Report - sflix2.to/tv/

Report Overview

Visited public
2024-12-14 15:10:42
Tags
URL
sflix2.to/tv/
Finishing URL
sflix2.to/tv/
IP / ASN
104.21.20.13
#13335 CLOUDFLARENET
Title
SFlix | Watch HD Movies Online Free | TV Series & Stream Live

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2024-12-11	1.6 kB	116 kB	216.58.207.227
www.gstatic.com	unknown	2008-02-11	2012-05-29	2024-12-11	468 B	222 kB	142.250.74.35
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2024-12-11	3.6 kB	181 kB	104.17.25.14
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-12-11	425 B	1.5 kB	151.101.129.229
www.googletagmanager.com	75	2011-11-11	2012-10-04	2024-12-11	416 B	111 kB	142.250.74.136
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2024-12-11	465 B	10 kB	216.58.207.234
www.google.com	7	1997-09-15	2015-05-10	2024-12-11	449 B	1.6 kB	142.250.74.164
stackpath.bootstrapcdn.com	2467	2012-05-25	2018-04-05	2024-12-11	448 B	160 kB	104.18.11.207
sflix2.to	unknown	unknown	2024-12-14	2024-12-14	2.4 kB	137 kB	172.67.190.198
ungothoritator.com	unknown	2024-03-12	2024-03-12	2024-10-28	830 B	34 kB	139.45.197.244
img.sflix2.to	unknown	unknown	2024-12-14	2024-12-14	508 B	6.1 kB	172.67.190.198

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-12-14	medium	ungothoritator.com	Sinkholed
2024-12-14	medium	ungothoritator.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (16)

	URL	From	Size	First Seen	Last Seen
	cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.3.1/js/bootstrap.min.js	ScriptElement	58 kB	2023-03-07	2025-05-29
Pretty URL cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.3.1/js/bootstrap.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-29 04:47 Times Seen11976 Hash e1d98d47689e00f8ecbc5d9f61bdb42e 6778fed3cf095a318141a31f455c8f4663885bde 0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b Loading...

	sflix2.to/tv/	ScriptElement	68 B	2023-10-21	2025-01-27
Pretty URL sflix2.to/tv/ IP 172.67.190.198 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-21 08:33 Last Seen2025-01-27 14:29 Times Seen149 Hash 75434dc0aedb1fa4bcde67fe66d47dc8 097dec10b4b85c3fd2ffb22278fdf755abc2dfd2 d863a66291e2bbab6f9cec5debed2ce7845a3c690874c447a356663dd973542a Loading...

	sflix2.to/js/group_11/app.min.js?v=0.2	ScriptElement	167 kB	2024-08-25	2025-01-27
Pretty URL sflix2.to/js/group_11/app.min.js?v=0.2 IP 172.67.190.198 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-25 05:48 Last Seen2025-01-27 07:09 Times Seen24 Hash 07b4787ff857edfbbd19ab292825769a 8bbb7a73f53bb2d5b8512d198dd52e78e9db1a85 64538bd6bbeba4a23c1bec7d32ceae4aae64aee116e60c56a53ca5db38f1b9fb Loading...

	unknown	Function	50 B	2023-04-12	2025-05-28
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-12 00:31 Last Seen2025-05-28 14:02 Times Seen1550 Hash 67a516f6876a6d5a6acd917aabe0571f 3cafb807a2d7fcf75a5092484795de52336ae1d0 cb909329532746539d41f5fe0c5f508bbf8191744c706dd5969753aa14948bc3 Loading...

	sflix2.to/tv/	ScriptElement	153 B	2023-08-27	2025-01-27
Pretty URL sflix2.to/tv/ IP 172.67.190.198 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-27 20:54 Last Seen2025-01-27 07:09 Times Seen85 Hash 19297b5353373d6d4eea923efcb3b9f1 4dcf7c0fc47b184dd912a967b98f346482278cee b3f031f6b4defcad7fc6e615ef2193fcef2e1029efc60ed4d173eac68cb10d9e Loading...

	sflix2.to/tv/	ScriptElement	66 kB	2024-04-28	2025-01-27
Pretty URL sflix2.to/tv/ IP 172.67.190.198 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-28 06:40 Last Seen2025-01-27 07:09 Times Seen46 Hash 87a8cd3425e6f697c97043ec035dc5ef 0f67fdb81952fd14761162a53ca96ea705e12482 010249623e265693aeaa3bfa85b77aa9a799393195d33f715d2bd43ca3cc1337 Loading...

	sflix2.to/tv/	ScriptElement	453 B	2024-04-28	2025-01-27
Pretty URL sflix2.to/tv/ IP 172.67.190.198 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-28 06:40 Last Seen2025-01-27 07:09 Times Seen46 Hash 686eefee9cbc1a469c4e1ef4dc607fd4 2a8b574e5e4fdc168c204bdac2ebddebf0e0372d 4f01c39e556bb3f86b8a2367dd7d1c968914324de9e3e5754f8479a34c404a20 Loading...

	unknown	Function	34 B	2023-04-11	2025-05-28
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:16 Last Seen2025-05-28 21:32 Times Seen67083 Hash 572cb94037fffc2a0a53b465972e15f1 0d679b041a7c1ca45cc99e2d229fc2b86762838d 6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35 Loading...

	www.google.com/recaptcha/api.js?render=6LfY9-4nAAAAAF1XAEEvsum_JdIVnZ-c1VnK2Qz3	ScriptElement	904 B	2024-12-14	2025-01-08
Pretty URL www.google.com/recaptcha/api.js?render=6LfY9-4nAAAAAF1XAEEvsum_JdIVnZ-c1VnK2Qz3 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-14 15:10 Last Seen2025-01-08 08:00 Times Seen112 Hash c2d845f226269b375176ec9fb0137061 78e11e8afc01e5dccf8d18785d3d2be55d10bcbd a086daf4926a6ff35701e362916480b1cf11fb8a8a38b89790d8d750d606e2fb Loading...

	cdn.jsdelivr.net/npm/js-cookie@beta/dist/js.cookie.min.js	ScriptElement	1.5 kB	2023-03-07	2025-05-20
Pretty URL cdn.jsdelivr.net/npm/js-cookie@beta/dist/js.cookie.min.js IP 151.101.129.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14 Last Seen2025-05-20 11:33 Times Seen892 Hash 24787c49593f435a98d922fdb13fca13 ba6c588991ded5a0d9f89fc0569f9c312a6c2316 96f171604e284998042d56431b61046bf7fdc32fd29c5fa399702d03299a7966 Loading...

	cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js	ScriptElement	18 kB	2023-03-07	2025-05-29
Pretty URL cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-29 01:08 Times Seen3231 Hash 12dd498bf90c536803c2aad708b66c2b 5f9363d39a405d1c94328cf2303ff4a05c0ad163 c4e20f53f5ef0ed44b783437aa3f4638a9a56cc4aa29ae83ed9212eb2807052a Loading...

	sflix2.to/tv/	ScriptElement	18 B	2023-03-07	2025-01-27
Pretty URL sflix2.to/tv/ IP 172.67.190.198 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:18 Last Seen2025-01-27 14:40 Times Seen73 Hash bf2fd5e4ab0259b93836cd01c6b1982d 114b2c528afd8000db03ba1747d2900f61a5a863 2da2679aae8b031750ca249086d5cb22f9bc8d82fd2adc5c912a60df3b39fc99 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js	ScriptElement	88 kB	2023-03-07	2025-05-29
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-29 05:03 Times Seen68849 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	cdnjs.cloudflare.com/ajax/libs/vue/2.6.10/vue.min.js	ScriptElement	94 kB	2023-03-07	2025-05-28
Pretty URL cdnjs.cloudflare.com/ajax/libs/vue/2.6.10/vue.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18 Last Seen2025-05-28 10:22 Times Seen1775 Hash 17e942ea0854bd9dce2070bae6826937 434cdec1669f2c6c7406297a72120936bc56ed52 72194d152571dd375c4365e5c3b4af9db2c06af0102ced18fcb062597d38be26 Loading...

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.15.0/umd/popper.min.js	ScriptElement	21 kB	2023-03-07	2025-05-28
Pretty URL cdnjs.cloudflare.com/ajax/libs/popper.js/1.15.0/umd/popper.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17 Last Seen2025-05-28 23:47 Times Seen1008 Hash e21a6649041ef6f5f1bf43f11946621f 01bcaef811210de0ea58e55e47fbefd77be5c442 7d3b9482d4fb3b6aeaa089b08eb84381b5d3294c32c71ba320c4482bb4dbb8d5 Loading...

	unknown	Function	762 B	2023-09-23	2025-01-27
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-09-23 05:33 Last Seen2025-01-27 14:40 Times Seen17 Hash 9dca9ff5bc501876c16884accd005bd1 168a9b9c7acb8c664197240a3604869dbbc186f3 eaca3dc70db97c3d0e1b73a31a8bbece1552254ee55bc82e1a9b6c2720184326 Loading...

HTTP Transactions (26)

URL IP Response Size

sflix2.to/

172.67.190.198

301 Moved Permanently

167 B

URL
sflix2.to/
IP
172.67.190.198:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
0104c301c5e02bd6148b8703d19b3a73
7436e0b4b1f8c222c38069890b75fa2baf9ca620
446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f

HTTP Headers

GET / HTTP/1.1
Host: sflix2.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Sat, 14 Dec 2024 15:10:19 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 14 Dec 2024 16:10:19 GMT
Location: https://sflix2.to/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OvAK2AQVbjoixGWWCl09x%2FnDcrP65diDvPdt147W6%2Bw5bBniApTVobU97Q6SGFDkQsW67uzqv4jRBsmZ0kHCHVwzk1GoOeDb8UlTimJh5hUJwt6A1kMz6LrGo6w%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8f1f1eb90973b4ff-OSL
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=1423&min_rtt=1423&rtt_var=711&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=262&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.9.0/css/all.css

104.17.25.14

200 OK

10 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.9.0/css/all.css
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02
ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT

File type
ASCII text
Size
10 kB (10234 bytes)
Hash
1eee8ee89dd11681ebe77db29e2634bf
3b3b8a6b682cf7eb51ce10e9cb69a36da7d374ee
3c5e8c6ad66d889f3f73d3bd1d0f2e4945ebfbe47d28162ee206cd1b9e75d561

HTTP Headers

GET /ajax/libs/font-awesome/5.9.0/css/all.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 14 Dec 2024 15:10:30 GMT
content-type: text/css; charset=utf-8
content-length: 10234
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-111ac"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1349496
expires: Thu, 04 Dec 2025 15:10:30 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HSbC7o4MgX3kVgtiqH5QBPQAoHWrJTpWExBWalSm%2FkxHQ3RX42F1lnfVIY7aByFO7zynfvnHs6EKeaXCwTAfZfeYvfetCXLsTvSBdMipQKtO4%2FACmdwHsL%2FUAHR8oUqnGKS7IIa%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8f1f1efdfd0456af-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js

104.17.25.14

200 OK

5.1 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02
ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT

File type
JavaScript source, ASCII text, with very long lines (17660)
Size
5.1 kB (5117 bytes)
Hash
12dd498bf90c536803c2aad708b66c2b
5f9363d39a405d1c94328cf2303ff4a05c0ad163
c4e20f53f5ef0ed44b783437aa3f4638a9a56cc4aa29ae83ed9212eb2807052a

HTTP Headers

GET /ajax/libs/postscribe/2.0.8/postscribe.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 14 Dec 2024 15:10:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 5117
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03faa-45f4"
last-modified: Mon, 04 May 2020 16:15:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1670766
expires: Thu, 04 Dec 2025 15:10:30 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Tw%2Ffm9VAxMrCq73bOhGhNCZ768y0R%2BIh%2BHvWkhZhs5OwIf5GKLPt0AMrLA1vWsrz%2BPc%2BdfpIugwrKvSfdThYHAUF2zNeCkOw8ny9Pn93NYr42b1EfHiNa50GtTPofd84YReL0Eo9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8f1f1efe1d1956af-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.3.1/js/bootstrap.min.js

104.17.25.14

200 OK

14 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.3.1/js/bootstrap.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02
ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT

File type
JavaScript source, ASCII text, with very long lines (57791)
Size
14 kB (13537 bytes)
Hash
e1d98d47689e00f8ecbc5d9f61bdb42e
6778fed3cf095a318141a31f455c8f4663885bde
0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b

HTTP Headers

GET /ajax/libs/twitter-bootstrap/4.3.1/js/bootstrap.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 14 Dec 2024 15:10:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 13537
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04010-e2d8"
last-modified: Mon, 04 May 2020 16:17:20 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1684162
expires: Thu, 04 Dec 2025 15:10:30 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2xqXbqs3Fm5a8tzK9b26MPt5nrZLpcrKyJvjB%2F%2FWayaiv5vI19wiJKWeKbrINhCvPgM4%2BWdhicLOFhLs4tAgLIXWdffvECKwwkwKIyGnOU%2BYvytieRc9HxZX1X5TOyg1CP0UvWk7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8f1f1efe2d2f56af-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js

104.17.25.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02
ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
28 kB (27748 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

HTTP Headers

GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 14 Dec 2024 15:10:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 333738
expires: Thu, 04 Dec 2025 15:10:30 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=svM3Z4VWcr9LWI3vXK9SaDouNpFWsZR7SvADodlZkLJkrwYzR2lwzFd3DLFoALzowcnDEYND9DoqFFB%2Fv3%2FniqJ6qBDvlwunKK%2BdVjFxu2aOu4ma4rpIohMtKRdI5XDQKTb6W96f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8f1f1efe2d3156af-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/popper.js/1.15.0/umd/popper.min.js

104.17.25.14

200 OK

6.7 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.15.0/umd/popper.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02
ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT

File type
JavaScript source, ASCII text, with very long lines (20989)
Size
6.7 kB (6680 bytes)
Hash
e21a6649041ef6f5f1bf43f11946621f
01bcaef811210de0ea58e55e47fbefd77be5c442
7d3b9482d4fb3b6aeaa089b08eb84381b5d3294c32c71ba320c4482bb4dbb8d5

HTTP Headers

GET /ajax/libs/popper.js/1.15.0/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 14 Dec 2024 15:10:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 6680
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-52aa"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 249824
expires: Thu, 04 Dec 2025 15:10:30 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l4eNG1JUWPONiERWQdMJdDb%2FE9DmpojJHEcreaqPO3%2BzxeTg7T2U9mhQrPJb6XhYkPiNkby7fYUha9WETwva0o86%2FZr2YTQG1yQCqVFbJjFbpeRwxE6tk1CfmkTzFmPSTfMIlGi%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8f1f1efe2d3256af-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/vue/2.6.10/vue.min.js

104.17.25.14

200 OK

31 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/vue/2.6.10/vue.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02
ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT

File type
JavaScript source, ASCII text, with very long lines (65449)
Size
31 kB (30769 bytes)
Hash
17e942ea0854bd9dce2070bae6826937
434cdec1669f2c6c7406297a72120936bc56ed52
72194d152571dd375c4365e5c3b4af9db2c06af0102ced18fcb062597d38be26

HTTP Headers

GET /ajax/libs/vue/2.6.10/vue.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 14 Dec 2024 15:10:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 30769
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb0402c-16deb"
last-modified: Mon, 04 May 2020 16:17:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1758094
expires: Thu, 04 Dec 2025 15:10:30 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qw8Tj586H9C6xHadLnivEr7iD%2BaTPwCEs3BlH1l4TZGTcjkDF8lEE4JbwvDnROyU0ElCPjBzfg%2FncfHhp3%2BdjrV77bkDAXHGsO5VGzw44yresCej%2F9GtAim5pR%2FHi5SgiNb%2FeWbT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8f1f1efe7d9e56af-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/lazysizes/5.1.1/lazysizes.min.js

104.17.25.14

200 OK

3.0 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/lazysizes/5.1.1/lazysizes.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02
ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT

File type
JavaScript source, ASCII text, with very long lines (7031)
Size
3.0 kB (2950 bytes)
Hash
b5292df3431ced16b033d8b198079f06
3018dc53e0dcd6f26ceb866732fd76af7e091025
eb32a635955e226734775639e6f9b84a8ff45b999bc1688f4b8cc9b77178b760

HTTP Headers

GET /ajax/libs/lazysizes/5.1.1/lazysizes.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 14 Dec 2024 15:10:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 2950
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed0-1b91"
last-modified: Mon, 04 May 2020 16:12:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 332786
expires: Thu, 04 Dec 2025 15:10:30 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w4KJg1jJBdt0AIVX%2B%2Fav%2FK7CaKdkJ5ZHpxGD0v7a6tCI4lNQIdt3HvAeeuZtn0nsuDmzvVJ4ptVP9%2B8quEGv8Z9ssYDkULy%2F0vVTNPGHGRUMW0UZbSy%2Fv48%2BItRHglQRvYgzwZbx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8f1f1efe8dab56af-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/js-cookie@beta/dist/js.cookie.min.js

151.101.129.229

200 OK

747 B

URL GET HTTP/2
cdn.jsdelivr.net/npm/js-cookie@beta/dist/js.cookie.min.js
IP
151.101.129.229:443
ASN
#54113 FASTLY

Requested by
https://sflix2.to/tv/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint6C:45:F5:9E:D3:37:60:0B:9C:A8:28:29:A4:E6:41:33:BB:2E:76:5C
ValidityTue, 30 Jul 2024 15:36:05 GMT - Sun, 31 Aug 2025 15:36:04 GMT

File type
JavaScript source, ASCII text, with very long lines (1464)
Size
747 B (747 bytes)
Hash
24787c49593f435a98d922fdb13fca13
ba6c588991ded5a0d9f89fc0569f9c312a6c2316
96f171604e284998042d56431b61046bf7fdc32fd29c5fa399702d03299a7966

HTTP Headers

GET /npm/js-cookie@beta/dist/js.cookie.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.0.0-beta.4
x-jsd-version-type: version
etag: W/"5de-umxYiZHe1aDZ+J/AVp+cMSpsIxY"
content-encoding: br
accept-ranges: bytes
date: Sat, 14 Dec 2024 15:10:30 GMT
age: 12283
x-served-by: cache-fra-eddf8230107-FRA, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 747
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-BDK6T05TEW

142.250.74.136

200 OK

110 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-BDK6T05TEW
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint4B:B1:5A:60:07:55:DD:0C:FA:98:D3:8E:E8:58:9E:E7:6A:0D:60:12
ValidityMon, 04 Nov 2024 08:37:47 GMT - Mon, 27 Jan 2025 08:37:46 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
110 kB (109924 bytes)
Hash
761ca98e75288521f5437d5a5e0593a4
2cd5337d7d465d9cc57cff5d37856b68b3cc62c7
cd5cca4449d589f1433188ce567938e3d1735d2646bbc7153059c633ea31ae65

HTTP Headers

GET /gtag/js?id=G-BDK6T05TEW HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 14 Dec 2024 15:10:30 GMT
expires: Sat, 14 Dec 2024 15:10:30 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:838:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:838:0"}],}
server: Google Tag Manager
content-length: 109924
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

sflix2.to/js/group_11/app.min.js?v=0.2

172.67.190.198

200 OK

45 kB

URL GET HTTP/3
sflix2.to/js/group_11/app.min.js?v=0.2
IP
172.67.190.198:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subjectsflix2.to
Fingerprint77:CD:55:14:5C:71:D8:EA:08:31:FC:DF:13:14:9B:8C:BD:BD:11:C4
ValiditySun, 03 Nov 2024 04:14:19 GMT - Sat, 01 Feb 2025 04:14:18 GMT

File type
gzip compressed data, from Unix
Size
45 kB (44706 bytes)
Hash
8241b017d7e9db5294c75d838bb687e3
23e2846e7329372e9dad65e7217d67b2c3d2854a
d20fac04e0df7870a8efd0833e016cd6ec0797c5887b3a087dc5f5255382bf6f

HTTP Headers

GET /js/group_11/app.min.js?v=0.2 HTTP/1.1
Host: sflix2.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 14 Dec 2024 15:10:30 GMT
content-type: application/javascript; charset=UTF-8
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
cache-control: public, max-age=2592000
last-modified: Fri, 14 Jun 2024 19:02:13 GMT
etag: W/"28bd1-1901820fb23"
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 182310
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eBFRZtR2MlLbXWVJM%2FctgfrE1IGNoNEAxKPTwItKufnVIiRR3hgKZHtg9NruK3zBt0vaWcDV3AGFgqcz%2BxyqrsrSFsnWkCkMELzyy8NYNSId5cKYaRos14RNT4Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8f1f1efd7d515693-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2914&min_rtt=989&rtt_var=1943&sent=54&recv=19&lost=0&retrans=0&sent_bytes=45028&recv_bytes=2127&delivery_rate=2719774&cwnd=24000&unsent_bytes=0&cid=58d6437913837b8a&ts=7307&x=1", cfExtPri, cfHdrFlush;dur=0

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.9.0/webfonts/fa-solid-900.woff2

104.17.25.14

200 OK

75 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.9.0/webfonts/fa-solid-900.woff2
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02
ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 75440, version 329.-1049
Size
75 kB (75440 bytes)
Hash
b5cf8ae26748570d8fb95a47f46b69e1
07bed153d47f9129a944ee54dd72952deed074c8
cd398be1a91817126cef10224738e624358edf6f08043abad7e60c1aaeccc8d0

HTTP Headers

GET /ajax/libs/font-awesome/5.9.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sflix2.to
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 14 Dec 2024 15:10:30 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 75440
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e60-126b0"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 228567
expires: Thu, 04 Dec 2025 15:10:30 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4HQ8ad7DXcPjoVpCIdPHCns1Bo2hWpHa1jYMvrGcbU1XMQS3U%2BXx0GmNwI1B7tWy%2BMYBTCYk7C3PEYXJnE4S4zzn3okozLrJBdyBD9X6Ijzp%2B%2FHxHSDfJw4Tk%2BRFhzLrFAO6TPOE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8f1f1f02cddc56b4-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

fonts.gstatic.com/s/montserrat/v29/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

38 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v29/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint5E:64:A9:4C:59:5A:8F:EC:57:D9:7F:C4:7E:70:AC:88:F2:67:F1:79
ValidityMon, 04 Nov 2024 08:38:50 GMT - Mon, 27 Jan 2025 08:38:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 37828, version 1.0
Size
38 kB (37828 bytes)
Hash
50b140b1e97d859d6d0603414f4298ee
500e4872ee1ba9cf89f1ba626d64987b0f9ab5c9
fdc9964050bfa24c27a3c76c6791b3674292a5f352cbc83d7a4dc49595bc3fb1

HTTP Headers

GET /s/montserrat/v29/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sflix2.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37828
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Dec 2024 22:43:22 GMT
expires: Sat, 13 Dec 2025 22:43:22 GMT
cache-control: public, max-age=31536000
age: 59228
last-modified: Wed, 06 Nov 2024 17:30:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v29/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

38 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v29/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint5E:64:A9:4C:59:5A:8F:EC:57:D9:7F:C4:7E:70:AC:88:F2:67:F1:79
ValidityMon, 04 Nov 2024 08:38:50 GMT - Mon, 27 Jan 2025 08:38:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 37828, version 1.0
Size
38 kB (37828 bytes)
Hash
50b140b1e97d859d6d0603414f4298ee
500e4872ee1ba9cf89f1ba626d64987b0f9ab5c9
fdc9964050bfa24c27a3c76c6791b3674292a5f352cbc83d7a4dc49595bc3fb1

HTTP Headers

GET /s/montserrat/v29/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sflix2.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37828
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Dec 2024 22:43:22 GMT
expires: Sat, 13 Dec 2025 22:43:22 GMT
cache-control: public, max-age=31536000
age: 59228
last-modified: Wed, 06 Nov 2024 17:30:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v29/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

38 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v29/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint5E:64:A9:4C:59:5A:8F:EC:57:D9:7F:C4:7E:70:AC:88:F2:67:F1:79
ValidityMon, 04 Nov 2024 08:38:50 GMT - Mon, 27 Jan 2025 08:38:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 37828, version 1.0
Size
38 kB (37828 bytes)
Hash
50b140b1e97d859d6d0603414f4298ee
500e4872ee1ba9cf89f1ba626d64987b0f9ab5c9
fdc9964050bfa24c27a3c76c6791b3674292a5f352cbc83d7a4dc49595bc3fb1

HTTP Headers

GET /s/montserrat/v29/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sflix2.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37828
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 13 Dec 2024 22:43:22 GMT
expires: Sat, 13 Dec 2025 22:43:22 GMT
cache-control: public, max-age=31536000
age: 59228
last-modified: Wed, 06 Nov 2024 17:30:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ungothoritator.com/tag.min.js

139.45.197.244

200 OK

27 kB

URL GET HTTP/2
ungothoritator.com/tag.min.js
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://sflix2.to/tv/
Certificate
IssuerLet's Encrypt
Subjectungothoritator.com
Fingerprint60:F1:75:AB:1B:03:78:7A:CA:F1:DC:F1:73:80:B2:85:4B:4B:2E:30
ValidityThu, 07 Nov 2024 06:59:36 GMT - Wed, 05 Feb 2025 06:59:35 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
27 kB (27257 bytes)
Hash
f344e6801f2eb1b26e92c62520ac977e
8bd565dd2963f3dfc531cfb4e6ed902523a80300
67a949f84d2b26ad8aef5cf85222b8796b75c3fa4813ae23c1147d4415506437

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: ungothoritator.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 14 Dec 2024 15:10:30 GMT
content-type: text/javascript; charset=utf-8
content-length: 27257
content-encoding: br
x-trace-id: c8edf22fc446328b806df78213cd5e21
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Fri, 13 Dec 2024 17:03:56 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

img.sflix2.to/xxrz/100x100/100/a2/33/a233d4c4a1426ca77ec1d34deec62f71/a233d4c4a1426ca77ec1d34deec62f71.png

172.67.190.198

200 OK

5.1 kB

URL GET HTTP/3
img.sflix2.to/xxrz/100x100/100/a2/33/a233d4c4a1426ca77ec1d34deec62f71/a233d4c4a1426ca77ec1d34deec62f71.png
IP
172.67.190.198:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subjectsflix2.to
Fingerprint77:CD:55:14:5C:71:D8:EA:08:31:FC:DF:13:14:9B:8C:BD:BD:11:C4
ValiditySun, 03 Nov 2024 04:14:19 GMT - Sat, 01 Feb 2025 04:14:18 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
5.1 kB (5100 bytes)
Hash
e01b45b734c49cda9fddbb5f80f1b208
09f4f304dc876b54e616483c4ee7763fdd9dd4dc
a6294579602684f7a0bff5999816edd5a670f1dbbe0f37d3f65c732f04fc5998

HTTP Headers

GET /xxrz/100x100/100/a2/33/a233d4c4a1426ca77ec1d34deec62f71/a233d4c4a1426ca77ec1d34deec62f71.png HTTP/1.1
Host: img.sflix2.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 14 Dec 2024 15:10:33 GMT
content-type: image/png
content-length: 5100
last-modified: Tue, 06 Apr 2021 03:56:09 GMT
vary: Accept-Encoding
etag: "606bdbd9-13ec"
x-cache: HIT
cache-control: max-age=14400
cf-cache-status: HIT
age: 1614
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NeNxWHb2PKuc1a4QvU8qKBiyMh6F%2BOG0a1VWQsrWC7HaqDZZk7qbtL2f%2FjhFMa0FUzEigRcW7yTVm7n9DuSLG%2BJ%2BnOnNKqvpvJIFQAXsNRHK3yQ1MXJFu8f6pnk%2FU%2FSL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8f1f1f131ae95693-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5562&min_rtt=989&rtt_var=5744&sent=95&recv=24&lost=0&retrans=0&sent_bytes=90592&recv_bytes=3255&delivery_rate=1400158&cwnd=36300&unsent_bytes=0&cid=58d6437913837b8a&ts=10778&x=1", cfExtPri, cfHdrFlush;dur=0

www.gstatic.com/recaptcha/releases/zIriijn3uj5Vpknvt_LnfNbF/recaptcha__en.js

142.250.74.35

200 OK

221 kB

URL GET HTTP/2
www.gstatic.com/recaptcha/releases/zIriijn3uj5Vpknvt_LnfNbF/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint5E:64:A9:4C:59:5A:8F:EC:57:D9:7F:C4:7E:70:AC:88:F2:67:F1:79
ValidityMon, 04 Nov 2024 08:38:50 GMT - Mon, 27 Jan 2025 08:38:49 GMT

File type
JavaScript source, ASCII text, with very long lines (654)
Size
221 kB (220882 bytes)
Hash
19ddac3be88eda2c8263c5d52fa7f6bd
c81720778f57c56244c72ce6ef402bb4de5f9619
b261530f05e272e18b5b5c86d860c4979c82b5b6c538e1643b3c94fc9ba76dd6

HTTP Headers

GET /recaptcha/releases/zIriijn3uj5Vpknvt_LnfNbF/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sflix2.to
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 220882
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 14 Dec 2024 03:59:30 GMT
expires: Sun, 14 Dec 2025 03:59:30 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 10 Dec 2024 23:05:10 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 40263
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

sflix2.to/tv/

172.67.190.198

200 OK

0 B

URL User Request GET HTTP/2
sflix2.to/tv/
IP
172.67.190.198:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectsflix2.to
Fingerprint77:CD:55:14:5C:71:D8:EA:08:31:FC:DF:13:14:9B:8C:BD:BD:11:C4
ValiditySun, 03 Nov 2024 04:14:19 GMT - Sat, 01 Feb 2025 04:14:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /tv/ HTTP/1.1
Host: sflix2.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 14 Dec 2024 15:10:37 GMT
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uAcydmGcgOmbjGy2rpjdgvJRLFYuUVYdJRnxUfPkBXXbHPdRBVArWSevfQhbQzJ1iRnbZVbTKcbhIL1BsjPdazA7xSLWfQ33j41pUlrF4JblleQkARZoAK3o%2BvM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8f1f1f022bd25693-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5818&min_rtt=989&rtt_var=4818&sent=100&recv=25&lost=0&retrans=0&sent_bytes=96514&recv_bytes=3301&delivery_rate=2163&cwnd=36300&unsent_bytes=0&cid=58d6437913837b8a&ts=15052&x=1", cfExtPri, cfHdrFlush;dur=0

sflix2.to/ajax/verify?domain=sflix2.to

172.67.190.198

200 OK

15 B

URL GET HTTP/3
sflix2.to/ajax/verify?domain=sflix2.to
IP
172.67.190.198:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subjectsflix2.to
Fingerprint77:CD:55:14:5C:71:D8:EA:08:31:FC:DF:13:14:9B:8C:BD:BD:11:C4
ValiditySun, 03 Nov 2024 04:14:19 GMT - Sat, 01 Feb 2025 04:14:18 GMT

File type
JSON text data
Size
15 B (15 bytes)
Hash
28ec1eee5f4049e3c4f2135069c1d2c8
3505519507ca1c2a089c46e100b80408ca278421
edc48cd3b0bc4fa7ba23aad40b8508a17d370ca38be174bae2a2f64634e65a2b

HTTP Headers

GET /ajax/verify?domain=sflix2.to HTTP/1.1
Host: sflix2.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 14 Dec 2024 15:10:37 GMT
content-type: application/json; charset=utf-8
content-length: 15
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
content-language: en
etag: W/"f-NQVRlQfKHCoInEbhALgECMonhCE"
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2PuExIj1iRRxU%2B%2BweUTgqff1QsLC18CTMv%2FDKid4fe2rQHQ9zkBvWF%2BmnD3IxALb3BP5OoiuwbZuhkT9DE3dOi%2FT2bFu7%2Bi9aPa0JVnwM0hFt9rA9cmQ6v%2BA8f4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8f1f1f029c575693-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5271&min_rtt=989&rtt_var=4707&sent=102&recv=26&lost=0&retrans=0&sent_bytes=98242&recv_bytes=3347&delivery_rate=34605&cwnd=36300&unsent_bytes=0&cid=58d6437913837b8a&ts=15169&x=1", cfExtPri, cfHdrFlush;dur=0

fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600;700&display=swap

216.58.207.234

200 OK

9.4 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600;700&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintD4:A3:E0:67:E1:FB:D8:0C:7B:58:AE:DA:81:4F:CA:47:9A:07:6E:5B
ValidityMon, 04 Nov 2024 08:38:51 GMT - Mon, 27 Jan 2025 08:38:50 GMT

File type
ASCII text, with very long lines (9660), with no line terminators
Size
9.4 kB (9435 bytes)
Hash
c67d1d7214ae9195e8f06975809eaeea
b2bbcccf2fa9b1d52600ae4d3d08078b2a68564b
d42d6ab8e2a81d7480c0e00c8d81492da889e20822a4a96f39900cb4dd8b2bc6

HTTP Headers

GET /css2?family=Montserrat:wght@300;400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 14 Dec 2024 15:10:30 GMT
date: Sat, 14 Dec 2024 15:10:30 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

sflix2.to/css/group_11/theme_4/style.min.css?v=0.1

172.67.190.198

200 OK

85 kB

URL GET HTTP/3
sflix2.to/css/group_11/theme_4/style.min.css?v=0.1
IP
172.67.190.198:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subjectsflix2.to
Fingerprint77:CD:55:14:5C:71:D8:EA:08:31:FC:DF:13:14:9B:8C:BD:BD:11:C4
ValiditySun, 03 Nov 2024 04:14:19 GMT - Sat, 01 Feb 2025 04:14:18 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
85 kB (85302 bytes)
Hash
2b7daeab6954659c918b0d1aa6f50f3b
80328573c44198340f752d78dd3b73ea0e2846c4
22708cecbe1c4ce90d38ef00e707b1db3c5b02067645f074fb98ba1d14086dd5

HTTP Headers

GET /css/group_11/theme_4/style.min.css?v=0.1 HTTP/1.1
Host: sflix2.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 14 Dec 2024 15:10:29 GMT
content-type: text/css; charset=UTF-8
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
cache-control: public, max-age=2592000
last-modified: Thu, 06 Jul 2023 17:26:40 GMT
etag: W/"14d36-1892c3de081"
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 182310
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sItzasY0IG7nC4XopnEQ3mRkQd7zf8EkHgHbiaJae2ngnUEBEs70x5%2FHh7w2cNiuZvVbNguE02GmcNxlUu7rWfITtVRfV%2FbkeufD8g5XJauNQWEMU2zyo1FSaiM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8f1f1efd4d235693-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3005&min_rtt=989&rtt_var=2408&sent=39&recv=16&lost=0&retrans=0&sent_bytes=28455&recv_bytes=1794&delivery_rate=2936026&cwnd=12000&unsent_bytes=0&cid=58d6437913837b8a&ts=7284&x=1", cfExtPri, cfHdrFlush;dur=0

www.google.com/recaptcha/api.js?render=6LfY9-4nAAAAAF1XAEEvsum_JdIVnZ-c1VnK2Qz3

142.250.74.164

200 OK

904 B

URL GET HTTP/2
www.google.com/recaptcha/api.js?render=6LfY9-4nAAAAAF1XAEEvsum_JdIVnZ-c1VnK2Qz3
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subjectwww.google.com
FingerprintC1:EF:1D:9F:32:BB:31:2D:F3:08:D9:D6:97:9C:21:A1:A2:67:F9:C5
ValidityMon, 04 Nov 2024 08:39:37 GMT - Mon, 27 Jan 2025 08:39:36 GMT

File type
JavaScript source, ASCII text, with very long lines (904), with no line terminators
Size
904 B (904 bytes)
Hash
c2d845f226269b375176ec9fb0137061
78e11e8afc01e5dccf8d18785d3d2be55d10bcbd
a086daf4926a6ff35701e362916480b1cf11fb8a8a38b89790d8d750d606e2fb

HTTP Headers

GET /recaptcha/api.js?render=6LfY9-4nAAAAAF1XAEEvsum_JdIVnZ-c1VnK2Qz3 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Sat, 14 Dec 2024 15:10:30 GMT
date: Sat, 14 Dec 2024 15:10:30 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

sflix2.to/ajax/login-state

172.67.190.198

200 OK

216 B

URL GET HTTP/3
sflix2.to/ajax/login-state
IP
172.67.190.198:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subjectsflix2.to
Fingerprint77:CD:55:14:5C:71:D8:EA:08:31:FC:DF:13:14:9B:8C:BD:BD:11:C4
ValiditySun, 03 Nov 2024 04:14:19 GMT - Sat, 01 Feb 2025 04:14:18 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
216 B (216 bytes)
Hash
9fd679a699e9074e78d58b51f56f7deb
050be0a5fa83732f1ebc5aa74dd21fdce987c051
513d9c141bd7823c6500bf40938ae64a47d373cbe1b22ca834827676ca20543f

HTTP Headers

GET /ajax/login-state HTTP/1.1
Host: sflix2.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 14 Dec 2024 15:10:37 GMT
content-type: application/json; charset=utf-8
x-dns-prefetch-control: on
expect-ct: max-age=0
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff, nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0, 1; mode=block
content-language: en
etag: W/"d8-R6JFTYCzz9JLwYU4VIqVMGUySyY"
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YXNxqeZQRcH9kR6PZrumHgXvzFOnkwjo30Uizhwszs9KvEJ%2FBIm4isNzyYLoE7ECC4ywQJ8y%2BdjR0rQhcdcOHMybY7kBqmnve3fvxCypxrv7tJ4DWNIG9dTxzWw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8f1f1f029c525693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5271&min_rtt=989&rtt_var=4707&sent=101&recv=26&lost=0&retrans=0&sent_bytes=97256&recv_bytes=3347&delivery_rate=34605&cwnd=36300&unsent_bytes=0&cid=58d6437913837b8a&ts=15149&x=1", cfExtPri, cfHdrFlush;dur=0

stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css

104.18.11.207

200 OK

160 kB

URL GET HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sflix2.to/tv/
Certificate
IssuerGoogle Trust Services
Subjectbootstrapcdn.com
Fingerprint4C:46:68:E4:35:94:CF:F1:17:E4:0B:28:EF:F8:44:64:A1:01:5A:ED
ValidityMon, 18 Nov 2024 00:43:34 GMT - Sun, 16 Feb 2025 00:43:33 GMT

File type
ASCII text, with very long lines (65324)
Size
160 kB (159515 bytes)
Hash
7cc40c199d128af6b01e74a28c5900b0
d305110fb79113a961394b433d851a3410342b8c
2ff5b959fa9f6b4b1d04d20a37d706e90039176ab1e2a202994d9580baeebfd6

HTTP Headers

GET /bootstrap/4.4.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 14 Dec 2024 15:10:30 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"7cc40c199d128af6b01e74a28c5900b0"
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-cachedat: 03/18/2024 12:50:34
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 874
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: 57d1ffc05eca43339982954fa1e90f00
cdn-cache: HIT
cf-cache-status: HIT
age: 1670767
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8f1f1efdbba95694-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ungothoritator.com/5/6534241/?oo=1&aab=1

139.45.197.244

200 OK

4.0 kB

URL GET HTTP/2
ungothoritator.com/5/6534241/?oo=1&aab=1
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://sflix2.to/tv/
Certificate
IssuerLet's Encrypt
Subjectungothoritator.com
Fingerprint60:F1:75:AB:1B:03:78:7A:CA:F1:DC:F1:73:80:B2:85:4B:4B:2E:30
ValidityThu, 07 Nov 2024 06:59:36 GMT - Wed, 05 Feb 2025 06:59:35 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (3958), with no line terminators
Size
4.0 kB (3954 bytes)
Hash
99b10d5e0b3155e0885a8d16f153e59b
9c9165f27872dc6d3d6acdbaf29a045de9812230
669d34e99c0757b89b39da91a96924a29d7b6f9bb8e4b1251968db095c4c17a6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/6534241/?oo=1&aab=1 HTTP/1.1
Host: ungothoritator.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sflix2.to
DNT: 1
Connection: keep-alive
Referer: https://sflix2.to/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 14 Dec 2024 15:10:30 GMT
content-type: application/json
x-trace-id: e371eff455c1f3425114984a143212fb
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://sflix2.to
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=0081322c2ee44f01e2f84a702b8656d0; expires=Sun, 14 Dec 2025 15:10:30 GMT; path=/; secure; SameSite=None
oaidts=1734189030; expires=Sun, 14 Dec 2025 15:10:30 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by