyyF0ukVMIWYs2ZV7hMvs6fAWHpucHR4WcQU9bJFvA==
content-length: 14448
x-fb-trip-id: 1679558926
date: Sun, 11 Sep 2022 21:08:47 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yo/r/-5eeVC3gLN7.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 2.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yo/r/-5eeVC3gLN7.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (5814)
Hash 33fadb44bc394ba0abf6aec993355248
1a2a2f440c3656ef077a3daba80f20397f67d817
f405ac69fda89cb170af0090e22f0f192ae697038dcb1308bd1a855e620f3cec
GET /rsrc.php/v3/yo/r/-5eeVC3gLN7.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fr.movieproxy.com
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 17:25:31 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: M/rbRLw5S6Cr9q7JkzVSSA==
x-fb-debug: /dghoHPQK34A2lT+HumB+6zVWJVE87YdqfOoXwLl4njAzHKyLZ1LvhOwp/RTV9hunW0xYQv9qUKhAufBwsB/3A==
priority: u=3,i
content-length: 2747
x-fb-trip-id: 1679558926
date: Sun, 11 Sep 2022 21:08:47 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.serveuk7.com/public/cache/fe9be950129735bbb9f4afea4e5b8ab2.js
104.21.0.90200 OK 15 kB URL HTTP/2 www.serveuk7.com/public/cache/fe9be950129735bbb9f4afea4e5b8ab2.js
IP 104.21.0.90:0
File type C source, ASCII text, with very long lines (3154)
Hash d8ee7bfdbe41050d1a4972229d5cf636
c6533e60d6157770e7bd7c98ec088069157f59d6
dcac03306e58cc91647958d6acae3d1fca28c242ed5b700f6c19c9c9b7d0b20a
Analyzer Verdict Alert fortinet Malware
GET /public/cache/fe9be950129735bbb9f4afea4e5b8ab2.js HTTP/1.1
Host: www.serveuk7.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 21:08:47 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=9361
etag: W/"2491-5d3674ae04b69"
last-modified: Sat, 18 Dec 2021 08:17:54 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=2678400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BS5jSvLCwmu8buucmsCVHDgqPmh8B91f8NUT8WyHwAdTZJD%2FS38VOZ782JmvKfYMPseC4EdYRIMbQqxHtxSwwV%2Fd9vmXEgYHh3Opfsj6mYiDREsY4RyyDVVWehGIf9xxW2jg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74936171abc2b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3lvL3IvLTVlZVZDM2dMTjcuanM_X25jX3g9SWozV3A4bGc1S3o-+
149.202.74.222200 OK 8.4 kB URL HTTP/1.1 fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3lvL3IvLTVlZVZDM2dMTjcuanM_X25jX3g9SWozV3A4bGc1S3o-+
IP 149.202.74.222:0
File type ASCII text, with very long lines (5814)
Hash 35ec87f9cbc851b626342d4f7dea626d
016574d5bbf8f77ddbf34e5233fc72a6faa6c6c1
5cd872d9d949756fbb388cffd1e35ce06ddde808b0f89cd99ce338db6574ca2f
Analyzer Verdict Alert fortinet Phishing
GET /direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3lvL3IvLTVlZVZDM2dMTjcuanM_X25jX3g9SWozV3A4bGc1S3o-+ HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Mon, 11 Sep 2023 17:28:39 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: pkLE7bnIJfzuGjQnDY4Dnw==
x-fb-debug: r9PuQ4Bq57nh9QimLAsyrgeG6GT170vEyDkgd52UOawW/bIAGYsazDLN/CfA/HKNAZxc1o/OamtQITroW9Bbrw==
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=94
Transfer-Encoding: chunked
Content-Type: application/x-javascript; charset=utf-8
fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3k2L3IvaXNVZHRSUGZ2VU4uanM_X25jX3g9SWozV3A4bGc1S3o-+
149.202.74.222200 OK 49 kB URL HTTP/1.1 fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3k2L3IvaXNVZHRSUGZ2VU4uanM_X25jX3g9SWozV3A4bGc1S3o-+
IP 149.202.74.222:0
File type ASCII text, with very long lines (5830)
Hash 5d50ba57ee4ff1aeaa876583a353bcdc
5b16adbfb6ca2d1e8a9bc1779b795250c361ff52
f1b7b2e82f157243314e4e90c84a2ccee230ee4c0968fafcaf28a76552aad605
Analyzer Verdict Alert fortinet Phishing
GET /direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3k2L3IvaXNVZHRSUGZ2VU4uanM_X25jX3g9SWozV3A4bGc1S3o-+ HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Tue, 05 Sep 2023 15:26:34 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: tPK3EmaszJaiskX3/d0bdQ==
x-fb-debug: O1H8qlv6arzxGMxVnGUghGMB0bFt+YjPN+qojkiQRRqJ7Zsp16JDoBdrskk8adLQu64D5y9+zEaOMm6kYtSqvQ==
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=99
Transfer-Encoding: chunked
Content-Type: application/x-javascript; charset=utf-8
fr.movieproxy.com/secure/nweZ7R~X7QMvrM_zwqpwYgU0HIyyBGGSMi673RtdwOvPD7l_qxQgkMn0B_Aiv5IHweVGfcu4cUC~SQbDQeTHcA--
149.202.74.222200 OK 80 kB URL HTTP/1.1 fr.movieproxy.com/secure/nweZ7R~X7QMvrM_zwqpwYgU0HIyyBGGSMi673RtdwOvPD7l_qxQgkMn0B_Aiv5IHweVGfcu4cUC~SQbDQeTHcA--
IP 149.202.74.222:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (41161)
Hash c1dabf7187974a210d3eda381361943e
373345cbf13f688f1f222f19815bb9b922230b46
196871c66bb0a29173ba7e075e2f53999b9807191783c84879e1707a1af524be
Analyzer Verdict Alert fortinet Phishing
GET /secure/nweZ7R~X7QMvrM_zwqpwYgU0HIyyBGGSMi673RtdwOvPD7l_qxQgkMn0B_Aiv5IHweVGfcu4cUC~SQbDQeTHcA-- HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
vary: Accept-Encoding
Pragma: no-cache, no-cache
Cache-Control: no-store, no-cache, must-revalidate, private, no-cache, no-store, must-revalidate
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/mobile.facebook.com\/ajax\/mtouch_error_reports\/?device_level=unknown"}]}, {"max_age":3600,"endpoints":[{"url":"https:\/\/mobile.facebook.com\/ajax\/mtouch_error_reports\/?device_level=unknown"}],"group":"network-errors"}
nel: {"report_to":"network-errors","max_age":3600,"failure_fraction":0.01}
x-content-type-options: nosniff
cross-origin-opener-policy: same-origin-allow-popups
x-fb-zr-redirect: 02|1663016927|
x-fb-debug: AAwGQTLKEH7G/2Si4iXTooyLArl6nNrkWxn+TJFLvm5r+hc4c1O8qrsRf0KlfrMVGL0M/YAgBpttiMPZvGK6uA==
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr; Domain=fr.movieproxy.com; Path=/
access-control-allow-origin: *
Keep-Alive: timeout=5, max=99
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5978287a937da5c85ada1cf0d45e2c2a
9ac06c077179fdc76f171b4846d84ec4d260cf12
b3ea228f02bb9a2507e568a92d77a2055829e1bb0a539327c6a05f3136522af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B3EA228F02BB9A2507E568A92D77A2055829E1BB0A539327C6A05F3136522AF4"
Last-Modified: Sun, 11 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1958
Expires: Sun, 11 Sep 2022 21:41:25 GMT
Date: Sun, 11 Sep 2022 21:08:47 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c52f00dc203483501330b93da8673ea
bb58935fa272c810572d3290a9835e1390a8ef35
4cbe66c98fdaa1bdce29769a8dda769b7b46e14a8bdab5c61bba9e171ec925f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6075
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 21:08:47 GMT
Last-Modified: Sun, 11 Sep 2022 19:27:32 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_WE0Xv3pfqO2sPWZCsIEeDLuorFXUGFi7UghcL1z_oAHQ--
149.202.74.222200 OK 14 kB URL HTTP/1.1 fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_WE0Xv3pfqO2sPWZCsIEeDLuorFXUGFi7UghcL1z_oAHQ--
IP 149.202.74.222:0
File type PNG image data, 301 x 1208, 8-bit colormap, non-interlaced\012- data
Hash e4442ca22fee86bc5cc7fdfe28093789
93cdd53ce314ffead6435fad78313381f00f1527
b1733e3fc609941a74de9c53b960b1de453ec0d26d266ecdd4cf93abe2cf0365
Analyzer Verdict Alert fortinet Phishing
GET /secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_WE0Xv3pfqO2sPWZCsIEeDLuorFXUGFi7UghcL1z_oAHQ-- HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_Wq3y09D8Od0HcTFOzClp7apywB7tPrSUrNbfnRPcQnuk5yllSfeuEK89OCFS7hpR9y0YEz60kA2_7RGRFXJ3CA
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: 5EQsoi/uhrxcx/3+KAk3iQ==
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Wed, 30 Aug 2023 05:08:44 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: WAEMV/2K21zSauWJfVWKI4tPw8eRcTv+4inBe6iS+WXQX827zHa+/UlZHZ5vmEghJivQXrf2AexFMWtrSxQ3hw==
priority: u=3,i
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=97
Transfer-Encoding: chunked
Content-Type: image/png
static.xx.fbcdn.net/rsrc.php/v3/yw/r/w-3OJOxUYMY.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 7.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yw/r/w-3OJOxUYMY.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type C source, ASCII text, with very long lines (7258)
Hash a5ff940523b492d20bebcff9e6c84426
5d95d21b82c750867d6af1437412ab1c22b35e9a
6f2651b0acc52838b64e368f02c2a9b894615d9c85ae2dc6b532d0017573ea71
GET /rsrc.php/v3/yw/r/w-3OJOxUYMY.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fr.movieproxy.com
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 17:25:31 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: pf+UBSO0ktIL68/55shEJg==
x-fb-debug: ZUUgq0vuiB7kiWk+n0Xu4K4YFdlubynBzTDRofcCOQZYdCKhexDbW+B0yPZuqizHjjkAAefx5ZmCzOWuCyq4xA==
content-length: 7435
x-fb-trip-id: 1679558926
date: Sun, 11 Sep 2022 21:08:47 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_WBdbtU1gnxhyOl0uFrBUvRDNjbk_o4YL24kCMvVOodbA--
149.202.74.222200 OK 12 kB URL HTTP/1.1 fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_WBdbtU1gnxhyOl0uFrBUvRDNjbk_o4YL24kCMvVOodbA--
IP 149.202.74.222:0
File type PNG image data, 124 x 159, 8-bit/color RGBA, non-interlaced\012- data
Hash c3a5b6dfdedc5675b4ece0253ec50763
7d0bd94f0709a03f016111b878dd95606acf21dd
5944b6af6d4d486e657c7e9a318157e81433d013baef1c6f0482cf5f113d4ae0
Analyzer Verdict Alert fortinet Phishing
GET /secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_WBdbtU1gnxhyOl0uFrBUvRDNjbk_o4YL24kCMvVOodbA-- HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_WW2~jrEXYhVA9hsBFh81MqRMZelxE6IKFe2HmE94AP75w59UBXeHiQR~K4ol4oSPvwvq954jpLjvuPDWlfcdZn
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:47 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: w6W2397cVnW07OAlPsUHYw==
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Sun, 10 Sep 2023 15:43:33 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: rHIvZbwllqGlRUr5Ar9I3tP496I4kkIluVcLrOkTwT2dPR2fwMR61vL/r16C7tUQlz98SmAxxt/DMBKg5szrAQ==
priority: u=3,i
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=97
Transfer-Encoding: chunked
Content-Type: image/png
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c52f00dc203483501330b93da8673ea
bb58935fa272c810572d3290a9835e1390a8ef35
4cbe66c98fdaa1bdce29769a8dda769b7b46e14a8bdab5c61bba9e171ec925f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6075
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 21:08:47 GMT
Last-Modified: Sun, 11 Sep 2022 19:27:32 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
static.xx.fbcdn.net/rsrc.php/v3/yk/r/vRwuXypM6A-.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 11 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yk/r/vRwuXypM6A-.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (7854)
Hash e076888122bce7adecee2fc23991a1f3
bdf37834088ab145e5d490fb8dcdc11e45f1a60b
36e3c49a0458a56cf733a614a34140230af4bdbd00b899c89038ba9d46a79a09
GET /rsrc.php/v3/yk/r/vRwuXypM6A-.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fr.movieproxy.com
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 17:25:31 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 4HaIgSK8563s7i/COZGh8w==
x-fb-debug: l/QsgkoU/9BqLNdGYCuciANWBSPZomz5K5yEx9ab5SABBJ35s/1MlhRd3XVKrSJwEsM+2+HEc1pu1IdWkm6dtQ==
priority: u=3,i
content-length: 10687
x-fb-trip-id: 1679558926
date: Sun, 11 Sep 2022 21:08:47 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.easycounter.com/counter.php?fattwam
52.1.22.171200 OK 1.6 kB URL HTTP/1.1 www.easycounter.com/counter.php?fattwam
IP 52.1.22.171:0
File type PNG image data, 150 x 20, 8-bit colormap, non-interlaced\012- data
Hash fc082045ce86febb0a22c36e5b359d91
131e86441cea1b2cec09991b4eed30e438e8b836
1c7edde85e65f7534c2d701cd0272aae9a2806eeadc36df8f220602d223ed724
GET /counter.php?fattwam HTTP/1.1
Host: www.easycounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Sun, 11 Sep 2022 21:08:48 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 11 Sep 2022 21:08:48 +0000
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 8bcc014c2ad3aac3abf9ca210d9ccb5d
1a85e8e24511c9a9fcdcb1fe0cd6cf240e216fb3
e5ccc587cf58c5aabef65ca270e142c5a0938dea4a15ad298cde9c8e3aaf64b2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E5CCC587CF58C5AABEF65CA270E142C5A0938DEA4A15AD298CDE9C8E3AAF64B2"
Last-Modified: Fri, 09 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12018
Expires: Mon, 12 Sep 2022 00:29:06 GMT
Date: Sun, 11 Sep 2022 21:08:48 GMT
Connection: keep-alive
servecontent.net/content/www/d/sala.php?zoneid=10&cb=30923851300&charset=UTF-8&loc=https%3A//fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
135.148.245.193200 OK 600 B URL HTTP/1.1 servecontent.net/content/www/d/sala.php?zoneid=10&cb=30923851300&charset=UTF-8&loc=https%3A//fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
IP 135.148.245.193:0
File type ASCII text, with very long lines (548)
Hash f48bcac20580d3d9b30ce8ba94240470
b6aba9964e2b24259c3771ed955a863246fd00db
0c4a7351b0bbf17e1214098f75c222c98ccd8e775df18ab7403ca10c5839a65a
GET /content/www/d/sala.php?zoneid=10&cb=30923851300&charset=UTF-8&loc=https%3A//fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q- HTTP/1.1
Host: servecontent.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.4.19
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Access-Control-Allow-Origin: *
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAID=01000111010001000101000001010010; expires=Mon, 11-Sep-2023 21:08:48 GMT; Max-Age=31536000; path=/; secure; SameSite=none
Content-Length: 600
Keep-Alive: timeout=1, max=100
Connection: Keep-Alive
Content-Type: text/javascript; charset=UTF-8
static.xx.fbcdn.net/rsrc.php/v3i8594/yT/l/en_US/VRRfrmcLrFx.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 7.0 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3i8594/yT/l/en_US/VRRfrmcLrFx.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (6341)
Hash 1a00be8cb7526595f672ffe247b64afe
ad0840e374991aa6ddd44e7fa7fa6507f211bb4c
e0b7aa4bdaf644c9ffd38d65887876a8a822f9661d0b29e007fb7edb486694cc
GET /rsrc.php/v3i8594/yT/l/en_US/VRRfrmcLrFx.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fr.movieproxy.com
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 03:47:23 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: GgC+jLdSZZX2cv/iR7ZK/g==
x-fb-debug: Bw1zwBDPVSvPv9jZOlqptiVGyx1ZHUYrT4x5BdZmAhk+LBtdYUA9kiGbRaO/ebeTKWFnT0X+5PSpHGe1/FbzGQ==
content-length: 7046
x-fb-trip-id: 1679558926
date: Sun, 11 Sep 2022 21:08:48 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yL/r/RJ4dJmBqyKa.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yL/r/RJ4dJmBqyKa.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (7299)
Hash daa7221efda952e9936cbe17fe07f920
2176dbfc11e56c270c8fd13c06808117f9f2d53e
de0e0cae2a8c0e9769023003ae258891423ff94fbabf89f647b06d5b4c48597f
GET /rsrc.php/v3/yL/r/RJ4dJmBqyKa.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fr.movieproxy.com
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 08 Sep 2023 23:28:05 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 2qciHv2pUumTbL4X/gf5IA==
x-fb-debug: ywpBKusNuJquMYaCiCM4ESe5Fk+lvtG17P6Vfq91Rdnd/7ZQm8vQob3KlPnm1o+Iv0UNPU3LFkc4S4yHWlIM6g==
content-length: 11702
x-fb-trip-id: 1679558926
date: Sun, 11 Sep 2022 21:08:48 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yL/r/9OlCvjj65eJ.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 3.0 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yL/r/9OlCvjj65eJ.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (3404)
Hash cd4c8754881fc37e6c23a86d1c618642
a494ae1e1e1f7a6de4027977bcac3a39c85de2e8
63eda0b20ef013c727bc81e5ba71da91c24a45026f6b67e1f1282c25542b890e
GET /rsrc.php/v3/yL/r/9OlCvjj65eJ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fr.movieproxy.com
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 08 Sep 2023 17:36:27 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: zUyHVIgfw35sI6htHGGGQg==
x-fb-debug: 2xjnDYC6P+Jkl69rRXjijzHl1kn1saLPGq5+x7TMsXrOEwJj8Zz+ThPNGe58AKwzENgIM6xfHUmkq8heLp1sAw==
priority: u=3,i
content-length: 3020
x-fb-trip-id: 1679558926
date: Sun, 11 Sep 2022 21:08:48 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yb/r/uAGlrrURdd9.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 5.9 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yb/r/uAGlrrURdd9.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (12576)
Hash b1679d19de02d4035648b80bc29c773e
b34f5a122d19c991f86778a17aed65dbeebd2de4
9fe56fa0cb7284ef6189b65434db922a17c849a16e8011246bde14e04c3f85b4
GET /rsrc.php/v3/yb/r/uAGlrrURdd9.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fr.movieproxy.com
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 10 Sep 2023 01:58:21 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: sWedGd4C1ANWSLgLwpx3Pg==
x-fb-debug: au3rTrBo1i7CrGSG7prnzn2PpZ1YSAVURq1SCrC4NRzllYrtS/ah4rBasq4Yva2tqsyPPBsNFOKsRmUKeekxbA==
priority: u=3,i
content-length: 5869
x-fb-trip-id: 1679558926
date: Sun, 11 Sep 2022 21:08:48 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y6/r/oBO5xrs8DwL.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 1.9 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y6/r/oBO5xrs8DwL.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (5022)
Hash 64b1e237d9e1d0b099d07a1cd95ab7a4
083e1e305fb1cb85156aa1887b0588f24e357824
00df93ec3e31ef6db5bf33dbd14f783ef01830ae6bd5d975a5b86837e7d19ebf
GET /rsrc.php/v3/y6/r/oBO5xrs8DwL.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fr.movieproxy.com
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 10 Sep 2023 06:18:17 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ZLHiN9nh0LCZ0Hoc2Vq3pA==
x-fb-debug: oSrV+HuZUIm46YspPF/9lAdopIPAcn0DWctHDNOetJvTe47WqxqjdtyIESdu8WS8moli5KpXrE4nyC1hBLwrvQ==
priority: u=3,i
content-length: 1947
x-fb-trip-id: 1679558926
date: Sun, 11 Sep 2022 21:08:48 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y0/r/O6OvrPD7Pxk.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 2.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y0/r/O6OvrPD7Pxk.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (7327)
Hash 9b17ebcda005c34f7e71fb767b4f85bb
753ba7d2225fa2ea9d7ce668beed076b83c2babc
29a6c6ea3e65d8cdf459a757b1fd8f1bb84b9d13cdf6e134d59ee8ae3aefb81c
GET /rsrc.php/v3/y0/r/O6OvrPD7Pxk.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fr.movieproxy.com
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 08 Sep 2023 17:33:09 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: mxfrzaAFw09+cft2e0+Fuw==
x-fb-debug: kSLE07Nj4glzNMeGkPsHiE9pNa2ZE4sawCTdKpBaQjL7/i6av4I7UHn8CxEps+qymUfhRCX4lKuPD2cYeg5aUA==
content-length: 2330
x-fb-trip-id: 1679558926
date: Sun, 11 Sep 2022 21:08:48 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yx/r/54yCVdlQzKq.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 6.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yx/r/54yCVdlQzKq.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (11864)
Hash 90d1a95f010fad8079ffd2b12555ef45
c6da85083eb380bb044c1a1eba3a0598e417e8d9
1ab78e5a9ccb8b2067d97a4b945788bfe38ec82f762f4aa8375f696d28a78555
GET /rsrc.php/v3/yx/r/54yCVdlQzKq.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fr.movieproxy.com
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 17:25:31 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: kNGpXwEPrYB5/9KxJVXvRQ==
x-fb-debug: hitBlaE69LV+ZSC3Lsnk9zRZEnCYx3KjAZtm6zO3zsBWix6CLvDA+x3txJuZVtiAXNhOhv6ZGQ/8Tl+s0aZaiw==
content-length: 6718
x-fb-trip-id: 1679558926
date: Sun, 11 Sep 2022 21:08:48 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yH/r/MDNj1eUK5bV.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 10 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yH/r/MDNj1eUK5bV.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (18915)
Hash fa4ad18d1fc36fa88e3680c20e1d1a61
bde4d3abf73cbd341a347979ac28fad8b2835910
141314a07b3470d7bbbec5a711fb10382865d915a1450620c15de95501b96606
GET /rsrc.php/v3/yH/r/MDNj1eUK5bV.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fr.movieproxy.com
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-type: application/x-javascript; charset=utf-8
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 10 Sep 2023 01:40:08 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: +krRjR/Db6iONoDCDh0aYQ==
x-fb-debug: MItjahuZJD61EA/BHI2Ink6EHpGglue7q0FxC7CZavsjUh1u+oeXKyF1o0IrnOkl2NbzFR4Kx9cJTSLrKpWkng==
content-length: 10426
x-fb-trip-id: 1679558926
date: Sun, 11 Sep 2022 21:08:48 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzaTg1OTQveVQvbC9lbl9VUy9WUlJmcm1jTHJGeC5qcz9fbmNfeD1JajNXcDhsZzVLeg--+
149.202.74.222200 OK 22 kB URL HTTP/1.1 fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzaTg1OTQveVQvbC9lbl9VUy9WUlJmcm1jTHJGeC5qcz9fbmNfeD1JajNXcDhsZzVLeg--+
IP 149.202.74.222:0
File type ASCII text, with very long lines (6341)
Hash c10e17f978553d8d9a587fd181591803
76a913985677685937990b4edd098a896be07b48
ff522c7daf4ee3bf4069906296976e2c85a571655417e56d4ebc62faff1cb63a
Analyzer Verdict Alert fortinet Phishing
GET /direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzaTg1OTQveVQvbC9lbl9VUy9WUlJmcm1jTHJGeC5qcz9fbmNfeD1JajNXcDhsZzVLeg--+ HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Tue, 05 Sep 2023 15:31:20 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 882ZmSYFLBI+Hr9JgrWpSw==
x-fb-debug: bFlcmXqp1h6H3KetgFlw6hMSkmqR7HRKs2huDAUatfToXYoRo1KycGQzbKOjMHF2+qyplrp8NItd/92iu0g4+g==
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=98
Transfer-Encoding: chunked
Content-Type: application/x-javascript; charset=utf-8
fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3lML3IvOU9sQ3ZqajY1ZUouanM_X25jX3g9SWozV3A4bGc1S3o-+
149.202.74.222200 OK 9.0 kB URL HTTP/1.1 fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3lML3IvOU9sQ3ZqajY1ZUouanM_X25jX3g9SWozV3A4bGc1S3o-+
IP 149.202.74.222:0
File type ASCII text, with very long lines (3404)
Hash f2cc20e9584cbc8687de95d5f009259a
78fffc7f61b3864c49b1245a2f02da4deaa5bfa6
9547aae12b089820f94c8ffafad5d4273af19510cf131d949b5859a7e6b33e0e
Analyzer Verdict Alert fortinet Phishing
GET /direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3lML3IvOU9sQ3ZqajY1ZUouanM_X25jX3g9SWozV3A4bGc1S3o-+ HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Wed, 30 Aug 2023 07:55:16 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: DR1bwh+78tDLvR8v1qm+AQ==
x-fb-debug: BCOBgesEdG+Z6xvPhMWyd+lkJeWBEco0VwAhIzhNylzl/F39QDCie/iPYH3d4MWMtIYfQP7fbxO3S0u/4VUqKA==
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=98
Transfer-Encoding: chunked
Content-Type: application/x-javascript; charset=utf-8
fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3lML3IvUko0ZEptQnF5S2EuanM_X25jX3g9SWozV3A4bGc1S3o-+
149.202.74.222200 OK 38 kB URL HTTP/1.1 fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3lML3IvUko0ZEptQnF5S2EuanM_X25jX3g9SWozV3A4bGc1S3o-+
IP 149.202.74.222:0
File type ASCII text, with very long lines (7299)
Hash 5e90b9c6e3082e521d0e3618374bf43e
670bfbf6c17b287e603a6756e4493d14ec9ac6f3
5f436c967371e40338f694899575a071d9045609e7843b60ca3340aad07df13a
Analyzer Verdict Alert fortinet Phishing
GET /direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3lML3IvUko0ZEptQnF5S2EuanM_X25jX3g9SWozV3A4bGc1S3o-+ HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Tue, 05 Sep 2023 15:29:24 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ewwrVaWGTr6Z8vBS/cJ5Yg==
x-fb-debug: QYMXeT/IbltLcS99ANp41nepKdqP0Frb/4gK3UJlAmBY1YuvxdubhNha7BbCFRsvMwF9AtlUwwZSaMi5DCw4bg==
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=93
Transfer-Encoding: chunked
Content-Type: application/x-javascript; charset=utf-8
fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3liL3IvdUFHbHJyVVJkZDkuanM_X25jX3g9SWozV3A4bGc1S3o-+
149.202.74.222200 OK 20 kB URL HTTP/1.1 fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3liL3IvdUFHbHJyVVJkZDkuanM_X25jX3g9SWozV3A4bGc1S3o-+
IP 149.202.74.222:0
File type ASCII text, with very long lines (12576)
Hash c5118b8703a5934c899b8a6e0523d64b
8fccb0cd7854e8907002d0d916325e7a0d7a3177
c4d5ebae0955a2dd573d88fd8a848ae0f99b4e572c88be86d9a0d6c6e0783c3c
Analyzer Verdict Alert fortinet Phishing
GET /direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3liL3IvdUFHbHJyVVJkZDkuanM_X25jX3g9SWozV3A4bGc1S3o-+ HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Thu, 31 Aug 2023 03:06:55 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 08XCAsNs1jJY/W5cX89LLg==
x-fb-debug: j5kF11A3UIT7BPOqSyz7NyYYrDrrSacfQ23qjDiGCiUcBpkBA4Fkq6n+vuoFBF0BF3/zSWMHPNs2rShK1c6N3g==
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=96
Transfer-Encoding: chunked
Content-Type: application/x-javascript; charset=utf-8
fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3kwL3IvTzZPdnJQRDdQeGsuanM_X25jX3g9SWozV3A4bGc1S3o-+
149.202.74.222200 OK 7.7 kB URL HTTP/1.1 fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3kwL3IvTzZPdnJQRDdQeGsuanM_X25jX3g9SWozV3A4bGc1S3o-+
IP 149.202.74.222:0
File type ASCII text, with very long lines (7327)
Hash a870d5e2a2dfcbfb2dad8dc16f7bbaac
66e1376d0a3e6fcf7eab4a67a953548c5975d0b8
f8fdc980715bd27991f2ced0dfa44db801bcac836b4ecc0db6a2b5b57fdaacc0
Analyzer Verdict Alert fortinet Phishing
GET /direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3kwL3IvTzZPdnJQRDdQeGsuanM_X25jX3g9SWozV3A4bGc1S3o-+ HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Wed, 30 Aug 2023 04:43:46 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: fwwZqiQQKpZnrjNrRNsjaA==
x-fb-debug: xzZbj2XdHnX0p0YL2hVOIKrbAguo8ZOsHD37oIGE/vJPkIEtLfvl1rT2czd73GTuOahHkB8oZV4Ifb17Ti3sSA==
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Content-Length: 7719
Keep-Alive: timeout=5, max=96
Content-Type: application/x-javascript; charset=utf-8
fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3k2L3Ivb0JPNXhyczhEd0wuanM_X25jX3g9SWozV3A4bGc1S3o-+
149.202.74.222200 OK 5.6 kB URL HTTP/1.1 fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3k2L3Ivb0JPNXhyczhEd0wuanM_X25jX3g9SWozV3A4bGc1S3o-+
IP 149.202.74.222:0
File type ASCII text, with very long lines (5022)
Hash 0670bff0a2ddb3afc7512d840d5e30ae
4a948dde6d981697e1460456df15bb0cc80a4681
2c778e7231ec138849e3274dca22ef23bed3677a0c822f0a12440f5de5973d2b
Analyzer Verdict Alert fortinet Phishing
GET /direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3k2L3Ivb0JPNXhyczhEd0wuanM_X25jX3g9SWozV3A4bGc1S3o-+ HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Thu, 31 Aug 2023 05:34:07 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: w89guikIe1916+cPEj2HOA==
x-fb-debug: /SmJchDmjyfyY8UqIWh0PaSCjQVd6j6EkWEtP3nFvHEZqqUpaaTKNI7Lo8iW3yOpOsAncA9ppPwU0+S1REG+Uw==
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Content-Length: 5575
Keep-Alive: timeout=5, max=97
Content-Type: application/x-javascript; charset=utf-8
servecontent.net/content/www/d/noah.php?bannerid=0&campaignid=0&zoneid=10&loc=https%3A%2F%2Ffr.movieproxy.com%2Fdirect%2FaHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-&cb=6ad5ba7b3a
135.148.245.193200 OK 43 B URL HTTP/1.1 servecontent.net/content/www/d/noah.php?bannerid=0&campaignid=0&zoneid=10&loc=https%3A%2F%2Ffr.movieproxy.com%2Fdirect%2FaHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-&cb=6ad5ba7b3a
IP 135.148.245.193:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /content/www/d/noah.php?bannerid=0&campaignid=0&zoneid=10&loc=https%3A%2F%2Ffr.movieproxy.com%2Fdirect%2FaHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-&cb=6ad5ba7b3a HTTP/1.1
Host: servecontent.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Cookie: OAID=01000111010001000101000001010010
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.4.19
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Access-Control-Allow-Origin: *
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAID=01000111010001000101000001010010; expires=Mon, 11-Sep-2023 21:08:48 GMT; Max-Age=31536000; path=/; secure; SameSite=none
Content-Length: 43
Keep-Alive: timeout=1, max=99
Connection: Keep-Alive
Content-Type: image/gif
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1686
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: u+kn5vFnTkbjqZFHlA+cNbXaoKtlNZFvRMml4+vyoBb7DiEIQVjgNOe1iyqLeWGcfm6ndYhawgkfaI9BwihdFg==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1686
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: tsS8y5SsrEP3y0WrhG1o/hM57eq9abAwW8x9/Q0haR0MxKWE+IqLWT/QT7Nd048sY25On48KHrmxkW7EHayaPQ==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3l4L3IvNTR5Q1ZkbFF6S3EuanM_X25jX3g9SWozV3A4bGc1S3o-+
149.202.74.222200 OK 23 kB URL HTTP/1.1 fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3l4L3IvNTR5Q1ZkbFF6S3EuanM_X25jX3g9SWozV3A4bGc1S3o-+
IP 149.202.74.222:0
File type ASCII text, with very long lines (11864)
Hash 89546833539d8bc13f4b134829cae934
8850ce1e6a2c0bf77eb16629cb4cdab669f913a3
8d59173cd8b6f7a1425e38727aa57940bb8231072e582370962933bc5c0e064d
Analyzer Verdict Alert fortinet Phishing
GET /direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3l4L3IvNTR5Q1ZkbFF6S3EuanM_X25jX3g9SWozV3A4bGc1S3o-+ HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Mon, 11 Sep 2023 17:29:46 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: mIhtGU36pPLcjOeByFPFHQ==
x-fb-debug: gLc2kqHVjN+IL+830hZ59fdCsL3UcoMY9xujlZ3DHNwnUvgDsa7sg6cofeCkrre9ozP18Iy8JRvf19VVhFhnyQ==
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=97
Transfer-Encoding: chunked
Content-Type: application/x-javascript; charset=utf-8
fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3lIL3IvTUROajFlVUs1YlYuanM_X25jX3g9SWozV3A4bGc1S3o-+
149.202.74.222200 OK 25 kB URL HTTP/1.1 fr.movieproxy.com/direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3lIL3IvTUROajFlVUs1YlYuanM_X25jX3g9SWozV3A4bGc1S3o-+
IP 149.202.74.222:0
File type ASCII text, with very long lines (18915)
Hash 04551bbefc783773edf23064b1b08ffe
8ee54463dff5f0443fe2afdb72cd200e8aebc390
de196fa938446c7486bcecc14b72919df6f78871a4af22c4f168a2785a0139ff
Analyzer Verdict Alert fortinet Phishing
GET /direct/aHR0cHM6Ly9zdGF0aWMueHguZmJjZG4ubmV0L3JzcmMucGhwL3YzL3lIL3IvTUROajFlVUs1YlYuanM_X25jX3g9SWozV3A4bGc1S3o-+ HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
vary: Accept-Encoding
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Sat, 09 Sep 2023 16:40:54 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: QZ9L/caK9Fn/+pAzb6icrg==
x-fb-debug: tWoGRg+lJzj28UP254Vvk7b91bqHlO5svBuF59vu1fGrGvZe3ZhIk/3yP6Ra/KBauhnvRkGWTR9CEX/VrMSBdg==
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=97
Transfer-Encoding: chunked
Content-Type: application/x-javascript; charset=utf-8
fr.movieproxy.com/direct/aHR0cHM6Ly9zY29udGVudC54eC5mYmNkbi5uZXQvaGFkcy1hay1wcm4yLzE0ODc2NDVfNjAxMjQ3NTQxNDY2MF8xNDM5MzkzODYxX24ucG5n+
149.202.74.222200 OK 79 B URL HTTP/1.1 fr.movieproxy.com/direct/aHR0cHM6Ly9zY29udGVudC54eC5mYmNkbi5uZXQvaGFkcy1hay1wcm4yLzE0ODc2NDVfNjAxMjQ3NTQxNDY2MF8xNDM5MzkzODYxX24ucG5n+
IP 149.202.74.222:0
File type PNG image data, 10 x 10, 8-bit/color RGB, non-interlaced\012- data
Hash 8dc258a49b60fae051e9a7ce11ad05cf
dafef280663f4205fc7f0e47799e9945e6a68d6d
c8caed93847affc154cb3d424e34fc146e7340bb29abebd5eba7063e3dca0604
Analyzer Verdict Alert fortinet Phishing
GET /direct/aHR0cHM6Ly9zY29udGVudC54eC5mYmNkbi5uZXQvaGFkcy1hay1wcm4yLzE0ODc2NDVfNjAxMjQ3NTQxNDY2MF8xNDM5MzkzODYxX24ucG5n+ HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Sun, 11 Sep 2022 21:08:48 GMT
cross-origin-resource-policy: cross-origin
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
access-control-allow-origin: *
Keep-Alive: timeout=5, max=96
Transfer-Encoding: chunked
Content-Type: image/png
s7.addthis.com/js/300/addthis_widget.js
2.18.172.123200 OK 116 kB URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP 2.18.172.123:0
File type ASCII text, with very long lines (54602)
Size 116 kB (116325 bytes)
Hash ff4671f71c958029bbf6d9694284da70
7535744f2dbaf99902a54fc529e760b08a73f265
123f781673b2e45e18df36b64984674f489a5f3541c69e295f01f554b8d3c738
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: "5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-type: application/javascript
content-encoding: gzip
content-length: 116325
date: Sun, 11 Sep 2022 21:08:48 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c3d8032059a24d14d00c2ee5d8840c01
62efae1ea6aaea612a12d42b6e5b65d24be11437
2319fe90c8b4d3cc41ec9cce275c82d19fb764015196bd1c52dfb9c5d85b9b0b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 21:08:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Sun, 11 Sep 2022 20:41:12 GMT
expires: Sun, 11 Sep 2022 22:41:12 GMT
cache-control: public, max-age=7200
age: 1656
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1637
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: x7IcNBZO4ftaij0rj6TZCootN0VL5i7L91j9bL4FTc4Fitu9iY7o5Q/+IHvlsn8MhutF7PuOt2C03TkVQFYENQ==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_UTjYRnMjVUkn8S5vKk68AAOIldzgrB6gi1wcenwPtbcg--
149.202.74.222200 OK 6.7 kB URL HTTP/1.1 fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_UTjYRnMjVUkn8S5vKk68AAOIldzgrB6gi1wcenwPtbcg--
IP 149.202.74.222:0
File type PNG image data, 196 x 196, 8-bit colormap, non-interlaced\012- data
Hash 389dfa18be34d8cf767e06fd5cde4ec6
47b751cffab47d076816c63ce08d3e84600376ee
3c45ce612f41b1e7936e7cf5b235047344fd3146d1630e342f186d1d1e8e00d5
Analyzer Verdict Alert fortinet Phishing
GET /secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_UTjYRnMjVUkn8S5vKk68AAOIldzgrB6gi1wcenwPtbcg-- HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: OJ36GL402M92fgb9XN5Oxg==
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Sat, 09 Sep 2023 16:40:05 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: oo9hTrg3b68VXSqdKJGYl/Ohu4pXjXW0sbW8xm0LEp4LnizflO94ggF4Hgv8aKVONOK4kl2yAyvqvLkS4Y83VQ==
priority: u=3,i
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=95
Transfer-Encoding: chunked
Content-Type: image/png
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1638
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: jZ6/6mxnun+AJpJ6kjbAg59qRSqKRkFJ87Oeb3OhthKee7kVOfeXlPMr4WFD8qMAFqzAfr7MyjpUWQyc9gewmg==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1657
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: mUs8pDJPyRIrl60kueNIa5VUj+M3uB14+DR4fhIVZuUKGqZ/XvIqKmTBlXHMUmQVtmV4NUSKUZwLEbq77su14A==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1754
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: H00Xuuvgo3QE4WuRVjLH0Haxwl/eI77CSqZZc8ym6K1dTEWlT5xI5qLFUUaLMV2JCE+G9dHlvWSjaWFrCBypAg==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1774
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: TfqXnvYjfa0snMzKXxwIM8I0UdFmx7rLxLvisp/80BgFHkspGA4waQJJshA2FOPFtrkPpJY8Ol6NSp6KSD0s1w==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1667
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: HIkffHXWJlD8sMnjhMSoV6hSvU1+K9HCmdxxtnJMjKjhwd8QJPUBD0nrf/odlxWBhKPn7PZId452ZqSjTeq6aw==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 2030
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: BhMvktxEDEj1p9CI7z+Xbq3qAHu8FwkCU7ILbyU9/RVeOjwEQxqXPnqLfuUG/k87yKliOMOEC1hRyFm/O2a99g==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1858
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: OaMHIA5RxkpWapD1Pzr89nbqzw0Oqk1XqiXN7sswEyVYD+yq+krOW0NCNAgQVrXS1VliwNYG+QlNBDvPlpttpg==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c3d8032059a24d14d00c2ee5d8840c01
62efae1ea6aaea612a12d42b6e5b65d24be11437
2319fe90c8b4d3cc41ec9cce275c82d19fb764015196bd1c52dfb9c5d85b9b0b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 21:08:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1652
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: tC0vodDBySwFVEs+yBAnGOk1CFkZ4Ernkk6qfwR+gfHDzjnoY4G9v1JqsyfNZS7tGRxR2+qxiTS6N2oGnj699Q==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
servecontent.net/content/www/d/adale.php?refresh=60&n=a4dc702b&zoneid=8&target=_blank
135.148.245.193200 OK 1.6 kB URL HTTP/1.1 servecontent.net/content/www/d/adale.php?refresh=60&n=a4dc702b&zoneid=8&target=_blank
IP 135.148.245.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (713)
Hash e70fa3e181d13b312d4be7e170de20ce
dbd01f2a765b6eba0ff9e86b3b253212b5f45d58
a612dfc4218c6b4b24bab954d406f49a3c9505b341bb10baeae874566a352b06
GET /content/www/d/adale.php?refresh=60&n=a4dc702b&zoneid=8&target=_blank HTTP/1.1
Host: servecontent.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Cookie: OAID=01000111010001000101000001010010
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.4.19
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Access-Control-Allow-Origin: *
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAID=01000111010001000101000001010010; expires=Mon, 11-Sep-2023 21:08:48 GMT; Max-Age=31536000; path=/; secure; SameSite=none
OAVARS[a4dc702b]=%7B%22bannerid%22%3A%2269%22%2C%22zoneid%22%3A%228%22%7D; path=/; secure; SameSite=none
Content-Length: 1593
Keep-Alive: timeout=1, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
servecontent.net/content/www/d/adale.php?refresh=60&n=a3bcf696&zoneid=9&target=_blank
135.148.245.193200 OK 1.6 kB URL HTTP/1.1 servecontent.net/content/www/d/adale.php?refresh=60&n=a3bcf696&zoneid=9&target=_blank
IP 135.148.245.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (713)
Hash 8816e78be43e9e2ced5a7b6ab634a84b
011911daf754b658b435c482e27999f7a70b4b5f
ffe40189fe0f6c568278b6fe86bb30e8235f3618c8151c786d2aa50972a53d7d
GET /content/www/d/adale.php?refresh=60&n=a3bcf696&zoneid=9&target=_blank HTTP/1.1
Host: servecontent.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Cookie: OAID=01000111010001000101000001010010
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.4.19
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Access-Control-Allow-Origin: *
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAID=01000111010001000101000001010010; expires=Mon, 11-Sep-2023 21:08:48 GMT; Max-Age=31536000; path=/; secure; SameSite=none
OAVARS[a3bcf696]=%7B%22bannerid%22%3A%2269%22%2C%22zoneid%22%3A%229%22%7D; path=/; secure; SameSite=none
Content-Length: 1593
Keep-Alive: timeout=1, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 2030
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: xA9mF4T1C1l0JwfEqhzR1ZUsd7nOCcGJs2k6YLOAIoNzbDwBIHTircuxIo8j6EU5b5MClVVRixvvfS7hu6+u2w==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1712
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: E0W9hu3bMcEx4zgt4IRQxUzzfFO3hmyHptvoU2MppXjawA0JjfxpI3aIfC6TqcRGiUrV9H9pfdbarjHGPMez+Q==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1894
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: pZf/9HzDWpbsjPHjAlIPs6xvbDiGH4hAxoysW61C0FPAfX072gpXNpYjfsIfL8haGgncpO/N3Az2rugUI0wHAA==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1646
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: lmsz0h6i1hEw1SZ8MSby++aVptT/xW6FCekJXoy/1dyScRz2Ix0DwgXPT6j2/lXh01sLrv7QMxYuVSIFTn42lQ==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1712
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: J7GsLSQIE5qCAQft0ujOTKG9O5rYNLgUP190uW1Se1mM0tNlkRREXZ9d4OypXppKL9lVTlYzfzo3h6ghX1WOTg==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 2030
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: qHuXXjaQikIZxulgApzZrCpvZUU2h7yQ7RksoohQkmQ+xxndKkChnR2i7pehoLpHlNK0MzGCN3h+cbNfS60WdQ==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 2016
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: 0GUQfEVR0QFwHKGF/S/E/K8DrdZyDd8e/1Ib/L6G1HwX7VnHq2BF5zLFEtFWk94oh9mIMuZXzpmPp1Gfqys3zQ==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1653
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: f88+IhfWI5YUt74YEmgfDhlDg54GEPpVBIZBQpDVZYeUxT13UTm5HtJBM13bMh8nldrMn0v7Jl1ze9o1qIWK2w==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1712
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: zjhukZaLwMZzrhGx37E865JrjL41NvshCBr1IfF/hB3VW5z3bEcbq4wd0kNTsoRpg3xnulxvSF/bvCBAirhJ5g==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1774
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: 0kZ/AXJzcGsxbjDBYyIMQF4bJhx7qcW9ixAc8yaKPqiabIc4XlBM+WU5YeLcnI4+XjtE6gM8rIddZkuLgyLiLQ==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1641
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: 6lTFLWEQVUkXh1/iQbJs58b/ZCldJwgGXBckYls5YWoxqAm6b+rEgDbzl97TeANd6aajxVEhLtWdWYNkIUmtvg==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1754
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: dvmsF66lNrwjmSp/ceblqnrWbRob2XeBztOLRQ35KviMk4ELEAn0aqxqWLz5ujGPqy/XNni87j7m8mI3oW/wMw==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1754
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: yE58NqDHYWG2W2H22Fs+8F5vGIkRGTijBdXivTPHvnUC90FfzcXQHt6/Si29Aj+/oMwtBDdjo1q9rpcHqF7/4A==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1754
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: TkTAb8p1V/X5NLOZHbO6YP0a10NGYRcB3dTcjfYknC8B41bC7ijUUuFzMJBRWGHCDoCuulX3CegMq8w7g5XDyQ==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1754
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: ZzukmMtOeeEUEnxPCh5Z0JTBCwe3pH1QmXT7f0pHg8ThzgWssyQ5CSPC17xICLtxNg86TM3x1jqMPiv7oSRqtg==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fr.movieproxy.com/direct/aHR0cHM6Ly96Lm1vYXRhZHMuY29tL2FkZHRoaXNtb2F0ZnJhbWU1Njg5MTE5NDE0ODMvbW9hdGZyYW1lLmpz+
149.202.74.222200 OK 1.7 kB URL HTTP/1.1 fr.movieproxy.com/direct/aHR0cHM6Ly96Lm1vYXRhZHMuY29tL2FkZHRoaXNtb2F0ZnJhbWU1Njg5MTE5NDE0ODMvbW9hdGZyYW1lLmpz+
IP 149.202.74.222:0
File type ASCII text, with very long lines (523)
Hash dd1a19cb8d13e4571d2b293c0a0d2ccf
18070dd5c894930a8aef7117bf8d49bd4922a723
05090f9390f5bc0cd23fe5f432037cc92d7cbce1ced9bfe8faf3d1c9abae85cd
Analyzer Verdict Alert fortinet Phishing
GET /direct/aHR0cHM6Ly96Lm1vYXRhZHMuY29tL2FkZHRoaXNtb2F0ZnJhbWU1Njg5MTE5NDE0ODMvbW9hdGZyYW1lLmpz+ HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
x-amz-id-2: 8hxg0dzAkz9zW3TUrCJ2UPrnjd9MddTKKdoH+9oFtVUpX/FvjMMHItrPqa4FRqsdA014GVE24KY=
x-amz-request-id: E79C77E2AF1AE511
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
accept-ranges: bytes
vary: Accept-Encoding
unused62: 8096267
Cache-Control: no-store, no-cache, must-revalidate, max-age=47346
connection: keep-alive, Keep-Alive
access-control-allow-origin: *
Content-Length: 1705
Keep-Alive: timeout=5, max=92
Content-Type: application/x-javascript
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 2232
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: lILuC7bg5W72mx4cBBtvA5Xui1UaQDn2tuIUdVE9XdwiNtcjO+hhT6NnA43aL10KGacJAHm6Nd7ptunJp0GNRw==
content-length: 0
date: Sun, 11 Sep 2022 21:08:48 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
servecontent.net/content/www/d/noah.php?bannerid=69&campaignid=8&zoneid=8&loc=https%3A%2F%2Ffr.movieproxy.com%2F&cb=950ec844fb
135.148.245.193200 OK 43 B URL HTTP/1.1 servecontent.net/content/www/d/noah.php?bannerid=69&campaignid=8&zoneid=8&loc=https%3A%2F%2Ffr.movieproxy.com%2F&cb=950ec844fb
IP 135.148.245.193:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /content/www/d/noah.php?bannerid=69&campaignid=8&zoneid=8&loc=https%3A%2F%2Ffr.movieproxy.com%2F&cb=950ec844fb HTTP/1.1
Host: servecontent.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://servecontent.net/content/www/d/adale.php?refresh=60&n=a4dc702b&zoneid=8&target=_blank
Cookie: OAID=01000111010001000101000001010010; OAVARS[a4dc702b]=%7B%22bannerid%22%3A%2269%22%2C%22zoneid%22%3A%228%22%7D; OAVARS[a3bcf696]=%7B%22bannerid%22%3A%2269%22%2C%22zoneid%22%3A%229%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.4.19
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Access-Control-Allow-Origin: *
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAID=01000111010001000101000001010010; expires=Mon, 11-Sep-2023 21:08:48 GMT; Max-Age=31536000; path=/; secure; SameSite=none
Content-Length: 43
Keep-Alive: timeout=1, max=99
Connection: Keep-Alive
Content-Type: image/gif
servecontent.net/content/www/d/noah.php?bannerid=69&campaignid=8&zoneid=9&loc=https%3A%2F%2Ffr.movieproxy.com%2F&cb=0e8719c893
135.148.245.193200 OK 43 B URL HTTP/1.1 servecontent.net/content/www/d/noah.php?bannerid=69&campaignid=8&zoneid=9&loc=https%3A%2F%2Ffr.movieproxy.com%2F&cb=0e8719c893
IP 135.148.245.193:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /content/www/d/noah.php?bannerid=69&campaignid=8&zoneid=9&loc=https%3A%2F%2Ffr.movieproxy.com%2F&cb=0e8719c893 HTTP/1.1
Host: servecontent.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://servecontent.net/content/www/d/adale.php?refresh=60&n=a3bcf696&zoneid=9&target=_blank
Cookie: OAID=01000111010001000101000001010010; OAVARS[a4dc702b]=%7B%22bannerid%22%3A%2269%22%2C%22zoneid%22%3A%228%22%7D; OAVARS[a3bcf696]=%7B%22bannerid%22%3A%2269%22%2C%22zoneid%22%3A%229%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.4.19
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Access-Control-Allow-Origin: *
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAID=01000111010001000101000001010010; expires=Mon, 11-Sep-2023 21:08:48 GMT; Max-Age=31536000; path=/; secure; SameSite=none
Content-Length: 43
Keep-Alive: timeout=1, max=98
Connection: Keep-Alive
Content-Type: image/gif
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8639
Expires: Sun, 11 Sep 2022 23:32:47 GMT
Date: Sun, 11 Sep 2022 21:08:48 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8639
Expires: Sun, 11 Sep 2022 23:32:47 GMT
Date: Sun, 11 Sep 2022 21:08:48 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8639
Expires: Sun, 11 Sep 2022 23:32:47 GMT
Date: Sun, 11 Sep 2022 21:08:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d72ce1b-951e-4f1f-97b1-db99c399d5f9.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d72ce1b-951e-4f1f-97b1-db99c399d5f9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eee5b4d617dab6f10d7053f5c4f4e98e
6c728c56797ba921e8001919df4d36e56dd37e54
76a53e2c81ec8da2bc469760b2c57098d587c6a36fa70e5b7c743a224a47d362
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d72ce1b-951e-4f1f-97b1-db99c399d5f9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8171
x-amzn-requestid: a3eb931f-cd71-4738-acb1-4398fc09f453
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YOa7QGqoIAMFwlw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c0b7b-2a6ed8ca00a0a0640110cf5d;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 03:58:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QuUPVSWCQk9z9xI03trHifaWzOi5TqBZHLena93lrxhjlAG1PICKKA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 12:19:15 GMT
age: 31773
etag: "6c728c56797ba921e8001919df4d36e56dd37e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc91b46a1-040b-46aa-a7a1-af67f0058b83.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc91b46a1-040b-46aa-a7a1-af67f0058b83.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bb1a86dcf94db0a29a6ebe21866766d4
b3491a6f12c97c8e1848a206a185fae29213c1e5
d05619e519fed6c0b6c0616cf540908006a68f127b25e38fb9d041dfe2546df4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc91b46a1-040b-46aa-a7a1-af67f0058b83.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7519
x-amzn-requestid: 8d8a8df6-abf5-45dd-8d78-de5ae715a9d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YE_UNEoWoAMFRLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631845b4-0101ca7a09e432f305aa7066;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 07:18:12 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: Z0Z4IozbbythqWA7mNaqtO4NWbLi1zL2G6HmMGP0c9VqIzMugvVh_Q==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 00:00:49 GMT
age: 76079
etag: "b3491a6f12c97c8e1848a206a185fae29213c1e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8625e0707046e7a3715a8dbb40b1cae2
0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78
abc4c12561be08897341d9c8104c30a289357c0907e55c46895f7fb6afb2f75d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13568
x-amzn-requestid: a2fadcbe-350b-4a06-9f9c-ee2da40bb285
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YEESeHA_oAMFjCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317e742-4740aa3f4ebd479e7a4886ed;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 00:35:14 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: jbF2ZaJUhIoJV-o4f6iviFyUnoDW4R0KHTfC5NySmITnsLbD5iJrPQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:40:11 GMT
age: 84517
etag: "0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e407da4d97d497925b1ab523fd416787
166741631fb93d109b18dde6d316b3fa3276aa8f
707460c02438da6114e35e0b6569d42c0f3fb747f8cb51002f4d52bedbcffa61
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8485
x-amzn-requestid: a56c9282-2786-4ae7-9fc2-0468bcc820a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_FM1oAMFZ2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-753cc4f121c9b77d22bb82b5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mfmj40aUc8l5RPk56M-pbqTwhde_HzYcmN5MDrfv-WFPhbpoShWYNw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 22:14:30 GMT
age: 82458
etag: "166741631fb93d109b18dde6d316b3fa3276aa8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481e7fcb-66df-4e59-8130-9579a79eca9c.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481e7fcb-66df-4e59-8130-9579a79eca9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4ec2646c56c4c522f0744768ad20342b
ad1d9eee90556a359547dc7cbb6758aee2c804cd
0bf9eaa4420bf6290535fd23895c6c723c7de6b849995ba83774532862cfe8b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481e7fcb-66df-4e59-8130-9579a79eca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7635
x-amzn-requestid: dbd07cc7-d0f6-4500-83c6-b19fa9fa2e3d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xt5xDEfUIAMFYXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630f09a0-3771b23118f3711e5caca699;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 07:11:28 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ILut4hEDJbs6jNr3wpPST1HgAYMabIT7cdZebRFETn8lL_QfS92KBA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:40:34 GMT
age: 84494
etag: "ad1d9eee90556a359547dc7cbb6758aee2c804cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66c0f84d-aba2-4ce6-9e03-ee51e1c347be.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66c0f84d-aba2-4ce6-9e03-ee51e1c347be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57d797a1c3f6589746a1135bdb19f54f
7aa14fcd982a5cee38d58fc3c89edc4a8daf4c97
ff8855ca951f53ed5f3886cc81a7f28384d41288edeca4fdc621250e4d01c6fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66c0f84d-aba2-4ce6-9e03-ee51e1c347be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6889
x-amzn-requestid: c82ac543-90cd-4aeb-a65b-7e1bbbacc407
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ2UEE-3IAMFYBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d0419-427a29067c9c92ec0db6567f;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:39:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mNvNO0HJjZ1zwPKcjfqiVOnCL0CYXc8BPDSFbV6MXVW71IVt-2K3mQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:46:54 GMT
age: 84114
etag: "7aa14fcd982a5cee38d58fc3c89edc4a8daf4c97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
servecontent.net/images/6071643724afa565b894d47d171636ee.png
135.148.245.193200 OK 24 kB URL HTTP/1.1 servecontent.net/images/6071643724afa565b894d47d171636ee.png
IP 135.148.245.193:0
File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced\012- data
Hash 6071643724afa565b894d47d171636ee
8f98aae05d07ea0adf350bd6cd51e9fefc979396
809aa7a19416b5aa3d28da7750b5f065ca3764f0f37a4048fea153deccea1c29
GET /images/6071643724afa565b894d47d171636ee.png HTTP/1.1
Host: servecontent.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://servecontent.net/content/www/d/adale.php?refresh=60&n=a4dc702b&zoneid=8&target=_blank
Cookie: OAID=01000111010001000101000001010010; OAVARS[a4dc702b]=%7B%22bannerid%22%3A%2269%22%2C%22zoneid%22%3A%228%22%7D; OAVARS[a3bcf696]=%7B%22bannerid%22%3A%2269%22%2C%22zoneid%22%3A%229%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Last-Modified: Mon, 20 Dec 2021 07:34:26 GMT
ETag: "5f95-5d38eeb193057"
Accept-Ranges: bytes
Content-Length: 24469
Keep-Alive: timeout=1, max=99
Connection: Keep-Alive
Content-Type: image/png
fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_VoeY6HvKcAqPItdCNxm7WufX3~z9i8l0UFSnWT_xy_FQ--
149.202.74.222200 OK 2.7 kB URL HTTP/1.1 fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_VoeY6HvKcAqPItdCNxm7WufX3~z9i8l0UFSnWT_xy_FQ--
IP 149.202.74.222:0
File type PNG image data, 189 x 38, 8-bit colormap, non-interlaced\012- data
Hash 703d6d10d2ce3bb86249dfccbee46653
a07b38ba1a5402f53b28f8baa7b6e5d6ba87cfba
2b6ef38941a36abbee130750bd7656c228e75c70479040d001fba37d36fdfc80
Analyzer Verdict Alert fortinet Phishing
GET /secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_VoeY6HvKcAqPItdCNxm7WufX3~z9i8l0UFSnWT_xy_FQ-- HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_VfDQ69N1oCxjlrJuyK4LKg~Bslh0htDH8GVKL42Cvh~p97Syn6f8laMdgMOPAwnD8KQpkzyNTPQa1pMsegIy8I
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr; _ga@movieproxy.com/=GA1.2.1952040774.1662930517; _ga@fr.movieproxy.com/=GA1.3.1952040774.1662930517; _ga@mobile.facebook.com/=GA1.1.1952040774.1662930517; _gid@mobile.facebook.com/=GA1.1.1594266781.1662930517; _gat@mobile.facebook.com/=1; __atuvc@mobile.facebook.com/=1%7C37; __atuvs@mobile.facebook.com/=631e4e55ceef452b000; __atrfs@mobile.facebook.com/=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: cD1tENLOO7hiSd/MvuRmUw==
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Wed, 30 Aug 2023 01:14:37 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: gl843+feLaAxKXNFbmNhqrofnMKBwy6b2gsAP/b5x+PmVxl8/TQbg7w+J+xflZ0g/rxXhfHsv5IsVjicZ/FByg==
priority: u=3,i
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=96
Transfer-Encoding: chunked
Content-Type: image/png
fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_URqiK4eeLbQEeiuOuA8aaV61OuGvCvQRxvvizZqzuCnA--
149.202.74.222200 OK 1.8 kB URL HTTP/1.1 fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_URqiK4eeLbQEeiuOuA8aaV61OuGvCvQRxvvizZqzuCnA--
IP 149.202.74.222:0
File type PNG image data, 92 x 88, 8-bit colormap, non-interlaced\012- data
Hash 16cad9478450eed08c3a60904dae73af
d789cf4882563eef7cf751b43d0003cc75d80008
971f0bc9e893cd3c6efd9570f798e39f71612acff8d2e5bdf9f90f1426ae7354
Analyzer Verdict Alert fortinet Phishing
GET /secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_URqiK4eeLbQEeiuOuA8aaV61OuGvCvQRxvvizZqzuCnA-- HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fr.movieproxy.com/secure/BOUulE~FobDvL8tjzDNQAbev05HBc1p4U__YA2yxM_WW2~jrEXYhVA9hsBFh81MqRMZelxE6IKFe2HmE94AP75w59UBXeHiQR~K4ol4oSPvwvq954jpLjvuPDWlfcdZn
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr; _ga@movieproxy.com/=GA1.2.1952040774.1662930517; _ga@fr.movieproxy.com/=GA1.3.1952040774.1662930517; _ga@mobile.facebook.com/=GA1.1.1952040774.1662930517; _gid@mobile.facebook.com/=GA1.1.1594266781.1662930517; _gat@mobile.facebook.com/=1; __atuvc@mobile.facebook.com/=1%7C37; __atuvs@mobile.facebook.com/=631e4e55ceef452b000; __atrfs@mobile.facebook.com/=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: FsrZR4RQ7tCMOmCQTa5zrw==
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Thu, 31 Aug 2023 00:22:48 GMT
Cache-Control: no-store, no-cache, must-revalidate, public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: 1eRkPBiD6f5z0hGF2TOEXwtTSTVoL44s1D6s05BbQXmh4AW0nJkfF2RyW07tpNyyUyo6Lqkb3E5fkFZcINW1xg==
priority: u=3,i
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=91
Transfer-Encoding: chunked
Content-Type: image/png
fr.movieproxy.com/direct/aHR0cHM6Ly92MS5hZGR0aGlzZWRnZS5jb20vbGl2ZS9ib29zdC9yYS01ZTNiYTkyMmNmYTM2OGNkL19hdGUudHJhY2suY29uZmlnX3Jlc3A-+
149.202.74.222200 OK 2.5 kB URL HTTP/1.1 fr.movieproxy.com/direct/aHR0cHM6Ly92MS5hZGR0aGlzZWRnZS5jb20vbGl2ZS9ib29zdC9yYS01ZTNiYTkyMmNmYTM2OGNkL19hdGUudHJhY2suY29uZmlnX3Jlc3A-+
IP 149.202.74.222:0
File type ASCII text, with very long lines (2543), with no line terminators
Hash 7ba0dd97024c069b5d96ad486ad1b265
8f231a28dac059dfb98a87a57a0c4105d44fea13
bbe21191bc5731641bbe4d2272fd79f8522366d435d9f1dbbbdc37d07c77ecbd
Analyzer Verdict Alert fortinet Phishing
GET /direct/aHR0cHM6Ly92MS5hZGR0aGlzZWRnZS5jb20vbGl2ZS9ib29zdC9yYS01ZTNiYTkyMmNmYTM2OGNkL19hdGUudHJhY2suY29uZmlnX3Jlc3A-+ HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr; _ga@movieproxy.com/=GA1.2.1952040774.1662930517; _ga@fr.movieproxy.com/=GA1.3.1952040774.1662930517; _ga@mobile.facebook.com/=GA1.1.1952040774.1662930517; _gid@mobile.facebook.com/=GA1.1.1594266781.1662930517; _gat@mobile.facebook.com/=1; __atuvc@mobile.facebook.com/=1%7C37; __atuvs@mobile.facebook.com/=631e4e55ceef452b000; __atrfs@mobile.facebook.com/=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:48 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
etag: -1493488983--gzip
content-disposition: attachment; filename=1.txt
Cache-Control: no-store, no-cache, must-revalidate, public, max-age=47, s-maxage=86400
connection: keep-alive, Keep-Alive
vary: Accept-Encoding
access-control-allow-origin: *
Content-Length: 2543
Keep-Alive: timeout=5, max=94
Content-Type: application/javascript;charset=utf-8
s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
2.18.172.123200 OK 78 kB URL HTTP/2 s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
IP 2.18.172.123:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash ac1b5db6377f89a6d7f517c571b8ddba
87205f72f7338d717dd2966119ecb6aae22d5835
9164225c4ffa9eded3fd96fd8403249cf67e2047354fc245fb349216565d00a2
GET /static/layers.fa6cd1947ce26e890d3d.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-41cf5"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 77691
date: Sun, 11 Sep 2022 21:08:49 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 2256
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: DrV5O+mPeLDyfP9ACBbcbzAMgEvLlJ4ANH643TJuBY9jnmUZFxdRjwjZciMI4IVRDtBesN51TXaeTm9J3JFGEQ==
content-length: 0
date: Sun, 11 Sep 2022 21:08:49 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1928
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: ykqDjARA+8vJmygJY/mU9/8eIViJkfRpfzJWVge5eCAXr1mshe43bd3513WOElq2GyvDPGVQmXDRHC9rbwUZIQ==
content-length: 0
date: Sun, 11 Sep 2022 21:08:49 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1928
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: mua4Uxzsc8as2IpZnC3AjYhUiL6LPDypcgO+8XyDF8R+BtmXBOGYIX99ErNZe1dD27Qxre5xgaDEIM8TpeKTtQ==
content-length: 0
date: Sun, 11 Sep 2022 21:08:49 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/csp/reporting/?m=c&minimize=0
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/csp/reporting/?m=c&minimize=0
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp/reporting/?m=c&minimize=0 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 1756
Origin: https://fr.movieproxy.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-frame-options: DENY
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: HlwxG22t03+17afr7spf13u/DHx6T8G9Bbi0vPf3hScApRweyXMPt2pt1cdNLEd3sONh4rJde/o1VFqJ3jePzg==
content-length: 0
date: Sun, 11 Sep 2022 21:08:49 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
m.addthis.com/live/red_lojson/300lo.json?si=631e4e55eb0ed375&bkl=0&bl=1&pdt=699&sid=631e4e55eb0ed375&pub=ra-5e3ba922cfa368cd&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=fr.movieproxy.com&fp=direct%2FaHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1662930517730&jsl=1&uvs=631e4e55ceef452b000&skipb=1&callback=addthis.cbs.jsonp__0150513733404415980
2.18.172.123200 OK 91 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=631e4e55eb0ed375&bkl=0&bl=1&pdt=699&sid=631e4e55eb0ed375&pub=ra-5e3ba922cfa368cd&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=fr.movieproxy.com&fp=direct%2FaHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1662930517730&jsl=1&uvs=631e4e55ceef452b000&skipb=1&callback=addthis.cbs.jsonp__0150513733404415980
IP 2.18.172.123:0
File type ASCII text, with no line terminators
Hash 0d7492bb8c0be60c7cae86e1ff19e3c1
47f9d9408c26e2a85cc9ae5d0d101b328e0c079b
20556375b4aebf0a2b200e09269755ac33747e1240530e46bb8bfae49fdaf597
GET /live/red_lojson/300lo.json?si=631e4e55eb0ed375&bkl=0&bl=1&pdt=699&sid=631e4e55eb0ed375&pub=ra-5e3ba922cfa368cd&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=fr.movieproxy.com&fp=direct%2FaHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1662930517730&jsl=1&uvs=631e4e55ceef452b000&skipb=1&callback=addthis.cbs.jsonp__0150513733404415980 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fr.movieproxy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 91
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Sun, 11 Sep 2022 21:08:49 GMT
X-Firefox-Spdy: h2
fr.movieproxy.com/direct/aHR0cHM6Ly9tb2JpbGUuZmFjZWJvb2suY29tL2EvYno_ZmJfZHRzZz1OQWNPVnF4eXJuQ2tTUHZRN3U4ZGtVa3JFOFdSeDB0OFVpZ0RPc1M1T1F2bWwtVHJxZXRhb2RRJTNBMCUzQTAmamF6b2VzdD0yNTI1NiZsc2Q9QVZvaXFZSkdOMGcmX19keW49MUtpZEFHMW13SHdoOC10MEJCQmc5b2RFNGEyaTVVNGUwQzg2dTdFMzl4NjBsVzRvM0J3NEV3azlFNFcwb20wTVUwRDJVUzBzZTIyOXc2dHdkSzBEODF4ODJldzRLd3d3NU53NHZ3YlMxTHc5QyZfX2Nzcj0mX19yZXE9MSZfX2E9QVluQ01HdGE2YWZ1YlJyQ1JmMEI3elczR1hRcFRseUZ3M25qS0k3dk5tRjU1dmZDSjU0QjVncTZxQ052dEtZQ3M2VTQwYl9oR3BKQklydlRIZGRfUGRVWW5Yc2ZJd1RLNjUyRU5iTlBLdWJUcUEmX191c2VyPTA-+
149.202.74.222200 OK 249 B URL HTTP/1.1 fr.movieproxy.com/direct/aHR0cHM6Ly9tb2JpbGUuZmFjZWJvb2suY29tL2EvYno_ZmJfZHRzZz1OQWNPVnF4eXJuQ2tTUHZRN3U4ZGtVa3JFOFdSeDB0OFVpZ0RPc1M1T1F2bWwtVHJxZXRhb2RRJTNBMCUzQTAmamF6b2VzdD0yNTI1NiZsc2Q9QVZvaXFZSkdOMGcmX19keW49MUtpZEFHMW13SHdoOC10MEJCQmc5b2RFNGEyaTVVNGUwQzg2dTdFMzl4NjBsVzRvM0J3NEV3azlFNFcwb20wTVUwRDJVUzBzZTIyOXc2dHdkSzBEODF4ODJldzRLd3d3NU53NHZ3YlMxTHc5QyZfX2Nzcj0mX19yZXE9MSZfX2E9QVluQ01HdGE2YWZ1YlJyQ1JmMEI3elczR1hRcFRseUZ3M25qS0k3dk5tRjU1dmZDSjU0QjVncTZxQ052dEtZQ3M2VTQwYl9oR3BKQklydlRIZGRfUGRVWW5Yc2ZJd1RLNjUyRU5iTlBLdWJUcUEmX191c2VyPTA-+
IP 149.202.74.222:0
File type ASCII text, with no line terminators
Hash 4d551d1cf10055405acb97bc18de39a4
dfe6d7f40140b0b39642652b4cc5733d26e351d4
d90b24e75262bac76b326181d9fae864be3d01db85349b6f1958bb8697168ab6
Analyzer Verdict Alert fortinet Phishing
POST /direct/aHR0cHM6Ly9tb2JpbGUuZmFjZWJvb2suY29tL2EvYno_ZmJfZHRzZz1OQWNPVnF4eXJuQ2tTUHZRN3U4ZGtVa3JFOFdSeDB0OFVpZ0RPc1M1T1F2bWwtVHJxZXRhb2RRJTNBMCUzQTAmamF6b2VzdD0yNTI1NiZsc2Q9QVZvaXFZSkdOMGcmX19keW49MUtpZEFHMW13SHdoOC10MEJCQmc5b2RFNGEyaTVVNGUwQzg2dTdFMzl4NjBsVzRvM0J3NEV3azlFNFcwb20wTVUwRDJVUzBzZTIyOXc2dHdkSzBEODF4ODJldzRLd3d3NU53NHZ3YlMxTHc5QyZfX2Nzcj0mX19yZXE9MSZfX2E9QVluQ01HdGE2YWZ1YlJyQ1JmMEI3elczR1hRcFRseUZ3M25qS0k3dk5tRjU1dmZDSjU0QjVncTZxQ052dEtZQ3M2VTQwYl9oR3BKQklydlRIZGRfUGRVWW5Yc2ZJd1RLNjUyRU5iTlBLdWJUcUEmX191c2VyPTA-+ HTTP/1.1
Host: fr.movieproxy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fr.movieproxy.com/direct/aHR0cHM6Ly93d3cuZmFjZWJvb2suY29tL2ltcHJlc3Npb24ucGhwL2ZhMTUyNWYyZjE1ZDk0Lz9hcGlfa2V5PTI2MDg5MDU0NzExNSZsaWQ9MTE1JnBheWxvYWQ9JTdCJTIyc291cmNlJTIyJTNBJTIyanNzZGslMjIlN0Q-
X-Response-Format: JSONStream
X-Requested-With: XMLHttpRequest
X-FB-LSD: AVoiqYJGN0g
X_FB_BACKGROUND_STATE: 1
Content-Type: multipart/form-data; boundary=---------------------------66751873422978879303855921013
Content-Length: 2697
Origin: https://fr.movieproxy.com
Connection: keep-alive
Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; 4everproxy_referer=https://mobile.facebook.com/login.php?next=https%3A%2F%2Fmobile.facebook.com%2F&refsrc=deprecated&_rdr; _ga@movieproxy.com/=GA1.2.1952040774.1662930517; _ga@fr.movieproxy.com/=GA1.3.1952040774.1662930517; _ga@mobile.facebook.com/=GA1.1.1952040774.1662930517; _gid@mobile.facebook.com/=GA1.1.1594266781.1662930517; _gat@mobile.facebook.com/=1; __atuvc@mobile.facebook.com/=1%7C37; __atuvs@mobile.facebook.com/=631e4e55ceef452b000; __atrfs@mobile.facebook.com/=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 21:08:49 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Powered-By: PHP/7.1.33
vary: Accept-Encoding
Set-Cookie: 4everproxy=1c27f279fafd7484501afd3bef77b070; path=/; domain=movieproxy.com
_ga@mobile.facebook.com/=deleted; Domain=fr.movieproxy.com; Path=/
_ga@facebook.com/=deleted; Domain=fr.movieproxy.com; Path=/
_ga@mobile.facebook.com/=deleted; Domain=fr.movieproxy.com; Path=/
_gid@mobile.facebook.com/=deleted; Domain=fr.movieproxy.com; Path=/
_gid@facebook.com/=deleted; Domain=fr.movieproxy.com; Path=/
_gid@mobile.facebook.com/=deleted; Domain=fr.movieproxy.com; Path=/
_gat@mobile.facebook.com/=deleted; Domain=fr.movieproxy.com; Path=/
_gat@facebook.com/=deleted; Domain=fr.movieproxy.com; Path=/
_gat@mobile.facebook.com/=deleted; Domain=fr.movieproxy.com; Path=/
__atuvc@mobile.facebook.com/=deleted; Domain=fr.movieproxy.com; Path=/
__atuvc@facebook.com/=deleted; Domain=fr.movieproxy.com; Path=/
__atuvc@mobile.facebook.com/=deleted; Domain=fr.movieproxy.com; Path=/
__atuvs@mobile.facebook.com/=deleted; Domain=fr.movieproxy.com; Path=/
__atuvs@facebook.com/=deleted; Domain=fr.movieproxy.com; Path=/
__atuvs@mobile.facebook.com/=deleted; Domain=fr.movieproxy.com; Path=/
x-fb-rlafr: 0
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/mobile.facebook.com\/ajax\/mtouch_error_reports\/?device_level=unknown"}]}
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
Pragma: no-cache, no-cache
Cache-Control: no-store, no-cache, must-revalidate, private, no-cache, no-store, must-revalidate
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-debug: oOHswKeqsJr8AFD/BuGx+wnHqGYeBVRJ+XNy9WWO/QUWGqjKdpPbGWTj206XJQz6Yhujs4edpE6jRWsA4kMmfw==
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
connection: keep-alive, Keep-Alive
access-control-allow-origin: *
Content-Length: 249
Keep-Alive: timeout=5, max=93
Content-Type: application/x-javascript; charset=utf-8