| cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css | 104.17.24.14 | 200 OK | 5.6 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css IP104.17.24.14:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:37:01 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 968106
expires: Wed, 16 Apr 2025 23:37:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AUvmZ7%2FPF2suFKrH35XciGWLFf8%2BAJ5s6qprxmlMhYCcuCZUSOVJ6Zmp0KJ8Db7fpc7wKEpFwNFmrmspnhRzms6OCQaFBgL%2FWqqXeNfkGbTRzhKEebvP%2FD%2BtqpRyX9EiEdSorLnn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87aa65fb5cd7b4ed-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/tiny-slider/2.9.2/min/tiny-slider.js | 104.17.24.14 | 200 OK | 11 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/tiny-slider/2.9.2/min/tiny-slider.js IP104.17.24.14:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (31683) Hash3ed83b7fbb9a4a039267b521b742bb11 6dea35181356547514ca65e3f779b5a8a54ab846 080a485f94dee0e757572d6258ffb9faa1bf8876bef1aa5f60e15a81d54c4709
GET /ajax/libs/tiny-slider/2.9.2/min/tiny-slider.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:37:01 GMT
content-type: application/javascript; charset=utf-8
content-length: 11404
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ffd-7bfa"
last-modified: Mon, 04 May 2020 16:17:01 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 177737
expires: Wed, 16 Apr 2025 23:37:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3cWdACU7kxDJwkBriI9zkB%2Bx9T8%2B%2FkRESpzDTs21zbQ3dryKPlw4hoSGbURpUnO%2FT4AVmisr1hrnPI8h5%2BMbcV3%2B3M%2BRfqU2yVUoQxL4fRsjkk5KgditV5l2p4qc2D%2B9doQq60rq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87aa65fb5cd6b4ed-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/@icon/dashicons@0.9.0/dashicons.min.css | 151.101.129.229 | 200 OK | 2.6 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/@icon/dashicons@0.9.0/dashicons.min.css IP151.101.129.229:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeASCII text, with very long lines (13403) Hashee2f4661f9ad31b08bdd7bc711a6b89a 529581d71a795739ede4485c77e7fa9a161356e1 3f2869dec2b3c8920e4723e1a84ac031e9e0bcbff497789f149047f022ea5a26
GET /npm/@icon/dashicons@0.9.0/dashicons.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 0.9.0
x-jsd-version-type: version
etag: W/"35ae-UpWB1xp5Vznt5Ehcd+f6mhYTVuE"
content-encoding: br
accept-ranges: bytes
date: Fri, 26 Apr 2024 23:37:01 GMT
age: 1726578
x-served-by: cache-fra-etou8220097-FRA, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2583
X-Firefox-Spdy: h2
|
|
| tmdbcdn2.online/flix/imgs/logo3.png | 104.21.24.227 | 200 OK | 1.6 kB |
URL GET HTTP/2tmdbcdn2.online/flix/imgs/logo3.png IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typePNG image data, 184 x 37, 8-bit colormap, non-interlaced Hash9bc696d41c0123eaa2856ff0a1407110 e0244563997698eefed6475c34f51967bfab0c08 4e8bcb711c6f86bc9ce8e49537f93b70098db8e713326fe1e42deecc151e9179
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /flix/imgs/logo3.png HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:37:01 GMT
content-type: image/png
content-length: 1580
last-modified: Wed, 26 Oct 2022 16:47:16 GMT
etag: "63596494-62c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6474
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xW95B3Xmjseemu%2B0x3JNzriAEzIMNHAlDL197Q3gKJKIYnOhLRWlSKZXxJNgRCoCtd2MN7wYQp333OcgfcTHkAXgq6UCFijbPqxfVdPV%2B3e8HoA12ZJdKQUFC0aQ5zItdfs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fb5e2e56c1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tmdbcdn2.online/flix/imgs/dc-comics-logo-24x24.png | 104.21.24.227 | 200 OK | 628 B |
URL GET HTTP/3tmdbcdn2.online/flix/imgs/dc-comics-logo-24x24.png IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typePNG image data, 24 x 24, 8-bit gray+alpha, non-interlaced Hashfb56c08d173d1922b23db85ed9305170 53d634733bc095e9e8f0d24b5680a2c44e161244 7f14ce400b0fb0d5a07612df73e1c95b600d4a9f2093d3bc0ed6b329b64f5e4b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /flix/imgs/dc-comics-logo-24x24.png HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/png
content-length: 628
last-modified: Wed, 20 Apr 2022 18:58:52 GMT
etag: "626057ec-274"
cache-control: max-age=14400
cf-cache-status: HIT
age: 808
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EP4i4JLaOyr02RBkfUH%2FxDNkA2dk%2FBENno4itYlq6HU3QMfuppVRBE6lczEi88GJQk9%2FdVhnI6PlFEAFsy%2BEujv4zYSE9xqs1gkuGABsvWVsvrvJuztGnYrSKUWPM2oMZ4E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fcfc07b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/flix/imgs/marvel-comics-logo-48x20.png | 104.21.24.227 | 200 OK | 1.7 kB |
URL GET HTTP/3tmdbcdn2.online/flix/imgs/marvel-comics-logo-48x20.png IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typePNG image data, 48 x 20, 8-bit/color RGBA, non-interlaced Hash94e5a3c965eab8b0fc3b1b3755122ec0 f16249795deb6c70901ec366d93abeb4cd8edb47 183d3d3d656d35c1f464a7bf4d6d6a145ae274f449f93b3c812842dad5898dbc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /flix/imgs/marvel-comics-logo-48x20.png HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/png
content-length: 1652
last-modified: Wed, 20 Apr 2022 18:58:54 GMT
etag: "626057ee-674"
cache-control: max-age=14400
cf-cache-status: HIT
age: 808
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VX9%2Bj35t0imiEOlRj9u6ux37qm%2F6Yc4j0pvRQHHf%2B7m%2BNB1JJ9xlfIgSoXvOIIR038efssbtZ%2BYC5PNfm3SWlXwZceGLyeuDljB%2FH73km%2FBMP1WgXXuf%2FqNg0MoNqtI4zrA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fd0c09b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| gn.metallcorrupt.com/rQHIkyjuVIGYjMo/nEOVA | 23.109.170.127 | 200 OK | 20 B |
URL GET HTTP/1.1gn.metallcorrupt.com/rQHIkyjuVIGYjMo/nEOVA IP23.109.170.127:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjectgn.metallcorrupt.com Fingerprint18:1E:8D:26:5A:B5:E2:C9:D9:A2:1F:5B:82:A4:39:E3:45:FE:D3:89 ValidityFri, 29 Mar 2024 00:08:53 GMT - Thu, 27 Jun 2024 00:08:52 GMT
File typegzip compressed data, from Unix Hash7029066c27ac6f5ef18d660d5741979a 46c6643f07aa7f6bfe7118de926b86defc5087c4 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /rQHIkyjuVIGYjMo/nEOVA HTTP/1.1
Host: gn.metallcorrupt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 23:37:02 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://pelisflix2.giving
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sat, 27-Apr-2024 23:37:02 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Sat, 27-Apr-2024 23:37:02 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 | 104.17.24.14 | 200 OK | 77 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 IP104.17.24.14:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459 Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pelisflix2.giving
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 5033838
expires: Wed, 16 Apr 2025 23:37:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5xnfvtAOuLvjlMwSix9uXytBDE6M5kKP6rqiPqqlVQnMjs3Yrs%2FoEG9ClW7H8ZAGiU53H8oAZquh4kKC7ZLibd2x9eXJedEhh1jKMzQV%2FSqi2k%2Bfd4DlWwGc4IjeDS%2B8DNq2cbgF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87aa65fd4b2c56c0-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/materialicons/v97/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 | 142.250.74.67 | 200 OK | 109 kB |
URL GET HTTP/3fonts.gstatic.com/s/materialicons/v97/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 IP142.250.74.67:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 109180, version 1.0 Size109 kB (109180 bytes) Hashd581ab0fb70dff2313836d355a06c356 1af5c10593c66a28be1cdbd553ed73038e4112f5 8558519e6f6e4e69807a5574145dcc2b569f65c6e060a080767944435c2ebdef
GET /s/materialicons/v97/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pelisflix2.giving
DNT: 1
Connection: keep-alive
Referer: https://s.pelisflix2.wine/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 109180
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 03:24:44 GMT
expires: Fri, 25 Apr 2025 03:24:44 GMT
cache-control: public, max-age=31536000
age: 159138
last-modified: Thu, 05 Aug 2021 15:50:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 | 142.250.74.67 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 IP142.250.74.67:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14892, version 1.0 Hash9ec6deaf6bada919e20b98f9f7b718b1 501d36403ad8205e4644532600019ecb10f5cb0a 7b348b30ea1fe43857e68fc462c29e5c6e63c97666af75135c4396a272e54762
GET /s/sourcesanspro/v22/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pelisflix2.giving
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:27:12 GMT
expires: Fri, 25 Apr 2025 17:27:12 GMT
cache-control: public, max-age=31536000
age: 108590
last-modified: Thu, 01 Jun 2023 22:52:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 | 142.250.74.67 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 IP142.250.74.67:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14712, version 1.0 Hash3afeae0d768769f5e5f30ac9805c5b70 3ada17c2b462db3e7a1fd85c3f4670dfe7704f4d 0d0a6262c545e8bbc895116e5afb22579c468d7abb77e378f377d6fed57c1dce
GET /s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pelisflix2.giving
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:35:47 GMT
expires: Fri, 25 Apr 2025 17:35:47 GMT
cache-control: public, max-age=31536000
age: 108075
last-modified: Thu, 01 Jun 2023 22:52:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 | 142.250.74.67 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 IP142.250.74.67:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14824, version 1.0 Hash48598bad30f08e1c3eb3d0e69b420bd5 28c2cf160273c2062f909a875c4b4c0541ee2f84 ca57b79a870bbf54700730858603a70d79743779c1b059922ec401bfddc5adc9
GET /s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pelisflix2.giving
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:53:09 GMT
expires: Fri, 25 Apr 2025 02:53:09 GMT
cache-control: public, max-age=31536000
age: 161033
last-modified: Thu, 01 Jun 2023 22:52:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| tmdbcdn2.online/e/v2/w0/s8jF1nrr4NYrC11PiQGjPu.webp | 104.21.24.227 | 200 OK | 14 kB |
URL GET HTTP/3tmdbcdn2.online/e/v2/w0/s8jF1nrr4NYrC11PiQGjPu.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 533x300, Scaling: [none]x[none], YUV color, decoders should clamp Hashb705a83c1705a588644c286e5d851dff 8ba5f9960c0895f3029f2afc94e56ec5b918e470 69ab89762e3d1626e793f236ffebcbbb868a24c81607ca74d6af0d59c14aae92
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /e/v2/w0/s8jF1nrr4NYrC11PiQGjPu.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 14124
last-modified: Sat, 09 Mar 2024 03:21:06 GMT
etag: "65ebd5a2-372c"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K%2FJVnDrIvWxViH6HUEvo%2FFu5GVu3lpvlgQrqNSrlrFp16BScy%2FsUHzT5WEhPWUcTaT3tM%2FPnR%2B9ndKIprTl3jBHDQ8uniNwGhngnR123BhWX76OfHAZ%2BTArQg%2BKzUZTZxbg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fdec7bb527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/e/v2/w0/AESCJckSyCQH8HVpYQ3M7v.webp | 104.21.24.227 | 200 OK | 33 kB |
URL GET HTTP/3tmdbcdn2.online/e/v2/w0/AESCJckSyCQH8HVpYQ3M7v.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 533x300, Scaling: [none]x[none], YUV color, decoders should clamp Hash0b697d311aba9fb40d7c1df95a607dcc b71c1c7184d5b3c7d0a0384d4fbe415beba9a255 4670d9e2e478db3ff2dec3ee90f79685c49fe676be6a92ba56e66d761f838767
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /e/v2/w0/AESCJckSyCQH8HVpYQ3M7v.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 32922
last-modified: Sat, 09 Mar 2024 03:21:07 GMT
etag: "65ebd5a3-809a"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3komwYWFQLYzkSIShDcRfy%2FFRCrnCuzNQJwoDzH%2BkW%2FX54sELJ1lr2DX48WG97yYMkwvnZqUKRs%2B3gwZlKKy8irCw4zXZ%2Fih8qu7zdOlnAZzSymzANNxzTy29tbkGMNPe1w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fdec7cb527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/e/v2/w0/htPO2WgC8ojelNbYeAb407.webp | 104.21.24.227 | 200 OK | 39 kB |
URL GET HTTP/3tmdbcdn2.online/e/v2/w0/htPO2WgC8ojelNbYeAb407.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 533x300, Scaling: [none]x[none], YUV color, decoders should clamp Hashb5975366a9d34d0fe28a77e6b33449d4 3327ed174c0e53eb7ccf3bc4a7f1c01a47168142 558c3866249af5129008c567a71dd65d2996264277a88ad6d134bad86d87edeb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /e/v2/w0/htPO2WgC8ojelNbYeAb407.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 39402
last-modified: Mon, 18 Mar 2024 09:22:09 GMT
etag: "65f807c1-99ea"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T6Xi6l1t%2FaxBaQJt9uTgt8CwFNuI2JPDDTNrb8dg3i3us5sH3lzGxSTb9UEJoljy6SWBqMPra7xVwJ9NXqv0JBJwjvD079Zxhxt9ts9v4MNZtbAYgcewNcuqMmH6sHBk%2FNM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fdec7db527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/p/v2/w0/dol0A3dHA1pnbl6sG5Oz.webp | 104.21.24.227 | 200 OK | 11 kB |
URL GET HTTP/3tmdbcdn2.online/p/v2/w0/dol0A3dHA1pnbl6sG5Oz.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 185x278, Scaling: [none]x[none], YUV color, decoders should clamp Hashc0589626f4fd64f8a7c5d91448f2e32d 152eb70d9f9311ee9298cf968e2cbf14979b86f8 23e9c36b1398c4e3e85f2e5df256ebae319059912f1f63f10b2751dc7061b43f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /p/v2/w0/dol0A3dHA1pnbl6sG5Oz.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 11386
last-modified: Wed, 01 Jun 2022 16:18:36 GMT
etag: "6297915c-2c7a"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fLRGYa5TK%2Bd9yEVtdJplpxNQiHeRaD%2FppdOXC5Tl9%2Fel%2BqAMWp1%2BgJI6txNNo%2BpfWDSrGiMYjVSQUKs3%2FyIaflzBywOpeTXQVpl%2FMllpuz0GYKurxZ2Qfqsl2abLOiEp5ds%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fdec80b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/e/v2/w0/vGwYdKnrY1b8XqYxcftRiv.webp | 104.21.24.227 | 200 OK | 34 kB |
URL GET HTTP/3tmdbcdn2.online/e/v2/w0/vGwYdKnrY1b8XqYxcftRiv.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 533x300, Scaling: [none]x[none], YUV color, decoders should clamp Hashff87bc8296e9cb62d6bb69cccba9900d 63f13a05821ccac8a557c993defdf8b21ebb41dd 7827c13975ae842830ccc4088f1341b149240f7163481f3b9dab5f064cd7e9b2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /e/v2/w0/vGwYdKnrY1b8XqYxcftRiv.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 33452
last-modified: Sat, 09 Mar 2024 03:21:04 GMT
etag: "65ebd5a0-82ac"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=djcQWfjuGxh1Oys2B6tL%2FQCgsl5Rh4OMhGHM8M%2FQkchcqhnvMSvlM1v3UzqruIueVjB%2BcNK8bpc5moMjpjnX2cCGd%2F4g2wtXaVZ1zdCBgwh2%2BMzZQv39ttInPejQ8nK4Sw8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fdec7ab527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/p/v2/w0/EzKbi2v2Q8rydrWuzX1t.webp | 104.21.24.227 | 200 OK | 7.6 kB |
URL GET HTTP/3tmdbcdn2.online/p/v2/w0/EzKbi2v2Q8rydrWuzX1t.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp Hashcd0def79545a269d95d0bd6a9bed0610 b6444673f0cc8cc3ff0a6ebe6c7617d5a17edf16 63220fcc8ac880f6c319b30126bdb027ac73d967e6076d7e7bce10a7c118a01b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /p/v2/w0/EzKbi2v2Q8rydrWuzX1t.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 7590
last-modified: Wed, 01 Jun 2022 16:18:48 GMT
etag: "62979168-1da6"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kwQvnQ6ftxi8ymDeUzHfq30oXy1VYIjILWsZKhUgOq5bG4EvKTasPTNeTrfH5qY80CAgwB1cYvgkEbxMtw181hqVFV0E4Ms79%2BZtqzkhDbg3%2FNvG6B1RudevgR757bZY7Xw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fdec81b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/p/v2/w0/OJPoB3iQeaYC1Pf80bQN.webp | 104.21.24.227 | 200 OK | 18 kB |
URL GET HTTP/3tmdbcdn2.online/p/v2/w0/OJPoB3iQeaYC1Pf80bQN.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp Hash700dca6b2eeccb39089d533030382f0c 5730911d29b789145e3f76b68fdb63a3b39ec99b 538facdc76cc6a5b350a7cd597c86ccc9d71fe64483a069b0e60b86cf1df5427
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /p/v2/w0/OJPoB3iQeaYC1Pf80bQN.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 17512
last-modified: Wed, 01 Jun 2022 16:20:06 GMT
etag: "629791b6-4468"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Nhv3OxOp2tSu%2BGddjCVjrS8KBMwc0tGrth0sXPsIjCXN6yGp43g7Vm%2BaTZ9hwghmssH7YYofmDZ3zibKYDraLo8yuaV6RaUl7ihyCNtDgsKnXYKdjiR%2B%2BqeeCDabQdaCWFU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fdec84b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/e/v2/w0/CQWplmOFu0eYj2HJM1a1Yf.webp | 104.21.24.227 | 200 OK | 40 kB |
URL GET HTTP/3tmdbcdn2.online/e/v2/w0/CQWplmOFu0eYj2HJM1a1Yf.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 533x300, Scaling: [none]x[none], YUV color, decoders should clamp Hash73234b4956dffbd322b6ca37e30c7017 7588da389bae0ddb39c4bd005435837a53326e60 164c41e6242321968f563e0178769f5be50384069f4d2aca951bb486e269bca1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /e/v2/w0/CQWplmOFu0eYj2HJM1a1Yf.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 40358
last-modified: Wed, 10 Apr 2024 20:31:33 GMT
etag: "6616f725-9da6"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jyos%2B74D7BPtS%2Fe%2BGmHhK7AispSauM5RQg3C1Yh5sMfcRuBA1nqsOyuPrfxXLd%2BAPwpnDf6A38mBr1DziE1EIFKL%2BP8znUwTb3uRq8OvpBrTZDIDVBlZ7jtTPhwgU%2F6qs%2Bc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fdec7eb527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/e/v2/w0/07gVzK2G3zPLdQP38AprZP.webp | 104.21.24.227 | 200 OK | 17 kB |
URL GET HTTP/3tmdbcdn2.online/e/v2/w0/07gVzK2G3zPLdQP38AprZP.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 533x300, Scaling: [none]x[none], YUV color, decoders should clamp Hashf08b3697ebd1199a88918df8bbcbebb0 a62838e7fd46962b811fb9ab472c95ec431aae71 9fd6a91f246d4ec681d6f685abf847bc094045f849bd2569e6ea75b00a403422
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /e/v2/w0/07gVzK2G3zPLdQP38AprZP.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 17032
last-modified: Mon, 19 Feb 2024 13:21:02 GMT
etag: "65d355be-4288"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NJtVg2pwTsI5B6T%2BHVcmDFf7e8gWzCAaDBd%2B%2Fk%2BrrnsgSpXgdAmGru%2FfXqtHHZmhQPhoNqqvGQgYHNWsL0pkRwf4ecrg6aNhBEiTIjT0putfiQ8azttH%2FqSIdc8HRIBKDww%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fdec78b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/e/v2/w0/rRFOMCnwsQwLnJ47oZQDkp.webp | 104.21.24.227 | 200 OK | 29 kB |
URL GET HTTP/3tmdbcdn2.online/e/v2/w0/rRFOMCnwsQwLnJ47oZQDkp.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 533x300, Scaling: [none]x[none], YUV color, decoders should clamp Hash2378fa67a13c9f8a87403b254fe4b18e ba35440d483a10c0b22d717d96ce61f2ceeefb3e c40fcbb866e5ab3e23f3a01837a41546e708990d49ca7534b1d6cfa744f61a74
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /e/v2/w0/rRFOMCnwsQwLnJ47oZQDkp.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 29030
last-modified: Mon, 26 Feb 2024 07:23:02 GMT
etag: "65dc3c56-7166"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=29jIb9vdnYvmwUeoVOlJgjHJrMleexJ%2Fhri7T9RUR7HG1uIWDqpOeskopmsygr8nw0FAmhNqgK2NDOV3QUMlRosR%2B9ocwAk3ohzADQMYuh85lmKpQbTLSwu4oHslL%2F9Ugwg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fdec79b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/p/v2/w0/UAk7waMf8KZEGc6IUbO3.webp | 104.21.24.227 | 200 OK | 15 kB |
URL GET HTTP/3tmdbcdn2.online/p/v2/w0/UAk7waMf8KZEGc6IUbO3.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp Hashe4d3a3f88025089298385cf33b0abe6b 00e72f4e966d7c1dd1ab96308d4aa19e256d4f7a 9c77152e274a8cbf546e78d23860447ae6269206dd626c63a45e8cef6a82d49b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /p/v2/w0/UAk7waMf8KZEGc6IUbO3.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 15358
last-modified: Wed, 01 Jun 2022 16:20:54 GMT
etag: "629791e6-3bfe"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6Q3YAFyc%2BEKgpnsP%2FcMQQlR8pnMoUnHaSqjK2NNNlEFr1j6RXfOwH6WJe70A%2FAx7n9y%2BwPLEU96A1F%2BbzSfdsF8MK1NxAp3%2Bm7bLXqxJryMNrRDrB5wFryZ7NnrTND1RmiY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fdec82b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| pelisflix2.wiki/temporada/s-w-a-t-2-zkgf-7 | 172.67.137.119 | 301 Moved Permanently | 31 kB |
URL User Request GET HTTP/2pelisflix2.wiki/temporada/s-w-a-t-2-zkgf-7 IP172.67.137.119:443
CertificateIssuerGoogle Trust Services LLC Subjectpelisflix2.wiki Fingerprint4C:44:F5:A3:6C:45:1D:42:F2:99:4A:87:59:F1:68:11:B0:B3:0D:7B ValiditySun, 21 Apr 2024 11:31:19 GMT - Sat, 20 Jul 2024 11:31:18 GMT
Hash1b8bfa02326129144cecfd87a22f4a15 a6468eb541f7b0fdabf854de5317b2d2f17dfbc7 acdbb5b19774589290e3297563bef7ea41846d82854e41ebe8846b072579579b
GET /temporada/s-w-a-t-2-zkgf-7 HTTP/1.1
Host: pelisflix2.wiki
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Fri, 26 Apr 2024 23:37:01 GMT
content-type: text/html
location: https://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7
content-language: es
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LBfyqklaQmk4iBNMiNHx8UQex75ahKn%2Bxb0ejYFqWxoEVSmFtOxt0dHOxmI%2BihbUSOi2zuhsJzgNZi4RGclaeKFAoDQODhrmJvalJ%2BYV5StRhM%2BGz%2Brqj%2FpnhrD9vXcQ494%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa65f6ebe5b503-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tmdbcdn2.online/p/v2/w0/uDAypUnjgWNI0oPyz1Tr.webp | 104.21.24.227 | 200 OK | 7.3 kB |
URL GET HTTP/3tmdbcdn2.online/p/v2/w0/uDAypUnjgWNI0oPyz1Tr.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 185x278, Scaling: [none]x[none], YUV color, decoders should clamp Hasha5514b5bfb84fcf75effa3d697d25854 bbefa247042db2c3f63a62648312dfed7f41011c 2b90488b655c4cafa2dfede9665ee50380377f6163ed0b1865fb03854f017dd4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /p/v2/w0/uDAypUnjgWNI0oPyz1Tr.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 7252
last-modified: Wed, 01 Jun 2022 16:20:54 GMT
etag: "629791e6-1c54"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ANBkFxop1Cs8poJwunFqbzy43u414uh6J%2BqIyRAVGtCU6yQoNCNvk0K724onWadPkh5fijMMhFBZCPyh0hOdYX1jQRTsCKsmlPK0YprLhlkj%2BTXkXSm1w5mbzt1wZ%2BV3Lb4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fdec83b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/p/v2/w0/eR2nxHwBHCJRK4ak.webp | 104.21.24.227 | 200 OK | 14 kB |
URL GET HTTP/3tmdbcdn2.online/p/v2/w0/eR2nxHwBHCJRK4ak.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp Hash4ff4f2e85f42737548811d13b7e1f2c6 ecd198b05bd3723bbae4acafc4b9cd73f9682e08 fc1fdaf638ff91db9f079e2c1bcca16c8fb08f96889f2bcbd5e6aa6e4c991a99
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /p/v2/w0/eR2nxHwBHCJRK4ak.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 14386
last-modified: Wed, 01 Jun 2022 16:18:46 GMT
etag: "62979166-3832"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6475
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i1PP8W7gWfu9Mmksn9AH%2BCHo%2FJep9AzUVGuGBQOssQ0vjqwWcQiT9JvprbhaFrxowmLaz7VMlOck6hLdsqwF3pb6LjSUPFBVHWsNCllU8byMu7qtqSq612R6z6LA21TxWAQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fe8cf3b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/p/v2/w0/X5LQHSTO5wjlLvGVLpXSAxWIUXerZT.webp | 104.21.24.227 | 200 OK | 20 kB |
URL GET HTTP/3tmdbcdn2.online/p/v2/w0/X5LQHSTO5wjlLvGVLpXSAxWIUXerZT.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp Hash0d882c22803a3288b3c5be95fa68c61d 5f01edda81c999fc7fc2931b082fd7c238a7f164 5c0a82d66f6fe90048d71e0ddd1446ff0fa7fe08a36ff602f9011b8495dc2c2b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /p/v2/w0/X5LQHSTO5wjlLvGVLpXSAxWIUXerZT.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 19786
last-modified: Sun, 15 Jan 2023 22:15:28 GMT
etag: "63c47b00-4d4a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6475
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WY637RCv%2FOJ5G3RuyJQp5VC9ZhhiWRGhWzNTZh5Xm7nFu11EyKk1YaTyfU366Zsg6ZO2Xd7rL1aFW7IwR%2BCANs8z3YHQ3vQnScAbS8%2BGyCKPX%2F%2F9eytw0IULqqQDt9Ojjk0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fe8cefb527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/p/v2/w0/QOXnDC2JyTPSF16D6fMzm1jBpcDcuU1azOo2ggCF.webp | 104.21.24.227 | 200 OK | 13 kB |
URL GET HTTP/3tmdbcdn2.online/p/v2/w0/QOXnDC2JyTPSF16D6fMzm1jBpcDcuU1azOo2ggCF.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp Hashd92255e210042d8375ba53defe164be4 bdf2c4ffd681a2f6ad65bbc0777ccb4a7a0648bf ab790c68f11172c2bba1766cc11d5b38a4384ba139c2c17e11fd39cfff179d4b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /p/v2/w0/QOXnDC2JyTPSF16D6fMzm1jBpcDcuU1azOo2ggCF.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 12566
last-modified: Wed, 01 Jun 2022 16:20:24 GMT
etag: "629791c8-3116"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6475
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=57RoOvL9bY%2FzYH6Y3JdMKW9vxG8b7T4s31m75GfhNcjPpHzxlO%2Bgox78rQbo%2B%2FWQG%2Fo%2BEG%2FFeZSxc%2B9GP87zwBuZnyj9unRro00k15X%2FkehpjyaBHowxEepcFLSaE%2BOIJNA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fe8cf5b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/p/v2/w0/VeRm9Oi3QF1Q1kMKn2ER.webp | 104.21.24.227 | 200 OK | 16 kB |
URL GET HTTP/3tmdbcdn2.online/p/v2/w0/VeRm9Oi3QF1Q1kMKn2ER.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp Hash93eb86fcd9bafd8bc8d039c5ffa66ea5 af836e89726d87229a91187e20e9f0472ad3f50c b4f15b9406be4a71b2aa5056d56b996f52c5563058472c3debcfdc19cec875d1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /p/v2/w0/VeRm9Oi3QF1Q1kMKn2ER.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 16038
last-modified: Wed, 01 Jun 2022 16:21:02 GMT
etag: "629791ee-3ea6"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RUKyKZEYSWGn5nrmcqO5fjAPa%2Fj%2FvdNcEq9zLrW%2BgyotbhKcO6zO4fboSTFZYHGg4dneE0TKptqzEejh1ruSUEaGquuMwj4r2kaouWcJ3uxSlUHhkvueXf0jMjyWpWDDddc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fe2ca7b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/p/v2/w0/kAhgcjcDtHR7M9a86jpY5lVTMBVIA.webp | 104.21.24.227 | 200 OK | 14 kB |
URL GET HTTP/3tmdbcdn2.online/p/v2/w0/kAhgcjcDtHR7M9a86jpY5lVTMBVIA.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp Hash534ab45cf895489a70cf74d8c46a14be 0c4597540b426dde3d7c406502397197c19bf42d c63ca62bf0002e2a1c1df4d6bf37513f7fa456f6022f72939df083db4c790f52
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /p/v2/w0/kAhgcjcDtHR7M9a86jpY5lVTMBVIA.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 14214
last-modified: Thu, 15 Dec 2022 12:37:42 GMT
etag: "639b1516-3786"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L1gVhBP2Fr2QxQ5JJmdOjM1hA3xWRR5HJoF4vxvTJwYe9osvEwvi%2FI1rPAmTZ3j9JeHGZ4QYQot2aqJYLUSnDSqXgpYdmwRa9emqo%2FNiAlsNGHGemZ0yDsWPq1nQhlUUCnY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fe8cedb527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/p/v2/w0/ZnhlRkNfr6oTIUYxNiKE.webp | 104.21.24.227 | 200 OK | 13 kB |
URL GET HTTP/3tmdbcdn2.online/p/v2/w0/ZnhlRkNfr6oTIUYxNiKE.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 185x278, Scaling: [none]x[none], YUV color, decoders should clamp Hash7a1b0a277196de11a9b4300c814c1398 c6a07494e1132c09567b3da1ce3cd420961db3b5 f93760a4125658994b4a2175e300ed572af15bbd532114f16ff9e5702e3bb3da
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /p/v2/w0/ZnhlRkNfr6oTIUYxNiKE.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 12690
last-modified: Wed, 01 Jun 2022 16:21:36 GMT
etag: "62979210-3192"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TM3YUvMswOQvuADYB7K31GF7mfzDBEPMJgKZEPIvYm%2Bj%2FFcWpiIoh2g38%2BNq6iviS7DKDPRHYOnDHD%2FNC6%2FdjOC2udo57lCa1P3nrHfNlyIEvLlSpvJJOHKLuBQVU60EQuc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fe7cd3b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/p/v2/w0/aHipW8OzByAkjw7INkKe.webp | 104.21.24.227 | 200 OK | 12 kB |
URL GET HTTP/3tmdbcdn2.online/p/v2/w0/aHipW8OzByAkjw7INkKe.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 185x264, Scaling: [none]x[none], YUV color, decoders should clamp Hash6d37819f6873e642c6ac81a8c55ecf15 5aff6148baf57b51985733f980aa957ea95fea20 9d243c13847d7dada00830f69a2a91a7d9e8d99e4d5bed1a6149d03b448c96fe
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /p/v2/w0/aHipW8OzByAkjw7INkKe.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 11682
last-modified: Wed, 01 Jun 2022 16:18:08 GMT
etag: "62979140-2da2"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KyIMo7XCO1J0Yf4rxy3jIGNi7mKfp27S6CGXnfD7XLo4EG%2FlzXO7umfKm5yX1NZROX7Sb54qxSPhWViJjR1wPmke%2FqVwcMXd%2Fb9VJseWpQhdn2HhXLijLk4wtC%2F%2FAomH5N0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fe8cf9b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/p/v2/w0/jZRyBTpu2yWO0EBEC2mExjXHn2.webp | 104.21.24.227 | 200 OK | 15 kB |
URL GET HTTP/3tmdbcdn2.online/p/v2/w0/jZRyBTpu2yWO0EBEC2mExjXHn2.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp Hash45268d340d1ecd0190f91bcc17688c79 4f5370650941b783280771d86e39b07745f81149 65607c5239f413ebc68c73c1cea64c4dcb350b052720e6d240036b96a5940f42
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /p/v2/w0/jZRyBTpu2yWO0EBEC2mExjXHn2.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 14794
last-modified: Sat, 10 Dec 2022 18:45:20 GMT
etag: "6394d3c0-39ca"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N%2BLE6JNVo%2B%2F4R1DWMzQUQcC628yH6oosxm%2BRM0Qr2lzIeXGl5chEetJZNUKYPV1UYvAyC86qJ4BT5WiEoQ8EeSFM4I7Y14u3zxxE9OM4doY1MRQKydZ83D2kIDLnc5i2WBE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fe8cf7b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/p/v2/w0/rO8WVNrDfU9bYpeE5MKS.webp | 104.21.24.227 | 200 OK | 16 kB |
URL GET HTTP/3tmdbcdn2.online/p/v2/w0/rO8WVNrDfU9bYpeE5MKS.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 185x278, Scaling: [none]x[none], YUV color, decoders should clamp Hashb69f78fe8fae26ad0b8e01454d737578 b706c9a570c53d8c90260002a9fa6e69f8d444c2 e6743b21bd97d62e0f571abf42b1fd1b0eb9ae8d80431bdd596de6e4f6516e0c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /p/v2/w0/rO8WVNrDfU9bYpeE5MKS.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 16042
last-modified: Wed, 01 Jun 2022 16:20:32 GMT
etag: "629791d0-3eaa"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OcRJA1q37gp2perVl65D%2BGy4NeTG46fRIofMPfMXFguIgrnC%2BwLAxG5g6qlwb0R7%2F%2Bfl5cz3xI1GaJyYuFcaYV6v0wYadvoSzwgiSKrzN1mw0nws41euKgIEoVwVk9NNCOk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fe7cd1b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/p/v2/w0/YErwedKvMe0skTJO4M8zKSn1nD5wxtglYxH2A.webp | 104.21.24.227 | 200 OK | 24 kB |
URL GET HTTP/3tmdbcdn2.online/p/v2/w0/YErwedKvMe0skTJO4M8zKSn1nD5wxtglYxH2A.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp Hash995736335692ceab34aae3eb4c59e615 adec6109bd9350ea960bdd9194689b8562d4fbcf 7e0c729035f9791378bd541f15b9b841b59593ea1df55f1672bbbb83b266dcad
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /p/v2/w0/YErwedKvMe0skTJO4M8zKSn1nD5wxtglYxH2A.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 24226
last-modified: Fri, 26 Apr 2024 20:47:35 GMT
etag: "662c12e7-5ea2"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BIkVrDp9PBXk3OsVgpFS%2FBvwJ%2BTCtbVS6a%2F4antxoIDf3%2BgoD0XMOTYpFwuAYpTdOUU2twcqUDXA24GaK4lE3cNUVjfJRDTmRwqNdqSG7gdtzuPxAmeVrcYtcnBd5luaVzE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fe8cfbb527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/p/v2/w0/MlXIKakcFY17PE8Jcyv4.webp | 104.21.24.227 | 200 OK | 15 kB |
URL GET HTTP/3tmdbcdn2.online/p/v2/w0/MlXIKakcFY17PE8Jcyv4.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp Hash21b415daee1f8dc3d28d4392d6db00e2 c7ba112cd499c46b1e2db54591ac6291f5972fbb 61eadeee146f50154db8dd22caf68fa4b2b7bacef6df529fde2debc1a7c7a741
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /p/v2/w0/MlXIKakcFY17PE8Jcyv4.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 15294
last-modified: Wed, 01 Jun 2022 16:19:50 GMT
etag: "629791a6-3bbe"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DsRE7bWqF0V7ojRgQBSV%2BTKln06kZRLsEIUcgUbA8rrVFY7dJPDZOJFNa4dwmDQSY9W3wnfsDwnofvyVIL7WnMUZ4hy1CNFa4v9CcBzcLWf25mqsQxVzjICcQAk0yE1K6Tg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fe8ceab527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tmdbcdn2.online/e/v2/w0/lRAVyN52ltrqeTOVG2Kvhi.webp | 104.21.24.227 | 200 OK | 20 kB |
URL GET HTTP/3tmdbcdn2.online/e/v2/w0/lRAVyN52ltrqeTOVG2Kvhi.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 533x300, Scaling: [none]x[none], YUV color, decoders should clamp Hash984b95e060c6e62d7531dbb446cce75c d1ddb43c088131bdabf3fcad5f4f0c4e58835454 f4ef4755976c73c65a40267f7f6d21c4cfc210e14da46f9b39ad76dea7348eae
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /e/v2/w0/lRAVyN52ltrqeTOVG2Kvhi.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 20032
last-modified: Mon, 22 Apr 2024 16:23:11 GMT
etag: "66268eef-4e40"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=giqu84lnOS2aCFaxHKVC5K4jbf70mRfIlUZ6k7SDxXfl58PD3uI%2FRKCtBE8qIWopVc7fDA0WEfdw2p%2BVl%2BqspF8LwMckFNZL9SxWcwQa2WQ0M61DnDtOHbaLjirGNKM1CHo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65ffddb1b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| s.pelisflix2.wine/flix/imgs/cropped-1F17F-p-button-128-192x192.png | 172.67.144.175 | 200 OK | 18 kB |
URL GET HTTP/3s.pelisflix2.wine/flix/imgs/cropped-1F17F-p-button-128-192x192.png IP172.67.144.175:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerGoogle Trust Services LLC Subjectpelisflix2.wine FingerprintE2:FC:D1:9A:6E:24:97:78:F6:2B:DA:E5:6C:BC:7B:C0:85:8B:12:5C ValidityWed, 17 Apr 2024 19:29:54 GMT - Tue, 16 Jul 2024 19:29:53 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hash1d9386e3cddcf8716882cbd9fd37a83b 5594ab699e5a34677ef111503ce41622dfd7047d 821fa71e6fa8404239947be3d7a339b12dfc10b15000cc5067b1ec498ea28d65
GET /flix/imgs/cropped-1F17F-p-button-128-192x192.png HTTP/1.1
Host: s.pelisflix2.wine
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/png
content-length: 18049
last-modified: Wed, 11 Aug 2021 22:34:34 GMT
etag: "6114507a-4681"
cache-control: max-age=14400
cf-cache-status: HIT
age: 808
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tjueu3vmazBZRkaYa5uwJ7OfnL7Nv5wzRyMfRP8cWrgR%2Buo9fD%2BEq0A5vrgVwzIhpXqROcKinUNK2rU63QwMtIWJmoukf1%2BrS8jRQC%2BytuPFRRWZien4NQkiABY24tCWUvPxWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa66009ae27128-OSL
alt-svc: h3=":443"; ma=86400
|
|
| s.pelisflix2.wine/flix/imgs/cropped-1F17F-p-button-128-32x32.png | 172.67.144.175 | 200 OK | 1.6 kB |
URL GET HTTP/3s.pelisflix2.wine/flix/imgs/cropped-1F17F-p-button-128-32x32.png IP172.67.144.175:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerGoogle Trust Services LLC Subjectpelisflix2.wine FingerprintE2:FC:D1:9A:6E:24:97:78:F6:2B:DA:E5:6C:BC:7B:C0:85:8B:12:5C ValidityWed, 17 Apr 2024 19:29:54 GMT - Tue, 16 Jul 2024 19:29:53 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hash94a09fc458a3037d60f7015927b7425b c726b820a64b888328e531c0e9de49021f723047 2a9d20e8e090964a3bb92314aad62df9c01b0322580817001c3cdf6dd5630f92
GET /flix/imgs/cropped-1F17F-p-button-128-32x32.png HTTP/1.1
Host: s.pelisflix2.wine
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/png
content-length: 1568
last-modified: Wed, 11 Aug 2021 22:34:34 GMT
etag: "6114507a-620"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vMQbTGsFeQbk2s6RuhG7EI9dmjNx7a8H6KYD0Gs0mmlDguJC5CCFs6n%2F%2FzwIXTCUUdoLGbeedjsyhKBV5NtMXo%2BGVBSQjSWTvNrOMGtrPg1u5cq8auBHrzr4rFkGozEfPRAYUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa66009ae37128-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/materialicons/v97/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 | 216.58.207.227 | 200 OK | 109 kB |
URL GET HTTP/3fonts.gstatic.com/s/materialicons/v97/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 IP216.58.207.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 109180, version 1.0 Size109 kB (109180 bytes) Hashd581ab0fb70dff2313836d355a06c356 1af5c10593c66a28be1cdbd553ed73038e4112f5 8558519e6f6e4e69807a5574145dcc2b569f65c6e060a080767944435c2ebdef
GET /s/materialicons/v97/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pelisflix2.giving
DNT: 1
Connection: keep-alive
Referer: https://s.pelisflix2.wine/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 109180
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 03:24:44 GMT
expires: Fri, 25 Apr 2025 03:24:44 GMT
cache-control: public, max-age=31536000
age: 159139
last-modified: Thu, 05 Aug 2021 15:50:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| xddzi4r3spqv.l4.adsco.re/ | 185.200.118.51 | 200 OK | 0 B |
URL POST HTTP/2xddzi4r3spqv.l4.adsco.re/ IP185.200.118.51:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subject*.l4.adsco.re FingerprintB2:51:02:63:F4:E6:E7:3A:98:79:B7:C5:F8:81:EC:E8:79:B9:BC:22 ValidityFri, 19 Apr 2024 09:12:52 GMT - Thu, 18 Jul 2024 09:12:51 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: xddzi4r3spqv.l4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://pelisflix2.giving
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:37:03 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 02 Jun 2023 14:03:32 GMT
etag: "6479f6b4-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| adsco.re/p | 162.252.214.5 | 200 OK | 814 B |
IP162.252.214.5:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeASCII text, with very long lines (1020), with no line terminators Hashb96712801c2b7ef0f4aad7eb46fb5f4a 7d9a09fcbd60cd895302d8c0618de5993bd0f02b f1b28dea2bf701eb3a933ef61e5bcf670a302a386293454fe56a3f222b108534
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1605
Origin: https://pelisflix2.giving
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 Apr 2024 23:37:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Access-Control-Allow-Origin: https://pelisflix2.giving
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
|
|
| 6.adsco.re/ | 104.17.166.186 | | 0 B |
IP104.17.166.186:0
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:03 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: *
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa66070c8c5696-OSL
alt-svc: h3=":443"; ma=86400
|
|
| xddzi4r3spqv.n4.adsco.re/ | 38.132.109.115 | 200 OK | 0 B |
URL POST HTTP/2xddzi4r3spqv.n4.adsco.re/ IP38.132.109.115:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subject*.n4.adsco.re Fingerprint45:6E:69:F7:75:1D:65:9E:20:3D:CF:CE:8B:F5:36:72:85:BD:76:EC ValidityFri, 19 Apr 2024 09:12:46 GMT - Thu, 18 Jul 2024 09:12:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: xddzi4r3spqv.n4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://pelisflix2.giving
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:37:04 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 16 Jun 2023 08:37:42 GMT
etag: "648c1f56-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| c.adsco.re/ | 104.17.166.186 | | 28 kB |
IP104.17.166.186:0
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (689) Hasha0b475c65fed312aba8d7c43a0cbc928 3fdd052b41c37318e44084be4f92d42fba4ded61 2dfb2101b24f80be00b1baecce7eec815e61a13381f6983051b6261b8035468a
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:03 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Mon, 27 May 2024 23:37:03 GMT
etag: W/"oLR1xl/tMSq6jXxDoMvJKA=="
cf-cache-status: HIT
age: 708066
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa66070c895696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| onclickalgo.com/favicon.ico | 172.67.220.206 | 200 OK | 0 B |
URL GET HTTP/2onclickalgo.com/favicon.ico IP172.67.220.206:443
Requested bymoz-nullprincipal:{746bb992-67aa-4ca6-8607-7dd5505d1046}?https://pelisflix2.giving CertificateIssuerLet's Encrypt Subjectonclickalgo.com Fingerprint44:D9:2B:22:D1:A5:AB:CB:06:94:8D:69:1F:18:A7:24:9B:33:E1:56 ValiditySun, 31 Mar 2024 02:02:43 GMT - Sat, 29 Jun 2024 02:02:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: onclickalgo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:37:04 GMT
content-type: image/x-icon
content-length: 0
last-modified: Tue, 19 Jan 2021 07:24:26 GMT
etag: "6006892a-0"
via: 1.1 google
cache-control: max-age=14400
cf-cache-status: HIT
age: 2909
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2VL7EEm0A%2FGnPrCQkyxaDSL2d659BnmY1wci%2Fw9KCCynHSMS6L6hI%2FAPXDAq%2F5gz2Esi5l%2BFnsSzyjRUDeUXDjWSl7dTWkrc5LgStFtJSLX1BCYPeQzbWlvmMsQq5hDExAY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa660a4b1956b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| xddzi4r3spqv.s4.adsco.re/ | 185.200.116.51 | 200 OK | 0 B |
URL POST HTTP/2xddzi4r3spqv.s4.adsco.re/ IP185.200.116.51:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subject*.s4.adsco.re Fingerprint6C:EA:F6:8F:57:34:25:F9:39:76:98:E0:61:B8:C8:86:AD:CC:68:0A ValidityFri, 19 Apr 2024 09:12:40 GMT - Thu, 18 Jul 2024 09:12:39 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: xddzi4r3spqv.s4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://pelisflix2.giving
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:37:05 GMT
content-type: text/html
content-length: 0
last-modified: Tue, 03 Oct 2023 13:29:59 GMT
etag: "651c1757-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| c.adsco.re/ | 104.17.166.186 | | 33 kB |
IP104.17.166.186:0
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (689) Hasha0b475c65fed312aba8d7c43a0cbc928 3fdd052b41c37318e44084be4f92d42fba4ded61 2dfb2101b24f80be00b1baecce7eec815e61a13381f6983051b6261b8035468a
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Mon, 27 May 2024 23:37:02 GMT
etag: W/"oLR1xl/tMSq6jXxDoMvJKA=="
cf-cache-status: HIT
age: 708065
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa66003b6156b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| c.adsco.re/ | 104.17.166.186 | 200 OK | 82 kB |
IP104.17.166.186:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (689) Hasha0b475c65fed312aba8d7c43a0cbc928 3fdd052b41c37318e44084be4f92d42fba4ded61 2dfb2101b24f80be00b1baecce7eec815e61a13381f6983051b6261b8035468a
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:03 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Mon, 27 May 2024 23:37:03 GMT
etag: W/"oLR1xl/tMSq6jXxDoMvJKA=="
cf-cache-status: HIT
age: 708066
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa66058b985696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 6.adsco.re:2087/ | 0.0.0.0 | | 0 B |
IP0.0.0.0:0
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re:2087
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pelisflix2.giving
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| www.xadsmart.com/oyk/ujquery.PrintArea.min.js | 185.76.9.24 | 200 OK | 37 kB |
URL GET HTTP/2www.xadsmart.com/oyk/ujquery.PrintArea.min.js IP185.76.9.24:443 ASN#60068 Datacamp Limited
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subject1376341044.rsc.cdn77.org Fingerprint9E:BC:DC:BC:06:2C:01:7D:11:A9:9F:DB:DC:7A:40:7B:9F:8F:B5:F8 ValidityTue, 20 Feb 2024 02:39:34 GMT - Mon, 20 May 2024 02:39:33 GMT
File typeJavaScript source, ASCII text, with very long lines (1568) Hash01e2467129699328faf48e3f84b6dbf3 5934b7cb95419ead81d7b4ff21e8f674086cdae4 4f1d3d55b36cd5310b356e1654e8ccfb5570cb5c34d920868bd9a3dd17b3c205
GET /oyk/ujquery.PrintArea.min.js HTTP/1.1
Host: www.xadsmart.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pelisflix2.giving
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: application/x-javascript
vary: Accept-Encoding, Origin
popads-node: wb8
expires: Fri, 03 May 2024 23:12:30 GMT
access-control-allow-origin: https://pelisflix2.giving
link: <https://xadsmart.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
x-77-nzt: EwgBuUwJFAFBDAG5TAoBAfe5BQAADAGKxyXEAfcHAAAA
x-77-nzt-ray: af585630813e60ad9e3a2c66b2a71e15
x-accel-expires: @1714777950
x-accel-date: 1714173157
x-77-cache: HIT
x-77-age: 1472
content-encoding: gzip
server: CDN77-Turbo
x-cache: MISS
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
|
|
| s.pelisflix2.wine/flix/js/scriptmin.js?6789 | 172.67.144.175 | 200 OK | 8.6 kB |
URL GET HTTP/2s.pelisflix2.wine/flix/js/scriptmin.js?6789 IP172.67.144.175:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerGoogle Trust Services LLC Subjectpelisflix2.wine FingerprintE2:FC:D1:9A:6E:24:97:78:F6:2B:DA:E5:6C:BC:7B:C0:85:8B:12:5C ValidityWed, 17 Apr 2024 19:29:54 GMT - Tue, 16 Jul 2024 19:29:53 GMT
File typeJavaScript source, ASCII text, with very long lines (8954), with no line terminators Hashb98c936638e7e3074db2368dad22273d 5fec3e1e821be32abd3cb38c99e9b98c924b7fb1 1161f59e7620caa496d5c75b45fbd4518af5d5b63d353a48a138b07402b61112
GET /flix/js/scriptmin.js?6789 HTTP/1.1
Host: s.pelisflix2.wine
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:37:01 GMT
content-type: application/javascript
last-modified: Wed, 31 Jan 2024 02:35:26 GMT
etag: W/"65b9b1ee-21c4"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6475
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZVvi5z%2Feqxu%2F1Uyf5vFBCxvtemfHXnAuXIzHhLIjkfTLNmFzuNTxcY1VmpzniT%2BqYNYTclaXNKUMuV%2Fjq%2F7LGKysOor8yVYLyF3JLkPkce2NhvhYYs9i501xYqeEZ2h8hJZcRw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fb4e745693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Source+Sans+Pro%3A300%2C400%2C600%2C700&ver=1.53 | 142.250.74.106 | 200 OK | 9.5 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Source+Sans+Pro%3A300%2C400%2C600%2C700&ver=1.53 IP142.250.74.106:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeASCII text, with very long lines (9740), with no line terminators Hash70436d9f39b0910dd16bab076ea8943d 55ecc25f846d152e6314fd062a054c86bbcb2562 fdebc360647412ab40e32e406c577bcc44fda07b897625a2e822575d59217236
GET /css?family=Source+Sans+Pro%3A300%2C400%2C600%2C700&ver=1.53 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 23:37:01 GMT
date: Fri, 26 Apr 2024 23:37:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 4.adsco.re/ | 0.0.0.0 | | 0 B |
IP0.0.0.0:0
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pelisflix2.giving
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| xadsmart.com/uzzwmrflpdbviuzjwpr?kDiAoTUV=BQLyAAAAAAAACZUAAmoS4JkuVUkrb7ObXkeVvX8MKmGVlcWeZQJaEoQMfmkNgnt-pO-Zhl4pJcfOzj84UI1p9siObNTwu30ZNQtSPmJGQ5zitB0KDT5Y2olMsTT8c03STnc4UlF6-hkUc_Y6Sjd-PiQEcCuMnnrZs5hG-W9C2lhP8xJhpwFmvz-gFDl4rmrUlyQ7js0Fu0bWC5ny0uBHU0ZCglJ2vbKplaf5I8nGJbtMa2QZ7la_2HugZ2AwSc9u1OujOJU6ZsksBLcdbL_nAjB3udp0Z4FiY2BDjGwRNeHE2tV_59rbVK2Fj0_TSPTv_SAmAMFaCqCRboIv5xprecYQxYKQHw_Z57gQxDeBup2-L9vG8c3qvHvLisEMEH4HYpMLbOobPnmUFX8bcecWBYHcAvOXetZxBbX6ol8p4ucGaCXo3vlkBSbMzf_J_jyyx0IhCd49_t-4is6DG01Md_YDrS8EU7nPSgRLGKp8V8rV5DkU5BwVvAmQHW3TyJccoitQ1PAiIBDhyLGfAbdjj7hKXZ15x-qnx92q5Ge1iDwA-yRAjhUa0-ck302FCqaS9o7RWlJGH2j1UtyPAQNN8AFN8MSXWLijo-r7IYmMCe0JgWIE5zYfhZZrZeL9RE97qDkGnUcfH8bxTjNk2aEAb9Mppnx0yyCuuShDAxqGD9eeKYlez1NqNdKj-FpQacpg7COtKlWt-ECTEU0b8oYTI40MwDJW-duEnIoPxLTFZ0qHv8H_1D_xT52cRdqbmCHkOGZa7ak7SyLzLAp8KRPT-d88lNBFY_uRRAqHccbzrlzqYL36CN8uzsWi-T847isHkac28qAbMlkBq_fqkCvjzxT9sUIxiPtQ_qlc8bXy2cWFpRssUAZFGDvmXs-uqhPWZYJPCspcO42ne_3Qc8B1PyeLT550oLj6u7OQ94_SiBk2AbHwmSZ-D2-0fVvqOy4dv6B-OVW6hmh4APFHS6-1ZYj7d8lcIm1HhC7FoGmlODNuj9CBDn6-jStmn3kZ&prLPTXqF=4&dkhHmpJf=5095253&GmkXINZd=&ajYnqGeT=0,0&JwBMefCW=&cEwzMQnk=&s=1280,1024,1,1280,1024,0 | 104.153.197.251 | 200 OK | 1.3 kB |
URL GET HTTP/2xadsmart.com/uzzwmrflpdbviuzjwpr?kDiAoTUV=BQLyAAAAAAAACZUAAmoS4JkuVUkrb7ObXkeVvX8MKmGVlcWeZQJaEoQMfmkNgnt-pO-Zhl4pJcfOzj84UI1p9siObNTwu30ZNQtSPmJGQ5zitB0KDT5Y2olMsTT8c03STnc4UlF6-hkUc_Y6Sjd-PiQEcCuMnnrZs5hG-W9C2lhP8xJhpwFmvz-gFDl4rmrUlyQ7js0Fu0bWC5ny0uBHU0ZCglJ2vbKplaf5I8nGJbtMa2QZ7la_2HugZ2AwSc9u1OujOJU6ZsksBLcdbL_nAjB3udp0Z4FiY2BDjGwRNeHE2tV_59rbVK2Fj0_TSPTv_SAmAMFaCqCRboIv5xprecYQxYKQHw_Z57gQxDeBup2-L9vG8c3qvHvLisEMEH4HYpMLbOobPnmUFX8bcecWBYHcAvOXetZxBbX6ol8p4ucGaCXo3vlkBSbMzf_J_jyyx0IhCd49_t-4is6DG01Md_YDrS8EU7nPSgRLGKp8V8rV5DkU5BwVvAmQHW3TyJccoitQ1PAiIBDhyLGfAbdjj7hKXZ15x-qnx92q5Ge1iDwA-yRAjhUa0-ck302FCqaS9o7RWlJGH2j1UtyPAQNN8AFN8MSXWLijo-r7IYmMCe0JgWIE5zYfhZZrZeL9RE97qDkGnUcfH8bxTjNk2aEAb9Mppnx0yyCuuShDAxqGD9eeKYlez1NqNdKj-FpQacpg7COtKlWt-ECTEU0b8oYTI40MwDJW-duEnIoPxLTFZ0qHv8H_1D_xT52cRdqbmCHkOGZa7ak7SyLzLAp8KRPT-d88lNBFY_uRRAqHccbzrlzqYL36CN8uzsWi-T847isHkac28qAbMlkBq_fqkCvjzxT9sUIxiPtQ_qlc8bXy2cWFpRssUAZFGDvmXs-uqhPWZYJPCspcO42ne_3Qc8B1PyeLT550oLj6u7OQ94_SiBk2AbHwmSZ-D2-0fVvqOy4dv6B-OVW6hmh4APFHS6-1ZYj7d8lcIm1HhC7FoGmlODNuj9CBDn6-jStmn3kZ&prLPTXqF=4&dkhHmpJf=5095253&GmkXINZd=&ajYnqGeT=0,0&JwBMefCW=&cEwzMQnk=&s=1280,1024,1,1280,1024,0 IP104.153.197.251:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerSectigo Limited Subjectxadsmart.com FingerprintFC:E8:BA:57:31:46:6D:51:70:B5:42:35:6E:CF:97:6F:AF:38:C5:58 ValidityMon, 14 Aug 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1348), with no line terminators Hash37115d42887b5f792c7d0c50b5554cc4 cb821820fb08ec653ad88ab795c324f984177f20 a911dadb97c6daf915b8be72f8534cd4878f248fb6831655534283a9786b6e43
GET /uzzwmrflpdbviuzjwpr?kDiAoTUV=BQLyAAAAAAAACZUAAmoS4JkuVUkrb7ObXkeVvX8MKmGVlcWeZQJaEoQMfmkNgnt-pO-Zhl4pJcfOzj84UI1p9siObNTwu30ZNQtSPmJGQ5zitB0KDT5Y2olMsTT8c03STnc4UlF6-hkUc_Y6Sjd-PiQEcCuMnnrZs5hG-W9C2lhP8xJhpwFmvz-gFDl4rmrUlyQ7js0Fu0bWC5ny0uBHU0ZCglJ2vbKplaf5I8nGJbtMa2QZ7la_2HugZ2AwSc9u1OujOJU6ZsksBLcdbL_nAjB3udp0Z4FiY2BDjGwRNeHE2tV_59rbVK2Fj0_TSPTv_SAmAMFaCqCRboIv5xprecYQxYKQHw_Z57gQxDeBup2-L9vG8c3qvHvLisEMEH4HYpMLbOobPnmUFX8bcecWBYHcAvOXetZxBbX6ol8p4ucGaCXo3vlkBSbMzf_J_jyyx0IhCd49_t-4is6DG01Md_YDrS8EU7nPSgRLGKp8V8rV5DkU5BwVvAmQHW3TyJccoitQ1PAiIBDhyLGfAbdjj7hKXZ15x-qnx92q5Ge1iDwA-yRAjhUa0-ck302FCqaS9o7RWlJGH2j1UtyPAQNN8AFN8MSXWLijo-r7IYmMCe0JgWIE5zYfhZZrZeL9RE97qDkGnUcfH8bxTjNk2aEAb9Mppnx0yyCuuShDAxqGD9eeKYlez1NqNdKj-FpQacpg7COtKlWt-ECTEU0b8oYTI40MwDJW-duEnIoPxLTFZ0qHv8H_1D_xT52cRdqbmCHkOGZa7ak7SyLzLAp8KRPT-d88lNBFY_uRRAqHccbzrlzqYL36CN8uzsWi-T847isHkac28qAbMlkBq_fqkCvjzxT9sUIxiPtQ_qlc8bXy2cWFpRssUAZFGDvmXs-uqhPWZYJPCspcO42ne_3Qc8B1PyeLT550oLj6u7OQ94_SiBk2AbHwmSZ-D2-0fVvqOy4dv6B-OVW6hmh4APFHS6-1ZYj7d8lcIm1HhC7FoGmlODNuj9CBDn6-jStmn3kZ&prLPTXqF=4&dkhHmpJf=5095253&GmkXINZd=&ajYnqGeT=0,0&JwBMefCW=&cEwzMQnk=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: xadsmart.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
popads-node: wb9
access-control-allow-origin: *
asf: 6
cache-control: private, no-store, no-cache, must-revalidate, no-transform, max-age=0
pragma: no-cache
content-type: application/javascript; charset=utf-8
set-cookie: PP_CV=yes; expires=Sat, 27 Apr 2024 00:37:04 GMT; Max-Age=3600
fraudcheck=86ede584438b78ec4bab36c2c92beac4; expires=Sun, 26 May 2024 23:37:04 GMT; Max-Age=2592000; path=/; domain=.popads.net
PopAds_CF_Pass=1; expires=Sat, 27 Apr 2024 05:37:04 GMT; Max-Age=21600
link: <https://onclickalgo.com>;rel=preconnect
content-length: 971
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 23:37:04 GMT
X-Firefox-Spdy: h2
|
|
| pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 | 172.67.156.27 | 200 OK | 84 kB |
URL User Request GET HTTP/2pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 IP172.67.156.27:443
CertificateIssuerGoogle Trust Services LLC Subjectpelisflix2.giving Fingerprint71:19:B4:54:D2:2B:B0:77:FF:92:C7:BD:EF:95:14:55:B3:62:17:37 ValidityFri, 26 Apr 2024 21:40:19 GMT - Thu, 25 Jul 2024 21:40:18 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /temporada/s-w-a-t-2-zkgf-7 HTTP/1.1
Host: pelisflix2.giving
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:37:01 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
ab: D=11047 t=1714174621515617
content-language: es
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FCwdESrUaecqcLbRr2GCQb%2FeLtCDtgBRfZ7ZhTxr45Bku9%2FGWq71tf8XXiRYQAc7Rw%2FWEdhpKMVWgobYwbsjCNyM%2BjWjaUOCbehbTchmHccMeEFTp6aXscQrn5RUJvYbJV1HjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa65f81c2156c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| api.kindor.io/apis/player.php | 172.67.144.152 | 200 OK | 2.6 kB |
URL GET HTTP/2api.kindor.io/apis/player.php IP172.67.144.152:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerGoogle Trust Services LLC Subjectkindor.io FingerprintC9:34:79:82:2F:DC:FA:D9:12:AC:90:93:A3:18:DA:30:64:32:4E:B9 ValiditySun, 07 Apr 2024 20:12:31 GMT - Sat, 06 Jul 2024 20:12:30 GMT
File typeJavaScript source, ASCII text, with very long lines (2594), with no line terminators Hash1beef62c4dd2e208943177dd5c1fe2d5 493328cade3d9a73f0e22b3d54aee6e8354b0faa dba9aa103eb1bfda2bed8434c3f024258bbc5ca896810a16117cb9d26d55497d
GET /apis/player.php HTTP/1.1
Host: api.kindor.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:37:03 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-headers: *
vary: Accept-Encoding
apacheserver: true
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Yla0H5m1WtMmi8divBlk18zM%2F34Nja2d8xSjhkM6MkuqJHY5z06X%2BOmTs33F1rFSMboOPdlAPCTVi1brDXHa7vJmPUvISqq5UWPGBFu74ePJ5gqkJZBu3Fm9soVK1jsi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa6604bf700b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| s.pelisflix2.wine/flix/css/material.css | 172.67.144.175 | 200 OK | 40 kB |
URL GET HTTP/2s.pelisflix2.wine/flix/css/material.css IP172.67.144.175:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerGoogle Trust Services LLC Subjectpelisflix2.wine FingerprintE2:FC:D1:9A:6E:24:97:78:F6:2B:DA:E5:6C:BC:7B:C0:85:8B:12:5C ValidityWed, 17 Apr 2024 19:29:54 GMT - Tue, 16 Jul 2024 19:29:53 GMT
File typeASCII text, with very long lines (39809) Hashf0e5aa96da8efed816312ea8dc482e32 cd598b4a7284896aabb59b31dda9375f3285f3be f4878d29e668050a901645d27c668fc15bd18731b935e6436521c5b66c595ed5
GET /flix/css/material.css HTTP/1.1
Host: s.pelisflix2.wine
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:37:01 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Sun, 08 Aug 2021 21:27:26 GMT
etag: W/"61104c3e-9b82"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6475
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ywl5tH6WJ1YrCLnT%2B4hekfzC4fN92UqaS%2FHf7aio2lVlO190WaoPVGOIbDZCPLU8jbwsQfHZOs3YgZ%2B9wwJNihsNi%2F1VMpyAqXkg5NTBgmLCmO6rXUd2tWdfX%2FkBsXthUm08rA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa65fb5e895693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 4.adsco.re:2087/ | 0.0.0.0 | | 0 B |
IP0.0.0.0:0
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 4.adsco.re:2087
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pelisflix2.giving
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| tmdbcdn2.online/e/v2/w0/W4Yfc94ccp38sc7cS6KwtJ.webp | 104.21.24.227 | 200 OK | 30 kB |
URL GET HTTP/3tmdbcdn2.online/e/v2/w0/W4Yfc94ccp38sc7cS6KwtJ.webp IP104.21.24.227:443
Requested byhttps://pelisflix2.giving/temporada/s-w-a-t-2-zkgf-7 CertificateIssuerLet's Encrypt Subjecttmdbcdn2.online Fingerprint45:22:A8:14:99:02:A7:6A:AB:6E:07:E9:D9:78:61:CF:42:55:10:9D ValidityTue, 05 Mar 2024 23:16:06 GMT - Mon, 03 Jun 2024 23:16:05 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 533x300, Scaling: [none]x[none], YUV color, decoders should clamp Hashef6895e3bda1391a89c6c7e1796e4141 ce415c69c6339bf6c75529af596282ddc5606edd 949d6296b5a5493be6bdf8b7dd342771e68a6743c534587caeefc6e33f7585a5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /e/v2/w0/W4Yfc94ccp38sc7cS6KwtJ.webp HTTP/1.1
Host: tmdbcdn2.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pelisflix2.giving/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:37:02 GMT
content-type: image/webp
content-length: 30196
last-modified: Tue, 16 Apr 2024 10:23:49 GMT
etag: "661e51b5-75f4"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zp%2B4V1kY0yQpAacoENRXkr09Ilb%2BggiWJH5QeB4ug2vcyX82f4kquhK%2FMnGfKnjo%2B0HrTtD62lWJkMwVmpIIDRHxzjw4lJI7g9BAHZNZ0aer6PMlIZDEh47p1H6NRK6PxO4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa65fdec7fb527-OSL
alt-svc: h3=":443"; ma=86400
|
|