Report - www3.hds.quest/films/jeff-panacloc-contre-attaque/

Report Overview

Visited public
2023-10-31 20:49:20
Tags
URL
www3.hds.quest/films/jeff-panacloc-contre-attaque/
Finishing URL
www6.hds.quest/films/jeff-panacloc-contre-attaque/
IP / ASN
104.21.9.66
#13335 CLOUDFLARENET
Title
Jeff Panacloc Contre Attaque en Streaming VF et VO 4K | Film Complet Gratuit Hds.to Hdss Streaming

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-10-31 13:04:07	495 B	6.3 kB	142.250.74.106
lidsaich.net	unknown	2023-04-05	2023-04-06 02:00:20	2023-10-31 19:31:19	1.9 kB	34 kB	139.45.197.244
disposalsirbloodless.com	unknown	2022-05-16	2022-05-16 17:50:28	2023-10-10 01:16:15	1.3 kB	35 kB	192.243.59.20
nullsglitter.com	unknown	2023-09-25	2023-09-25 12:05:05	2023-10-30 08:06:11	2.9 kB	5.7 kB	192.243.59.12
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12 17:15:41	2023-10-31 05:29:48	1.4 kB	178 kB	45.133.44.10
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-09-20 20:05:47	406 B	1.1 kB	142.250.74.100
www.hds.quest	unknown	2022-08-06	2022-08-07 05:27:36	2023-05-09 07:54:24	926 B	9.5 kB	172.67.159.51
st.chatango.com	37357	2004-05-23	2012-06-04 04:57:52	2023-10-30 11:29:37	1.8 kB	259 kB	208.93.230.22
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-10-31 12:15:47	1.0 kB	17 kB	216.58.207.227
resourcechasing.com	unknown	2023-10-10	2023-10-10 11:40:25	2023-10-30 18:02:41	2.9 kB	5.8 kB	173.233.137.60
www3.hds.quest	unknown	2022-08-06	2023-10-19 14:31:06	2023-10-24 00:23:24	961 B	129 kB	172.67.159.51
	unknown				1.1 kB	256 B	208.93.230.191
www6.hds.quest	unknown	unknown	No data	No data	12 kB	632 kB	172.67.159.51
ssl.hds.quest	unknown	2022-08-06	2023-08-01 01:57:31	2023-10-21 13:53:14	1.4 kB	496 kB	172.67.159.51
image.tmdb.org	17757	2009-09-15	2021-01-09 07:43:03	2023-10-31 13:35:26	1.3 kB	57 kB	54.230.111.115
professionalswebcheck.com	unknown	2022-04-01	2022-04-02 00:47:29	2023-10-31 13:12:00	434 B	421 B	18.159.217.114
hds-to.disqus.com	unknown	unknown	No data	No data	401 B	1.5 kB	199.232.196.134
hds.quest	unknown	2022-08-06	2022-08-07 02:32:25	2023-10-24 00:23:08	459 B	19 kB	172.67.159.51
my.rtmark.net	9054	2014-10-29	2015-02-04 10:54:57	2023-10-31 11:57:08	463 B	743 B	139.45.195.8
leveragebestow.com	unknown	2023-09-23	2023-09-23 04:03:17	2023-10-30 18:46:08	2.9 kB	9.0 kB	173.233.137.60
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2023-10-31 06:18:52	480 B	190 kB	142.250.74.99
ust.chatango.com	43894	2004-05-23	2012-12-10 17:31:50	2023-10-30 11:28:31	465 B	395 B	208.93.230.28

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-10-31	medium	lidsaich.net	Sinkholed
2023-10-31	medium	disposalsirbloodless.com	Sinkholed
2023-10-31	medium	disposalsirbloodless.com	Sinkholed
2023-10-31	medium	disposalsirbloodless.com	Sinkholed
2023-10-31	medium	resourcechasing.com	Sinkholed
2023-10-31	medium	nullsglitter.com	Sinkholed
2023-10-31	medium	resourcechasing.com	Sinkholed
2023-10-31	medium	lidsaich.net	Sinkholed
2023-10-31	medium	nullsglitter.com	Sinkholed
2023-10-31	medium	leveragebestow.com	Sinkholed
2023-10-31	medium	lidsaich.net	Sinkholed
2023-10-31	medium	leveragebestow.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (60)

	URL	From	Size	First Seen	Last Seen
	st.chatango.com/h5/gz/r0925230558/id.html	ScriptElement	514 B	2023-03-07	2025-02-26
Pretty URL st.chatango.com/h5/gz/r0925230558/id.html IP 208.93.230.22 ASN #29893 CHATANGO Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:18 Last Seen2025-02-26 21:03 Times Seen562 Hash 37c4b6da5dd2e1cab223e5875969a6d2 63bbb2f5888134503833b026eee6e43b25c32af9 c5532bc5d1630dc0b30da99828d86031356037d356bef00679956972051e136c Loading...

	unknown	ScriptElement	3.3 kB	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 21:36 Last Seen2024-08-20 21:36 Times Seen1 Hash 865e98c4932bc9a81322a06a68c5e745 3f34629fcd41930320bf0d36801db019dfb495ef 7d0d8243eba723f0ab2b80c87dee48635fb69044df5c6c2c35a9eebd84cb7cc9 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-06-24
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-06-24 04:52 Times Seen363714 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www6.hds.quest/films/jeff-panacloc-contre-attaque/	ScriptElement	730 B	2024-08-20	2024-08-20
Pretty URL www6.hds.quest/films/jeff-panacloc-contre-attaque/ IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 21:36 Last Seen2024-08-20 21:36 Times Seen1 Hash f5f025687dc642a8ca3ac09672be2c21 7b5c0edecf8c776536534d26906d004267e9b9aa 04d96a3a159a4c920e91210d35c1f564ebe7fb5532a3f429ba7d940d0924681b Loading...

	unknown	ScriptElement	247 B	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 21:36 Last Seen2024-08-20 21:36 Times Seen1 Hash 3c6c12e3504d9c3ee5072f4ab282b800 3d0414c4abe6d24ee1a70d17e443bf3d55fa713b 7a9c0bb3c393790c8833f6ad129797f3820a5e25b98fee3a54afce57c655733c Loading...

	www6.hds.quest/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	7.4 kB	2023-10-31	2023-10-31
Pretty URL www6.hds.quest/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-31 21:49 Last Seen2023-10-31 22:11 Times Seen2 Hash 59d56b27c1df3954edeea96f6e931f1d 4ad146e795c1c3b5b044d13290d55600e6a07faf 30485a899f94dbedd41cfac44a421b2380548bca082ecccc4c8f7bb4dc613ffb Loading...

	unknown	ScriptElement	3.3 kB	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 21:36 Last Seen2024-08-20 21:36 Times Seen1 Hash c755659b4b47d5b4130bbf3739fe0d03 989dbc25eeaf9b934a5c611179aa89e4913e356b 53eb538d978140d674c3ffd9d9691bc7c411ad016e8f5c678ea48a12d01ac46b Loading...

	www6.hds.quest/films/jeff-panacloc-contre-attaque/	ScriptElement	199 B	2024-08-20	2024-08-20
Pretty URL www6.hds.quest/films/jeff-panacloc-contre-attaque/ IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 21:36 Last Seen2024-08-20 21:36 Times Seen1 Hash 45026d1bf7620292f42af24fb1186974 a0ffc11e7c8ab7aeb6fd163d3dea16023629dddc bcbca20e5cc8a0d13ec6e525150c7ad0989d9e20aa27e3ed1850339c57030821 Loading...

	unknown	ScriptElement	3.3 kB	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 21:36 Last Seen2024-08-20 21:36 Times Seen1 Hash be20e98ab26221b6dfc2ba35d9a72d3d b28c7b888254103c93e3f604337ee7c7cee4fce7 7a99d3e86fcacb1f7446d55153f1c6e775c4b1bcaaa34949a82b9101e49544aa Loading...

	disposalsirbloodless.com/6765491d264865d9ce9804bedc5c96a4/invoke.js	ScriptElement	30 kB	2023-09-28	2023-11-06
Pretty URL disposalsirbloodless.com/6765491d264865d9ce9804bedc5c96a4/invoke.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-28 00:32 Last Seen2023-11-06 20:29 Times Seen43 Hash f8d837d26629861aa1e70dfde75d7877 163bc098a3f7374c8f3e3899604b201d81933592 0dd0ed40adeee6071cd2b4ea61b966add6474f63f0fc8de671386892bc81da33 Loading...

	www6.hds.quest/wp-content/cache/minify/f8767.js	ScriptElement	708 B	2023-03-07	2025-06-20
Pretty URL www6.hds.quest/wp-content/cache/minify/f8767.js IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18 Last Seen2025-06-20 18:31 Times Seen392 Hash c777bcd866fb32c4c2890e5581571337 a0550da9a684b9a3964e4f050a46f1248200ff9b b385fd0614f2927f0e7fdc03ccdb2428e3a93de0c7fe467149b34213cc32c0f6 Loading...

	unknown	ScriptElement	145 B	2023-05-09	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 07:54 Last Seen2024-08-21 09:28 Times Seen4 Hash f5b26ed96314cea786bc18663c29500e 1739f4752fbfcc668e663244a343a809bfa5ce0c f9208571b40493bdaef7cbd0361d1343f8ccb7d28d6d9a7e75b4e0d68e6efe84 Loading...

	st.chatango.com/h5/gz/r0925230558/id.html	ScriptElement	2.8 kB	2023-03-07	2025-06-24
Pretty URL st.chatango.com/h5/gz/r0925230558/id.html IP 208.93.230.22 ASN #29893 CHATANGO Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:18 Last Seen2025-06-24 01:11 Times Seen644 Hash 3243c0841916ec8412445cf28dc213e1 e03e2b55026c2d5a48478b494038ac237a570356 43809cbb40cf2c409373635a089746ebaf238092ec2dd2c0880e5ff57b729f99 Loading...

	st.chatango.com/h5/gz/r0925230558/id.html	ScriptElement	68 B	2023-03-07	2025-06-24
Pretty URL st.chatango.com/h5/gz/r0925230558/id.html IP 208.93.230.22 ASN #29893 CHATANGO Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:18 Last Seen2025-06-24 01:11 Times Seen644 Hash 441a378db25abb5c4db8560de9b87189 4801220a00826fb7fb65f2753204881f393e69dd 25ebf35db1f4166c31ae3ed946d1c1d436c4d5bbc9e1cdb791d4c892773e7dfe Loading...

	st.chatango.com/h5/gz/r0925230558/id.html	ScriptElement	86 kB	2023-09-27	2024-08-21
Pretty URL st.chatango.com/h5/gz/r0925230558/id.html IP 208.93.230.22 ASN #29893 CHATANGO Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-27 21:23 Last Seen2024-08-21 05:39 Times Seen134 Hash f9dec64c4dbc256406c4d2528b7ef880 ef5a9265e4d757c67eda44a20a367f97e0e594a1 03f283083b1df7d9139cb4b4fee0580e31c84c7c2645c1e768db84a3af328605 Loading...

	www6.hds.quest/films/jeff-panacloc-contre-attaque/sandbox%20eval%20code		147 B	2023-04-11	2025-06-24
Pretty URL www6.hds.quest/films/jeff-panacloc-contre-attaque/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-06-24 04:52 Times Seen364383 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www6.hds.quest/films/jeff-panacloc-contre-attaque/	ScriptElement	59 kB	2023-08-11	2024-08-21
Pretty URL www6.hds.quest/films/jeff-panacloc-contre-attaque/ IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-11 13:48 Last Seen2024-08-21 09:28 Times Seen7 Hash 0e3b0d332e9e8af3298d6db25b026326 64f92e42dffaa1215ec7de26da288ab4f82be629 d1827e3a39999794e7fb1f64a20e7a8285d4010753b3e21edbb679bb7d9656e9 Loading...

	www6.hds.quest/films/jeff-panacloc-contre-attaque/	ScriptElement	446 B	2023-08-11	2024-08-21
Pretty URL www6.hds.quest/films/jeff-panacloc-contre-attaque/ IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-11 13:48 Last Seen2024-08-21 09:28 Times Seen7 Hash 06e76d686899aa7473fe09a89b3b2c95 cdf036634b5375955d763cf60dae9387d8fd0f2d 737b623d2db89110caf5de8fdc38112e0613cb69ca0a0c1d082444289602995b Loading...

	www6.hds.quest/films/jeff-panacloc-contre-attaque/	ScriptElement	233 B	2023-03-07	2025-03-04
Pretty URL www6.hds.quest/films/jeff-panacloc-contre-attaque/ IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:07 Last Seen2025-03-04 10:20 Times Seen122 Hash 62882550ecf3446c34811d54cc0ec522 f4eba760345216bd8bfefb7ca10d335d90d4c5c4 d08c22e613188ce170c5df2bed9a06a053cefefe63c46467e0be14c165a42ff1 Loading...

	www6.hds.quest/wp-content/cache/minify/1cd28.js	ScriptElement	4.7 kB	2023-03-12	2024-10-12
Pretty URL www6.hds.quest/wp-content/cache/minify/1cd28.js IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:48 Last Seen2024-10-12 13:50 Times Seen10 Hash 4bb47ad564d385337571ffbf04660576 984147f0b6a5c6cbd9629d88140ed7fc94060903 6a01b9c283a8800c69a218044baff36c22070cfb75d907c1b394412c56cf0307 Loading...

	lidsaich.net/tag.min.js	ScriptElement	81 kB	2023-10-31	2023-11-02
Pretty URL lidsaich.net/tag.min.js IP 139.45.197.244 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-31 13:43 Last Seen2023-11-02 02:02 Times Seen41 Hash 32f51a66cc642f89b378212147ed8cb4 14d4b00cdd6d5291e76e8551eec09327f0a28f31 9f34fd2106613dee5e2e966af9cec91b977d96dd83ba632189f3ae3798eb6f92 Loading...

	st.chatango.com/h5/gz/r0925230558/id.html	ScriptElement	471 kB	2023-08-25	2024-08-21
Pretty URL st.chatango.com/h5/gz/r0925230558/id.html IP 208.93.230.22 ASN #29893 CHATANGO Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-25 15:37 Last Seen2024-08-21 08:06 Times Seen204 Hash 5268c36c7a48de2408c086bd8efe03df f4543096a116feb81723c4ae06a87e6a12855738 ed3323967d3a4d99acf86185f46101408b7a75d0c835503065a009da8fc7066c Loading...

	www6.hds.quest/films/jeff-panacloc-contre-attaque/	ScriptElement	320 B	2023-05-09	2024-08-21
Pretty URL www6.hds.quest/films/jeff-panacloc-contre-attaque/ IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-09 07:54 Last Seen2024-08-21 09:28 Times Seen4 Hash a8f388087cdfd530669f7129dcebe42a 3ef47a2ad30b6604c08e95f4887c99165b82af30 0dfcc67b78f0d311c9c9af3bb61d0c70251ac1f4ee7fbb0b1397b91c8404e720 Loading...

	www6.hds.quest/films/jeff-panacloc-contre-attaque/	ScriptElement	321 B	2023-05-09	2024-08-21
Pretty URL www6.hds.quest/films/jeff-panacloc-contre-attaque/ IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-09 07:54 Last Seen2024-08-21 09:28 Times Seen4 Hash 23eb99e3818ef2715408c54c0603e98c d4ddd06c0b3e68c182edfc932e7ec1bef5dab86b 8a88f839b2671669fbd620238ae991fcbbfba930851c6c761f0ff55b81f194d4 Loading...

	st.chatango.com/h5/gz/r0925230558/id.html	ScriptElement	81 kB	2023-08-25	2024-08-21
Pretty URL st.chatango.com/h5/gz/r0925230558/id.html IP 208.93.230.22 ASN #29893 CHATANGO Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-25 15:37 Last Seen2024-08-21 08:06 Times Seen260 Hash 7eadd31ca355a6bda32cec09e16c922f b9acc1a9af334562be91ad5358d175f337629740 434b1990bf56f3031d411adc1a764d51c99efdb93c5c4caa0f858b4a1ca652cc Loading...

	hds-to.disqus.com/count.js	ScriptElement	1.5 kB	2023-03-07	2025-06-24
Pretty URL hds-to.disqus.com/count.js IP 199.232.196.134 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-24 03:54 Times Seen3326 Hash 64932a1e2564351aa7642475acdf3fbf c3dd2b7d1d4604e3559c2732fd90d71059dd77d8 3487ef2baf0c08ba660a8a143cdeb8ebeec961eea04bccd7c49096b4eb26b875 Loading...

	www.google.com/recaptcha/api.js	ScriptElement	850 B	2023-10-18	2024-08-21
Pretty URL www.google.com/recaptcha/api.js IP 142.250.74.100 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-18 19:33 Last Seen2024-08-21 04:12 Times Seen2929 Hash b728c89f14a97c7aa487e5bfd9a7e848 1b7d96842218a5eb4f44fb84b0fcc91b840f406d e397a9293ff31a20f9a7b8805f8221cc5bc225659b6d86bd8330f572b3a36f4a Loading...

	www6.hds.quest/films/jeff-panacloc-contre-attaque/	ScriptElement	264 B	2024-08-20	2024-08-20
Pretty URL www6.hds.quest/films/jeff-panacloc-contre-attaque/ IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 21:36 Last Seen2024-08-20 21:36 Times Seen1 Hash b798b8efcfeae21333254545ae66b966 e9ba8a1811e62c32bb920b97f40bf829a869853c c7d40e69c3eb459a881931c747349b171f5d1877333028fb1c1b33cb5641f632 Loading...

	www6.hds.quest/films/jeff-panacloc-contre-attaque/	ScriptElement	462 B	2023-10-31	2024-08-20
Pretty URL www6.hds.quest/films/jeff-panacloc-contre-attaque/ IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-31 21:49 Last Seen2024-08-20 21:36 Times Seen2 Hash d9deba3dceb1ce89405b81417c503909 d72ca73c25fb5c2532a418ee714293cac03f6b25 19a6396f42a65b19f4659d8871848e6467df12b199cdb8bfcad1ebe325510732 Loading...

	www6.hds.quest/films/jeff-panacloc-contre-attaque/	ScriptElement	682 B	2023-03-08	2025-06-07
Pretty URL www6.hds.quest/films/jeff-panacloc-contre-attaque/ IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 14:32 Last Seen2025-06-07 15:58 Times Seen146 Hash a64038c33169396c3d38a9494db80c03 0ca9173f18b0d26cca3df3600fd2cd4e58a79268 579f535344f3730f7d35c720e17b2183d5f5c3a8fe01caea632e1d6db7151a3c Loading...

	www6.hds.quest/films/jeff-panacloc-contre-attaque/	ScriptElement	69 B	2023-10-31	2024-08-20
Pretty URL www6.hds.quest/films/jeff-panacloc-contre-attaque/ IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-31 21:49 Last Seen2024-08-20 21:36 Times Seen3 Hash f881db48d1e9095848531cdd87b0f109 d60568efc7836100e1a52160029b4983128fb776 bed479764161469d7f7e41cf56f27000a896323b6eaa51f4680497838537ad14 Loading...

	www6.hds.quest/wp-content/cache/minify/95e53.js	ScriptElement	7.7 kB	2023-10-17	2024-08-21
Pretty URL www6.hds.quest/wp-content/cache/minify/95e53.js IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-17 01:17 Last Seen2024-08-21 04:27 Times Seen3 Hash 6dfa25662d312602483b325146058b10 0aecb2245af965d7e69a5811c04082a03a7bccfd c199af6c181c3739bb1a0c290dd416c3fc39cd0cf02c3ad566c471c17a73663a Loading...

	www6.hds.quest/wp-content/cache/minify/5a968.js	ScriptElement	56 kB	2023-10-17	2024-08-21
Pretty URL www6.hds.quest/wp-content/cache/minify/5a968.js IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-17 01:17 Last Seen2024-08-21 04:27 Times Seen3 Hash f67b0f4bdc1e53cfa53b6eae01ccf869 4bd11846d845bd8adc759c7a04d7d65374b78bdb e1f39eec9563b70e1de2f8ed88d4b3a15395f4b743dce525ef6949da50fbcf11 Loading...

	www6.hds.quest/wp-content/cache/minify/93594.js	ScriptElement	1.3 kB	2023-03-07	2025-06-17
Pretty URL www6.hds.quest/wp-content/cache/minify/93594.js IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-17 19:33 Times Seen227 Hash 92d2da6fd8a44cf3c474b37f959bb4ce 19766b7555ebd247ac39d32e602cdb296bf0f618 d3ef0ef90bfe23c06344adea621a5970f29d65b4fc00a418fa2689c847856ee8 Loading...

	www6.hds.quest/films/jeff-panacloc-contre-attaque/	ScriptElement	345 B	2024-08-20	2024-08-20
Pretty URL www6.hds.quest/films/jeff-panacloc-contre-attaque/ IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 21:36 Last Seen2024-08-20 21:36 Times Seen1 Hash d3ae164c271452970e81594ffe800b78 5aeb52ecb8dda88a4bd51a7fa348b779d71ab692 52d3fda018a5d02971e15dfe215555e350dbb1ef3460a54ab9360d69e924f1fe Loading...

	disposalsirbloodless.com/a5940eacb3304461b562af9864328308/invoke.js	ScriptElement	30 kB	2023-10-13	2023-11-06
Pretty URL disposalsirbloodless.com/a5940eacb3304461b562af9864328308/invoke.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-13 08:51 Last Seen2023-11-06 05:15 Times Seen26 Hash d8bd81403faa2b60db75b00911668441 ca118f0b25c191d4c7afdee61d347f465b0e654f c2d1f9ac26e6d44772ed86c8d76039009040ad0851a9a49f0d6f7cca571f664a Loading...

	www6.hds.quest/wp-content/cache/minify/c2bba.js	ScriptElement	878 B	2023-03-07	2025-05-27
Pretty URL www6.hds.quest/wp-content/cache/minify/c2bba.js IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18 Last Seen2025-05-27 09:08 Times Seen302 Hash 13e32b27a17cf992de2cbc0dc55bae17 a09ea2d74ba966af415d221d71b0dc9d04fb39b8 60631ed8f1dfa6713ff9e30fec41786aadc477c0cac5a75dca66b5a49f76b901 Loading...

	www6.hds.quest/wp-content/cache/minify/cfabb.js	ScriptElement	28 kB	2023-10-31	2023-10-31
Pretty URL www6.hds.quest/wp-content/cache/minify/cfabb.js IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-31 21:49 Last Seen2023-10-31 21:49 Times Seen1 Hash 5db2e1e1a92f261adbb49a4a7cbdcacb 835e84376d7e7c3c7703af5de68935faf5634f5a a9e032d12d80e77afe7a6d68bd05e1d25012d0ff3e0adf7feb5d7ba1ba8dddf5 Loading...

	st.chatango.com/js/gz/emb.js	ScriptElement	70 kB	2023-09-27	2023-12-14
Pretty URL st.chatango.com/js/gz/emb.js IP 208.93.230.22 ASN #29893 CHATANGO Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-27 21:23 Last Seen2023-12-14 07:44 Times Seen133 Hash c1a289685475db88938201b4a2735cb6 b3e9e7e9104c3e76ea85fe3d20c5978d038355f0 509a9e10fd20643e27986373ca0342aa25d85a7c60772c80fe0a2d73593c877e Loading...

	unknown	ScriptElement	145 B	2023-05-09	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 07:54 Last Seen2024-08-20 21:36 Times Seen1 Hash 483acfc3d1f4f7a297e67791193d7630 bd54852d7f17b83820d3237eff54ecc095123f2e 751464ac546506ac90f088237b7333dd75620ab51f3a4d087b0a7d9638029855 Loading...

	www6.hds.quest/wp-content/cache/minify/5998a.js	ScriptElement	175 kB	2023-08-28	2023-10-31
Pretty URL www6.hds.quest/wp-content/cache/minify/5998a.js IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-28 23:18 Last Seen2023-10-31 21:49 Times Seen2 Hash 2ae1bce515aa3607082f010ec3fd09c9 c7efd002e317d4a2501087faf584b49c6c334bfa fbb4be6b1f2fd358c540d5a19343ac187c6e3163e6f1f2ce1c7fc0c988833d16 Loading...

	disposalsirbloodless.com/c0ecd57aa2db939b0fffbe5cd7cc068d/invoke.js	ScriptElement	30 kB	2023-10-09	2023-11-07
Pretty URL disposalsirbloodless.com/c0ecd57aa2db939b0fffbe5cd7cc068d/invoke.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-09 09:42 Last Seen2023-11-07 05:14 Times Seen26 Hash d055ef18506264c82a5a921e1db09d20 c3797b17762a0da70ba38144094ddecb326fa5ef 3af4a6df841b1e1f5db9f249f007f4c02cb77ed20da1bc9e1acfda2bb9a0b8b2 Loading...

	www6.hds.quest/films/jeff-panacloc-contre-attaque/	ScriptElement	210 B	2024-08-20	2024-08-20
Pretty URL www6.hds.quest/films/jeff-panacloc-contre-attaque/ IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 21:36 Last Seen2024-08-20 21:36 Times Seen1 Hash 95c74b2fd1a032a06a7f994d1cc8295a 7825756e2a24496896e93cffe1258a90bebbc8a0 8a22b217ec95291ba447a2be2d289ef6522472b79e8e1bceca3d26eef6962d2d Loading...

	www6.hds.quest/films/jeff-panacloc-contre-attaque/	ScriptElement	251 B	2023-05-09	2024-08-21
Pretty URL www6.hds.quest/films/jeff-panacloc-contre-attaque/ IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-09 07:54 Last Seen2024-08-21 07:52 Times Seen5 Hash 0b1c2bca4308844704777c68b13cc682 eeb1ab020333310e576c7d83a4d62f38b6f15bd9 7b7536c8e308653d48b84de2290e59725ff3b97d9039c7040ca3e48153b75daa Loading...

	unknown	ScriptElement	145 B	2023-05-09	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 07:54 Last Seen2024-08-21 09:28 Times Seen4 Hash 5fb4eeb6981db8d971774700f4492d36 579c03670d5e0688acf50f7ef85ec794e0da7838 d350d90f0ec7172ff2bb4cb43608df9cb1b8dc279c8b1d5f85cc65e9578ba3aa Loading...

	st.chatango.com/h5/gz/r0925230558/id.html	ScriptElement	500 B	2023-03-07	2025-06-24
Pretty URL st.chatango.com/h5/gz/r0925230558/id.html IP 208.93.230.22 ASN #29893 CHATANGO Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:18 Last Seen2025-06-24 01:11 Times Seen642 Hash ff7740eb4626a42bc3c5931080184792 8eae299530fe6b2aa2f48d3af8e7c2566e10cd81 6b8a3c1db7301e1456b3e8324242f1d31b27dda2e945211bec25519eef3181ca Loading...

	st.chatango.com/h5/gz/r0925230558/id.html	ScriptElement	82 B	2023-03-07	2025-06-12
Pretty URL st.chatango.com/h5/gz/r0925230558/id.html IP 208.93.230.22 ASN #29893 CHATANGO Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:18 Last Seen2025-06-12 23:09 Times Seen578 Hash 7b57040338cb73dfe12425b3a9cf20a3 cc85b6aa4c370f1e8b0cd12f38ff33aecb684a5c 21a433ef209a764be84f3677d6cee1ec9862db67bd02cb1dbe38e3d942474efc Loading...

	www6.hds.quest/films/jeff-panacloc-contre-attaque/	ScriptElement	561 B	2024-08-20	2024-08-20
Pretty URL www6.hds.quest/films/jeff-panacloc-contre-attaque/ IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 21:36 Last Seen2024-08-20 21:36 Times Seen1 Hash ebd525109cf781ada55b16f2ebc67110 3823818758c0d0a26f9cf87342524a23442b391e e3765c3f30bcb8f4575bc826af7deceb4c997a399aa501f14cd09a6ad36e35a2 Loading...

	www6.hds.quest/films/jeff-panacloc-contre-attaque/	ScriptElement	1.1 kB	2024-08-20	2024-08-20
Pretty URL www6.hds.quest/films/jeff-panacloc-contre-attaque/ IP 172.67.159.51 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 21:36 Last Seen2024-08-20 21:36 Times Seen1 Hash fb5277bd3ef842bbc1afba9213cbcea4 1f564ea5c1900b3f49bbf31764aed2fb97fe53b5 a8af48119f7b3b10ee96d10d88e82a670f880b7fde2b83fb2fc68ed2e417cb1a Loading...

	www.gstatic.com/recaptcha/releases/vm_YDiq1BiI3a8zfbIPZjtF2/recaptcha__en.js	ScriptElement	473 kB	2023-10-18	2024-08-22
Pretty URL www.gstatic.com/recaptcha/releases/vm_YDiq1BiI3a8zfbIPZjtF2/recaptcha__en.js IP 142.250.74.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-18 16:21 Last Seen2024-08-22 11:17 Times Seen8871 Hash 4efc45f285352a5b252b651160e1ced9 c7ba19e7058ec22c8d0f7283ab6b722bb7a135d7 253627a82794506a7d660ee232c06a88d2eaafb6174532f8c390bb69ade6636a Loading...

		Size	First Seen	Last Seen
	#1 Eval - 987580a1d1502c44d425b4403f1328cf	2.1 kB	2024-08-20 21:36	2024-08-20 21:36
Pretty Observations First Seen2024-08-20 21:36 Last Seen2024-08-20 21:36 Times Seen1 Hash 987580a1d1502c44d425b4403f1328cf d1ff516cf8906e23de86a72d48f15b57857d12bf 10a124e7162dc534c3d31c4c5f412ec1d6aa9e478ca0b25b8fcd35ccc8b8bee4 Loading...

	#2 Eval - 19720c164d56f7e7dfe6748e376f868e	19 B	2023-03-07 01:18	2025-06-24 01:11
Pretty Observations First Seen2023-03-07 01:18 Last Seen2025-06-24 01:11 Times Seen836 Hash 19720c164d56f7e7dfe6748e376f868e 0387db7b6a453b71114985d199838b7a3928c76b 56e50d855741d508ab6465d3860ef0ad117ab967993b9111caeaec90f64e912b Loading...

	#3 Eval - 9e425175d5432db9dfa7fc9199d8ef90	9.2 kB	2023-08-28 23:18	2024-08-21 07:52
Pretty Observations First Seen2023-08-28 23:18 Last Seen2024-08-21 07:52 Times Seen54 Hash 9e425175d5432db9dfa7fc9199d8ef90 10401aee54ac954f4f2444f9b3e2aa0f50570ad4 8282aa064878fe6e7cae98d3b44680b9eacfc223dd9be8f028113ce162564d6b Loading...

	#4 Eval - 82bbfa3e3d211d9d7b3acd89069b8b13	2.1 kB	2024-08-20 21:36	2024-08-20 21:36
Pretty Observations First Seen2024-08-20 21:36 Last Seen2024-08-20 21:36 Times Seen1 Hash 82bbfa3e3d211d9d7b3acd89069b8b13 035c56ce1eb6957c08dfddbf6266c21812671ea1 7c359492c71ceb6eb98aeb4af9896d912af51fe8dd63e8b0bbd77ebc47bb6177 Loading...

	#5 Eval - 645e9c00e705d1b476532c859998e614	2.1 kB	2024-08-20 21:36	2024-08-20 21:36
Pretty Observations First Seen2024-08-20 21:36 Last Seen2024-08-20 21:36 Times Seen1 Hash 645e9c00e705d1b476532c859998e614 6cd18c98b5a964114b79805ff077a59bee9466bf 316e28f11e30775672895066f33efda80f3edc988d1dc4cf5b2da7db3419ae3e Loading...

	#6 Eval - c8d9a636c7be776abdcbb67f9e696e8b	128 B	2023-10-31 21:49	2024-08-20 21:36
Pretty Observations First Seen2023-10-31 21:49 Last Seen2024-08-20 21:36 Times Seen2 Hash c8d9a636c7be776abdcbb67f9e696e8b 5c17a7e862b3776a9f660ceeec8fd81b1bf42539 de9e92d7856f0839403773c4f7692115b3dd2e301e756e3ceab58faca6a2c83b Loading...

	#7 Eval - 51c06619951fa550760ad54048fa0b98	13 B	2023-03-07 01:29	2025-06-23 04:55
Pretty Observations First Seen2023-03-07 01:29 Last Seen2025-06-23 04:55 Times Seen309 Hash 51c06619951fa550760ad54048fa0b98 18b18a23e8454584c8468b20608774f3678a5894 976e8dfa76f94c12aa882439baebef91bfaf8e6b5940a03f135722a234d119c7 Loading...

		Size	First Seen	Last Seen
	#1 Write - 08c812d66ebdc1505040d12f9cdfc295	116 B	2024-08-20 21:36	2024-08-20 21:36
Pretty Observations First Seen2024-08-20 21:36 Last Seen2024-08-20 21:36 Times Seen1 Hash 08c812d66ebdc1505040d12f9cdfc295 c40d497fae22510ca8a4005e2588037207bfd4de 0051cd25b2f2b8dcfe8cc19e42526006b6e120a92abcc81209c67d250d0f2a15 Loading...

	#2 Write - aac96ecf842f4b35279d7e6afc9c13d6	122 B	2023-08-11 13:48	2024-08-21 09:28
Pretty Observations First Seen2023-08-11 13:48 Last Seen2024-08-21 09:28 Times Seen3 Hash aac96ecf842f4b35279d7e6afc9c13d6 406ff5c4026bd0dc111c085eced74e6324310ca8 5f8a7422c3d4aa369743484784cf277e89da1035ced4957e3b613b62febbb40e Loading...

	#3 Write - 4578e397bec6ab3b65bce2052f210f7e	122 B	2023-08-11 13:48	2024-08-21 09:28
Pretty Observations First Seen2023-08-11 13:48 Last Seen2024-08-21 09:28 Times Seen3 Hash 4578e397bec6ab3b65bce2052f210f7e 8556e26cdd7fca97cf0ae388b75250e8d1fd0e53 710c4ce43ffe2d735ca9fe17a1cd4a6bff330b71416266539df8950d3f9e7f8d Loading...

HTTP Transactions (63)

URL IP Response Size

GET www6.hds.quest/wp-content/themes/dooplay.2.4.1/assets/img/flags/fr.png

172.67.159.51

200 OK

92 B

URL GET HTTP/3
www6.hds.quest/wp-content/themes/dooplay.2.4.1/assets/img/flags/fr.png
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
PNG image data, 12 x 12, 2-bit colormap, non-interlaced\012- data
Size
92 B (92 bytes)
Hash
ffb896251146505f54aca24ec5ea5fc2
105a3a59a8a862966dc568f15917c8fac08e4ce1
125cb2c86448b844870dcad83061e9883470ea9cf359aa5f008ff2754534f0b7

HTTP Headers

GET /wp-content/themes/dooplay.2.4.1/assets/img/flags/fr.png HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:48:59 GMT
content-type: image/png
content-length: 92
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Fri, 30 Jun 2023 21:35:56 GMT
etag: "5c-5ff5f9a21aaf8"
cache-control: max-age=31536000
expires: Wed, 30 Oct 2024 15:58:51 GMT
referrer-policy: 
cf-cache-status: HIT
age: 17408
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3DR6qrpU0zaexPxv6yCv9VKizgJ5%2FCbj0dpUZvCGuqRhN0GcIY2NOdXY3wMwhX5C8zyKRNEOt9FCtjG5bwN%2Bul0XWXhxPhNkusPw%2BfZTwZUxiOGBjc2viB9CGxL5t8kVtg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec316df39569c-OSL
alt-svc: h3=":443"; ma=86400

GET ssl.hds.quest/wp-content/uploads/2018/08/0717778.jpg-c_310_420_x-f_jpg-q_x-xxyxx.jpg

172.67.159.51

200 OK

32 kB

URL GET HTTP/3
ssl.hds.quest/wp-content/uploads/2018/08/0717778.jpg-c_310_420_x-f_jpg-q_x-xxyxx.jpg
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 310x420, components 3\012- data
Size
32 kB (31992 bytes)
Hash
86f226c3a38cd967488dc188ca1b5662
2cb36117b2434f16316b12a6bc85464f854437a7
62766aad8f618567bd000076e901a3de6e7dcdeecc844d815428b1e4f93f0ef9

HTTP Headers

GET /wp-content/uploads/2018/08/0717778.jpg-c_310_420_x-f_jpg-q_x-xxyxx.jpg HTTP/1.1
Host: ssl.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:00 GMT
content-type: image/jpeg
content-length: 31992
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Mon, 07 Aug 2023 22:31:09 GMT
etag: "7cf8-6025ccd8ca000"
cache-control: max-age=31536000
expires: Thu, 24 Oct 2024 09:51:03 GMT
referrer-policy: 
cf-cache-status: HIT
age: 557876
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eVw56IDjbKDDT9awVapdmT%2FTpIh%2Fdsv2b99hG0hbrC2sADCCKJdTiB2ThgeWSGx%2Fj%2BCc28OxxwDf%2FbSV1ki%2F1rxQvJg5rV3Niw7xHxHHc7Py2YReUsn1MjHPKwkNqoEn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec3174fbc569c-OSL
alt-svc: h3=":443"; ma=86400

GET www.hds.quest/wp-content/uploads/2019/09/hds-logo-fin.png

172.67.159.51

200 OK

3.3 kB

URL GET HTTP/3
www.hds.quest/wp-content/uploads/2019/09/hds-logo-fin.png
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
PNG image data, 155 x 48, 8-bit/color RGB, non-interlaced\012- data
Size
3.3 kB (3254 bytes)
Hash
38bbbc2b6ad20e483607f305b57d3458
e1043fbc9871c42b2a79157073734bd3daa9e639
1e2fe5c5fc7335c768951ddc8b33da7333645d99683ac6f668feb4efeb2c45dd

HTTP Headers

GET /wp-content/uploads/2019/09/hds-logo-fin.png HTTP/1.1
Host: www.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:00 GMT
content-type: image/png
content-length: 3254
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Sat, 03 Apr 2021 15:08:20 GMT
etag: "cb6-5bf12d5caa790"
cache-control: max-age=31536000
expires: Sat, 26 Oct 2024 13:06:17 GMT
referrer-policy: 
cf-cache-status: HIT
age: 373363
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3gBiEPJF9lBlAFyKeSwBgRMJp1EpFgkAjobaiwCCtCgDXijsK0%2BWHEnQt7wOEKq2E%2BJARcEQIKwUSYgcWhgCifgg%2Bf4%2B3hqjX53CAY%2BqVP9lAbyzMoZc7lMuofx4xDAu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec3174fcd569c-OSL
alt-svc: h3=":443"; ma=86400

GET ssl.hds.quest/wp-content/uploads/2018/06/maxsteelshd.jpg

172.67.159.51

200 OK

254 kB

URL GET HTTP/3
ssl.hds.quest/wp-content/uploads/2018/06/maxsteelshd.jpg
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 810x1080, components 3\012- data
Size
254 kB (253571 bytes)
Hash
491f448f90057ccf24b5d68e080f9fec
a0fe48225df4c4669d2a71c01a7c13dfaf4eac66
8977a21bb70e78f63118ca11e16e9f5e520abbd2f8d4750f14e726814bdb35b8

HTTP Headers

GET /wp-content/uploads/2018/06/maxsteelshd.jpg HTTP/1.1
Host: ssl.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:00 GMT
content-type: image/jpeg
content-length: 253571
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Mon, 07 Aug 2023 22:30:17 GMT
etag: "3de83-6025cca7332d0"
cache-control: max-age=31536000
expires: Sun, 27 Oct 2024 19:08:03 GMT
referrer-policy: 
cf-cache-status: HIT
age: 265257
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FdekCfiBXbv44wcecVTMV6hrPhxA1IZivzdg32tk2HyoZeru1bcd%2FZKoqerr6CRJCJqDemKJE%2FTDp8zcjTIp1GnQxpswhR4I64OMSq0WVZPr5DLqOtYbe6GQm0mpTCnx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec3174fbe569c-OSL
alt-svc: h3=":443"; ma=86400

GET ssl.hds.quest/wp-content/uploads/2017/12/hpsorciers.jpg

172.67.159.51

200 OK

208 kB

URL GET HTTP/3
ssl.hds.quest/wp-content/uploads/2017/12/hpsorciers.jpg
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 760x1080, components 3\012- data
Size
208 kB (208093 bytes)
Hash
0a86a9077edd71677a0b2098e463342c
dec46cab654615463e44b20c751b65a76bcc5a5a
1f0f88b6ff28fff6e176e6347cac0752ad51370ecdbab7aa96ee5cb6a1d5ef1f

HTTP Headers

GET /wp-content/uploads/2017/12/hpsorciers.jpg HTTP/1.1
Host: ssl.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:00 GMT
content-type: image/jpeg
content-length: 208093
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Mon, 07 Aug 2023 22:32:15 GMT
etag: "32cdd-6025cd17e7788"
cache-control: max-age=31536000
expires: Sun, 27 Oct 2024 19:08:03 GMT
referrer-policy: 
cf-cache-status: HIT
age: 265257
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fhed7CehugL8ew6jpJlbpZvirHnmdrLJte9j%2BWowESMVO2t6BOvDWbddTXGGfPMSLYad7T4XxQI95JDt%2BdaYLB5dt1oCv0%2BW0QnPBs4PHTniHNEcpzUIjBSK5h0w%2BHe8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec3174fbf569c-OSL
alt-svc: h3=":443"; ma=86400

GET image.tmdb.org/t/p/w300/goCvLSUFz0p7k8R10Hv4CVh3EQv.jpg

54.230.111.115

200 OK

11 kB

URL GET HTTP/2
image.tmdb.org/t/p/w300/goCvLSUFz0p7k8R10Hv4CVh3EQv.jpg
IP
54.230.111.115:443
ASN
#16509 AMAZON-02

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerAmazon
Subject*.tmdb.org
Fingerprint10:B9:A0:0F:73:68:C4:7E:CF:76:68:A4:D7:21:FB:A5:3B:30:45:30
ValidityMon, 23 Oct 2023 00:00:00 GMT - Wed, 20 Nov 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3\012- data
Size
11 kB (10941 bytes)
Hash
b71c2ce62a9f1d9d233c07138728119d
4b4bd7340ec7c2ccd0b8fbfe72efcadf9d901cdf
40eb5db794696e013650424f01afc7fb21baaf26672ae0e10cdbe710c876b04e

HTTP Headers

GET /t/p/w300/goCvLSUFz0p7k8R10Hv4CVh3EQv.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 10941
date: Fri, 06 Oct 2023 19:57:05 GMT
server: openresty
cache-control: public, max-age=31536000
last-modified: Tue, 30 May 2017 06:09:17 GMT
imagery: degrade=85, sample=2x2, difference=1.13
cache-tag: goCvLSUFz0p7k8R10Hv4CVh3EQv
etag: b71c2ce62a9f1d9d233c07138728119d
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: fPXnsiGZXKSj_IlRMEF0IX3lXuyKY_2OQBo-u7sSvgwMR_9PzmizwA==
age: 2163115
vary: Origin
X-Firefox-Spdy: h2

GET image.tmdb.org/t/p/w300/bOGkgRGdhrBYJSLpXaxhXVstddV.jpg

54.230.111.115

200 OK

14 kB

URL GET HTTP/2
image.tmdb.org/t/p/w300/bOGkgRGdhrBYJSLpXaxhXVstddV.jpg
IP
54.230.111.115:443
ASN
#16509 AMAZON-02

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerAmazon
Subject*.tmdb.org
Fingerprint10:B9:A0:0F:73:68:C4:7E:CF:76:68:A4:D7:21:FB:A5:3B:30:45:30
ValidityMon, 23 Oct 2023 00:00:00 GMT - Wed, 20 Nov 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3\012- data
Size
14 kB (14445 bytes)
Hash
b9f531baf09929772f1001f80bd1e049
2d10fe10bc5296bc484c8ef332f4a3eb91a5883e
b58f16a896c11302e3675b41417928827d2b2b0dbe784373e84e2c89a46a4761

HTTP Headers

GET /t/p/w300/bOGkgRGdhrBYJSLpXaxhXVstddV.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 14445
date: Fri, 06 Oct 2023 19:56:59 GMT
server: openresty
cache-control: public, max-age=31536000
last-modified: Wed, 25 Apr 2018 15:49:35 GMT
imagery: degrade=85, sample=2x2, difference=1.256
cache-tag: bOGkgRGdhrBYJSLpXaxhXVstddV
etag: b9f531baf09929772f1001f80bd1e049
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: UqmVfLN97zbXf6fWS_cmAoztX7xdEjKY_fujWZE207otepyZlYmcaw==
age: 2163121
vary: Origin
X-Firefox-Spdy: h2

GET www6.hds.quest/wp-content/uploads/2019/11/jG9tzQ4dU3sPjE8LDrpumOXtMnt-185x278.jpg

172.67.159.51

200 OK

17 kB

URL GET HTTP/3
www6.hds.quest/wp-content/uploads/2019/11/jG9tzQ4dU3sPjE8LDrpumOXtMnt-185x278.jpg
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 185x278, components 3\012- data
Size
17 kB (17133 bytes)
Hash
4841fd49a0d868f73b5c1bdde2014b06
2a03b961cf19bf763988d0b272b32c696b5f39b6
deb40e23236cdf9647799b3a4166ca98aba24d95e50f8ea97a29076a4da2a6fa

HTTP Headers

GET /wp-content/uploads/2019/11/jG9tzQ4dU3sPjE8LDrpumOXtMnt-185x278.jpg HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:00 GMT
content-type: image/jpeg
content-length: 17133
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Sat, 03 Apr 2021 15:08:13 GMT
etag: "42ed-5bf12d55928e0"
cache-control: max-age=31536000
expires: Wed, 30 Oct 2024 20:49:00 GMT
referrer-policy: 
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iQr7VAYlfe5fqD7PKjJQe%2F8Z6Hk5z%2BZi4Eo9HCqmXofXiijWrgK5E%2F0MYXm4wy0YTD6Tqu9Sp1nnqOSWE81irzhMUl4dMIVYev2cu93C8WQzNNzNbtaTRIm%2B6%2FdaZJAt3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec316df3c569c-OSL
alt-svc: h3=":443"; ma=86400

GET www.hds.quest/wp-content/uploads/2022/06/400cpa.png

172.67.159.51

200 OK

4.7 kB

URL GET HTTP/3
www.hds.quest/wp-content/uploads/2022/06/400cpa.png
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
PNG image data, 468 x 59, 8-bit/color RGB, non-interlaced\012- data
Size
4.7 kB (4695 bytes)
Hash
265a83650c2597406676e86f9f78d30f
93eebdd388d98ae3b8a19b85e49e585cb32d09c5
ee1a9fbe5374456039dcbb15a468bee509006a01c11f99222a8ac72179a11864

HTTP Headers

GET /wp-content/uploads/2022/06/400cpa.png HTTP/1.1
Host: www.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:00 GMT
content-type: image/png
content-length: 4695
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Wed, 15 Jun 2022 20:10:59 GMT
etag: "1257-5e1821ea8ead0"
cache-control: max-age=31536000
expires: Fri, 25 Oct 2024 05:45:32 GMT
referrer-policy: 
cf-cache-status: HIT
age: 486208
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bt2A%2BRIGIq0dzfFSjStd13wcpaNmp9tcJc2YABWm6idpXmpQCau2xmN%2BX%2F6%2BoPhalIbrvDDrMKImhBQg1mZhvlmsqJN2mNwXfpPAHKyurfopX15GSjC4DxernwnvgALq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec3198a16569c-OSL
alt-svc: h3=":443"; ma=86400

GET hds.quest/wp-content/uploads/2023/10/hdspromo1.gif

172.67.159.51

200 OK

18 kB

URL GET HTTP/3
hds.quest/wp-content/uploads/2023/10/hdspromo1.gif
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
GIF image data, version 89a, 464 x 76\012- data
Size
18 kB (18003 bytes)
Hash
0522141c69799e365d7b5ec48ef0d280
7fd6ed0b9083c08c5df94a6c4343526e5d1a830d
6d75e8ed1df1f36891652a682c744221fba4d3ffe7753af27fc8080ef8a7a2e7

HTTP Headers

GET /wp-content/uploads/2023/10/hdspromo1.gif HTTP/1.1
Host: hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:00 GMT
content-type: image/gif
content-length: 18003
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Tue, 31 Oct 2023 11:24:42 GMT
etag: "4653-6090166a64188"
cache-control: max-age=31536000
expires: Wed, 30 Oct 2024 15:58:51 GMT
referrer-policy: 
cf-cache-status: HIT
age: 17409
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9T21caC9ZtT3Cwt9hvdxxhv3UDM5dEN%2FTuPXHllWqTWkL5b7chS5fTpiEIryDJObbWngkXNjwfYVbz3TAYGK1QbLwcRSWXdlGBCmLKjtb3mlbJpFJV2nlEMtHDI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec319faa3569c-OSL
alt-svc: h3=":443"; ma=86400

HEAD www6.hds.quest/films/jeff-panacloc-contre-attaque/

172.67.159.51

200 OK

0 B

URL HEAD HTTP/3
www6.hds.quest/films/jeff-panacloc-contre-attaque/
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /films/jeff-panacloc-contre-attaque/ HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:00 GMT
content-type: text/html; charset=UTF-8
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Tue, 31 Oct 2023 20:48:59 GMT
referrer-policy: 
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fsJDRGKu2jxL4fQNYMQHg91trkCPPSgOxEU27uez8YxLxz2xZypux31OVQtituutx%2BVvr%2FaAdqbdH5CtIHF2g4XetMbgzH7%2BsiVwJmwWNlc817T2f0KSVTxapgoPg1D1WA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec31979f2569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET lidsaich.net/tag.min.js

139.45.197.244

200 OK

26 kB

URL GET HTTP/2
lidsaich.net/tag.min.js
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerLet's Encrypt
Subjectlidsaich.net
Fingerprint77:08:4D:31:06:27:9A:01:36:53:07:8E:08:84:5D:21:6C:68:EA:B3
ValidityTue, 12 Sep 2023 05:09:20 GMT - Mon, 11 Dec 2023 05:09:19 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
26 kB (25495 bytes)
Hash
32f51a66cc642f89b378212147ed8cb4
14d4b00cdd6d5291e76e8551eec09327f0a28f31
9f34fd2106613dee5e2e966af9cec91b977d96dd83ba632189f3ae3798eb6f92

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: lidsaich.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 31 Oct 2023 20:49:00 GMT
content-type: text/javascript; charset=utf-8
content-length: 25495
content-encoding: br
x-trace-id: 2d119ee9c87016cff4eae4d77ee5de54
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Tue, 31 Oct 2023 12:41:46 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

GET my.rtmark.net/gid.js?userId=cf3a8c83e6444448bd55c87248054c31

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?userId=cf3a8c83e6444448bd55c87248054c31
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
0c633c4924f232271c0c8c5499d11dc7
a8f258a0857cd079a113c1a4ef670aa0c9a1b06d
f02739cb70780c6b18e77106f77b0ec1b4b65a1e6df69b944f8807cec3072e0e

HTTP Headers

GET /gid.js?userId=cf3a8c83e6444448bd55c87248054c31 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www6.hds.quest
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 31 Oct 2023 20:49:00 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www6.hds.quest
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=cf3a8c83e6444448bd55c87248054c31; expires=Wed, 30 Oct 2024 20:49:00 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

GET disposalsirbloodless.com/a5940eacb3304461b562af9864328308/invoke.js

192.243.59.20

200 OK

11 kB

URL GET HTTP/1.1
disposalsirbloodless.com/a5940eacb3304461b562af9864328308/invoke.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerLet's Encrypt
Subjectdisposalsirbloodless.com
Fingerprint1E:22:C5:C4:DC:17:30:48:09:B6:0E:1B:AC:AE:2D:F9:34:6B:5D:32
ValiditySat, 09 Sep 2023 06:26:48 GMT - Fri, 08 Dec 2023 06:26:47 GMT

File type
exported SGML document, ASCII text, with very long lines (29607), with no line terminators
Size
11 kB (10906 bytes)
Hash
d8bd81403faa2b60db75b00911668441
ca118f0b25c191d4c7afdee61d347f465b0e654f
c2d1f9ac26e6d44772ed86c8d76039009040ad0851a9a49f0d6f7cca571f664a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /a5940eacb3304461b562af9864328308/invoke.js HTTP/1.1
Host: disposalsirbloodless.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 31 Oct 2023 20:49:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 824444c0faea63f2c8167717e18031ff
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET st.chatango.com/js/gz/emb.js

208.93.230.22

200 OK

24 kB

URL GET HTTP/1.1
st.chatango.com/js/gz/emb.js
IP
208.93.230.22:443
ASN
#29893 CHATANGO

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerSectigo Limited
Subject*.chatango.com
Fingerprint51:E2:E1:03:43:73:D8:C8:D4:4D:E0:E4:4A:BF:4F:DB:B5:CB:6E:A0
ValiditySat, 03 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1651)
Size
24 kB (23805 bytes)
Hash
c1a289685475db88938201b4a2735cb6
b3e9e7e9104c3e76ea85fe3d20c5978d038355f0
509a9e10fd20643e27986373ca0342aa25d85a7c60772c80fe0a2d73593c877e

HTTP Headers

GET /js/gz/emb.js HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Oct 2023 20:49:00 GMT
Content-Type: application/x-javascript
Content-Length: 23805
Last-Modified: Mon, 25 Sep 2023 13:02:22 GMT
Connection: keep-alive
Expires: Tue, 31 Oct 2023 20:49:00 GMT
Cache-Control: max-age=0
Content-Encoding: gzip
Accept-Ranges: bytes

GET image.tmdb.org/t/p/w92

54.230.111.115

404 Not Found

30 kB

URL GET HTTP/2
image.tmdb.org/t/p/w92
IP
54.230.111.115:443
ASN
#16509 AMAZON-02

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerAmazon
Subject*.tmdb.org
Fingerprint10:B9:A0:0F:73:68:C4:7E:CF:76:68:A4:D7:21:FB:A5:3B:30:45:30
ValidityMon, 23 Oct 2023 00:00:00 GMT - Wed, 20 Nov 2024 23:59:59 GMT

File type
gzip compressed data, from Unix\012- data
Size
30 kB (29616 bytes)
Hash
1b04331758fb282a16de4bedd9346d63
a38e1d94ae2930f98399ded5f2375ac4ce9f420b
813b93ac029927af6e1432a937d4b4057bd19c7e86d23377b10c5bf90fefb790

HTTP Headers

GET /t/p/w92 HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-type: text/html
last-modified: Thu, 08 Apr 2021 15:54:44 GMT
server: AmazonS3
content-encoding: gzip
date: Tue, 31 Oct 2023 16:15:16 GMT
cache-control: max-age=43200
etag: W/"653e955073f6ff68f1e0cfa5a613ef75"
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: l-uqwIpsLs57dT3w5UhF45f6-gK6AAo4z0dvs3KfpXisVWP310GU5Q==
age: 24642
X-Firefox-Spdy: h2

GET professionalswebcheck.com/stats

18.159.217.114

200 OK

40 B

URL GET HTTP/2
professionalswebcheck.com/stats
IP
18.159.217.114:443
ASN
#16509 AMAZON-02

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerAmazon
Subjectprofessionalswebcheck.com
Fingerprint75:E9:08:FD:96:58:C7:98:43:E8:21:27:A8:E9:B9:A4:55:28:F2:0C
ValidityWed, 30 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
ffe64433668c02a987c541df4db2a0cb
6250f682bfa275f8f59f2d1de93420942494ed2a
abd7eed3eeb326138142301f992d7fbd7c9134eb0ba2c4befe95ae2ccbb58e4c

HTTP Headers

GET /stats HTTP/1.1
Host: professionalswebcheck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www6.hds.quest
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 31 Oct 2023 20:49:01 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www6.hds.quest
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=e9306ec4-2a66-4e12-9088-a5a347dcf3d3:3:1; expires=Fri, 28 Oct 2033 20:49:01 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

GET disposalsirbloodless.com/6765491d264865d9ce9804bedc5c96a4/invoke.js

192.243.59.20

200 OK

11 kB

URL GET HTTP/1.1
disposalsirbloodless.com/6765491d264865d9ce9804bedc5c96a4/invoke.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerLet's Encrypt
Subjectdisposalsirbloodless.com
Fingerprint1E:22:C5:C4:DC:17:30:48:09:B6:0E:1B:AC:AE:2D:F9:34:6B:5D:32
ValiditySat, 09 Sep 2023 06:26:48 GMT - Fri, 08 Dec 2023 06:26:47 GMT

File type
exported SGML document, ASCII text, with very long lines (29598), with no line terminators
Size
11 kB (10906 bytes)
Hash
f8d837d26629861aa1e70dfde75d7877
163bc098a3f7374c8f3e3899604b201d81933592
0dd0ed40adeee6071cd2b4ea61b966add6474f63f0fc8de671386892bc81da33

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /6765491d264865d9ce9804bedc5c96a4/invoke.js HTTP/1.1
Host: disposalsirbloodless.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 31 Oct 2023 20:49:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d8ea4ec0ec0be2f5f8a5e4c7fd6c6a5e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET disposalsirbloodless.com/c0ecd57aa2db939b0fffbe5cd7cc068d/invoke.js

192.243.59.20

200 OK

11 kB

URL GET HTTP/1.1
disposalsirbloodless.com/c0ecd57aa2db939b0fffbe5cd7cc068d/invoke.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerLet's Encrypt
Subjectdisposalsirbloodless.com
Fingerprint1E:22:C5:C4:DC:17:30:48:09:B6:0E:1B:AC:AE:2D:F9:34:6B:5D:32
ValiditySat, 09 Sep 2023 06:26:48 GMT - Fri, 08 Dec 2023 06:26:47 GMT

File type
exported SGML document, ASCII text, with very long lines (29604), with no line terminators
Size
11 kB (10907 bytes)
Hash
d055ef18506264c82a5a921e1db09d20
c3797b17762a0da70ba38144094ddecb326fa5ef
3af4a6df841b1e1f5db9f249f007f4c02cb77ed20da1bc9e1acfda2bb9a0b8b2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /c0ecd57aa2db939b0fffbe5cd7cc068d/invoke.js HTTP/1.1
Host: disposalsirbloodless.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 31 Oct 2023 20:49:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d3d219a3e6fc65e94d2062160421ded1
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

216.58.207.227

200 OK

7.8 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www6.hds.quest
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 05:14:10 GMT
expires: Wed, 30 Oct 2024 05:14:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
age: 56091
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.227

200 OK

7.9 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www6.hds.quest
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Oct 2023 15:18:26 GMT
expires: Fri, 25 Oct 2024 15:18:26 GMT
cache-control: public, max-age=31536000
age: 451835
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www6.hds.quest/wp-content/uploads/2023/10/hdsiptvgo2.png

172.67.159.51

200 OK

99 kB

URL GET HTTP/3
www6.hds.quest/wp-content/uploads/2023/10/hdsiptvgo2.png
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
PNG image data, 301 x 255, 8-bit/color RGBA, non-interlaced\012- data
Size
99 kB (98881 bytes)
Hash
1022141e780f5e0466513ea677d9d7ac
ebc80ade326a001a6d5a1205a585982b06a02f06
dcc1a7f7fa61a71319ffa2eee309895e85ebb6d5cae54f617462f95364f8ae40

HTTP Headers

GET /wp-content/uploads/2023/10/hdsiptvgo2.png HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Cookie: prefetchAd_4359127=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1; paddos_2mdDW=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:01 GMT
content-type: image/png
content-length: 98881
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Tue, 31 Oct 2023 11:29:56 GMT
etag: "18241-60901795f6098"
cache-control: max-age=31536000
expires: Wed, 30 Oct 2024 16:49:09 GMT
referrer-policy: 
cf-cache-status: HIT
age: 14392
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tCLC1AFBarwSy6SAXF1K%2BAwMaaDx71FQf5VzN%2B60cXx6bWYy1LivmZKdSubCGFwBNxlb87Hl7ORhYowfyTj4rqJn0NlCBRBX39h4bMB1pB%2BvMcLklznmfG3jYp05lS6eAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec3220a8d569c-OSL
alt-svc: h3=":443"; ma=86400

173.233.137.60

307 Temporary Redirect

0 B

URL GET HTTP/1.1
resourcechasing.com/watch.1149925468754.js?key=a5940eacb3304461b562af9864328308&kw=%5B%22jeff%22%2C%22panacloc%22%2C%22contre%22%2C%22attaque%22%2C%22en%22%2C%22streaming%22%2C%22vf%22%2C%22et%22%2C%22vo%22%2C%224k%22%2C%22film%22%2C%22complet%22%2C%22gratuit%22%2C%22hds%22%2C%22to%22%2C%22hdss%22%2C%22streaming%22%5D&refer=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&tz=0&dev=e&res=14.2079&uuid=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1
IP
173.233.137.60:443
ASN
#7979 SERVERS-COM

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerLet's Encrypt
Subjectresourcechasing.com
Fingerprint60:20:9B:24:53:9E:4E:31:A6:49:8C:2E:38:1C:B2:4D:A5:FC:0D:92
ValidityTue, 10 Oct 2023 08:38:42 GMT - Mon, 08 Jan 2024 08:38:41 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1149925468754.js?key=a5940eacb3304461b562af9864328308&kw=%5B%22jeff%22%2C%22panacloc%22%2C%22contre%22%2C%22attaque%22%2C%22en%22%2C%22streaming%22%2C%22vf%22%2C%22et%22%2C%22vo%22%2C%224k%22%2C%22film%22%2C%22complet%22%2C%22gratuit%22%2C%22hds%22%2C%22to%22%2C%22hdss%22%2C%22streaming%22%5D&refer=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&tz=0&dev=e&res=14.2079&uuid=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1 HTTP/1.1
Host: resourcechasing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www6.hds.quest
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 31 Oct 2023 20:49:02 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www6.hds.quest
Access-Control-Allow-Origin: https://www6.hds.quest
Access-Control-Allow-Credentials: true
Location: https://resourcechasing.com/watch.1149925468754.js?key=a5940eacb3304461b562af9864328308&kw=%5B%22jeff%22%2C%22panacloc%22%2C%22contre%22%2C%22attaque%22%2C%22en%22%2C%22streaming%22%2C%22vf%22%2C%22et%22%2C%22vo%22%2C%224k%22%2C%22film%22%2C%22complet%22%2C%22gratuit%22%2C%22hds%22%2C%22to%22%2C%22hdss%22%2C%22streaming%22%5D&refer=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&tz=0&dev=e&res=14.2079&uuid=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1&shu=7b219e496a867046a3d2f9bf0d46c26320b52d37c21c669fb4bd74c36fbe7d30c9b01d2605a517ce9019011e812df787ab3ac28bc8654f59796a1a24603a176de03fe1d7d8609c32f26ab1f764dbfbf9eabd54d33b5bbd046ac395789de578bbef&pst=1698785402&rmtc=t
Set-Cookie: u_pl=16594038; expires=Wed, 01 Nov 2023 20:49:02 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.WfAO-h92fr95x-LdDh27Vrgv_aFKULnNWJc7_VUz-50; expires=Tue, 31 Oct 2023 20:50:02 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 86892be2763f1c6cf613413eba2440e3
Strict-Transport-Security: max-age=0; includeSubdomains

192.243.59.12

307 Temporary Redirect

0 B

URL GET HTTP/1.1
nullsglitter.com/watch.364432462888.js?key=6765491d264865d9ce9804bedc5c96a4&kw=%5B%22jeff%22%2C%22panacloc%22%2C%22contre%22%2C%22attaque%22%2C%22en%22%2C%22streaming%22%2C%22vf%22%2C%22et%22%2C%22vo%22%2C%224k%22%2C%22film%22%2C%22complet%22%2C%22gratuit%22%2C%22hds%22%2C%22to%22%2C%22hdss%22%2C%22streaming%22%5D&refer=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&tz=0&dev=e&res=14.2079&uuid=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerLet's Encrypt
Subjectnullsglitter.com
FingerprintD0:9E:53:33:23:F8:3F:A4:F3:66:68:50:0A:38:5A:12:9A:1D:DB:77
ValidityMon, 25 Sep 2023 09:03:18 GMT - Sun, 24 Dec 2023 09:03:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.364432462888.js?key=6765491d264865d9ce9804bedc5c96a4&kw=%5B%22jeff%22%2C%22panacloc%22%2C%22contre%22%2C%22attaque%22%2C%22en%22%2C%22streaming%22%2C%22vf%22%2C%22et%22%2C%22vo%22%2C%224k%22%2C%22film%22%2C%22complet%22%2C%22gratuit%22%2C%22hds%22%2C%22to%22%2C%22hdss%22%2C%22streaming%22%5D&refer=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&tz=0&dev=e&res=14.2079&uuid=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1 HTTP/1.1
Host: nullsglitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www6.hds.quest
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Tue, 31 Oct 2023 20:49:02 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www6.hds.quest
Access-Control-Allow-Origin: https://www6.hds.quest
Access-Control-Allow-Credentials: true
Location: https://nullsglitter.com/watch.364432462888.js?key=6765491d264865d9ce9804bedc5c96a4&kw=%5B%22jeff%22%2C%22panacloc%22%2C%22contre%22%2C%22attaque%22%2C%22en%22%2C%22streaming%22%2C%22vf%22%2C%22et%22%2C%22vo%22%2C%224k%22%2C%22film%22%2C%22complet%22%2C%22gratuit%22%2C%22hds%22%2C%22to%22%2C%22hdss%22%2C%22streaming%22%5D&refer=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&tz=0&dev=e&res=14.2079&uuid=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1&shu=af81189f6eb04558c45b5f82c2e5103ff0bcca9a2a6087098ccb96ceaeb144812c25df4b4fc7c0e2697506477e511503154a9c2a59ff96ce60f14ddc72b05b42d5299dd272cfe87cb90dad1011b22956733ea1bfb2444f5be24b0163ae4497&pst=1698785402&rmtc=t
Set-Cookie: u_pl=16352607; expires=Wed, 01 Nov 2023 20:49:02 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.2iZzdSL49UAQF_eXqRO5iUYIc31CVJvKgh1NZMu-VS4; expires=Tue, 31 Oct 2023 20:50:02 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 34c6c053fde64857db21e3711f4eedbf
Strict-Transport-Security: max-age=0; includeSubdomains

GET resourcechasing.com/watch.1149925468754.js?key=a5940eacb3304461b562af9864328308&kw=%5B%22jeff%22%2C%22panacloc%22%2C%22contre%22%2C%22attaque%22%2C%22en%22%2C%22streaming%22%2C%22vf%22%2C%22et%22%2C%22vo%22%2C%224k%22%2C%22film%22%2C%22complet%22%2C%22gratuit%22%2C%22hds%22%2C%22to%22%2C%22hdss%22%2C%22streaming%22%5D&refer=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&tz=0&dev=e&res=14.2079&uuid=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1&shu=7b219e496a867046a3d2f9bf0d46c26320b52d37c21c669fb4bd74c36fbe7d30c9b01d2605a517ce9019011e812df787ab3ac28bc8654f59796a1a24603a176de03fe1d7d8609c32f26ab1f764dbfbf9eabd54d33b5bbd046ac395789de578bbef&pst=1698785402&rmtc=t

173.233.137.60

200 OK

2.0 kB

URL GET HTTP/1.1
resourcechasing.com/watch.1149925468754.js?key=a5940eacb3304461b562af9864328308&kw=%5B%22jeff%22%2C%22panacloc%22%2C%22contre%22%2C%22attaque%22%2C%22en%22%2C%22streaming%22%2C%22vf%22%2C%22et%22%2C%22vo%22%2C%224k%22%2C%22film%22%2C%22complet%22%2C%22gratuit%22%2C%22hds%22%2C%22to%22%2C%22hdss%22%2C%22streaming%22%5D&refer=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&tz=0&dev=e&res=14.2079&uuid=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1&shu=7b219e496a867046a3d2f9bf0d46c26320b52d37c21c669fb4bd74c36fbe7d30c9b01d2605a517ce9019011e812df787ab3ac28bc8654f59796a1a24603a176de03fe1d7d8609c32f26ab1f764dbfbf9eabd54d33b5bbd046ac395789de578bbef&pst=1698785402&rmtc=t
IP
173.233.137.60:443
ASN
#7979 SERVERS-COM

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerLet's Encrypt
Subjectresourcechasing.com
Fingerprint60:20:9B:24:53:9E:4E:31:A6:49:8C:2E:38:1C:B2:4D:A5:FC:0D:92
ValidityTue, 10 Oct 2023 08:38:42 GMT - Mon, 08 Jan 2024 08:38:41 GMT

File type
HTML document, ASCII text, with very long lines (2499)
Size
2.0 kB (2021 bytes)
Hash
ad7324a6621664128f10bb621a78f7ea
7cf0a922d75382ee4a6ec60956c7712a5f283a13
f737d7295910c137fa349c15c6062f6da06e5db25d2d66ea34f97d61f69dc76f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1149925468754.js?key=a5940eacb3304461b562af9864328308&kw=%5B%22jeff%22%2C%22panacloc%22%2C%22contre%22%2C%22attaque%22%2C%22en%22%2C%22streaming%22%2C%22vf%22%2C%22et%22%2C%22vo%22%2C%224k%22%2C%22film%22%2C%22complet%22%2C%22gratuit%22%2C%22hds%22%2C%22to%22%2C%22hdss%22%2C%22streaming%22%5D&refer=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&tz=0&dev=e&res=14.2079&uuid=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1&shu=7b219e496a867046a3d2f9bf0d46c26320b52d37c21c669fb4bd74c36fbe7d30c9b01d2605a517ce9019011e812df787ab3ac28bc8654f59796a1a24603a176de03fe1d7d8609c32f26ab1f764dbfbf9eabd54d33b5bbd046ac395789de578bbef&pst=1698785402&rmtc=t HTTP/1.1
Host: resourcechasing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www6.hds.quest
Referer: https://www6.hds.quest/
DNT: 1
Connection: keep-alive
Cookie: u_pl=16594038; ain=eyJhbGciOiJIUzI1NiJ9.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.WfAO-h92fr95x-LdDh27Vrgv_aFKULnNWJc7_VUz-50
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 31 Oct 2023 20:49:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www6.hds.quest
Access-Control-Allow-Origin: https://www6.hds.quest
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=e9306ec4-2a66-4e12-9088-a5a347dcf3d3:3:1; expires=Tue, 07 Nov 2023 20:49:02 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 01 Nov 2023 20:49:02 GMT; secure; SameSite=None
uncs=1; expires=Wed, 01 Nov 2023 20:49:02 GMT; secure; SameSite=None
pdhtkv27=true; expires=Wed, 01 Nov 2023 20:49:02 GMT; secure; SameSite=None
uncs27=1; expires=Wed, 01 Nov 2023 20:49:02 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: af1f7c81f3612f672eb60bfa4db95fb4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET lidsaich.net/?rb=w5TRpYT9j6oC3H7dVaDgbC3J8K4q2RACJbsxrPbXA7btzbr6RdxsMzvaSzvZcl7Z9Z_kuxKUndpzvw__FPENRNtPa7Zz7iFyXOUGXofAgu01ZQ3D0KfvdCmCSXtlNPSuZViJTYUSaEhgbBHLB6sQ3wumrqYIrgjTWoDHPNF02-Jmy1iP5lXpANi6IgqNxi_Wo7Aehx0zk5pG6_nMay0j6WhVeQM%3D&request_ab2=0&zoneid=4359127&js_build=iclick-v1.616.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=1&pl=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.616.0&bs=bf63a314-7bfa-42a3-91fc-2024404cb8b4&userId=cf3a8c83e6444448bd55c87248054c31&m=link

139.45.197.244

200 OK

2.2 kB

URL GET HTTP/2
lidsaich.net/?rb=w5TRpYT9j6oC3H7dVaDgbC3J8K4q2RACJbsxrPbXA7btzbr6RdxsMzvaSzvZcl7Z9Z_kuxKUndpzvw__FPENRNtPa7Zz7iFyXOUGXofAgu01ZQ3D0KfvdCmCSXtlNPSuZViJTYUSaEhgbBHLB6sQ3wumrqYIrgjTWoDHPNF02-Jmy1iP5lXpANi6IgqNxi_Wo7Aehx0zk5pG6_nMay0j6WhVeQM%3D&request_ab2=0&zoneid=4359127&js_build=iclick-v1.616.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=1&pl=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.616.0&bs=bf63a314-7bfa-42a3-91fc-2024404cb8b4&userId=cf3a8c83e6444448bd55c87248054c31&m=link
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerLet's Encrypt
Subjectlidsaich.net
Fingerprint77:08:4D:31:06:27:9A:01:36:53:07:8E:08:84:5D:21:6C:68:EA:B3
ValidityTue, 12 Sep 2023 05:09:20 GMT - Mon, 11 Dec 2023 05:09:19 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
2.2 kB (2196 bytes)
Hash
a0a869c1b066d9937f20b2b9347c2326
c1771ed7d5b9ce7596cf0930acec53f5bd59304f
fea5960191b74aa13d9e0cd0839225108f25eeb86a35fe90c47d807e32726fb8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rb=w5TRpYT9j6oC3H7dVaDgbC3J8K4q2RACJbsxrPbXA7btzbr6RdxsMzvaSzvZcl7Z9Z_kuxKUndpzvw__FPENRNtPa7Zz7iFyXOUGXofAgu01ZQ3D0KfvdCmCSXtlNPSuZViJTYUSaEhgbBHLB6sQ3wumrqYIrgjTWoDHPNF02-Jmy1iP5lXpANi6IgqNxi_Wo7Aehx0zk5pG6_nMay0j6WhVeQM%3D&request_ab2=0&zoneid=4359127&js_build=iclick-v1.616.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=1&pl=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.616.0&bs=bf63a314-7bfa-42a3-91fc-2024404cb8b4&userId=cf3a8c83e6444448bd55c87248054c31&m=link HTTP/1.1
Host: lidsaich.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www6.hds.quest/
Origin: https://www6.hds.quest
DNT: 1
Connection: keep-alive
Cookie: OAID=cf3a8c83e6444448bd55c87248054c31; oaidts=1698785340
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 31 Oct 2023 20:49:01 GMT
content-type: application/json
x-trace-id: 4208a8d5625b9baec6f901ede7396560
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://www6.hds.quest
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=cf3a8c83e6444448bd55c87248054c31; expires=Wed, 30 Oct 2024 20:49:00 GMT; path=/; secure; SameSite=None
oaidts=1698785340; expires=Wed, 30 Oct 2024 20:49:00 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Tue, 07 Nov 2023 20:49:00 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

GET nullsglitter.com/watch.364432462888.js?key=6765491d264865d9ce9804bedc5c96a4&kw=%5B%22jeff%22%2C%22panacloc%22%2C%22contre%22%2C%22attaque%22%2C%22en%22%2C%22streaming%22%2C%22vf%22%2C%22et%22%2C%22vo%22%2C%224k%22%2C%22film%22%2C%22complet%22%2C%22gratuit%22%2C%22hds%22%2C%22to%22%2C%22hdss%22%2C%22streaming%22%5D&refer=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&tz=0&dev=e&res=14.2079&uuid=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1&shu=af81189f6eb04558c45b5f82c2e5103ff0bcca9a2a6087098ccb96ceaeb144812c25df4b4fc7c0e2697506477e511503154a9c2a59ff96ce60f14ddc72b05b42d5299dd272cfe87cb90dad1011b22956733ea1bfb2444f5be24b0163ae4497&pst=1698785402&rmtc=t

192.243.59.12

200 OK

2.0 kB

URL GET HTTP/1.1
nullsglitter.com/watch.364432462888.js?key=6765491d264865d9ce9804bedc5c96a4&kw=%5B%22jeff%22%2C%22panacloc%22%2C%22contre%22%2C%22attaque%22%2C%22en%22%2C%22streaming%22%2C%22vf%22%2C%22et%22%2C%22vo%22%2C%224k%22%2C%22film%22%2C%22complet%22%2C%22gratuit%22%2C%22hds%22%2C%22to%22%2C%22hdss%22%2C%22streaming%22%5D&refer=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&tz=0&dev=e&res=14.2079&uuid=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1&shu=af81189f6eb04558c45b5f82c2e5103ff0bcca9a2a6087098ccb96ceaeb144812c25df4b4fc7c0e2697506477e511503154a9c2a59ff96ce60f14ddc72b05b42d5299dd272cfe87cb90dad1011b22956733ea1bfb2444f5be24b0163ae4497&pst=1698785402&rmtc=t
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerLet's Encrypt
Subjectnullsglitter.com
FingerprintD0:9E:53:33:23:F8:3F:A4:F3:66:68:50:0A:38:5A:12:9A:1D:DB:77
ValidityMon, 25 Sep 2023 09:03:18 GMT - Sun, 24 Dec 2023 09:03:17 GMT

File type
HTML document, ASCII text, with very long lines (2424)
Size
2.0 kB (1970 bytes)
Hash
ea8764287818e8feacac8c36b6038154
d10c98c7240dbb9fe929d81929db4d1b874304c0
748f1627c4cf217048181b293ac3c135eaeb5beb776766c7e7a7a0513f0ae030

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.364432462888.js?key=6765491d264865d9ce9804bedc5c96a4&kw=%5B%22jeff%22%2C%22panacloc%22%2C%22contre%22%2C%22attaque%22%2C%22en%22%2C%22streaming%22%2C%22vf%22%2C%22et%22%2C%22vo%22%2C%224k%22%2C%22film%22%2C%22complet%22%2C%22gratuit%22%2C%22hds%22%2C%22to%22%2C%22hdss%22%2C%22streaming%22%5D&refer=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&tz=0&dev=e&res=14.2079&uuid=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1&shu=af81189f6eb04558c45b5f82c2e5103ff0bcca9a2a6087098ccb96ceaeb144812c25df4b4fc7c0e2697506477e511503154a9c2a59ff96ce60f14ddc72b05b42d5299dd272cfe87cb90dad1011b22956733ea1bfb2444f5be24b0163ae4497&pst=1698785402&rmtc=t HTTP/1.1
Host: nullsglitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www6.hds.quest
Referer: https://www6.hds.quest/
DNT: 1
Connection: keep-alive
Cookie: u_pl=16352607; ain=eyJhbGciOiJIUzI1NiJ9.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.2iZzdSL49UAQF_eXqRO5iUYIc31CVJvKgh1NZMu-VS4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 31 Oct 2023 20:49:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www6.hds.quest
Access-Control-Allow-Origin: https://www6.hds.quest
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=e9306ec4-2a66-4e12-9088-a5a347dcf3d3:3:1; expires=Tue, 07 Nov 2023 20:49:02 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 01 Nov 2023 20:49:02 GMT; secure; SameSite=None
uncs=1; expires=Wed, 01 Nov 2023 20:49:02 GMT; secure; SameSite=None
pdhtkv5=true; expires=Wed, 01 Nov 2023 20:49:02 GMT; secure; SameSite=None
uncs5=1; expires=Wed, 01 Nov 2023 20:49:02 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 65487d09733e2c46cf4883df2eb83105
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET leveragebestow.com/watch.795765668202.js?key=c0ecd57aa2db939b0fffbe5cd7cc068d&kw=%5B%22jeff%22%2C%22panacloc%22%2C%22contre%22%2C%22attaque%22%2C%22en%22%2C%22streaming%22%2C%22vf%22%2C%22et%22%2C%22vo%22%2C%224k%22%2C%22film%22%2C%22complet%22%2C%22gratuit%22%2C%22hds%22%2C%22to%22%2C%22hdss%22%2C%22streaming%22%5D&refer=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&tz=0&dev=e&res=14.2079&uuid=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1&shu=c070ec8ea4b8e70a03c1cc8653e701f82d67498e8ce9eb2a3b532d67300d3523e6b0e84094deb51bb193cae61870907c37725ba98e8349ba7947864245e748429ec3a0dfe35f0afff23e561a3ee400af0829ff7dd7fd79cba9f5612d7677b021&pst=1698785402&rmtc=t

173.233.137.60

200 OK

2.0 kB

URL GET HTTP/1.1
leveragebestow.com/watch.795765668202.js?key=c0ecd57aa2db939b0fffbe5cd7cc068d&kw=%5B%22jeff%22%2C%22panacloc%22%2C%22contre%22%2C%22attaque%22%2C%22en%22%2C%22streaming%22%2C%22vf%22%2C%22et%22%2C%22vo%22%2C%224k%22%2C%22film%22%2C%22complet%22%2C%22gratuit%22%2C%22hds%22%2C%22to%22%2C%22hdss%22%2C%22streaming%22%5D&refer=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&tz=0&dev=e&res=14.2079&uuid=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1&shu=c070ec8ea4b8e70a03c1cc8653e701f82d67498e8ce9eb2a3b532d67300d3523e6b0e84094deb51bb193cae61870907c37725ba98e8349ba7947864245e748429ec3a0dfe35f0afff23e561a3ee400af0829ff7dd7fd79cba9f5612d7677b021&pst=1698785402&rmtc=t
IP
173.233.137.60:443
ASN
#7979 SERVERS-COM

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerLet's Encrypt
Subjectleveragebestow.com
Fingerprint04:49:AA:4E:F3:65:B9:C9:B1:A1:18:98:0A:C6:33:1E:8F:CE:93:98
ValiditySat, 23 Sep 2023 01:02:37 GMT - Fri, 22 Dec 2023 01:02:36 GMT

File type
HTML document, ASCII text, with very long lines (2419)
Size
2.0 kB (1974 bytes)
Hash
07a0deed3e7df2e97f76162ee9d3321b
ffc7283d34a92b23d2ae173b3ea196eb1ba7efda
49dd265c4090e9d071cc0a1edd3c6330d711a56ef0bf260c1cc580c0f48707f1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.795765668202.js?key=c0ecd57aa2db939b0fffbe5cd7cc068d&kw=%5B%22jeff%22%2C%22panacloc%22%2C%22contre%22%2C%22attaque%22%2C%22en%22%2C%22streaming%22%2C%22vf%22%2C%22et%22%2C%22vo%22%2C%224k%22%2C%22film%22%2C%22complet%22%2C%22gratuit%22%2C%22hds%22%2C%22to%22%2C%22hdss%22%2C%22streaming%22%5D&refer=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&tz=0&dev=e&res=14.2079&uuid=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1&shu=c070ec8ea4b8e70a03c1cc8653e701f82d67498e8ce9eb2a3b532d67300d3523e6b0e84094deb51bb193cae61870907c37725ba98e8349ba7947864245e748429ec3a0dfe35f0afff23e561a3ee400af0829ff7dd7fd79cba9f5612d7677b021&pst=1698785402&rmtc=t HTTP/1.1
Host: leveragebestow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www6.hds.quest
Referer: https://www6.hds.quest/
DNT: 1
Connection: keep-alive
Cookie: u_pl=16597275; ain=eyJhbGciOiJIUzI1NiJ9.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.ILfKI9madeCY-XVo5a928dnq75SpcmIFxsIBX3qMfWQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 31 Oct 2023 20:49:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www6.hds.quest
Access-Control-Allow-Origin: https://www6.hds.quest
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=e9306ec4-2a66-4e12-9088-a5a347dcf3d3:3:1; expires=Tue, 07 Nov 2023 20:49:02 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 01 Nov 2023 20:49:02 GMT; secure; SameSite=None
uncs=1; expires=Wed, 01 Nov 2023 20:49:02 GMT; secure; SameSite=None
pdhtkv32=true; expires=Wed, 01 Nov 2023 20:49:02 GMT; secure; SameSite=None
uncs32=1; expires=Wed, 01 Nov 2023 20:49:02 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9a8383a0aa22d02c03b945af61b80918
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET cdn.cloudimagesb.com/cti/40/b9/69/40b969eafe107ec921d3c722707ff834/1663334953.png

45.133.44.10

200 OK

24 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/40/b9/69/40b969eafe107ec921d3c722707ff834/1663334953.png
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint62:DE:BA:BA:30:E9:EE:15:E9:24:B9:C5:BF:E1:7E:39:8B:20:E5:42
ValiditySun, 24 Sep 2023 23:04:02 GMT - Sat, 23 Dec 2023 23:04:01 GMT

File type
PNG image data, 468 x 60, 8-bit/color RGB, non-interlaced\012- data
Size
24 kB (24459 bytes)
Hash
3bd0db896db80bfaab5a3c74c9e74068
1c52db375e4773a6fb530e800653aa747099b250
6646c469cd1b467ed2867ef402a6b8eb91c7cb03e049f66e7bdd030fe66f266c

HTTP Headers

GET /cti/40/b9/69/40b969eafe107ec921d3c722707ff834/1663334953.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 31 Oct 2023 20:49:02 GMT
content-type: image/png
content-length: 24459
server: nginx/1.21.6
last-modified: Fri, 16 Sep 2022 13:29:21 GMT
etag: "63247a31-5f8b"
expires: Thu, 02 Nov 2023 20:49:02 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET cdn.cloudimagesb.com/cti/fe/3b/00/fe3b00c58303840cb3ab664e9686952e/1627915911.png

45.133.44.10

200 OK

136 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/fe/3b/00/fe3b00c58303840cb3ab664e9686952e/1627915911.png
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint62:DE:BA:BA:30:E9:EE:15:E9:24:B9:C5:BF:E1:7E:39:8B:20:E5:42
ValiditySun, 24 Sep 2023 23:04:02 GMT - Sat, 23 Dec 2023 23:04:01 GMT

File type
PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Size
136 kB (136090 bytes)
Hash
11675ef6f5c8559ec0ade47755155665
20df6be038de603b97f849e07460cd0600b34867
4d361374b3e2e4f8de896a1f1014d500ed0802bf028d2c7bbd606f9e87ba88a4

HTTP Headers

GET /cti/fe/3b/00/fe3b00c58303840cb3ab664e9686952e/1627915911.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Oct 2023 20:49:02 GMT
content-type: image/png
content-length: 136090
server: nginx/1.21.6
last-modified: Mon, 02 Aug 2021 14:51:59 GMT
etag: "6108068f-2139a"
expires: Thu, 02 Nov 2023 20:49:02 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET cdn.cloudimagesb.com/cti/7d/3c/21/7d3c21647108c8fa192d353bedf87959/1627916152.png

45.133.44.10

200 OK

17 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/7d/3c/21/7d3c21647108c8fa192d353bedf87959/1627916152.png
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint62:DE:BA:BA:30:E9:EE:15:E9:24:B9:C5:BF:E1:7E:39:8B:20:E5:42
ValiditySun, 24 Sep 2023 23:04:02 GMT - Sat, 23 Dec 2023 23:04:01 GMT

File type
PNG image data, 320 x 50, 8-bit/color RGB, non-interlaced\012- data
Size
17 kB (16975 bytes)
Hash
f6c2c59740f4db842107b6655816fcf3
37d3216663c27557fa9ed8fac070a66549b16a81
e6b9fdf5e7af8da265868800c5fe9d97cb0533f06d92c5204e39c06afebe9a08

HTTP Headers

GET /cti/7d/3c/21/7d3c21647108c8fa192d353bedf87959/1627916152.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 31 Oct 2023 20:49:02 GMT
content-type: image/png
content-length: 16975
server: nginx/1.21.6
last-modified: Mon, 02 Aug 2021 14:55:59 GMT
etag: "6108077f-424f"
expires: Thu, 02 Nov 2023 20:49:02 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET st.chatango.com/h5/gz/r0925230558/id.html

208.93.230.22

200 OK

224 kB

URL GET HTTP/1.1
st.chatango.com/h5/gz/r0925230558/id.html
IP
208.93.230.22:443
ASN
#29893 CHATANGO

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerSectigo Limited
Subject*.chatango.com
Fingerprint51:E2:E1:03:43:73:D8:C8:D4:4D:E0:E4:4A:BF:4F:DB:B5:CB:6E:A0
ValiditySat, 03 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (54430), with CRLF, LF line terminators
Size
224 kB (224195 bytes)
Hash
0a71e50fd4bb2c4b9bb43f2c0cc4645c
b24dcf8f8fa8a49c89332918024e36cbe23df6f9
06ffbd69d3f9f08dfb4040174e5addaa1a9c4b9a26ffd0e6308d763f7c14c0d6

HTTP Headers

GET /h5/gz/r0925230558/id.html HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Oct 2023 20:49:01 GMT
Content-Type: text/html
Content-Length: 224195
Last-Modified: Mon, 25 Sep 2023 13:02:22 GMT
Connection: keep-alive
Expires: Wed, 30 Oct 2024 20:49:01 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
P3P: CP="Chatango does not have a P3P policy. Please see our privacy policy: http://chatango.com/page?full_privacy"
Accept-Ranges: bytes

GET www6.hds.quest/wp-content/uploads/2019/10/cropped-icone-hds-192x192.jpg

172.67.159.51

200 OK

6.7 kB

URL GET HTTP/3
www6.hds.quest/wp-content/uploads/2019/10/cropped-icone-hds-192x192.jpg
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 192x192, components 3\012- data
Size
6.7 kB (6711 bytes)
Hash
b7895fccb89cd950738a5b20f770f533
80145c1b4ff3d0113f52bf71ccad2005a05641e1
b2084f9bf54a8f6dbdca898345eac38e05cb766e76542c41160fc655ff9fa5e5

HTTP Headers

GET /wp-content/uploads/2019/10/cropped-icone-hds-192x192.jpg HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Cookie: prefetchAd_4359127=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1; paddos_2mdDW=1; cf_clearance=as7t1YiPc1FlK935VKuJFO9hZFndAgn50vtQiJFGDL4-1698785341-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1698785341; starstruck_9c3ca667b631deb8e36b01872357a2db=3ec84d6c2134d529742d66b7983047be
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:02 GMT
content-type: image/jpeg
content-length: 6711
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Sat, 03 Apr 2021 15:08:16 GMT
etag: "1a37-5bf12d5831740"
cache-control: max-age=31536000
expires: Wed, 30 Oct 2024 15:58:56 GMT
referrer-policy: 
cf-cache-status: HIT
age: 17406
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3uxwTJDF7g0tINOn5CMO6Xq6b4pc6buy1q7CPEJz6%2F2mz85w81oXeYhdwDqpWi5NsqgadoMmg5a5mY56VO3TQrcSVkBa%2FywIXi1qcdS%2FYm%2BRbR%2BIO1LLIgNcMMg0xPebFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec326ff5d569c-OSL
alt-svc: h3=":443"; ma=86400

GET st.chatango.com/cfg/nc/r.json?9525890020000311400848093

208.93.230.24

200 OK

20 B

URL GET HTTP/1.1
st.chatango.com/cfg/nc/r.json?9525890020000311400848093
IP
208.93.230.24:443
ASN
#29893 CHATANGO

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerSectigo Limited
Subject*.chatango.com
Fingerprint51:E2:E1:03:43:73:D8:C8:D4:4D:E0:E4:4A:BF:4F:DB:B5:CB:6E:A0
ValiditySat, 03 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text
Size
20 B (20 bytes)
Hash
779cc59be8faa109ef9886b2913cee3a
8f4eb98975d87b07ea199cd34f7519537d78dca3
4fb3560401e43be312d784a722dd988a0278cff49c8ae188965651efd5566a6b

HTTP Headers

GET /cfg/nc/r.json?9525890020000311400848093 HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www6.hds.quest
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Oct 2023 20:49:02 GMT
Content-Type: application/octet-stream
Content-Length: 20
Last-Modified: Mon, 25 Sep 2023 13:02:22 GMT
Connection: keep-alive
ETag: "651184de-14"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

GET hds-to.disqus.com/count.js

199.232.196.134

200 OK

871 B

URL GET HTTP/1.1
hds-to.disqus.com/count.js
IP
199.232.196.134:443
ASN
#54113 FASTLY

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerSectigo Limited
Subject*.disqus.com
FingerprintB7:D2:67:1F:60:9E:37:2D:5A:10:2F:B0:70:75:32:44:91:61:67:D5
ValidityThu, 13 Apr 2023 00:00:00 GMT - Sat, 20 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (528)
Size
871 B (871 bytes)
Hash
64932a1e2564351aa7642475acdf3fbf
c3dd2b7d1d4604e3559c2732fd90d71059dd77d8
3487ef2baf0c08ba660a8a143cdeb8ebeec961eea04bccd7c49096b4eb26b875

HTTP Headers

GET /count.js HTTP/1.1
Host: hds-to.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 871
Content-Type: application/javascript; charset=utf-8
Server: nginx
Last-Modified: Mon, 30 Oct 2023 14:29:34 GMT
ETag: "653fbdce-367"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Amz-Cf-Pop: DFW3-C1
X-Amz-Cf-Id: 7HNQ0ZcdP_r37woz_YcUhTm0HPPcc9sHG9UAajLtOwt9Am_p5LR2Mg==
Cache-Control: public, max-age=300
Date: Tue, 31 Oct 2023 20:49:02 GMT
Age: 17
Vary: Accept-Encoding
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect

GET www.gstatic.com/recaptcha/releases/vm_YDiq1BiI3a8zfbIPZjtF2/recaptcha__en.js

142.250.74.99

200 OK

189 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/vm_YDiq1BiI3a8zfbIPZjtF2/recaptcha__en.js
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintBE:D3:D2:0A:C4:57:FB:0B:D7:17:48:C8:AB:52:49:39:3E:E9:3C:60
ValidityMon, 09 Oct 2023 08:10:32 GMT - Mon, 01 Jan 2024 08:10:31 GMT

File type
ASCII text, with very long lines (689)
Size
189 kB (188860 bytes)
Hash
4efc45f285352a5b252b651160e1ced9
c7ba19e7058ec22c8d0f7283ab6b722bb7a135d7
253627a82794506a7d660ee232c06a88d2eaafb6174532f8c390bb69ade6636a

HTTP Headers

GET /recaptcha/releases/vm_YDiq1BiI3a8zfbIPZjtF2/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www6.hds.quest
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 188860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 15:18:08 GMT
expires: Wed, 30 Oct 2024 15:18:08 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2023 04:01:46 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 19854
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www6.hds.quest/wp-content/uploads/2019/10/cropped-icone-hds-32x32.jpg

172.67.159.51

200 OK

1.2 kB

URL GET HTTP/3
www6.hds.quest/wp-content/uploads/2019/10/cropped-icone-hds-32x32.jpg
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 32x32, components 3\012- data
Size
1.2 kB (1226 bytes)
Hash
4575ede28b49e48687b171d3e7efb26b
273e6c416b37c64930a9fac52e4a95d088049a47
153f25409e485b91be50b9aedc86a5fbdcb571b5c5d103d08277037dc069153f

HTTP Headers

GET /wp-content/uploads/2019/10/cropped-icone-hds-32x32.jpg HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Cookie: prefetchAd_4359127=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1; paddos_2mdDW=1; cf_clearance=as7t1YiPc1FlK935VKuJFO9hZFndAgn50vtQiJFGDL4-1698785341-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1698785341; starstruck_9c3ca667b631deb8e36b01872357a2db=3ec84d6c2134d529742d66b7983047be
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:02 GMT
content-type: image/jpeg
content-length: 1226
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Sat, 03 Apr 2021 15:08:15 GMT
etag: "4ca-5bf12d580f848"
cache-control: max-age=31536000
expires: Wed, 30 Oct 2024 20:49:03 GMT
referrer-policy: 
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2ib9xSGOp%2B%2FzuLvH6PRFBxJdMoPKL9tEh7Jxd9MgYVHRaC5Tm%2F23dDg%2BfCU%2BOGTIHc4ZXbP9WdWR%2FMnuGvkp7hqkfP3%2Fx24P97n3qwYg889Y6T3KRSkwyBaKuvy%2FsexEGg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec326ff5e569c-OSL
alt-svc: h3=":443"; ma=86400

GET www6.hds.quest/wp-content/cache/minify/70662.css

172.67.159.51

200 OK

33 kB

URL GET HTTP/3
www6.hds.quest/wp-content/cache/minify/70662.css
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
33 kB (33290 bytes)
Hash
59a770cfa663189d87450f9cd2184c45
087ba1c51a1bdb15031778a3b08657fb3223052e
ae7b3d128219d9dc3574d31e5bd62a6a82feb0cc1adb8bd0232bea629269b86e

HTTP Headers

GET /wp-content/cache/minify/70662.css HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:48:59 GMT
content-type: text/css
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=161687
etag: W/"75de-60901b2506370"
expires: Wed, 30 Oct 2024 15:58:51 GMT
last-modified: Tue, 31 Oct 2023 11:45:51 GMT
referrer-policy: 
vary: Accept-Encoding
cf-cache-status: HIT
age: 17408
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cuoxDPqIOx%2BBJUQh0XDxnBBCJykKY2hsIqLRuYgIuVdkwK8PbH%2BYSN%2BIm%2B2U7DQm45O%2BaS0uJvLqUUcv4sv3DgS4WQIPuMQWstVXsAT2G60%2BP5Bq%2B9nic6%2BgXXHWf%2FU%2BIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec316bf2a569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.google.com/recaptcha/api.js

142.250.74.100

200 OK

645 B

URL GET HTTP/2
www.google.com/recaptcha/api.js
IP
142.250.74.100:443
ASN
#15169 GOOGLE

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint13:D2:E3:B0:25:78:80:D7:35:78:09:81:0D:21:CE:31:CB:EF:DA:75
ValidityMon, 09 Oct 2023 08:11:26 GMT - Mon, 01 Jan 2024 08:11:25 GMT

File type
gzip compressed data\012- data
Size
645 B (645 bytes)
Hash
ac607bbcc6a0c8938205e98f5069c3b5
c8d05cf44d1dc99a46d6c8bae46c5760e2cd7fe0
8e094f6ad9197f89a1c5b15bca1ebce29d8626c26dfc67e88c78e4b063aa3c33

HTTP Headers

GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Tue, 31 Oct 2023 20:49:00 GMT
date: Tue, 31 Oct 2023 20:49:00 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

s6.chatango.com:8081/

208.93.230.191

0 B

URL
s6.chatango.com:8081/
IP
208.93.230.191:0
ASN
#29893 CHATANGO

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: s6.chatango.com:8081
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://st.chatango.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZPE5xVZkcw0GW1KafLZAcg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Upgrade: websocket
Connection: Upgrade
Sec-WebSocket-Accept: Y16XGG/PDus+HDAYkAc/YFdNwKQ=

GET www6.hds.quest/wp-content/themes/dooplay.2.4.1/assets/css/fonts/icomoon.ttf?k4wkth

172.67.159.51

200 OK

21 kB

URL GET HTTP/3
www6.hds.quest/wp-content/themes/dooplay.2.4.1/assets/css/fonts/icomoon.ttf?k4wkth
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Size
21 kB (20596 bytes)
Hash
14295f67edc73c8347d68095bae61600
d22548eafa28fb00605e26878c56178baa2687fb
0833e6c75b1caf281d32e8a8aaa4e97bb814b603296828245b2bd7d2dec43aff

HTTP Headers

GET /wp-content/themes/dooplay.2.4.1/assets/css/fonts/icomoon.ttf?k4wkth HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/wp-content/cache/minify/70662.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:00 GMT
content-type: application/x-font-ttf
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Fri, 30 Jun 2023 21:35:56 GMT
etag: W/"5074-5ff5f9a204f50-gzip"
cache-control: max-age=31536000
expires: Wed, 30 Oct 2024 20:49:00 GMT
referrer-policy: 
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hM2KeNXZBQOZmc4WDBn88n2EvjHXx078MRkJzADulvJxCPrH8qi5MzTjOfcUQroO211MMk1DgpkbPgt4Kr7nEr5TAuLpvgf6EkUPPk3XAHZA5V4seDfj%2BUzCacwzo6nQDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec31979fd569c-OSL
alt-svc: h3=":443"; ma=86400

GET www6.hds.quest/wp-content/cache/minify/1cd28.js

172.67.159.51

200 OK

4.7 kB

URL GET HTTP/3
www6.hds.quest/wp-content/cache/minify/1cd28.js
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
ASCII text, with very long lines (4991), with no line terminators
Size
4.7 kB (4675 bytes)
Hash
968d1d1c279cfc01744160b694ef239d
067dcb7ffca91edf10f8636ccfef13e1fcd18efd
720d70fe214742bc26c5cf5c620fb8d5016bb621f521a00229552130225a8c84

HTTP Headers

GET /wp-content/cache/minify/1cd28.js HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:00 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
etag: W/"5e0-60901b7eb4f48"
expires: Wed, 30 Oct 2024 15:58:51 GMT
last-modified: Tue, 31 Oct 2023 11:47:25 GMT
referrer-policy: 
vary: Accept-Encoding
cf-cache-status: HIT
age: 17409
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ttsf2bHIj1zRqRUJIsIT5DXO8XSUY8odqM3%2FX5PUGWqbsUpPLh3HmOMWHTqyfSibAg1VNIodtLDcnwCmNe5aJRYQlAyHl%2FyFapNlz1rTMJ8h7i5aI5ZwfXC3DlldtWbcaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec3170f87569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www6.hds.quest/wp-content/cache/minify/93594.js

172.67.159.51

200 OK

1.3 kB

URL GET HTTP/3
www6.hds.quest/wp-content/cache/minify/93594.js
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
ASCII text, with very long lines (1375), with no line terminators
Size
1.3 kB (1309 bytes)
Hash
46ff4fa42bd55103a506dd15024fb395
4a7ad708a5a0605706ff19a6717b15e4c65a4b76
ff8fb69f56bed05370f7502799050096cc6fb02c6a9cb6465467d95f6458800c

HTTP Headers

GET /wp-content/cache/minify/93594.js HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:48:59 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
etag: W/"24b-60901b24ec560"
expires: Wed, 30 Oct 2024 15:58:51 GMT
last-modified: Tue, 31 Oct 2023 11:45:51 GMT
referrer-policy: 
vary: Accept-Encoding
cf-cache-status: HIT
age: 17408
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tPlhbWTURmAcfFHdjy89DkOKltCIWwl4woxz2AjbvH2GiNtoUVc2hgPfgqJBRhFfMGgkbPN1liHDV1zoowQPbPTff7bFjkAFNPqK%2BpXY6JgZgLoiV8vVoA0dH23CzMJa2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec316cf35569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET fonts.googleapis.com/css?family=Lato%3A400%2C500%2C600%2C700%7CPoppins%3A400%2C500%2C600%2C700&ver=2.6.5

142.250.74.106

200 OK

5.7 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Lato%3A400%2C500%2C600%2C700%7CPoppins%3A400%2C500%2C600%2C700&ver=2.6.5
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT

File type
ASCII text, with very long lines (5778), with no line terminators
Size
5.7 kB (5650 bytes)
Hash
6fa8286a64452db4f325ad17bf3b218c
c39ec76ac193a1d9bb94ecdc3e812d346f2a3178
917af4bc20f45fc5033f42726bd07459e67432ffeacb396c64cea83017e65030

HTTP Headers

GET /css?family=Lato%3A400%2C500%2C600%2C700%7CPoppins%3A400%2C500%2C600%2C700&ver=2.6.5 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 31 Oct 2023 20:49:00 GMT
date: Tue, 31 Oct 2023 20:49:00 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www6.hds.quest/wp-content/cache/minify/f8767.js

172.67.159.51

200 OK

708 B

URL GET HTTP/3
www6.hds.quest/wp-content/cache/minify/f8767.js
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
ASCII text, with very long lines (711), with no line terminators
Size
708 B (708 bytes)
Hash
40d77cd1903fdae86315a41bd33b3553
4aff587389e3c21f18387e3a7030510d7b4c9215
93bcb058d18e68c5ee150b9a5beb51abb0a0036679fd014c9b503f3b5dc0a894

HTTP Headers

GET /wp-content/cache/minify/f8767.js HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:48:59 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
etag: W/"191-60901b7e9d078"
expires: Wed, 30 Oct 2024 15:58:51 GMT
last-modified: Tue, 31 Oct 2023 11:47:25 GMT
referrer-policy: 
vary: Accept-Encoding
cf-cache-status: HIT
age: 17408
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5eLXJH4SDhr%2BClMof28xuO7emJdgW%2BvdzAx%2BEx0PjjM4%2FWTkTgmHA6Ho6ew2uBNYt9OOSnCCv7EVyRJ7O5Tm0GVScVd0b0qNYzhtiaazZQzi0dFypAt6SNY5IpmH7RfUqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec316ef49569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www6.hds.quest/films/jeff-panacloc-contre-attaque/teraflop

172.67.159.51

404 Not Found

43 kB

URL GET HTTP/3
www6.hds.quest/films/jeff-panacloc-contre-attaque/teraflop
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type

Size
43 kB (42678 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /films/jeff-panacloc-contre-attaque/teraflop HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Tue, 31 Oct 2023 20:49:02 GMT
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www6.hds.quest/wp-json/>; rel="https://api.w.org/"
set-cookie: starstruck_9c3ca667b631deb8e36b01872357a2db=3ec84d6c2134d529742d66b7983047be; expires=Wed, 30 Oct 2024 20:49:00 GMT; Max-Age=31536000; path=/
vary: X-Forwarded-Proto,Accept-Encoding
referrer-policy: 
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BqXknGgYTfTPz2IzU0K%2F3KKoXmno0rBc05muyJz251LoppIhVMaG7tQb29ID4MFVDiZEcgpXhxm3V3%2FaCmvwf6Sz7hGZTBZJZ7fUeBhARDtQSZSZXK89NI8ix4Xtyt%2FV3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec316df38569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www6.hds.quest/cdn-cgi/challenge-platform/scripts/jsd/main.js

172.67.159.51

302 Found

7.4 kB

URL GET HTTP/3
www6.hds.quest/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type

Size
7.4 kB (7403 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: prefetchAd_4359127=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1; paddos_2mdDW=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Tue, 31 Oct 2023 20:49:01 GMT
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/c359bc3d/main.js
vary: accept-encoding
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yYEaQOzsn8esyZlsJcXyF2OIs0s65XacalMalf3877Wa%2BSk8Ie%2F4IdQ%2B%2F2o3UqBpy%2BibROBekQMPow8f90wPaRmMY%2BexC6EVsWe9dNObMGuTCWNSF%2FnH1BuFcM%2BlLGSbVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec32189fc569c-OSL
alt-svc: h3=":443"; ma=86400

GET s6.chatango.com:8081/

208.93.230.191

101 Switching Protocols

0 B

URL GET HTTP/1.1
s6.chatango.com:8081/
IP
208.93.230.191:8081
ASN
#29893 CHATANGO

Requested by
https://st.chatango.com/h5/gz/r0925230558/id.html
Certificate
IssuerSectigo Limited
Subject*.chatango.com
Fingerprint51:E2:E1:03:43:73:D8:C8:D4:4D:E0:E4:4A:BF:4F:DB:B5:CB:6E:A0
ValiditySat, 03 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: s6.chatango.com:8081
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://st.chatango.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZPE5xVZkcw0GW1KafLZAcg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Upgrade: websocket
Connection: Upgrade
Sec-WebSocket-Accept: Y16XGG/PDus+HDAYkAc/YFdNwKQ=

GET www6.hds.quest/cdn-cgi/challenge-platform/h/g/scripts/jsd/c359bc3d/main.js

172.67.159.51

200 OK

7.4 kB

URL GET HTTP/3
www6.hds.quest/cdn-cgi/challenge-platform/h/g/scripts/jsd/c359bc3d/main.js
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
ASCII text, with very long lines (7403), with no line terminators
Size
7.4 kB (7403 bytes)
Hash
59d56b27c1df3954edeea96f6e931f1d
4ad146e795c1c3b5b044d13290d55600e6a07faf
30485a899f94dbedd41cfac44a421b2380548bca082ecccc4c8f7bb4dc613ffb

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/c359bc3d/main.js HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: prefetchAd_4359127=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1; paddos_2mdDW=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:01 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
vary: accept-encoding
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=idyBvYEbF%2FZyBk9pnFoAR8heQleibEjketwDFq%2FhxvQlVHN13xRg%2FX8wo%2BkqTAxtq7TpTL7VHYGBcR5f7FxoeTPE8R8JttvpZQeiJA9SF69wnxBmzdAcIbTk9MHyEcVjiw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec3220a93569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www6.hds.quest/wp-content/themes/dooplay.2.4.1/assets/img/play.svg

172.67.159.51

200 OK

1.1 kB

URL GET HTTP/3
www6.hds.quest/wp-content/themes/dooplay.2.4.1/assets/img/play.svg
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1225), with no line terminators
Size
1.1 kB (1119 bytes)
Hash
5fd8e39ba96c8f0e497940669689f091
f661ef50fec9800a5af36d0326ac69405c7a9573
74fa1d714fb9c924523c869a93b8c7afe61bc7adca57dced2bc3c91b00fecf35

HTTP Headers

GET /wp-content/themes/dooplay.2.4.1/assets/img/play.svg HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:48:59 GMT
content-type: image/svg+xml
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Fri, 30 Jun 2023 21:35:56 GMT
etag: W/"45f-5ff5f9a216890-gzip"
cache-control: max-age=31536000
expires: Wed, 30 Oct 2024 15:58:51 GMT
referrer-policy: 
cf-cache-status: HIT
age: 17408
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1tkFfCpqk4QzFzmJ9htGqB%2Bf%2FISOE4nmUcHTmLEdGfY0rmElACYHp4a8KDOTO%2Fzb6TTRfsTha48foufinIiUhuiwy5IhpkJFRCEiqQDmajic2lx8BBR0hZ%2FiN66SA5t5TQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec316df37569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET lidsaich.net/5/4359127/?oo=1&aab=1

139.45.197.244

200 OK

2.8 kB

URL GET HTTP/2
lidsaich.net/5/4359127/?oo=1&aab=1
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerLet's Encrypt
Subjectlidsaich.net
Fingerprint77:08:4D:31:06:27:9A:01:36:53:07:8E:08:84:5D:21:6C:68:EA:B3
ValidityTue, 12 Sep 2023 05:09:20 GMT - Mon, 11 Dec 2023 05:09:19 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2993), with no line terminators
Size
2.8 kB (2753 bytes)
Hash
69660fb6a191da5220b069a74cc28bcc
da27aecf2df6be305a857589ec4eea7bf39fce98
5bd5ddde134a7871afdefd7a715e435b2ffe720b6d45bf315b253d69e8e480ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/4359127/?oo=1&aab=1 HTTP/1.1
Host: lidsaich.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www6.hds.quest
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 31 Oct 2023 20:49:00 GMT
content-type: application/json
x-trace-id: 08016b797327d18838b86d2f0dec6512
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://www6.hds.quest
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=cf3a8c83e6444448bd55c87248054c31; expires=Wed, 30 Oct 2024 20:49:00 GMT; path=/; secure; SameSite=None
oaidts=1698785340; expires=Wed, 30 Oct 2024 20:49:00 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

POST www6.hds.quest/cdn-cgi/challenge-platform/h/g/jsd/r/81eec3144c9d569c

172.67.159.51

200 OK

0 B

URL POST HTTP/3
www6.hds.quest/cdn-cgi/challenge-platform/h/g/jsd/r/81eec3144c9d569c
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/jsd/r/81eec3144c9d569c HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12215
Origin: https://www6.hds.quest
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Cookie: prefetchAd_4359127=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1; paddos_2mdDW=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:01 GMT
content-type: text/plain; charset=UTF-8
set-cookie: cf_clearance=as7t1YiPc1FlK935VKuJFO9hZFndAgn50vtQiJFGDL4-1698785341-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1698785341; path=/; expires=Wed, 30-Oct-24 20:49:01 GMT; domain=.hds.quest; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FuQAZL4AdAjCmAGiBocf5blpPPD482Ygyw5eiWaxDOc7M2D50ngYJH4HvJF6Y7lhX%2FgFKChGNS7aRtKEXvaHS%2BNQN717Q1KeruadDFyKPBMel6pjcQ8C7tHKxU3VcdXXZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec3231b72569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET st.chatango.com/js/gz/r0925230558/CollapsedViewModule.js

208.93.230.22

200 OK

9.2 kB

URL GET HTTP/1.1
st.chatango.com/js/gz/r0925230558/CollapsedViewModule.js
IP
208.93.230.22:443
ASN
#29893 CHATANGO

Requested by
https://st.chatango.com/h5/gz/r0925230558/id.html
Certificate
IssuerSectigo Limited
Subject*.chatango.com
Fingerprint51:E2:E1:03:43:73:D8:C8:D4:4D:E0:E4:4A:BF:4F:DB:B5:CB:6E:A0
ValiditySat, 03 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (9543), with no line terminators
Size
9.2 kB (9168 bytes)
Hash
8c92600b9c62013ad71d830b89b6e43b
25fda469a33185f7c912c8f8819343e833e53f00
ce9bcc4b8485adce56e3352187eefc20ef857e8c03c5568b302f167d31e61890

HTTP Headers

GET /js/gz/r0925230558/CollapsedViewModule.js HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.chatango.com/h5/gz/r0925230558/id.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Oct 2023 20:49:02 GMT
Content-Type: application/x-javascript
Content-Length: 3507
Last-Modified: Mon, 25 Sep 2023 13:02:22 GMT
Connection: keep-alive
Expires: Wed, 30 Oct 2024 20:49:02 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
Accept-Ranges: bytes

173.233.137.60

307 Temporary Redirect

3.3 kB

URL GET HTTP/1.1
leveragebestow.com/watch.795765668202.js?key=c0ecd57aa2db939b0fffbe5cd7cc068d&kw=%5B%22jeff%22%2C%22panacloc%22%2C%22contre%22%2C%22attaque%22%2C%22en%22%2C%22streaming%22%2C%22vf%22%2C%22et%22%2C%22vo%22%2C%224k%22%2C%22film%22%2C%22complet%22%2C%22gratuit%22%2C%22hds%22%2C%22to%22%2C%22hdss%22%2C%22streaming%22%5D&refer=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&tz=0&dev=e&res=14.2079&uuid=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1
IP
173.233.137.60:443
ASN
#7979 SERVERS-COM

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerLet's Encrypt
Subjectleveragebestow.com
Fingerprint04:49:AA:4E:F3:65:B9:C9:B1:A1:18:98:0A:C6:33:1E:8F:CE:93:98
ValiditySat, 23 Sep 2023 01:02:37 GMT - Fri, 22 Dec 2023 01:02:36 GMT

File type

Size
3.3 kB (3295 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.795765668202.js?key=c0ecd57aa2db939b0fffbe5cd7cc068d&kw=%5B%22jeff%22%2C%22panacloc%22%2C%22contre%22%2C%22attaque%22%2C%22en%22%2C%22streaming%22%2C%22vf%22%2C%22et%22%2C%22vo%22%2C%224k%22%2C%22film%22%2C%22complet%22%2C%22gratuit%22%2C%22hds%22%2C%22to%22%2C%22hdss%22%2C%22streaming%22%5D&refer=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&tz=0&dev=e&res=14.2079&uuid=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1 HTTP/1.1
Host: leveragebestow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www6.hds.quest
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 31 Oct 2023 20:49:02 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www6.hds.quest
Access-Control-Allow-Origin: https://www6.hds.quest
Access-Control-Allow-Credentials: true
Location: https://leveragebestow.com/watch.795765668202.js?key=c0ecd57aa2db939b0fffbe5cd7cc068d&kw=%5B%22jeff%22%2C%22panacloc%22%2C%22contre%22%2C%22attaque%22%2C%22en%22%2C%22streaming%22%2C%22vf%22%2C%22et%22%2C%22vo%22%2C%224k%22%2C%22film%22%2C%22complet%22%2C%22gratuit%22%2C%22hds%22%2C%22to%22%2C%22hdss%22%2C%22streaming%22%5D&refer=https%3A%2F%2Fwww6.hds.quest%2Ffilms%2Fjeff-panacloc-contre-attaque%2F&tz=0&dev=e&res=14.2079&uuid=e9306ec4-2a66-4e12-9088-a5a347dcf3d3%3A3%3A1&shu=c070ec8ea4b8e70a03c1cc8653e701f82d67498e8ce9eb2a3b532d67300d3523e6b0e84094deb51bb193cae61870907c37725ba98e8349ba7947864245e748429ec3a0dfe35f0afff23e561a3ee400af0829ff7dd7fd79cba9f5612d7677b021&pst=1698785402&rmtc=t
Set-Cookie: u_pl=16597275; expires=Wed, 01 Nov 2023 20:49:02 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjU5NzI3NSwiayI6ImMwZWNkNTdhYTJkYjkzOWIwZmZmYmU1Y2Q3Y2MwNjhkIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjozNTA1ODUsInBpZCI6MTU0MTQ4LCJhbiI6dHJ1ZSwibGFuIjp0cnVlLCJjaWQiOjIxLCJhaWQiOjMyLCJwdCI6NCwicGsiOiJqdHphMTdkenk1IiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjE3OTA4ODk0OCwiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjE4MTEwLCJvbiI6IkxpbnV4Iiwib3YiOiJVbmtub3duIiwiYmlkIjoxMjQzODYsImJuIjoiRmlyZWZveCIsImJ2IjoiMTExLjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly93d3c2Lmhkcy5xdWVzdC9maWxtcy9qZWZmLXBhbmFjbG9jLWNvbnRyZS1hdHRhcXVlLyJ9fQ.ILfKI9madeCY-XVo5a928dnq75SpcmIFxsIBX3qMfWQ; expires=Tue, 31 Oct 2023 20:50:02 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 048defc39bbe6503e96d94471b7271c7
Strict-Transport-Security: max-age=0; includeSubdomains

GET www6.hds.quest/wp-content/cache/minify/5998a.js

172.67.159.51

200 OK

175 kB

URL GET HTTP/3
www6.hds.quest/wp-content/cache/minify/5998a.js
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
175 kB (175427 bytes)
Hash
2ae1bce515aa3607082f010ec3fd09c9
c7efd002e317d4a2501087faf584b49c6c334bfa
fbb4be6b1f2fd358c540d5a19343ac187c6e3163e6f1f2ce1c7fc0c988833d16

HTTP Headers

GET /wp-content/cache/minify/5998a.js HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:48:59 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=175437
etag: W/"d554-60901b7ea5d18"
expires: Wed, 30 Oct 2024 15:58:51 GMT
last-modified: Tue, 31 Oct 2023 11:47:25 GMT
referrer-policy: 
vary: Accept-Encoding
cf-cache-status: HIT
age: 17408
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TaA63roEPBCGMhZZp%2B6Mz%2B%2FQ%2F5OzA1E%2FjN1PDsJ9HAadxZ1nsXxpQqcaFbKKsm1KPFimt2JlJJC9hlQdNaFQWFHNhv4mi1E7CK4%2FuLkBR3Goctrv556F7kDOejozYcBLLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec316cf2f569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www6.hds.quest/wp-content/cache/minify/c2bba.js

172.67.159.51

200 OK

878 B

URL GET HTTP/3
www6.hds.quest/wp-content/cache/minify/c2bba.js
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
ASCII text, with very long lines (879), with no line terminators
Size
878 B (878 bytes)
Hash
a27e694ed6331cc6a5db4bbd28a8e29a
f3675616014f920ffd73e8d9ddfede294499d43f
aa8f1c99e6924adced9fa1033de7a93d81f3df434e5092b6617507926b6f7e11

HTTP Headers

GET /wp-content/cache/minify/c2bba.js HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:00 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
etag: W/"180-60901b24fa408"
expires: Wed, 30 Oct 2024 15:58:51 GMT
last-modified: Tue, 31 Oct 2023 11:45:51 GMT
referrer-policy: 
vary: Accept-Encoding
cf-cache-status: HIT
age: 17409
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cyrlnm%2BRovRWXtPxnV0U9dz4sN504EckGfC4tFo90F7Kg7NjL81ScQz8%2FZWLwNOtGikUc1Sz4BVvKATqvMvio5LIDqnKotHd5MMC3%2B5s%2FmHLhTSuFSBTi4V6sujxIvXSLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec3170f84569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www3.hds.quest/films/jeff-panacloc-contre-attaque/

172.67.159.51

301 Moved Permanently

120 kB

URL User Request GET HTTP/2
www3.hds.quest/films/jeff-panacloc-contre-attaque/
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type

Size
120 kB (119476 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /films/jeff-panacloc-contre-attaque/ HTTP/1.1
Host: www3.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Tue, 31 Oct 2023 20:48:59 GMT
content-type: text/html; charset=UTF-8
location: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
expires: Tue, 31 Oct 2023 21:48:59 GMT
cache-control: max-age=3600
x-redirect-by: WordPress
vary: X-Forwarded-Proto,Accept-Encoding
referrer-policy: 
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ninax5P27g05hwg6FY60eWgHhO%2Fe33GllqZe30mjEHa46qL9JFF2%2FHOoFtSZ4BoOUXm6LDIWyCbJar8Y%2BYydYXYSt8z%2FDuq4k9rdC1GLLUtDe7eGzpI5u6kTGp3DpiOkug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec311ebec56bf-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www6.hds.quest/wp-content/cache/minify/a5ff7.css

172.67.159.51

200 OK

104 kB

URL GET HTTP/3
www6.hds.quest/wp-content/cache/minify/a5ff7.css
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type

Size
104 kB (104251 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/cache/minify/a5ff7.css HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:48:59 GMT
content-type: text/css
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=104467
etag: W/"356b-60901b7e728c8"
expires: Wed, 30 Oct 2024 15:58:51 GMT
last-modified: Tue, 31 Oct 2023 11:47:25 GMT
referrer-policy: 
vary: Accept-Encoding
cf-cache-status: HIT
age: 17408
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HivzmtEhKMZavShjr8optXfr%2BkcagSnphpNeDy54QiEYDGLde%2FnuJh5%2FfDii9MBxHE%2BLanqH4QK5kR7kXJnrzsDXXXr6JxLw4%2FxXLiI3PmfWmta8uECbb7wQWve2E1t2xA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec316bf20569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www6.hds.quest/wp-content/cache/minify/5a968.js

172.67.159.51

200 OK

56 kB

URL GET HTTP/3
www6.hds.quest/wp-content/cache/minify/5a968.js
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
ASCII text, with very long lines (56516), with no line terminators
Size
56 kB (56516 bytes)
Hash
f67b0f4bdc1e53cfa53b6eae01ccf869
4bd11846d845bd8adc759c7a04d7d65374b78bdb
e1f39eec9563b70e1de2f8ed88d4b3a15395f4b743dce525ef6949da50fbcf11

HTTP Headers

GET /wp-content/cache/minify/5a968.js HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:48:59 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
etag: W/"38ad-60901ad97f7f8"
expires: Wed, 30 Oct 2024 15:58:51 GMT
last-modified: Tue, 31 Oct 2023 11:44:32 GMT
referrer-policy: 
vary: Accept-Encoding
cf-cache-status: HIT
age: 17408
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t%2BRXjWhPQ9mFwHgFLjufWkcKKuwuVDxA4o%2FEOYDRWGJ8a%2B5h1TadnBzFIeVxH8Bzbw6t4Srd8t%2BX8M2OjHQuGBGzKk9vUYKRc7KgqUU60ECllLtGN67mCesyqcV8J7Q%2BOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec316cf34569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www6.hds.quest/wp-content/cache/minify/cfabb.js

172.67.159.51

200 OK

28 kB

URL GET HTTP/3
www6.hds.quest/wp-content/cache/minify/cfabb.js
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
HTML document, ASCII text, with very long lines (6067)
Size
28 kB (27765 bytes)
Hash
5db2e1e1a92f261adbb49a4a7cbdcacb
835e84376d7e7c3c7703af5de68935faf5634f5a
a9e032d12d80e77afe7a6d68bd05e1d25012d0ff3e0adf7feb5d7ba1ba8dddf5

HTTP Headers

GET /wp-content/cache/minify/cfabb.js HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:00 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=27767
etag: W/"165a-60901b7eb1c80"
expires: Wed, 30 Oct 2024 15:58:51 GMT
last-modified: Tue, 31 Oct 2023 11:47:25 GMT
referrer-policy: 
vary: Accept-Encoding
cf-cache-status: HIT
age: 17409
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZiMeUVR%2B8Ot6FQI7%2FRBlDc56QQY1%2FYUpnUMYBUxda4AgXzynnnKvgoieK4dxoJAv6HhSX6379IvI907hff9UVnIhNL%2FEm%2F%2B0%2BAA5gGDAoh8xhXq7rQmxNIXrnShPkNR7Uw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec3170f8b569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www3.hds.quest/wp-content/uploads/2023/10/cpa-player.png

172.67.159.51

200 OK

8.0 kB

URL GET HTTP/3
www3.hds.quest/wp-content/uploads/2023/10/cpa-player.png
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
PNG image data, 300 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
8.0 kB (8029 bytes)
Hash
1e091bdd76f0561e48b270ee09a3d377
22b7740c9218ea2bee2a9c5bff3e74d1164a39a7
25c68a79028697a50718427d292feb6fb681864abc39f5de51b7fb2b9eba7bfd

HTTP Headers

GET /wp-content/uploads/2023/10/cpa-player.png HTTP/1.1
Host: www3.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:01 GMT
content-type: image/png
content-length: 8029
vary: X-Forwarded-Proto,Accept-Encoding
last-modified: Mon, 23 Oct 2023 08:47:34 GMT
etag: "1f5d-6085e45fe03d8"
cache-control: max-age=31536000
expires: Fri, 25 Oct 2024 09:32:33 GMT
referrer-policy: 
cf-cache-status: HIT
age: 472588
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WxYYnLZD0vFdpiqajPrBS2fA4KQMC%2FuAiIXDynyULzztpnEdfE2M3tgIvCNd2Bc5JKe75%2FVyBM35wE5%2FfucnAAWHsvCzfSBE3yAVS%2FZKLSQ%2F0c8oHpD2IXk4F4KoPvkzGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec31f2f85569c-OSL
alt-svc: h3=":443"; ma=86400

GET www6.hds.quest/wp-content/cache/minify/95e53.js

172.67.159.51

200 OK

7.7 kB

URL GET HTTP/3
www6.hds.quest/wp-content/cache/minify/95e53.js
IP
172.67.159.51:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Certificate
IssuerGoogle Trust Services LLC
Subjecthds.quest
Fingerprint44:AF:DE:FC:F3:18:E3:A0:D3:AE:C2:BA:D2:95:10:28:AB:E3:8B:B1
ValiditySun, 24 Sep 2023 13:03:27 GMT - Sat, 23 Dec 2023 13:03:26 GMT

File type
HTML document, ASCII text, with very long lines (8113), with no line terminators
Size
7.7 kB (7739 bytes)
Hash
5376f4a0b50ca831e25555582ec55df6
b7e1da66e76445bb6c50f589ac29e8fbf1177ef4
74c03bb86ae7d292122a7406082d0e245481c99fa66be2f9b4c51e635983754f

HTTP Headers

GET /wp-content/cache/minify/95e53.js HTTP/1.1
Host: www6.hds.quest
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www6.hds.quest/films/jeff-panacloc-contre-attaque/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 31 Oct 2023 20:49:00 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=7743
etag: W/"ac7-60901b7eaab38"
expires: Wed, 30 Oct 2024 15:58:51 GMT
last-modified: Tue, 31 Oct 2023 11:47:25 GMT
referrer-policy: 
vary: Accept-Encoding
cf-cache-status: HIT
age: 17409
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xKkG1kMZXfHxKX%2Fg2XEks%2F2msIIyd71GLcMfHOCTU0BJAjs5Rd0nARDMw6faf7Of8o2lcTQpf5edd5BHHFBBuMfSviEgmWmJ3OGt1s8%2BWFPkD0fcjxCTUvo%2BPXR2tNq5AQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 81eec3171f91569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET ust.chatango.com/groupinfo/h/d/hdsstreaminghub/gprofile.xml

208.93.230.28

200 OK

90 B

URL GET HTTP/1.1
ust.chatango.com/groupinfo/h/d/hdsstreaminghub/gprofile.xml
IP
208.93.230.28:443
ASN
#29893 CHATANGO

Requested by
https://st.chatango.com/h5/gz/r0925230558/id.html
Certificate
IssuerSectigo Limited
Subject*.chatango.com
Fingerprint51:E2:E1:03:43:73:D8:C8:D4:4D:E0:E4:4A:BF:4F:DB:B5:CB:6E:A0
ValiditySat, 03 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
XML document text\012- HTML document, ASCII text, with no line terminators
Size
90 B (90 bytes)
Hash
f19beea8018a91585dc2d412b916d936
a1ad8cc9f1b67454202934c1d4cf960df03bb6a8
06600c41b7ac4b54e65e53db7fe7adb5b4de4b5d9c3a51e4d3161fe99cc18909

HTTP Headers

GET /groupinfo/h/d/hdsstreaminghub/gprofile.xml HTTP/1.1
Host: ust.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://st.chatango.com
DNT: 1
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 31 Oct 2023 20:49:03 GMT
Content-Type: text/xml
Content-Length: 90
Last-Modified: Tue, 19 Apr 2022 23:05:47 GMT
Connection: keep-alive
Expires: Tue, 31 Oct 2023 20:49:03 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (60)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML