Report - 9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/

Report Overview

Submitted URL
9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
IP
104.21.35.237
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-02 14:23:34
Access
public
Website Title
(1) New Message!
Final URL
9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
20

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
pt-static5.ptwmstcnt.com	unknown	2022-09-27	2022-09-27	2024-03-19	2.5 kB	67 kB	93.93.51.200
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21	2024-05-01	338 B	942 B	143.204.53.97
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-05-01	407 B	29 kB	188.114.97.1
capaciousdrewreligion.com	unknown	2023-11-07	2023-11-27	2024-05-02	411 B	327 B	172.240.108.68
gotoadexchange.com	unknown	2023-07-27	2023-07-27	2024-04-19	2.3 kB	1.1 kB	104.21.62.156
fs1.extraimage.org	685927	2020-05-22	2020-06-24	2024-03-12	2.1 kB	2.7 MB	104.21.233.195
pubtrky.com	unknown	2023-11-21	2023-11-21	2024-04-30	468 B	558 B	104.21.8.108
honeymoondisappointed.com	unknown	unknown	No data	No data	7.5 kB	13 kB	192.243.61.225
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15	2024-05-01	2.2 kB	189 kB	188.114.96.1
galleryn2.vcmdiawe.com	unknown	2023-05-02	2023-05-04	2024-04-30	579 B	312 kB	93.93.51.190
m.media-amazon.com	580	2016-08-18	2018-06-22	2024-05-02	2.1 kB	877 kB	54.230.83.223
cdn.barscreative1.com	25648	2021-09-08	2021-09-16	2024-05-01	484 B	3.4 kB	45.133.44.3
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-05-01	850 B	838 B	18.185.9.67
t.dtscout.com	11951	2013-11-01	2017-01-30	2024-04-30	995 B	6.4 kB	141.101.120.11
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-02	882 B	13 kB	142.250.74.106
agrarianbrowse.com	unknown	unknown	No data	No data	484 B	469 B	172.240.108.84
galleryn0.vcmdiawe.com	unknown	2023-05-02	2023-05-04	2024-04-30	579 B	263 kB	93.93.51.190
pt-static1.ptwmstcnt.com	unknown	2022-09-27	2022-09-27	2024-04-19	443 B	403 B	93.93.51.200
i.ibb.co	13485	2010-07-20	2018-11-25	2024-05-01	505 B	1.2 MB	162.19.58.161
wideaplentyinsurance.com	unknown	2024-01-15	2024-01-15	2024-02-28	880 B	47 kB	172.240.253.132
pt.potawe.com	unknown	2020-08-18	2020-08-19	2024-04-18	4.1 kB	28 kB	93.93.51.189
pt-static3.ptwmstcnt.com	unknown	2022-09-27	2022-09-27	2024-04-30	880 B	28 kB	93.93.51.200
unseenreport.com	unknown	2022-03-30	2022-03-30	2024-05-02	1.5 kB	846 B	192.243.59.20
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12	2024-05-01	442 B	15 kB	45.133.44.9
9xmovie.golf	unknown	unknown	No data	No data	3.6 kB	1.7 MB	104.21.35.237
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-02	2.6 kB	196 kB	216.58.207.227
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-01	1.7 kB	359 kB	142.250.74.72
acscdn.com	93608	2020-05-05	2020-05-06	2024-05-01	1.2 kB	255 kB	172.67.165.20
pt-static4.ptwmstcnt.com	unknown	2022-09-27	2022-09-27	2024-04-19	872 B	100 kB	93.93.51.200
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-05-02	428 B	35 kB	142.250.74.138
youradexchange.com	273384	2012-11-09	2013-02-04	2024-04-30	2.1 kB	5.6 kB	104.21.91.188
waust.at	38137	unknown	2016-01-28	2024-05-02	386 B	30 kB	104.26.4.7

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-02	medium	honeymoondisappointed.com	Sinkholed
2024-05-02	medium	honeymoondisappointed.com	Sinkholed
2024-05-02	medium	honeymoondisappointed.com	Sinkholed
2024-05-02	medium	honeymoondisappointed.com	Sinkholed
2024-05-02	medium	honeymoondisappointed.com	Sinkholed
2024-05-02	medium	honeymoondisappointed.com	Sinkholed
2024-05-02	medium	honeymoondisappointed.com	Sinkholed
2024-05-02	medium	unseenreport.com	Sinkholed
2024-05-02	medium	unseenreport.com	Sinkholed
2024-05-02	medium	honeymoondisappointed.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (40)

	URL	Size	First Seen	Last Seen
	waust.at/t.js	29 kB	2023-03-07	2024-05-16
Pretty URL waust.at/t.js IP 104.26.4.7 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:55 Last Seen2024-05-16 01:38:27 Times Seen612 Hash 8fe8954e18b3eafdb2dcf03b218e88f3 17bd6b26816b4c9c7fb9b7552ccdca95c2443c9a ff4c07f1e5cbcfdcfeabb37e8c1dc21d3edc5e3e20edd2d3da16ab5aa22bc600 Loading...

	pt-static5.ptwmstcnt.com/npe/_common/script/incognito/di.min-v543991.js	3.4 kB	2023-03-13	2024-05-16
Pretty URL pt-static5.ptwmstcnt.com/npe/_common/script/incognito/di.min-v543991.js IP 93.93.51.200 ASN #34655 JWE S.a r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:24:56 Last Seen2024-05-16 23:02:38 Times Seen1253 Hash 12cc9fb78b56fb696198830bc9055d69 fc873e0ed9543c0a9f2cb9b9446f621625a4b588 7d71a852775aba4b8dc1944e102cb58b344c544fe55e69da4caa73e8ccc1d2cb Loading...

	www.googletagmanager.com/gtm.js?id=GTM-WXTGF28	256 kB	2024-05-02	2024-05-02
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-WXTGF28 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 16:23:44 Last Seen2024-05-02 16:23:45 Times Seen2 Hash 6c1e01b58fcd4ee1c6968dde27336871 930fe7a0f0d63181b2c8fd18263c15c9b4e8a8bb 30d86fae4cdf30f3a46d185d30bdfc25b524f9a0c5e2c9669b90ab9f817bbefb Loading...

	wideaplentyinsurance.com/8d/63/40/8d6340b87f7318c06e5be9e94fae8e28.js	82 kB	2024-05-02	2024-05-02
Pretty URL wideaplentyinsurance.com/8d/63/40/8d6340b87f7318c06e5be9e94fae8e28.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 16:23:44 Last Seen2024-05-02 16:23:45 Times Seen2 Hash b3316845445e42d96f091228fd87c785 ad329328feef4491312ababaf98d75debb38d809 3e7598ee104a51dc7ed294c38c6699e4cc376c4fa36c7e1bbe951fd885cf3891 Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2024-03-29	2024-05-17
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 13:13:34 Last Seen2024-05-17 12:12:29 Times Seen3546 Hash f4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716 Loading...

	t.dtscout.com/i/?l=https%3A%2F%2F9xmovie.golf%2Fdaasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb%2F&j=	2.1 kB	2023-03-07	2024-05-17
Pretty URL t.dtscout.com/i/?l=https%3A%2F%2F9xmovie.golf%2Fdaasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb%2F&j= IP 141.101.120.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-05-17 06:05:33 Times Seen4592 Hash 51bd741af3fcc4984d1a753eebfa1141 534664acf69cbbb5c9b97c96b63dd37bdc580da2 3e9c8e5dcf3cbff9e1b7211551a31fe388f1b8e607fd78a0a34855be65da721c Loading...

	pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98	38 B	2023-03-07	2024-05-16
Pretty URL pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98 IP 93.93.51.189 ASN #34655 JWE S.a r.l. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:21 Last Seen2024-05-16 23:02:38 Times Seen1251 Hash 9a68d1de621cc55ec20c5baf4c3067ec 47c0540512403f26b3ead431eb04f651b33e0f2f ef3cf320924ae152bb5c997bd2e694ae638c18ca6b07f3461e1e4edfdc89640d Loading...

	pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20	253 B	2023-03-07	2024-05-16
Pretty URL pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20 IP 93.93.51.189 ASN #34655 JWE S.a r.l. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:24 Last Seen2024-05-16 23:02:38 Times Seen1241 Hash 72ab34dd8b5a983259e40247f9090692 f6f5d277c22bcfa75537f12f11c74c930dcc88b8 9f4feff2d925ea3f1defa607391b4a3cd992820fd8c04d8874588f2779246155 Loading...

	pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20	356 B	2023-03-07	2024-05-16
Pretty URL pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20 IP 93.93.51.189 ASN #34655 JWE S.a r.l. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:24 Last Seen2024-05-16 15:08:22 Times Seen661 Hash 9a94e53683fdba77f974428441fa8c36 1a44aa9e448d56ddff473ef828cb2ebeba8a615e 053b95884b05ec276d331dc198aa22518b32ce35d8a15f6b4e2c48fa31f77081 Loading...

	9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/	3.3 kB	2024-05-02	2024-05-02
Pretty URL 9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/ IP 104.21.35.237 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-02 16:23:44 Last Seen2024-05-02 16:23:44 Times Seen1 Hash adcbeca45dfd53c75f67d9437e8541e2 c072ff14181c2021e0792200d5dae193dd416b91 1ea480ab382a30651b4f25f2431da13d71ba2b9a0ee2d276934bf8ea61cbbbdf Loading...

	www.googletagmanager.com/gtm.js?id=GTM-WXTGF28	256 kB	2024-05-02	2024-05-02
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-WXTGF28 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 16:23:44 Last Seen2024-05-02 16:23:45 Times Seen2 Hash e46bc746d59c17c30f30636d61e8c711 db858c0f7d89603a7ce3f564392cd950e676f858 7d39cde514fb8a813606049f1767dee4aeaa3be0a121e2c57cc386b0de231abf Loading...

	pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20	6.0 kB	2024-04-28	2024-05-16
Pretty URL pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20 IP 93.93.51.189 ASN #34655 JWE S.a r.l. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-28 04:11:37 Last Seen2024-05-16 15:08:22 Times Seen36 Hash cd04a5238b7d5efb645071906bcecef6 f1615b0e26219b6f49467e4aca31bc0ba71986af 95762d9f80dd183598b0d077ef3ed0948d04cc88e1fa8b3872ad49b98c400930 Loading...

	pt-static3.ptwmstcnt.com/npe/ba/avb/script/avb-font-based-v543991.js	9.2 kB	2023-03-07	2024-05-16
Pretty URL pt-static3.ptwmstcnt.com/npe/ba/avb/script/avb-font-based-v543991.js IP 93.93.51.200 ASN #34655 JWE S.a r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:26:38 Last Seen2024-05-16 15:08:22 Times Seen75 Hash bbb2ce571706f1c6bb3ff24442b9072e 3dceb3a749bc2874c179044d5050d1ecfbb676c4 09a22f473211091ad7a33ab85ac62e44b5b0ac9a8acfbb0443e84c3b25e609ed Loading...

	t.dtscout.com/pv/?_a=v&_h=9xmovie.golf&_ss=40pvf6xpl0&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=6y99&_cb=_dtspv.c	51 B	2024-05-02	2024-05-02
Pretty URL t.dtscout.com/pv/?_a=v&_h=9xmovie.golf&_ss=40pvf6xpl0&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=6y99&_cb=_dtspv.c IP 141.101.120.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 16:23:44 Last Seen2024-05-02 16:23:44 Times Seen1 Hash fbf257a883fd6bdf75d795a3d5b0846a f228ffdc247852c519d7b534a50b73c069c56d68 b0c0a139bd4561d048dafb25c5d4407db0ef9c59fde708bef439bad0fc80dd02 Loading...

	cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js	90 kB	2023-03-07	2024-05-14
Pretty URL cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:04:00 Last Seen2024-05-14 16:14:33 Times Seen4169 Hash 561acb3e541133bbdd2c0c19f8ee35a1 ffd1353cf3f77d25f801c84d8208613eb0d3d548 9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc Loading...

	acscdn.com/script/ut.js?cb=1714659789812	63 kB	2024-04-25	2024-05-17
Pretty URL acscdn.com/script/ut.js?cb=1714659789812 IP 172.67.165.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 17:58:25 Last Seen2024-05-17 10:37:32 Times Seen286 Hash bc481e345c04b4534e0a4e54a0f2c1c6 2be428035dd37b2722891c200f35449c5893df33 04d8cc0aacc3f172f638e608d3f08e8457d849290ae553090cb951d4b3f1b97b Loading...

	pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20	218 B	2024-04-18	2024-05-16
Pretty URL pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20 IP 93.93.51.189 ASN #34655 JWE S.a r.l. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 10:15:34 Last Seen2024-05-16 15:08:22 Times Seen36 Hash 602508a4e476f049380fe6c191a1eac3 5105d7e6964f50b0ed4be7adfee58f4fc83efa84 9a2000a63f94ceb1c6e1637396b6cf43fbd811ab3408b14e50dfa5afee72e3de Loading...

	pt-static4.ptwmstcnt.com/npe/ba/avb/script/avb-main-v543991.js	49 kB	2024-01-11	2024-05-16
Pretty URL pt-static4.ptwmstcnt.com/npe/ba/avb/script/avb-main-v543991.js IP 93.93.51.200 ASN #34655 JWE S.a r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-11 04:52:59 Last Seen2024-05-16 15:08:22 Times Seen35 Hash b07d944cd2a41bccf569834184daabbf 3429d47f509c29125909b27d1a81a0058813fbb6 fd5e4ed2ab1dded0b9e2170eead90bc9c366cb67f5b02a6c2fe6aaa5d9acf7c9 Loading...

	9xmovie.golf/wp-includes/js/wp-emoji-release.min.js?ver=8c580885753489e0854bd8b07dc2c93f	19 kB	2024-03-13	2024-05-17
Pretty URL 9xmovie.golf/wp-includes/js/wp-emoji-release.min.js?ver=8c580885753489e0854bd8b07dc2c93f IP 104.21.35.237 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-13 16:02:37 Last Seen2024-05-17 12:56:31 Times Seen4873 Hash b976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3 Loading...

	pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20	109 B	2023-03-07	2024-05-16
Pretty URL pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20 IP 93.93.51.189 ASN #34655 JWE S.a r.l. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:22 Last Seen2024-05-16 23:02:38 Times Seen1190 Hash 6c9b74157e4685c28af76039da9d83a3 0dce6b9242a8b9a51f0dc61e9a5fa3a3a763185a 41c4ce87e0d4fb5838464ed399c37c9f7b4b8747fa486949b83e52fe69d6c423 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-17
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-17 13:08:10 Times Seen349108 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	9xmovie.golf/wp-content/themes/9xmovie/script/script.min.js	38 kB	2023-03-07	2024-05-09
Pretty URL 9xmovie.golf/wp-content/themes/9xmovie/script/script.min.js IP 104.21.35.237 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:21 Last Seen2024-05-09 00:10:51 Times Seen282 Hash e1bdbeb07f4e2a7fa6cfe5e6b89fc36a a52159f3292da08fe2769365c6f735b307df0f2c bd98ca66f57803c3c6d80762727e5ae866f26a95b88de9ab1fff17657de3345a Loading...

	acscdn.com/script/aclib.js	126 kB	2024-04-29	2024-05-15
Pretty URL acscdn.com/script/aclib.js IP 172.67.165.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-29 17:52:36 Last Seen2024-05-15 10:52:57 Times Seen152 Hash 4c2179a619c355d4c2eca1a64f6f3f07 b274e397844067fef7f1ee62031cf1c03d7d0343 23847115b160f47704649f2f6bb3347e31b53c12089d504d98303c18856bc58a Loading...

	wideaplentyinsurance.com/6a/5a/29/6a5a29f7d5d384f64b81c0126464bfd7.js	44 kB	2024-05-02	2024-05-02
Pretty URL wideaplentyinsurance.com/6a/5a/29/6a5a29f7d5d384f64b81c0126464bfd7.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 16:23:44 Last Seen2024-05-02 16:23:45 Times Seen2 Hash e852e7136ac4a6628efdaac2a6a113f4 2ce14adffa93cdfecbf28b0d18f13ae5892c385b a5197a042c0e5f1deeb2d30d80bce635488f0e92209949b48dc539f4d7b92e43 Loading...

	pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20	802 B	2024-05-02	2024-05-02
Pretty URL pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20 IP 93.93.51.189 ASN #34655 JWE S.a r.l. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-02 16:23:44 Last Seen2024-05-02 16:23:44 Times Seen1 Hash a66b9d5d86dcf00c283953bf301b31e5 722d17fe1cea9442936aee46a7191da5aa6ad6b2 9567b753023d5d2ddc2f516783147ace633dc653c53f65b2d3f13f6af210d352 Loading...

	9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/sandbox%20eval%20code	147 B	2023-04-11	2024-05-17
Pretty URL 9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-17 13:08:08 Times Seen349619 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/	74 B	2024-05-02	2024-05-02
Pretty URL 9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/ IP 104.21.35.237 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-02 16:23:44 Last Seen2024-05-02 16:23:44 Times Seen1 Hash b4e1c17cd5021d64aeb2e972a529720f 3361a4e4dda99fe8f00732e2034607008386937e d530830a7bbb40d544bf290099e3e132bac47fa8c606195dd60093217bc79c19 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js	97 kB	2023-03-07	2024-05-17
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js IP 142.250.74.138 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-17 12:46:27 Times Seen119736 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

	pt-static1.ptwmstcnt.com/npe/_common/script/adblock/ad_left_-v543991.js	21 B	2023-03-07	2024-05-16
Pretty URL pt-static1.ptwmstcnt.com/npe/_common/script/adblock/ad_left_-v543991.js IP 93.93.51.200 ASN #34655 JWE S.a r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:22 Last Seen2024-05-16 23:02:39 Times Seen2786 Hash 01c6e7ecb819ef28b0c9b962513a1596 1a49f493db7b91ed34a7040d36732352b9a5dc39 e97a9988dce8067f81f57557b349dd481e0335e75175179b6b01322be2ff13a5 Loading...

	capaciousdrewreligion.com/advertisers.js	0 B	2023-03-07	2024-05-17
Pretty URL capaciousdrewreligion.com/advertisers.js IP 172.240.108.68 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-17 13:13:10 Times Seen37740334 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	564 B	2024-05-02	2024-05-02
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 16:23:44 Last Seen2024-05-02 16:23:44 Times Seen1 Hash 48ec29693967f0f1ab73910acc364ed8 136ec4c7770c079180e2c39ff764510ff3952823 1013b503724a162f16ef367a6a740685eda415faf1dd48649849893903dee595 Loading...

	acscdn.com/script/banner.js	63 kB	2024-04-30	2024-05-15
Pretty URL acscdn.com/script/banner.js IP 172.67.165.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-30 08:25:45 Last Seen2024-05-15 07:02:35 Times Seen26 Hash 65deacd4c85e376123c1a1286c53b221 a00fdb9ba284308a9bb7a8f22a5297a6258700e0 06bdb883933f23989e4e2e71f787699fb9112c36349d503568aff6cd89c52a80 Loading...

	www.googletagmanager.com/gtag/js?id=G-4ZZ9RSZM4N&l=dataLayer&cx=c	270 kB	2024-05-02	2024-05-02
Pretty URL www.googletagmanager.com/gtag/js?id=G-4ZZ9RSZM4N&l=dataLayer&cx=c IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 16:23:44 Last Seen2024-05-02 16:23:45 Times Seen2 Hash 4ebbc7cfeae20ce8487d9e86ba575159 a9267fed7451755d133b11f78300017e873675b8 e87434759c2fb2102e4ba7a0d38c80c8d3bf6e708f4c16afdec776342cad47e4 Loading...

	pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20	105 B	2023-03-07	2024-05-16
Pretty URL pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20 IP 93.93.51.189 ASN #34655 JWE S.a r.l. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 23:32:58 Last Seen2024-05-16 15:08:23 Times Seen37 Hash 7ea58dd6216e98fbfcbb2681aecd1c1d 4887b69a8d5381bbbe43a7ba979bd2d533d75f98 1d9d08b69253506fbee222a946b77d2de2d623cbeb2cd153e6cc3ba52e3794c6 Loading...

	www.googletagmanager.com/gtag/js?id=G-4ZZ9RSZM4N&l=dataLayer&cx=c	270 kB	2024-05-02	2024-05-02
Pretty URL www.googletagmanager.com/gtag/js?id=G-4ZZ9RSZM4N&l=dataLayer&cx=c IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 16:23:45 Last Seen2024-05-02 16:23:45 Times Seen2 Hash 9f676cc3c9aa6932621c5b07b8484ea9 ff499f7df1afcfd48d8709e346132a4b805df0f1 0edf249e91ada5cc700e27a29718a04acc4e952d2a169feae32d03afc2c85e19 Loading...

	9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/	58 B	2024-05-02	2024-05-02
Pretty URL 9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/ IP 104.21.35.237 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-02 16:23:45 Last Seen2024-05-02 16:23:45 Times Seen1 Hash dc205f9994a52593561d107163ef59c6 7e46ebc2e72f8defb1111ae73d33cacd9c6162da 678912cd22554a8f194ddff5c5c73c0607b28e836d7e16a6a9183a77641e8b8b Loading...

	pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98	808 B	2024-05-02	2024-05-02
Pretty URL pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98 IP 93.93.51.189 ASN #34655 JWE S.a r.l. Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-02 16:23:45 Last Seen2024-05-02 16:23:45 Times Seen1 Hash 463f54a803a2de747fb04a23134bad02 f7da719eea08679829f88e36db54401e1e651783 8c0fd02349aed0dc3ce1c2a61ed76f1942ae982336c6efc571d7d38ddcf6c0b8 Loading...

	9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/	67 B	2024-05-02	2024-05-02
Pretty URL 9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/ IP 104.21.35.237 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-02 16:23:45 Last Seen2024-05-02 16:23:45 Times Seen1 Hash d9391e48097a1580e6ddad30599b6f29 f69694591aa591f985601d2c9f3fc5e81816e854 b832dbe60fa847fc45789e358452a257e4e6ed9898345233efffec7b92c4ca29 Loading...

		Size	First Seen	Last Seen
	#1 Eval - b554a59dd8ae515d0f29d57f8f98afd3	84 B	2023-03-07	2024-05-16
Pretty Observations First Seen2023-03-07 01:03:24 Last Seen2024-05-16 15:08:23 Times Seen374 Hash b554a59dd8ae515d0f29d57f8f98afd3 f0f211bf45eb58eb6131c4594d68d6e75a2fd0ec 44379bf89e3d499c6e5084c2762e92070d823eb0c3b4f20d8fa9adbafe954ba9 Loading...

	#2 Eval - e4467eeb56b3480674a82dda765892e1	131 B	2023-06-28	2024-05-14
Pretty Observations First Seen2023-06-28 20:05:14 Last Seen2024-05-14 15:45:33 Times Seen226 Hash e4467eeb56b3480674a82dda765892e1 5f4316883ffdd2ea2899174fabb09f37e2903dfd d82359c589e8391b90dadda4aebbb91ab3fafcf7e623b68783f977e9e1494c8d Loading...

HTTP Transactions (81)

URL IP Response Size

9xmovie.golf/wp-content/uploads/logo.png

104.21.35.237

200 OK

4.9 kB

URL GET HTTP/3
9xmovie.golf/wp-content/uploads/logo.png
IP
104.21.35.237:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subject9xmovie.golf
Fingerprint56:B9:28:B8:A2:F3:0E:70:B3:DE:C6:4F:FA:88:25:BE:08:B2:2F:1E
ValidityTue, 09 Apr 2024 10:07:59 GMT - Mon, 08 Jul 2024 10:07:58 GMT

File type
PNG image data, 240 x 50, 8-bit/color RGBA, non-interlaced
Size
4.9 kB (4940 bytes)
Hash
3797aa0dc2667bb9d1aec1d9eaadc011
a05d86565c6e65d5261dfb1cb39670b3ea2b9261
259917a97747d67db732990826f30f30e018568cc4b367137469ae0ed1252c05

HTTP Headers

GET /wp-content/uploads/logo.png HTTP/1.1
Host: 9xmovie.golf
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 02 May 2024 14:23:06 GMT
content-type: image/png
content-length: 4940
cache-control: public, max-age=43200
expires: Wed, 01 May 2024 20:05:08 GMT
etag: "134c-65ff0af7-1fa2c32;;;"
last-modified: Sat, 23 Mar 2024 17:01:43 GMT
x-served-by: 9xmovie.golf
cf-cache-status: HIT
age: 2213
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QAJtSG4TaehPgDUkk5EKmGaV7Vlq46dFH8y6q%2Fu0li9KFqVfJUS6h1okTJe%2BQaWMSsDepOF2bVcrMUkZ6xUyeawV7IgwG%2Bd%2BT3lq03P6k8aqp7IDot0zLANewa4eu%2BE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8aad39e710b59-OSL
alt-svc: h3=":443"; ma=86400

m.media-amazon.com/images/M/MV5BYWRkZjJiODEtM2IwZi00ZjM1LWEyOTUtOThjMDk3YThjZDUzXkEyXkFqcGdeQXVyMTUzMTg2ODkz._V1_FMjpg_UX1000_.jpg

54.230.83.223

200 OK

246 kB

URL GET HTTP/2
m.media-amazon.com/images/M/MV5BYWRkZjJiODEtM2IwZi00ZjM1LWEyOTUtOThjMDk3YThjZDUzXkEyXkFqcGdeQXVyMTUzMTg2ODkz._V1_FMjpg_UX1000_.jpg
IP
54.230.83.223:443
ASN
#16509 AMAZON-02

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerDigiCert Inc
Subjectimages-na.ssl-images-amazon.com
Fingerprint8A:C2:7D:85:C5:D2:68:79:93:AF:D2:55:06:26:64:6F:36:95:1A:6E
ValidityFri, 05 Jan 2024 00:00:00 GMT - Sun, 08 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x1481, components 3
Size
246 kB (246362 bytes)
Hash
16794d69387a0c763f91216b7ca65882
79c06ed542fa75a1127e49cf76e7c8e91b839428
3db37afe8692d96313897aa5735c8355eb2d68f96ba18bd5aafd31f132ed5982

HTTP Headers

GET /images/M/MV5BYWRkZjJiODEtM2IwZi00ZjM1LWEyOTUtOThjMDk3YThjZDUzXkEyXkFqcGdeQXVyMTUzMTg2ODkz._V1_FMjpg_UX1000_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 246362
server: Server
x-amz-ir-id: 0323c434-7f8f-464f-8d1d-04ee9aebdf55
date: Wed, 06 Mar 2024 15:59:27 GMT
cache-control: max-age=630720000,public
last-modified: Wed, 06 Mar 2024 15:53:53 GMT
access-control-allow-origin: *
edge-cache-tag: x-cache-558,/images/M/MV5BYWRkZjJiODEtM2IwZi00ZjM1LWEyOTUtOThjMDk3YThjZDUzXkEyXkFqcGdeQXVyMTUzMTg2ODkz
expires: Tue, 01 Mar 2044 15:59:27 GMT
surrogate-key: x-cache-558 /images/M/MV5BYWRkZjJiODEtM2IwZi00ZjM1LWEyOTUtOThjMDk3YThjZDUzXkEyXkFqcGdeQXVyMTUzMTg2ODkz
x-nginx-cache-status: HIT
accept-ranges: bytes
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
alt-svc: h3=":443"; ma=86400
age: 4918905
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pJ1soDGdABWAHVNkOTgh-5KDvBHU3-t5yNat3S6Lz0LRhyVpC2SUEw==
X-Firefox-Spdy: h2

m.media-amazon.com/images/M/MV5BNDQ1OGNjNGUtOTJjMy00NTlhLWJjNTAtMmJlY2U3OGRlMjAxXkEyXkFqcGdeQXVyMTUyMzg5NzM2._V1_FMjpg_UX1000_.jpg

54.230.83.223

200 OK

166 kB

URL GET HTTP/2
m.media-amazon.com/images/M/MV5BNDQ1OGNjNGUtOTJjMy00NTlhLWJjNTAtMmJlY2U3OGRlMjAxXkEyXkFqcGdeQXVyMTUyMzg5NzM2._V1_FMjpg_UX1000_.jpg
IP
54.230.83.223:443
ASN
#16509 AMAZON-02

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerDigiCert Inc
Subjectimages-na.ssl-images-amazon.com
Fingerprint8A:C2:7D:85:C5:D2:68:79:93:AF:D2:55:06:26:64:6F:36:95:1A:6E
ValidityFri, 05 Jan 2024 00:00:00 GMT - Sun, 08 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x1400, components 3
Size
166 kB (165545 bytes)
Hash
d967fc6b21d3c352b526cde4b8e69f2d
fe3083096054c7319e5bd815b6379534e59025e8
297e81a5ae7f040bbc0ca84c6dcea1dcecc37e53938f77fd5d05c9ad058bfa86

HTTP Headers

GET /images/M/MV5BNDQ1OGNjNGUtOTJjMy00NTlhLWJjNTAtMmJlY2U3OGRlMjAxXkEyXkFqcGdeQXVyMTUyMzg5NzM2._V1_FMjpg_UX1000_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 165545
server: Server
x-amz-ir-id: 0eab97c7-64ad-46ba-91c6-58e9993a82fd
date: Wed, 24 Apr 2024 11:19:49 GMT
cache-control: max-age=630720000,public
last-modified: Wed, 24 Apr 2024 09:54:21 GMT
access-control-allow-origin: *
edge-cache-tag: x-cache-925,/images/M/MV5BNDQ1OGNjNGUtOTJjMy00NTlhLWJjNTAtMmJlY2U3OGRlMjAxXkEyXkFqcGdeQXVyMTUyMzg5NzM2
expires: Tue, 19 Apr 2044 11:19:49 GMT
surrogate-key: x-cache-925 /images/M/MV5BNDQ1OGNjNGUtOTJjMy00NTlhLWJjNTAtMmJlY2U3OGRlMjAxXkEyXkFqcGdeQXVyMTUyMzg5NzM2
x-nginx-cache-status: MISS
accept-ranges: bytes
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
alt-svc: h3=":443"; ma=86400
age: 702197
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 290NCl-NcKyChrOlc5Awu2sVfS0BIZbTyWl3nOza8i2nruxYvF6Auw==
X-Firefox-Spdy: h2

m.media-amazon.com/images/M/MV5BNDQxZTUyOWEtYmM0OS00YjFiLTk4OGUtYzc1ZjRhNzY5MDgzXkEyXkFqcGdeQXVyMTU4MzQzNDkx._V1_FMjpg_UX1000_.jpg

54.230.83.223

200 OK

183 kB

URL GET HTTP/2
m.media-amazon.com/images/M/MV5BNDQxZTUyOWEtYmM0OS00YjFiLTk4OGUtYzc1ZjRhNzY5MDgzXkEyXkFqcGdeQXVyMTU4MzQzNDkx._V1_FMjpg_UX1000_.jpg
IP
54.230.83.223:443
ASN
#16509 AMAZON-02

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerDigiCert Inc
Subjectimages-na.ssl-images-amazon.com
Fingerprint8A:C2:7D:85:C5:D2:68:79:93:AF:D2:55:06:26:64:6F:36:95:1A:6E
ValidityFri, 05 Jan 2024 00:00:00 GMT - Sun, 08 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x1500, components 3
Size
183 kB (182781 bytes)
Hash
4f9d10c356f06bb408636d1ee4a0c4b3
b1fbde1e1d2f489f18dc9edc7621782c46a92756
864cd3f817906ce7581a0f0a684b20d3513e7386078debe8d5a31c853c874843

HTTP Headers

GET /images/M/MV5BNDQxZTUyOWEtYmM0OS00YjFiLTk4OGUtYzc1ZjRhNzY5MDgzXkEyXkFqcGdeQXVyMTU4MzQzNDkx._V1_FMjpg_UX1000_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 182781
server: Server
x-amz-ir-id: f2846193-b2d0-4323-a68a-d0ab78548d58
date: Thu, 18 Apr 2024 21:52:30 GMT
cache-control: max-age=630720000,public
last-modified: Thu, 18 Apr 2024 00:10:37 GMT
access-control-allow-origin: *
edge-cache-tag: x-cache-311,/images/M/MV5BNDQxZTUyOWEtYmM0OS00YjFiLTk4OGUtYzc1ZjRhNzY5MDgzXkEyXkFqcGdeQXVyMTU4MzQzNDkx
expires: Wed, 13 Apr 2044 21:52:30 GMT
surrogate-key: x-cache-311 /images/M/MV5BNDQxZTUyOWEtYmM0OS00YjFiLTk4OGUtYzc1ZjRhNzY5MDgzXkEyXkFqcGdeQXVyMTU4MzQzNDkx
x-nginx-cache-status: HIT
accept-ranges: bytes
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
alt-svc: h3=":443"; ma=86400
age: 998987
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: v5q3BvjkU9BIq1BrEqptN90L6992W_q9SNUWViJvUrocUQqAfwuCCg==
X-Firefox-Spdy: h2

m.media-amazon.com/images/M/MV5BNTRmY2M4ODYtYTlhNy00YWJkLWExMjUtOTgwZWNlNTkwMzBjXkEyXkFqcGdeQXVyMTQ3Mzk2MDg4._V1_.jpg

54.230.83.223

200 OK

279 kB

URL GET HTTP/2
m.media-amazon.com/images/M/MV5BNTRmY2M4ODYtYTlhNy00YWJkLWExMjUtOTgwZWNlNTkwMzBjXkEyXkFqcGdeQXVyMTQ3Mzk2MDg4._V1_.jpg
IP
54.230.83.223:443
ASN
#16509 AMAZON-02

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerDigiCert Inc
Subjectimages-na.ssl-images-amazon.com
Fingerprint8A:C2:7D:85:C5:D2:68:79:93:AF:D2:55:06:26:64:6F:36:95:1A:6E
ValidityFri, 05 Jan 2024 00:00:00 GMT - Sun, 08 Dec 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1172x1600, components 3
Size
279 kB (278808 bytes)
Hash
c5fe2c80896fb1daad28dbc1883d3eb3
bb1da441ebc3a33ea6a8e23f7d17897400884966
80c0d1e0d1eba064c076d37186ad6d94d03f9673089bf5d02ad6d8c03c9c7036

HTTP Headers

GET /images/M/MV5BNTRmY2M4ODYtYTlhNy00YWJkLWExMjUtOTgwZWNlNTkwMzBjXkEyXkFqcGdeQXVyMTQ3Mzk2MDg4._V1_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 278808
server: Server
x-amz-ir-id: bb050790-4a4c-4587-91ba-cd95c077ca01
date: Tue, 23 Apr 2024 06:31:27 GMT
cache-control: max-age=630720000,public
last-modified: Tue, 23 Apr 2024 06:06:09 GMT
access-control-allow-origin: *
edge-cache-tag: x-cache-042,/images/M/MV5BNTRmY2M4ODYtYTlhNy00YWJkLWExMjUtOTgwZWNlNTkwMzBjXkEyXkFqcGdeQXVyMTQ3Mzk2MDg4
expires: Mon, 18 Apr 2044 06:31:27 GMT
surrogate-key: x-cache-042 /images/M/MV5BNTRmY2M4ODYtYTlhNy00YWJkLWExMjUtOTgwZWNlNTkwMzBjXkEyXkFqcGdeQXVyMTQ3Mzk2MDg4
x-nginx-cache-status: HIT
accept-ranges: bytes
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
alt-svc: h3=":443"; ma=86400
age: 805536
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XZx65dXZ3N_kKGnzJrnSqZrSQO77__tLusrL3kfj1wUBnqJ7IJiNTg==
X-Firefox-Spdy: h2

fs1.extraimage.org/picupto/2024/05/02/MV5BZGI3NzQ5NTctZWQ4Ni00ZGJkLTg5N2UtYTBjNzcyN2EyOTM0XkEyXkFqcGdeQXVyOTI3MzI4MzA._V1_.jpg

104.21.233.195

200 OK

204 kB

URL GET HTTP/2
fs1.extraimage.org/picupto/2024/05/02/MV5BZGI3NzQ5NTctZWQ4Ni00ZGJkLTg5N2UtYTBjNzcyN2EyOTM0XkEyXkFqcGdeQXVyOTI3MzI4MzA._V1_.jpg
IP
104.21.233.195:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectextraimage.org
FingerprintAE:33:96:55:22:CA:85:63:A9:9E:FF:73:1C:B5:83:BD:86:29:43:BB
ValidityMon, 08 Apr 2024 21:55:29 GMT - Sun, 07 Jul 2024 21:55:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 828x1226, components 3
Size
204 kB (203712 bytes)
Hash
c8e6eb32952c49797532db6f7a99cc7f
bc1ca5cdf8f7999edf94141cf16cab7cb41f7803
2b723a9ef80de3a7dfca612685c7e9594f876784ba0bd2fac7cde6fcdf37f1a1

HTTP Headers

GET /picupto/2024/05/02/MV5BZGI3NzQ5NTctZWQ4Ni00ZGJkLTg5N2UtYTBjNzcyN2EyOTM0XkEyXkFqcGdeQXVyOTI3MzI4MzA._V1_.jpg HTTP/1.1
Host: fs1.extraimage.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:07 GMT
content-type: image/jpeg
content-length: 203712
last-modified: Thu, 02 May 2024 12:50:06 GMT
etag: "31bc0-617780ae97dc1"
x-powered-by: PleskLin
ms-author-via: DAV
cache-control: max-age=14400
cf-cache-status: HIT
age: 4290
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HOMTLJJc%2FJ0agAO0RnxlyGOdwQ8qMeZB6nUR5x%2BjtpQkR5JdjC5k7vilDPj8p%2FUHFiG66hF7AHH3VWibzOWi16Ohomo5Il9iFpaZDCZ0G1JK2HDvHZ5sjunk1VUl8UWLjPh9qe0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8aad50a9f7717-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fs1.extraimage.org/picupto/2024/05/02/Daasi-2024-S01-Hindi-Web-Series-1080p-720p-480p-HDRip-Download.jpg

104.21.233.195

200 OK

412 kB

URL GET HTTP/2
fs1.extraimage.org/picupto/2024/05/02/Daasi-2024-S01-Hindi-Web-Series-1080p-720p-480p-HDRip-Download.jpg
IP
104.21.233.195:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectextraimage.org
FingerprintAE:33:96:55:22:CA:85:63:A9:9E:FF:73:1C:B5:83:BD:86:29:43:BB
ValidityMon, 08 Apr 2024 21:55:29 GMT - Sun, 07 Jul 2024 21:55:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 850x1134, components 3
Size
412 kB (412307 bytes)
Hash
544dfd0b30283e8a75e2ea5b986a472c
648d60113b79f8429a58616f238c2c204a78fbcc
9b4d494f8f5f0cc64716657d7a101662949c7dc59e669ec4c7a30624759dfd56

HTTP Headers

GET /picupto/2024/05/02/Daasi-2024-S01-Hindi-Web-Series-1080p-720p-480p-HDRip-Download.jpg HTTP/1.1
Host: fs1.extraimage.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:07 GMT
content-type: image/jpeg
content-length: 412307
last-modified: Thu, 02 May 2024 09:32:08 GMT
etag: "64a93-6177546e610cf"
x-powered-by: PleskLin
ms-author-via: DAV
cache-control: max-age=14400
cf-cache-status: HIT
age: 1636
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6oqMYdGiVxjX9KJn7y6YS1N%2BPV9DVVt%2FMD6dHmk48SKgeuSBEPMOPssXyDUpCUmsUq4aapL%2FdRU7NPo1QjeR5sY1ybm6m4MznB3v%2BJGTKZm3O8%2F0DkKB5c%2FzQ%2FegBLttIQvSMVs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8aad50a9d7717-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fs1.extraimage.org/picupto/2024/05/02/MV5BODY2MTAzOTQ4M15BMl5BanBnXkFtZTgwNzg5MTE0MjI._V1_.jpg

104.21.233.195

200 OK

613 kB

URL GET HTTP/2
fs1.extraimage.org/picupto/2024/05/02/MV5BODY2MTAzOTQ4M15BMl5BanBnXkFtZTgwNzg5MTE0MjI._V1_.jpg
IP
104.21.233.195:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectextraimage.org
FingerprintAE:33:96:55:22:CA:85:63:A9:9E:FF:73:1C:B5:83:BD:86:29:43:BB
ValidityMon, 08 Apr 2024 21:55:29 GMT - Sun, 07 Jul 2024 21:55:28 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Picasa], baseline, precision 8, 1383x2048, components 3
Size
613 kB (613082 bytes)
Hash
e16a19d02e02b3f417ec05c76199e317
cdc42199e96c07dd02c88dffa75435f842301333
e0f87839f7b52b8c3260a9c2fd6adf9064ead99f20bce165c5cb7ccd631e3b18

HTTP Headers

GET /picupto/2024/05/02/MV5BODY2MTAzOTQ4M15BMl5BanBnXkFtZTgwNzg5MTE0MjI._V1_.jpg HTTP/1.1
Host: fs1.extraimage.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:07 GMT
content-type: image/jpeg
content-length: 613082
last-modified: Thu, 02 May 2024 13:25:05 GMT
etag: "95ada-61778880479d6"
x-powered-by: PleskLin
ms-author-via: DAV
cache-control: max-age=14400
cf-cache-status: HIT
age: 1750
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q2p%2BnLeKA5LRYJSVPA2876Ym9oM1L5fL%2F9u84V8rTj7EYdN%2FvVKn8TH2fnYvqPIsa9%2FpRmIlY%2BV4kX2uyr08RYp9o4sE2ATFRsZwzqa%2B3wv5ynN%2FlUPMkiQLONRenO9Kt%2FBDZFg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8aad50a9e7717-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/

104.21.35.237

200 OK

1.5 MB

URL User Request GET HTTP/2
9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
IP
104.21.35.237:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subject9xmovie.golf
Fingerprint56:B9:28:B8:A2:F3:0E:70:B3:DE:C6:4F:FA:88:25:BE:08:B2:2F:1E
ValidityTue, 09 Apr 2024 10:07:59 GMT - Mon, 08 Jul 2024 10:07:58 GMT

File type
HTML document, ASCII text, with very long lines (29236)
Size
1.5 MB (1526827 bytes)
Hash
b53e2eef305e483d7be03282be1f4248
33faf1f803fe75330120c10b6a1b7957019d7722
72ed21f00d7c9b6ddbea8e6170c4599d563768ba7fb74dd57b4d912d16c5da41

HTTP Headers

GET /daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/ HTTP/1.1
Host: 9xmovie.golf
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:06 GMT
content-type: text/html; charset=UTF-8
link: <https://9xmovie.golf/wp-json/>; rel="https://api.w.org/", <https://9xmovie.golf/wp-json/wp/v2/posts/91142>; rel="alternate"; type="application/json", <https://9xmovie.golf/?p=91142>; rel=shortlink
vary: Accept-Encoding
x-served-by: 9xmovie.golf
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AGawzNGRTY1lT%2F17tpjpHLeKCOJOYhXlEGY6YCovn0Nc3%2B0c6%2FSLdALOF6pkU7KJhLNLLW4KQfoYg5lpBX380VIOkKpOoSO8Be3E4%2Bci9BGQ9J5wT4kNvXx3lLI7I7I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d8aac94f071bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

i.ibb.co/89Mzw5S/Daasi-2024-www-9x-Movie-win-S01-1080p-HDRip-Hindi-Web-Series-1-7-GB-mp4-thumbs.jpg

162.19.58.161

200 OK

1.2 MB

URL GET HTTP/2
i.ibb.co/89Mzw5S/Daasi-2024-www-9x-Movie-win-S01-1080p-HDRip-Hindi-Web-Series-1-7-GB-mp4-thumbs.jpg
IP
162.19.58.161:443
ASN
#16276 OVH SAS

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint0C:8B:6F:2F:B8:9F:91:1E:3A:DD:B1:1B:45:47:B4:65:FD:56:73:3D
ValidityMon, 22 Apr 2024 06:29:44 GMT - Sun, 21 Jul 2024 06:29:43 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1024x2086, components 3
Size
1.2 MB (1156717 bytes)
Hash
b85fd5b5bc29b9bf94d2358a15e0e273
87874e32ab5d1db536271c4272d969c22b2ecf1a
368fb319f981fd3e4e3babe8907116a65fe20b259a282b82a7004520e528e61b

HTTP Headers

GET /89Mzw5S/Daasi-2024-www-9x-Movie-win-S01-1080p-HDRip-Hindi-Web-Series-1-7-GB-mp4-thumbs.jpg HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 May 2024 14:23:07 GMT
content-type: image/jpeg
content-length: 1156717
last-modified: Thu, 02 May 2024 10:13:03 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js

142.250.74.138

200 OK

34 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
JavaScript source, ASCII text, with very long lines (32077)
Size
34 kB (33951 bytes)
Hash
4f252523d4af0b478c810c2547a63e19
5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb
668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404

HTTP Headers

GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:49:13 GMT
expires: Fri, 02 May 2025 01:49:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 45234
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

wideaplentyinsurance.com/8d/63/40/8d6340b87f7318c06e5be9e94fae8e28.js

172.240.253.132

200 OK

30 kB

URL GET HTTP/1.1
wideaplentyinsurance.com/8d/63/40/8d6340b87f7318c06e5be9e94fae8e28.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjectwideaplentyinsurance.com
FingerprintB8:32:86:4A:AF:35:BD:94:41:1B:7A:25:D1:06:E5:09:B0:A7:FF:73
ValiditySat, 16 Mar 2024 08:02:06 GMT - Fri, 14 Jun 2024 08:02:05 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
30 kB (29986 bytes)
Hash
b3316845445e42d96f091228fd87c785
ad329328feef4491312ababaf98d75debb38d809
3e7598ee104a51dc7ed294c38c6699e4cc376c4fa36c7e1bbe951fd885cf3891

HTTP Headers

GET /8d/63/40/8d6340b87f7318c06e5be9e94fae8e28.js HTTP/1.1
Host: wideaplentyinsurance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 02 May 2024 14:23:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fdd0f39f3b79aa3d03d024c29a9c5a56
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

wideaplentyinsurance.com/6a/5a/29/6a5a29f7d5d384f64b81c0126464bfd7.js

172.240.253.132

200 OK

16 kB

URL GET HTTP/1.1
wideaplentyinsurance.com/6a/5a/29/6a5a29f7d5d384f64b81c0126464bfd7.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjectwideaplentyinsurance.com
FingerprintB8:32:86:4A:AF:35:BD:94:41:1B:7A:25:D1:06:E5:09:B0:A7:FF:73
ValiditySat, 16 Mar 2024 08:02:06 GMT - Fri, 14 Jun 2024 08:02:05 GMT

File type
JavaScript source, ASCII text, with very long lines (44055), with no line terminators
Size
16 kB (15798 bytes)
Hash
e852e7136ac4a6628efdaac2a6a113f4
2ce14adffa93cdfecbf28b0d18f13ae5892c385b
a5197a042c0e5f1deeb2d30d80bce635488f0e92209949b48dc539f4d7b92e43

HTTP Headers

GET /6a/5a/29/6a5a29f7d5d384f64b81c0126464bfd7.js HTTP/1.1
Host: wideaplentyinsurance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 02 May 2024 14:23:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 664c113b23227d2909f46055b7ad83ef
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://9xmovie.golf
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:03:54 GMT
expires: Fri, 02 May 2025 02:03:54 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 44355
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2

216.58.207.227

200 OK

128 kB

URL GET HTTP/2
fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 128352, version 1.0
Size
128 kB (128352 bytes)
Hash
53436aca8627a49f4deaaa44dc9e3c05
0bc0c675480d94ec7e8609dda6227f88c5d08d2c
8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1

HTTP Headers

GET /s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://9xmovie.golf
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:57:06 GMT
expires: Fri, 02 May 2025 01:57:06 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 08 Apr 2024 19:04:47 GMT
content-type: font/woff2
age: 44763
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://9xmovie.golf
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:01:10 GMT
expires: Fri, 02 May 2025 02:01:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 44519
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.r2m03.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
09638294065dde694b10517913ab1b46
1861c09ceabe3b8df13ff5e5efee5e9797c09927
ddb770c3d19de46cceb095c3098de856e984ea0b06563b48a93247751beacf09

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Thu, 02 May 2024 14:23:09 GMT
Last-Modified: Thu, 02 May 2024 13:03:26 GMT
Server: ECAcc (ska/F749)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OmSwVbmDJA707BtaxCGwwWZCAvOXDVQJG1TFZR_4Nvq3Y75ozqvJhw==
Age: 4783

9xmovie.golf/wp-includes/css/dist/block-library/style.min.css?ver=8c580885753489e0854bd8b07dc2c93f

104.21.35.237

200 OK

16 kB

URL GET HTTP/3
9xmovie.golf/wp-includes/css/dist/block-library/style.min.css?ver=8c580885753489e0854bd8b07dc2c93f
IP
104.21.35.237:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subject9xmovie.golf
Fingerprint56:B9:28:B8:A2:F3:0E:70:B3:DE:C6:4F:FA:88:25:BE:08:B2:2F:1E
ValidityTue, 09 Apr 2024 10:07:59 GMT - Mon, 08 Jul 2024 10:07:58 GMT

File type
ASCII text, with very long lines (59701)
Size
16 kB (15716 bytes)
Hash
51a8390b47aa0582cf2d9c96c5addee2
b16a640874025d085c38119a1a02a3460f83f2de
98cecf88a23542fa047ce46eedb650b5c5128761ed4386c0977b847094ddfa20

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=8c580885753489e0854bd8b07dc2c93f HTTP/1.1
Host: 9xmovie.golf
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 02 May 2024 14:23:06 GMT
content-type: text/css
cache-control: public, max-age=43200
expires: Wed, 01 May 2024 05:28:42 GMT
etag: W/"1bae5-660d8ec0-1fa29e7;br"
last-modified: Wed, 03 Apr 2024 17:15:44 GMT
vary: Accept-Encoding
x-served-by: 9xmovie.golf
cf-cache-status: HIT
age: 2217
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4GmxXkvcZbEI6Ad7MOa62UNKEYJeIoZc2GVCmVacA6GI%2FYlBQSzkxxFRkBGtP%2BQ6BrK0RwFh0nvDWh7VTs9Dw5xCayrQ8ORNUYTB2uZcE4lDqcuLW2NMSMPGbBkzJb4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d8aad38e5a0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

downstairsnegotiatebarren.com/sfp.js

188.114.97.1

200 OK

28 kB

URL GET HTTP/2
downstairsnegotiatebarren.com/sfp.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44
ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
28 kB (27964 bytes)
Hash
f4a2f8f9f99541c6f105bbd0a025bd40
1f8e3eff12168fdd9e719adfc098d24a45b6916a
b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:09 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: d5554ef172d6ec82d2e19c7e295e0d9e
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Thu, 02 May 2024 14:23:09 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wuRsySEaf6JLXEU1%2BfNxhzHKX%2BCAHfH1trTej64FYmWhp9mCjfgrEUnW%2BHyy2Ae0lAaVUyGqBKTKolQMbndLnpc1stfa%2FB2K%2BVWKE%2B9AoWuT12jlPB0fMzYVSWTimRZFIG0X8acT6e0VkeM8Y%2BMkog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8aae5bd80b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

proftrafficcounter.com/stats

18.185.9.67

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.185.9.67:443
ASN
#16509 AMAZON-02

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
5ea35a6024b31596f0b2a0161dfb3b16
e7f3c6c813122f5f40d6a103a62c1b3dbfc8b06f
c4abba61db00fd61eef87517402ea2be44a7febcc3d54ff9c4feded11645bd48

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://9xmovie.golf
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:09 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://9xmovie.golf
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=1ceee355-44f2-4ea5-b729-4be9fa6cfed0:3:1; expires=Sun, 30 Apr 2034 14:23:09 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

proftrafficcounter.com/stats

18.185.9.67

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.185.9.67:443
ASN
#16509 AMAZON-02

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
721cf80d9f0adedc957e635fafb44837
66c3e7d9c2159ed534798f6cf6aed99c7f9a2dea
221e5bc835c226f18c3b4b2d1fd5ecec3862a2a333fa4ccace4b59e39f89c8b5

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://9xmovie.golf
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:10 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://9xmovie.golf
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=1b492968-891c-4c40-ab73-807c2ba293e7:1:1; expires=Sun, 30 Apr 2034 14:23:10 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

9xmovie.golf/wp-content/themes/9xmovie/script/script.min.js

104.21.35.237

200 OK

10 kB

URL GET HTTP/3
9xmovie.golf/wp-content/themes/9xmovie/script/script.min.js
IP
104.21.35.237:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subject9xmovie.golf
Fingerprint56:B9:28:B8:A2:F3:0E:70:B3:DE:C6:4F:FA:88:25:BE:08:B2:2F:1E
ValidityTue, 09 Apr 2024 10:07:59 GMT - Mon, 08 Jul 2024 10:07:58 GMT

File type
JavaScript source, ASCII text, with very long lines (32003)
Size
10 kB (10468 bytes)
Hash
e1bdbeb07f4e2a7fa6cfe5e6b89fc36a
a52159f3292da08fe2769365c6f735b307df0f2c
bd98ca66f57803c3c6d80762727e5ae866f26a95b88de9ab1fff17657de3345a

HTTP Headers

GET /wp-content/themes/9xmovie/script/script.min.js HTTP/1.1
Host: 9xmovie.golf
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 02 May 2024 14:23:06 GMT
content-type: text/javascript
etag: W/"940d-621132d3-1fa2c49;br"
last-modified: Sat, 19 Feb 2022 18:11:31 GMT
vary: Accept-Encoding
x-served-by: 9xmovie.golf
cache-control: max-age=14400
cf-cache-status: HIT
age: 2215
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uMwaVUpvWF9e%2Bsb72XvOlsU8CyWOvoIFgdqGDv0uhpAAtFXf6wx81TvuPrGmHbZS43vmpiIPomvqdcYy8HBbe1MLP3kMm5wnXPsCGsL1IQXi2Jm9HQ84%2FC0IFhse%2Bis%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d8aad3be8e0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pubtrky.com/ut/hb.php?cb=0.5430953579812361&v=1

104.21.8.108

204 No Content

0 B

URL POST HTTP/2
pubtrky.com/ut/hb.php?cb=0.5430953579812361&v=1
IP
104.21.8.108:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectpubtrky.com
Fingerprint1F:C3:3C:5C:C7:6F:56:DF:E4:18:22:98:6F:C2:B3:96:B2:B4:A6:30
ValidityMon, 18 Mar 2024 09:15:33 GMT - Sun, 16 Jun 2024 09:15:32 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /ut/hb.php?cb=0.5430953579812361&v=1 HTTP/1.1
Host: pubtrky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 1150
Origin: https://9xmovie.golf
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Thu, 02 May 2024 14:23:10 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y3xPhYU9efED4pMkhACrYwH6rVGFTfDdsbWQ8X1MWnYqoRVLatnJEDEq9mNGQZXJt9dCG6JDKYqAQnNM%2F1gqYSeyqKSZEefLDCLz8%2BIdC1WJLq2%2F6nM6WfQKE11G9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d8aae8ac915697-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

capaciousdrewreligion.com/advertisers.js

172.240.108.68

200 OK

0 B

URL GET HTTP/1.1
capaciousdrewreligion.com/advertisers.js
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
Fingerprint53:B6:ED:C6:B5:B6:60:3E:6D:02:5A:92:2E:C3:12:74:64:A1:23:DC
ValidityWed, 06 Mar 2024 11:57:32 GMT - Tue, 04 Jun 2024 11:57:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 02 May 2024 14:23:10 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8b44b2ba961984f8cf8f0b9efa2cc137
Strict-Transport-Security: max-age=0; includeSubdomains

9xmovie.golf/wp-content/uploads/favicon.png

104.21.35.237

200 OK

41 kB

URL GET HTTP/3
9xmovie.golf/wp-content/uploads/favicon.png
IP
104.21.35.237:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subject9xmovie.golf
Fingerprint56:B9:28:B8:A2:F3:0E:70:B3:DE:C6:4F:FA:88:25:BE:08:B2:2F:1E
ValidityTue, 09 Apr 2024 10:07:59 GMT - Mon, 08 Jul 2024 10:07:58 GMT

File type
PNG image data, 512 x 512, 16-bit/color RGBA, non-interlaced
Size
41 kB (40912 bytes)
Hash
927bae5ba63e8caaa13d1bc3e368d099
7470d9a1bab263b3d1082953d15d0cd65db0ecc1
1cf721e5b413f2b9ea311220af62f9e87788d863433ef4149cf81572c9e395df

HTTP Headers

GET /wp-content/uploads/favicon.png HTTP/1.1
Host: 9xmovie.golf
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 02 May 2024 14:23:10 GMT
content-type: image/png
content-length: 40912
cache-control: public, max-age=43200
expires: Wed, 01 May 2024 07:52:38 GMT
etag: "9fd0-65ff0680-1fa2c30;;;"
last-modified: Sat, 23 Mar 2024 16:42:40 GMT
x-served-by: 9xmovie.golf
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LBulrm6%2Fx8n9wUaJMmRVZtZijj89NHwo%2BcP8F%2BJ1D7nrn4Y%2F45k9Ak1flsJrj2GJCFMX07%2FasdeqEwBDnF8udS1S3qCBx55A4T4nFziW41oE8S3%2Fyv5g1IyIpPc%2FK4U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8aae2d8ac0b59-OSL
alt-svc: h3=":443"; ma=86400

gotoadexchange.com/script/i.php?t=1&c=23167688&stamat=m%257C%252C%252CAiE-NiM6tGU3BJ-GH0dEdHP3xP.0f9%252CWGk6PiNjWQavZZbcoIITF-Xytrcyg-uc7UHhuSCm764KWgYT_Beh6pU5jH0CnngV1QN4hTV5lCtpCtIfwWVCICyuU3Y0eP-qqofwIyN3Gjp7OKVvYw7u7hKyNqZLxBLK2ehUqPo7sxs7AOPY2gVRdAZdc_cX1Ww7TpDdxcCKMnLEmZCyqawlZX1PufMztjlCC2psSRzXs6oRp4T7IfCIMLu_ujCmdTvfpQwTE4e1oI77AEMVe7nzcorDHCGj5mxExLXGtZhINsWPNBZ4wx0sbS6q7AMGYFn4UzKgAs5KeDXGyLRdGWwRTVPpf12ZBLBIVJfrcxA0OKMa-vzTd-aUJICC8vXjyCWT0M95TE026wZs0eekqWsZXF6YSGJUpEU4VAF8BaENJHwb4Gu0gYREjuz1ntJCYW3nPllttn5FS_BWkXCjPt7pnSshhh9y-NaN2TQb36eN-1cPyFIEMdpufCO889yXt2RhLyidyG5pohVom2Umn-Hs4-GsnOnXMkYGr1yRFDsH6fFTlQ8f8qDZ3YwJBT9BN4mZqgBRW3eAcyEs-3dranGlBN9kDQx3fflIgx5uKkui8G3UJlIVNQz8TRtF5ToJuWFYqNQDk1uqGTQDq9rhq_98mn4GIC5_wWx1fomzkO4NaMRsxhfNZfH2Sg%252C%252C

104.21.62.156

204 No Content

0 B

URL GET HTTP/2
gotoadexchange.com/script/i.php?t=1&c=23167688&stamat=m%257C%252C%252CAiE-NiM6tGU3BJ-GH0dEdHP3xP.0f9%252CWGk6PiNjWQavZZbcoIITF-Xytrcyg-uc7UHhuSCm764KWgYT_Beh6pU5jH0CnngV1QN4hTV5lCtpCtIfwWVCICyuU3Y0eP-qqofwIyN3Gjp7OKVvYw7u7hKyNqZLxBLK2ehUqPo7sxs7AOPY2gVRdAZdc_cX1Ww7TpDdxcCKMnLEmZCyqawlZX1PufMztjlCC2psSRzXs6oRp4T7IfCIMLu_ujCmdTvfpQwTE4e1oI77AEMVe7nzcorDHCGj5mxExLXGtZhINsWPNBZ4wx0sbS6q7AMGYFn4UzKgAs5KeDXGyLRdGWwRTVPpf12ZBLBIVJfrcxA0OKMa-vzTd-aUJICC8vXjyCWT0M95TE026wZs0eekqWsZXF6YSGJUpEU4VAF8BaENJHwb4Gu0gYREjuz1ntJCYW3nPllttn5FS_BWkXCjPt7pnSshhh9y-NaN2TQb36eN-1cPyFIEMdpufCO889yXt2RhLyidyG5pohVom2Umn-Hs4-GsnOnXMkYGr1yRFDsH6fFTlQ8f8qDZ3YwJBT9BN4mZqgBRW3eAcyEs-3dranGlBN9kDQx3fflIgx5uKkui8G3UJlIVNQz8TRtF5ToJuWFYqNQDk1uqGTQDq9rhq_98mn4GIC5_wWx1fomzkO4NaMRsxhfNZfH2Sg%252C%252C
IP
104.21.62.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjectgotoadexchange.com
Fingerprint18:99:88:5D:65:C6:02:E1:5F:94:CA:2A:9B:82:49:97:A5:37:F6:23
ValidityTue, 19 Mar 2024 13:41:39 GMT - Mon, 17 Jun 2024 13:41:38 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /script/i.php?t=1&c=23167688&stamat=m%257C%252C%252CAiE-NiM6tGU3BJ-GH0dEdHP3xP.0f9%252CWGk6PiNjWQavZZbcoIITF-Xytrcyg-uc7UHhuSCm764KWgYT_Beh6pU5jH0CnngV1QN4hTV5lCtpCtIfwWVCICyuU3Y0eP-qqofwIyN3Gjp7OKVvYw7u7hKyNqZLxBLK2ehUqPo7sxs7AOPY2gVRdAZdc_cX1Ww7TpDdxcCKMnLEmZCyqawlZX1PufMztjlCC2psSRzXs6oRp4T7IfCIMLu_ujCmdTvfpQwTE4e1oI77AEMVe7nzcorDHCGj5mxExLXGtZhINsWPNBZ4wx0sbS6q7AMGYFn4UzKgAs5KeDXGyLRdGWwRTVPpf12ZBLBIVJfrcxA0OKMa-vzTd-aUJICC8vXjyCWT0M95TE026wZs0eekqWsZXF6YSGJUpEU4VAF8BaENJHwb4Gu0gYREjuz1ntJCYW3nPllttn5FS_BWkXCjPt7pnSshhh9y-NaN2TQb36eN-1cPyFIEMdpufCO889yXt2RhLyidyG5pohVom2Umn-Hs4-GsnOnXMkYGr1yRFDsH6fFTlQ8f8qDZ3YwJBT9BN4mZqgBRW3eAcyEs-3dranGlBN9kDQx3fflIgx5uKkui8G3UJlIVNQz8TRtF5ToJuWFYqNQDk1uqGTQDq9rhq_98mn4GIC5_wWx1fomzkO4NaMRsxhfNZfH2Sg%252C%252C HTTP/1.1
Host: gotoadexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Thu, 02 May 2024 14:23:10 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s%2BHauzlTDtrgou0SSeAmEJDuEAxpPR8Ra6F3OPeaPXis5ttK912ShzYWYy%2BGVkc0JdhPZ7xc%2FKI4Wr%2BPFAZVhToRK66VOETbkdfTXyncDLYhMCYWOx4g%2BpOFkW2ou0r%2F3%2FLLYfI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d8aaea4d1f7128-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

gotoadexchange.com/script/i.php?t=1&c=23167688&stamat=m%257C%252C%252CQ2P-4ieroGU3BJ-GH0dEdHP3xP.e57%252CFaWyOjN6A9pozn7hD5DcxeUxaad1x7Ud93eIfOOV3jJ1itGnIrE1HqcLJjtVbP-RwvktXXafmbZRpc9CaoskImKyUmC0VsLxCifVIKDV0Z0fWuUDaKUeUvPLEBF_-DV-7JRn7b6OIDsjKpvKL2Tj7GyluiF1w28cDivpngXda-p-1ltYoXrsJbMR1URxhTnPTjGQYe8Qbzs-7iTB_lBm6kKCzRIQKnTTWr-rbhtQGGJv2UUarj-tpV1ySfEtLotEKkItmBx2vVFxl839ea6_U_EvEbR4WNXggOJn-T5pDdqnIkoiUaqP_Do7OcmrYGlBdEu7K5UnP1o-rrT1NX9JNZKbz22aMDb6zo8CrLOAGmnly3BOujWhrRy8zPRDekenO07Gt9SvjQVy2WxcBtcIDyu6OrQ-IW9MUuhSIAKJBdQRSzHKT47h4B7d7u4k-2FtwICttyCNkSOsX2Sfv7CCvD3KAPYLvxSdjW-BIEtUjwoFrMZNMqxqR5hfkGve5NEZOeLU99RioeTroKH24YgsP2aEsDT_F_huf9cS1Fk2k7SR4TgmZ9iuXnH2nwThjozFI_xXLNcG95T2cqWQBwDZmeMGifyBiW-Bk4kXdzUunURWVlrXFijWZHIP0Hh3pjdssZ77gSe3BmZUQcstBrE7Yw%252C%252C

104.21.62.156

204 No Content

0 B

URL GET HTTP/2
gotoadexchange.com/script/i.php?t=1&c=23167688&stamat=m%257C%252C%252CQ2P-4ieroGU3BJ-GH0dEdHP3xP.e57%252CFaWyOjN6A9pozn7hD5DcxeUxaad1x7Ud93eIfOOV3jJ1itGnIrE1HqcLJjtVbP-RwvktXXafmbZRpc9CaoskImKyUmC0VsLxCifVIKDV0Z0fWuUDaKUeUvPLEBF_-DV-7JRn7b6OIDsjKpvKL2Tj7GyluiF1w28cDivpngXda-p-1ltYoXrsJbMR1URxhTnPTjGQYe8Qbzs-7iTB_lBm6kKCzRIQKnTTWr-rbhtQGGJv2UUarj-tpV1ySfEtLotEKkItmBx2vVFxl839ea6_U_EvEbR4WNXggOJn-T5pDdqnIkoiUaqP_Do7OcmrYGlBdEu7K5UnP1o-rrT1NX9JNZKbz22aMDb6zo8CrLOAGmnly3BOujWhrRy8zPRDekenO07Gt9SvjQVy2WxcBtcIDyu6OrQ-IW9MUuhSIAKJBdQRSzHKT47h4B7d7u4k-2FtwICttyCNkSOsX2Sfv7CCvD3KAPYLvxSdjW-BIEtUjwoFrMZNMqxqR5hfkGve5NEZOeLU99RioeTroKH24YgsP2aEsDT_F_huf9cS1Fk2k7SR4TgmZ9iuXnH2nwThjozFI_xXLNcG95T2cqWQBwDZmeMGifyBiW-Bk4kXdzUunURWVlrXFijWZHIP0Hh3pjdssZ77gSe3BmZUQcstBrE7Yw%252C%252C
IP
104.21.62.156:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjectgotoadexchange.com
Fingerprint18:99:88:5D:65:C6:02:E1:5F:94:CA:2A:9B:82:49:97:A5:37:F6:23
ValidityTue, 19 Mar 2024 13:41:39 GMT - Mon, 17 Jun 2024 13:41:38 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /script/i.php?t=1&c=23167688&stamat=m%257C%252C%252CQ2P-4ieroGU3BJ-GH0dEdHP3xP.e57%252CFaWyOjN6A9pozn7hD5DcxeUxaad1x7Ud93eIfOOV3jJ1itGnIrE1HqcLJjtVbP-RwvktXXafmbZRpc9CaoskImKyUmC0VsLxCifVIKDV0Z0fWuUDaKUeUvPLEBF_-DV-7JRn7b6OIDsjKpvKL2Tj7GyluiF1w28cDivpngXda-p-1ltYoXrsJbMR1URxhTnPTjGQYe8Qbzs-7iTB_lBm6kKCzRIQKnTTWr-rbhtQGGJv2UUarj-tpV1ySfEtLotEKkItmBx2vVFxl839ea6_U_EvEbR4WNXggOJn-T5pDdqnIkoiUaqP_Do7OcmrYGlBdEu7K5UnP1o-rrT1NX9JNZKbz22aMDb6zo8CrLOAGmnly3BOujWhrRy8zPRDekenO07Gt9SvjQVy2WxcBtcIDyu6OrQ-IW9MUuhSIAKJBdQRSzHKT47h4B7d7u4k-2FtwICttyCNkSOsX2Sfv7CCvD3KAPYLvxSdjW-BIEtUjwoFrMZNMqxqR5hfkGve5NEZOeLU99RioeTroKH24YgsP2aEsDT_F_huf9cS1Fk2k7SR4TgmZ9iuXnH2nwThjozFI_xXLNcG95T2cqWQBwDZmeMGifyBiW-Bk4kXdzUunURWVlrXFijWZHIP0Hh3pjdssZ77gSe3BmZUQcstBrE7Yw%252C%252C HTTP/1.1
Host: gotoadexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Thu, 02 May 2024 14:23:10 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ax1z3J%2Flycd60HdMK%2BOTdGRMtwU1CdHB%2Fmv7py2sashOCX2b%2BCDJj2ZRWxJ1a8ekO7enSJ38gQhc5NHvptFudYU6yTDX3rghYifYLMI4latCviUTVPyCOoR16pjlAumbKCuJkMI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d8aaea6d407128-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

honeymoondisappointed.com/sbar.json?key=6a5a29f7d5d384f64b81c0126464bfd7&uuid=1b492968-891c-4c40-ab73-807c2ba293e7%3A1%3A1

192.243.61.225

200 OK

8.3 kB

URL GET HTTP/1.1
honeymoondisappointed.com/sbar.json?key=6a5a29f7d5d384f64b81c0126464bfd7&uuid=1b492968-891c-4c40-ab73-807c2ba293e7%3A1%3A1
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjecthoneymoondisappointed.com
Fingerprint4C:29:92:FB:67:9C:9B:21:4B:30:D2:66:01:94:59:B1:74:6B:38:19
ValidityMon, 29 Apr 2024 08:21:01 GMT - Sun, 28 Jul 2024 08:21:00 GMT

File type
JSON text data
Size
8.3 kB (8334 bytes)
Hash
db323067765d5ea29b0e8befd72a0440
9fc55734edee1e868294a19aabd49f5f792a17be
f5a96861d8d6cdeebc76edc07c1718a11bf8ee050c5ed4a639f2f8cdf0188ee7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sbar.json?key=6a5a29f7d5d384f64b81c0126464bfd7&uuid=1b492968-891c-4c40-ab73-807c2ba293e7%3A1%3A1 HTTP/1.1
Host: honeymoondisappointed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://9xmovie.golf
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 02 May 2024 14:23:10 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://9xmovie.golf
Access-Control-Allow-Origin: https://9xmovie.golf
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=20469230; expires=Fri, 03 May 2024 14:23:10 GMT; secure; SameSite=None
uid_id2=1b492968-891c-4c40-ab73-807c2ba293e7:1:1; expires=Thu, 09 May 2024 14:23:10 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 03 May 2024 14:23:10 GMT; secure; SameSite=None
uncs=1; expires=Fri, 03 May 2024 14:23:10 GMT; secure; SameSite=None
pdhtkv29=true; expires=Fri, 03 May 2024 14:23:10 GMT; secure; SameSite=None
uncs29=1; expires=Fri, 03 May 2024 14:23:10 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2f85e58dfb73d946e8bff78b440539e5
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

pt-static1.ptwmstcnt.com/npe/_common/script/adblock/ad_left_-v543991.js

93.93.51.200

200 OK

21 B

URL GET HTTP/2
pt-static1.ptwmstcnt.com/npe/_common/script/adblock/ad_left_-v543991.js
IP
93.93.51.200:443
ASN
#34655 JWE S.a r.l.

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98
Certificate
IssuerLet's Encrypt
Subjectpt-static1.ptwmstcnt.com
Fingerprint73:C8:D9:F5:59:09:CC:44:FC:D9:C2:31:E2:1E:D8:6E:45:74:F1:43
ValidityThu, 21 Mar 2024 06:01:08 GMT - Wed, 19 Jun 2024 06:01:07 GMT

File type
ASCII text, with no line terminators
Size
21 B (21 bytes)
Hash
01c6e7ecb819ef28b0c9b962513a1596
1a49f493db7b91ed34a7040d36732352b9a5dc39
e97a9988dce8067f81f57557b349dd481e0335e75175179b6b01322be2ff13a5

HTTP Headers

GET /npe/_common/script/adblock/ad_left_-v543991.js HTTP/1.1
Host: pt-static1.ptwmstcnt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pt.potawe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:10 GMT
content-type: application/javascript
content-length: 21
last-modified: Thu, 02 May 2024 10:58:27 GMT
etag: "663371d3-15"
access-control-allow-origin: *
server: unknown
x-cdn-node: sesto
x-cache-status: R-HIT
expires: Thu, 16 May 2024 14:23:10 GMT
cache-control: max-age=1209600
accept-ranges: bytes
X-Firefox-Spdy: h2

t.dtscout.com/i/?l=https%3A%2F%2F9xmovie.golf%2Fdaasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb%2F&j=

141.101.120.11

200 OK

4.8 kB

URL GET HTTP/2
t.dtscout.com/i/?l=https%3A%2F%2F9xmovie.golf%2Fdaasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb%2F&j=
IP
141.101.120.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectdtscout.com
Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21
ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT

File type
ASCII text, with very long lines (2077)
Size
4.8 kB (4784 bytes)
Hash
51bd741af3fcc4984d1a753eebfa1141
534664acf69cbbb5c9b97c96b63dd37bdc580da2
3e9c8e5dcf3cbff9e1b7211551a31fe388f1b8e607fd78a0a34855be65da721c

HTTP Headers

GET /i/?l=https%3A%2F%2F9xmovie.golf%2Fdaasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb%2F&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:10 GMT
content-type: application/javascript
x-s: mtl1
set-cookie: m=1; Domain=dtscout.com; Expires=Thu, 02-May-2024 15:46:30 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Thu, 02-May-2024 18:23:10 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1714659790; Domain=dtscout.com; Expires=Sat, 10-Aug-2024 14:23:10 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.379
expires: Thu, 02 May 2024 14:23:09 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m%2F1Dx1EijjwqDoce%2BfBiTgGH1DjRVwcfgL03hq42M2xNMaOwFBlcFgZHLOovtD%2FpF5enrRad7088fBYrhOJ%2BRlTAKMO4tndO%2FCjEGDTcJ4lBvo92as%2FfBeMfyyg18Tg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d8aae87fd14c86-HEL
content-encoding: br
X-Firefox-Spdy: h2

pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20

93.93.51.189

200 OK

3.7 kB

URL GET HTTP/2
pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20
IP
93.93.51.189:443
ASN
#34655 JWE S.a r.l.

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjectawecre.com
Fingerprint46:DE:0A:87:F8:FF:63:F6:41:36:F5:EA:DC:0D:08:59:09:15:32:5E
ValidityMon, 01 Apr 2024 21:01:11 GMT - Sun, 30 Jun 2024 21:01:10 GMT

File type
gzip compressed data, max speed, from Unix
Size
3.7 kB (3696 bytes)
Hash
c19bd5e37bfa18fbaa145895c783c1bb
f4f845b9fe14fb16eb76f31f50473d2ef324fa28
b981e45e3aab77b553a981113a640766c168a056cac67b22e0ae1a99ac45b151

HTTP Headers

GET /avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20 HTTP/1.1
Host: pt.potawe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-ud-id: GQrZM/9TT
cache-control: no-cache
date: Thu, 02 May 2024 14:23:10 GMT
server: unknown
x-cache-status: R-MISS
set-cookie: psui=c11170dca089cc3d7eb6d01a7f1a1068; Path=/; Expires=Sat, 01-Jun-24 14:23:10 GMT; SameSite=None; Secure
content-encoding: gzip
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-WXTGF28

142.250.74.72

200 OK

85 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-WXTGF28
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT

File type
JavaScript source, ASCII text, with very long lines (17656)
Size
85 kB (84742 bytes)
Hash
e46bc746d59c17c30f30636d61e8c711
db858c0f7d89603a7ce3f564392cd950e676f858
7d39cde514fb8a813606049f1767dee4aeaa3be0a121e2c57cc386b0de231abf

HTTP Headers

GET /gtm.js?id=GTM-WXTGF28 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pt.potawe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 May 2024 14:23:11 GMT
expires: Thu, 02 May 2024 14:23:11 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 May 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 84742
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-WXTGF28

142.250.74.72

200 OK

85 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-WXTGF28
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT

File type
JavaScript source, ASCII text, with very long lines (17656)
Size
85 kB (84743 bytes)
Hash
6c1e01b58fcd4ee1c6968dde27336871
930fe7a0f0d63181b2c8fd18263c15c9b4e8a8bb
30d86fae4cdf30f3a46d185d30bdfc25b524f9a0c5e2c9669b90ab9f817bbefb

HTTP Headers

GET /gtm.js?id=GTM-WXTGF28 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pt.potawe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 May 2024 14:23:11 GMT
expires: Thu, 02 May 2024 14:23:11 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 May 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 84743
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

pt-static5.ptwmstcnt.com/npe/_common/fonts/bebasneue_bold-webfont-v543991.woff

93.93.51.200

200 OK

20 kB

URL GET HTTP/2
pt-static5.ptwmstcnt.com/npe/_common/fonts/bebasneue_bold-webfont-v543991.woff
IP
93.93.51.200:443
ASN
#34655 JWE S.a r.l.

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98
Certificate
IssuerLet's Encrypt
Subjectpt-static1.ptwmstcnt.com
Fingerprint73:C8:D9:F5:59:09:CC:44:FC:D9:C2:31:E2:1E:D8:6E:45:74:F1:43
ValidityThu, 21 Mar 2024 06:01:08 GMT - Wed, 19 Jun 2024 06:01:07 GMT

File type
Web Open Font Format, TrueType, length 20484, version 1.0
Size
20 kB (20484 bytes)
Hash
d87f07f63ea107dea85a058294c6f27a
8942e3cc2699c55613a07cf8e857f9c67650c224
aef6b1a90384cb7b24f4698b86ef2aa72a511a2f9cafa6e6ae3f695c147b4541

HTTP Headers

GET /npe/_common/fonts/bebasneue_bold-webfont-v543991.woff HTTP/1.1
Host: pt-static5.ptwmstcnt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pt.potawe.com
DNT: 1
Connection: keep-alive
Referer: https://pt-static5.ptwmstcnt.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:11 GMT
content-type: application/font-woff
content-length: 20484
last-modified: Thu, 02 May 2024 10:58:27 GMT
etag: "663371d3-5004"
access-control-allow-origin: *
server: unknown
x-cdn-node: sesto
x-cache-status: R-HIT
expires: Thu, 16 May 2024 14:23:11 GMT
cache-control: max-age=1209600
accept-ranges: bytes
X-Firefox-Spdy: h2

pt-static5.ptwmstcnt.com/npe/_common/fonts/bebasneue_bold-webfont-v543991.woff

93.93.51.200

200 OK

20 kB

URL GET HTTP/2
pt-static5.ptwmstcnt.com/npe/_common/fonts/bebasneue_bold-webfont-v543991.woff
IP
93.93.51.200:443
ASN
#34655 JWE S.a r.l.

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98
Certificate
IssuerLet's Encrypt
Subjectpt-static1.ptwmstcnt.com
Fingerprint73:C8:D9:F5:59:09:CC:44:FC:D9:C2:31:E2:1E:D8:6E:45:74:F1:43
ValidityThu, 21 Mar 2024 06:01:08 GMT - Wed, 19 Jun 2024 06:01:07 GMT

File type
Web Open Font Format, TrueType, length 20484, version 1.0
Size
20 kB (20484 bytes)
Hash
d87f07f63ea107dea85a058294c6f27a
8942e3cc2699c55613a07cf8e857f9c67650c224
aef6b1a90384cb7b24f4698b86ef2aa72a511a2f9cafa6e6ae3f695c147b4541

HTTP Headers

GET /npe/_common/fonts/bebasneue_bold-webfont-v543991.woff HTTP/1.1
Host: pt-static5.ptwmstcnt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pt.potawe.com
DNT: 1
Connection: keep-alive
Referer: https://pt-static5.ptwmstcnt.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:11 GMT
content-type: application/font-woff
content-length: 20484
last-modified: Thu, 02 May 2024 10:58:27 GMT
etag: "663371d3-5004"
access-control-allow-origin: *
server: unknown
x-cdn-node: sesto
x-cache-status: R-HIT
expires: Thu, 16 May 2024 14:23:11 GMT
cache-control: max-age=1209600
accept-ranges: bytes
X-Firefox-Spdy: h2

pt-static3.ptwmstcnt.com/npe/ba/avb/script/avb-font-based-v543991.js

93.93.51.200

200 OK

9.3 kB

URL GET HTTP/2
pt-static3.ptwmstcnt.com/npe/ba/avb/script/avb-font-based-v543991.js
IP
93.93.51.200:443
ASN
#34655 JWE S.a r.l.

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20
Certificate
IssuerLet's Encrypt
Subjectpt-static1.ptwmstcnt.com
Fingerprint73:C8:D9:F5:59:09:CC:44:FC:D9:C2:31:E2:1E:D8:6E:45:74:F1:43
ValidityThu, 21 Mar 2024 06:01:08 GMT - Wed, 19 Jun 2024 06:01:07 GMT

File type
gzip compressed data, max speed, from Unix
Size
9.3 kB (9317 bytes)
Hash
e61f767be9b158ad3ca196bc5a0108d2
b5e473642028ac3d2d73b4e5aef888d233a46f9f
feecc3db041e7fcfd363f36d939908e5f241889b6fc2f0dec23b01b99e4627ad

HTTP Headers

GET /npe/ba/avb/script/avb-font-based-v543991.js HTTP/1.1
Host: pt-static3.ptwmstcnt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pt.potawe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:10 GMT
content-type: application/javascript
last-modified: Thu, 02 May 2024 10:58:27 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"663371d3-23fc"
access-control-allow-origin: *
server: unknown
x-cdn-node: sesto
x-cache-status: R-HIT
expires: Thu, 16 May 2024 14:23:10 GMT
cache-control: max-age=1209600
content-encoding: gzip
X-Firefox-Spdy: h2

honeymoondisappointed.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=195

192.243.61.225

200 OK

0 B

URL GET HTTP/1.1
honeymoondisappointed.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=195
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjecthoneymoondisappointed.com
Fingerprint4C:29:92:FB:67:9C:9B:21:4B:30:D2:66:01:94:59:B1:74:6B:38:19
ValidityMon, 29 Apr 2024 08:21:01 GMT - Sun, 28 Jul 2024 08:21:00 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=195 HTTP/1.1
Host: honeymoondisappointed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Cookie: u_pl=20469230; uid_id2=1b492968-891c-4c40-ab73-807c2ba293e7:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 02 May 2024 14:23:11 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

honeymoondisappointed.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=241

192.243.61.225

200 OK

0 B

URL GET HTTP/1.1
honeymoondisappointed.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=241
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjecthoneymoondisappointed.com
Fingerprint4C:29:92:FB:67:9C:9B:21:4B:30:D2:66:01:94:59:B1:74:6B:38:19
ValidityMon, 29 Apr 2024 08:21:01 GMT - Sun, 28 Jul 2024 08:21:00 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=241 HTTP/1.1
Host: honeymoondisappointed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Cookie: u_pl=20469230; uid_id2=1b492968-891c-4c40-ab73-807c2ba293e7:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 02 May 2024 14:23:11 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

pt-static3.ptwmstcnt.com/npe/ba/avb/script/avb-font-based-v543991.js

93.93.51.200

200 OK

18 kB

URL GET HTTP/2
pt-static3.ptwmstcnt.com/npe/ba/avb/script/avb-font-based-v543991.js
IP
93.93.51.200:443
ASN
#34655 JWE S.a r.l.

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20
Certificate
IssuerLet's Encrypt
Subjectpt-static1.ptwmstcnt.com
Fingerprint73:C8:D9:F5:59:09:CC:44:FC:D9:C2:31:E2:1E:D8:6E:45:74:F1:43
ValidityThu, 21 Mar 2024 06:01:08 GMT - Wed, 19 Jun 2024 06:01:07 GMT

File type
gzip compressed data, max speed, from Unix
Size
18 kB (17831 bytes)
Hash
04cf0aa385328f50d89be735ee895af8
566584fd256907cec367040c8a9a0afa9f128fcf
d2cb9778b126675a29ad48a5d68d05374f2c0d6c468cec5b8d2659dd5f6ee5b5

HTTP Headers

GET /npe/ba/avb/script/avb-font-based-v543991.js HTTP/1.1
Host: pt-static3.ptwmstcnt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pt.potawe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:10 GMT
content-type: application/javascript
last-modified: Thu, 02 May 2024 10:58:27 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"663371d3-23fc"
access-control-allow-origin: *
server: unknown
x-cdn-node: sesto
x-cache-status: R-HIT
expires: Thu, 16 May 2024 14:23:10 GMT
cache-control: max-age=1209600
content-encoding: gzip
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-4ZZ9RSZM4N&l=dataLayer&cx=c

142.250.74.72

200 OK

93 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-4ZZ9RSZM4N&l=dataLayer&cx=c
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT

File type
JavaScript source, ASCII text, with very long lines (7711)
Size
93 kB (93348 bytes)
Hash
9f676cc3c9aa6932621c5b07b8484ea9
ff499f7df1afcfd48d8709e346132a4b805df0f1
0edf249e91ada5cc700e27a29718a04acc4e952d2a169feae32d03afc2c85e19

HTTP Headers

GET /gtag/js?id=G-4ZZ9RSZM4N&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pt.potawe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 May 2024 14:23:11 GMT
expires: Thu, 02 May 2024 14:23:11 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93348
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

pt.potawe.com/GQrZM/9TT.gif?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jsm&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20&im=1

93.93.51.189

200 OK

43 B

URL GET HTTP/2
pt.potawe.com/GQrZM/9TT.gif?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jsm&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20&im=1
IP
93.93.51.189:443
ASN
#34655 JWE S.a r.l.

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20
Certificate
IssuerLet's Encrypt
Subjectawecre.com
Fingerprint46:DE:0A:87:F8:FF:63:F6:41:36:F5:EA:DC:0D:08:59:09:15:32:5E
ValidityMon, 01 Apr 2024 21:01:11 GMT - Sun, 30 Jun 2024 21:01:10 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /GQrZM/9TT.gif?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jsm&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20&im=1 HTTP/1.1
Host: pt.potawe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20
Cookie: psui=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:11 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
server: unknown
set-cookie: psui=c11170dca089cc3d7eb6d01a7f1a1068; Path=/; Expires=Sat, 01-Jun-24 14:23:11 GMT; SameSite=None; Secure
expires: Thu, 02 May 2024 14:23:10 GMT
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2

honeymoondisappointed.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=518

192.243.61.225

200 OK

0 B

URL GET HTTP/1.1
honeymoondisappointed.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=518
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjecthoneymoondisappointed.com
Fingerprint4C:29:92:FB:67:9C:9B:21:4B:30:D2:66:01:94:59:B1:74:6B:38:19
ValidityMon, 29 Apr 2024 08:21:01 GMT - Sun, 28 Jul 2024 08:21:00 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=518 HTTP/1.1
Host: honeymoondisappointed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Cookie: u_pl=20469230; uid_id2=1b492968-891c-4c40-ab73-807c2ba293e7:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 02 May 2024 14:23:11 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

www.googletagmanager.com/gtag/js?id=G-4ZZ9RSZM4N&l=dataLayer&cx=c

142.250.74.72

200 OK

93 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-4ZZ9RSZM4N&l=dataLayer&cx=c
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52
ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT

File type
JavaScript source, ASCII text, with very long lines (7711)
Size
93 kB (93347 bytes)
Hash
4ebbc7cfeae20ce8487d9e86ba575159
a9267fed7451755d133b11f78300017e873675b8
e87434759c2fb2102e4ba7a0d38c80c8d3bf6e708f4c16afdec776342cad47e4

HTTP Headers

GET /gtag/js?id=G-4ZZ9RSZM4N&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pt.potawe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 May 2024 14:23:11 GMT
expires: Thu, 02 May 2024 14:23:11 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93347
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

pt.potawe.com/jKbyK/KVQ.gif?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jsm&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98&im=1

93.93.51.189

200 OK

43 B

URL GET HTTP/2
pt.potawe.com/jKbyK/KVQ.gif?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jsm&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98&im=1
IP
93.93.51.189:443
ASN
#34655 JWE S.a r.l.

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98
Certificate
IssuerLet's Encrypt
Subjectawecre.com
Fingerprint46:DE:0A:87:F8:FF:63:F6:41:36:F5:EA:DC:0D:08:59:09:15:32:5E
ValidityMon, 01 Apr 2024 21:01:11 GMT - Sun, 30 Jun 2024 21:01:10 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /jKbyK/KVQ.gif?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jsm&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98&im=1 HTTP/1.1
Host: pt.potawe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98
Cookie: psui=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:11 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
server: unknown
set-cookie: psui=c11170dca089cc3d7eb6d01a7f1a1068; Path=/; Expires=Sat, 01-Jun-24 14:23:11 GMT; SameSite=None; Secure
expires: Thu, 02 May 2024 14:23:10 GMT
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2

honeymoondisappointed.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=355

192.243.61.225

200 OK

0 B

URL GET HTTP/1.1
honeymoondisappointed.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=355
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjecthoneymoondisappointed.com
Fingerprint4C:29:92:FB:67:9C:9B:21:4B:30:D2:66:01:94:59:B1:74:6B:38:19
ValidityMon, 29 Apr 2024 08:21:01 GMT - Sun, 28 Jul 2024 08:21:00 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=355 HTTP/1.1
Host: honeymoondisappointed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Cookie: u_pl=20469230; uid_id2=1b492968-891c-4c40-ab73-807c2ba293e7:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 02 May 2024 14:23:11 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://9xmovie.golf
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:01:10 GMT
expires: Fri, 02 May 2025 02:01:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 44522
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://9xmovie.golf
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:55:00 GMT
expires: Fri, 02 May 2025 01:55:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 44892
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

honeymoondisappointed.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSu3uxFBEHJLQhz8BDRne2e6fllDsEYVxbXbMgP9Cb1qyflVnc1Vd3Ts3taDEgOHgb%2Fgp5vdrNooiRXwSCzAQ8LgYynPbgX7x4U9iw9Do4%2BqHrv1fcKvve999U4PyMN5PT0%2BidmT2lN11t1v3b5syC4UttSST6sDbvtz9vhlZodvNdr1%2F23ax9JvmPWG37g%2B4Ef1DaUlZEZrlcgVPq4F9R7fj1s1INWiKH9f%2B5yD456EIMz8gaUmK0%2B9y5C8SmS%2BMl16XYyk777YZxrmhmLgTi6m%2BwkpkgQL8PIeoiSo0U1jHu58QwmOZzThRn8W8jUjHi%2FPANLjhYkwQYHc55MQyZg4lUUgymknkLRKbi5DyVeEoAL3NhGEj%2B8YWxBd%2F9BaYXOyOr5X1DFjKz%2BdhFJ%2FMM1rYa120bnmTKJwzAqoYZTqP4UaX6MbG8FqjgGz76EEi%2FI%2BvkWkvhg22kDJU7fCljYa%2FTa3bVuL%2BBrIQ%2F9Nco6zbWu3%2BENRhu9puzMBVJqChVNoeUI1HnIq6M85JGHPPUQi9MaD4Kg4wtO%2FW6P86boSNYWfkA7UUADv91FzqseRsjSEbgegdt9pHYfO2oEm%2F8Md6%2BEEx5cRjAQJQpJUDiCghIUiqDICIpBeSi0a7jyodAuZ8HCNxa%2BWU5M1h%2FTQ5P1ZUJA7QhWlOP0jLxeCeh17%2F6BHXlaa9MWbfSijmiJZjeM2iHrBtwPGu2wHbJIdOBUCeVW5u3uqRl55%2BvvkaoZeeV8CEaP4fQxuPJA8zdBixL0Xom95FFvGJuBkvVCJRCmRJqtItv1xvqMXJpPcHP7CSQ%2Fufp7c27gtkRqS3yhnhP09YPJLVOQg1umcOTpdpqpWO3Rarq3M5rJC999LHcLY8XmdTf69n1eAVX4%2BI502RZNhEr6jjy6poSQdsNYLslPm%2B5TyW7m7t613CZ5unXzg43NOLXSOWWSKWi1qH9acDUjr126M1%2Fcyz9uQ9kpbF4izk%2FIwqDMFDzdh0uX%2FJ0hsHpZw1IPRV5ObIMtH7Ui0HKZU1bC%2FSdny3hiafWbqnLsHqBvV0Cz%2B0jiEgNbYqBLUD2Cyy9MstSeXP11QYPplQnTduWAaau%2FmctcXU%2Fh1Gmt6YsOk5HsMBm2wkhywVot5vOIs6bodjkyN4ua4xd%2FAwAA%2F%2F8BAAD%2F%2F3RpgemSBAAA

192.243.61.225

200 OK

7 B

URL GET HTTP/1.1
honeymoondisappointed.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSu3uxFBEHJLQhz8BDRne2e6fllDsEYVxbXbMgP9Cb1qyflVnc1Vd3Ts3taDEgOHgb%2Fgp5vdrNooiRXwSCzAQ8LgYynPbgX7x4U9iw9Do4%2BqHrv1fcKvve999U4PyMN5PT0%2BidmT2lN11t1v3b5syC4UttSST6sDbvtz9vhlZodvNdr1%2F23ax9JvmPWG37g%2B4Ef1DaUlZEZrlcgVPq4F9R7fj1s1INWiKH9f%2B5yD456EIMz8gaUmK0%2B9y5C8SmS%2BMl16XYyk777YZxrmhmLgTi6m%2BwkpkgQL8PIeoiSo0U1jHu58QwmOZzThRn8W8jUjHi%2FPANLjhYkwQYHc55MQyZg4lUUgymknkLRKbi5DyVeEoAL3NhGEj%2B8YWxBd%2F9BaYXOyOr5X1DFjKz%2BdhFJ%2FMM1rYa120bnmTKJwzAqoYZTqP4UaX6MbG8FqjgGz76EEi%2FI%2BvkWkvhg22kDJU7fCljYa%2FTa3bVuL%2BBrIQ%2F9Nco6zbWu3%2BENRhu9puzMBVJqChVNoeUI1HnIq6M85JGHPPUQi9MaD4Kg4wtO%2FW6P86boSNYWfkA7UUADv91FzqseRsjSEbgegdt9pHYfO2oEm%2F8Md6%2BEEx5cRjAQJQpJUDiCghIUiqDICIpBeSi0a7jyodAuZ8HCNxa%2BWU5M1h%2FTQ5P1ZUJA7QhWlOP0jLxeCeh17%2F6BHXlaa9MWbfSijmiJZjeM2iHrBtwPGu2wHbJIdOBUCeVW5u3uqRl55%2BvvkaoZeeV8CEaP4fQxuPJA8zdBixL0Xom95FFvGJuBkvVCJRCmRJqtItv1xvqMXJpPcHP7CSQ%2Fufp7c27gtkRqS3yhnhP09YPJLVOQg1umcOTpdpqpWO3Rarq3M5rJC999LHcLY8XmdTf69n1eAVX4%2BI502RZNhEr6jjy6poSQdsNYLslPm%2B5TyW7m7t613CZ5unXzg43NOLXSOWWSKWi1qH9acDUjr126M1%2Fcyz9uQ9kpbF4izk%2FIwqDMFDzdh0uX%2FJ0hsHpZw1IPRV5ObIMtH7Ui0HKZU1bC%2FSdny3hiafWbqnLsHqBvV0Cz%2B0jiEgNbYqBLUD2Cyy9MstSeXP11QYPplQnTduWAaau%2FmctcXU%2Fh1Gmt6YsOk5HsMBm2wkhywVot5vOIs6bodjkyN4ua4xd%2FAwAA%2F%2F8BAAD%2F%2F3RpgemSBAAA
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjecthoneymoondisappointed.com
Fingerprint4C:29:92:FB:67:9C:9B:21:4B:30:D2:66:01:94:59:B1:74:6B:38:19
ValidityMon, 29 Apr 2024 08:21:01 GMT - Sun, 28 Jul 2024 08:21:00 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSu3uxFBEHJLQhz8BDRne2e6fllDsEYVxbXbMgP9Cb1qyflVnc1Vd3Ts3taDEgOHgb%2Fgp5vdrNooiRXwSCzAQ8LgYynPbgX7x4U9iw9Do4%2BqHrv1fcKvve999U4PyMN5PT0%2BidmT2lN11t1v3b5syC4UttSST6sDbvtz9vhlZodvNdr1%2F23ax9JvmPWG37g%2B4Ef1DaUlZEZrlcgVPq4F9R7fj1s1INWiKH9f%2B5yD456EIMz8gaUmK0%2B9y5C8SmS%2BMl16XYyk777YZxrmhmLgTi6m%2BwkpkgQL8PIeoiSo0U1jHu58QwmOZzThRn8W8jUjHi%2FPANLjhYkwQYHc55MQyZg4lUUgymknkLRKbi5DyVeEoAL3NhGEj%2B8YWxBd%2F9BaYXOyOr5X1DFjKz%2BdhFJ%2FMM1rYa120bnmTKJwzAqoYZTqP4UaX6MbG8FqjgGz76EEi%2FI%2BvkWkvhg22kDJU7fCljYa%2FTa3bVuL%2BBrIQ%2F9Nco6zbWu3%2BENRhu9puzMBVJqChVNoeUI1HnIq6M85JGHPPUQi9MaD4Kg4wtO%2FW6P86boSNYWfkA7UUADv91FzqseRsjSEbgegdt9pHYfO2oEm%2F8Md6%2BEEx5cRjAQJQpJUDiCghIUiqDICIpBeSi0a7jyodAuZ8HCNxa%2BWU5M1h%2FTQ5P1ZUJA7QhWlOP0jLxeCeh17%2F6BHXlaa9MWbfSijmiJZjeM2iHrBtwPGu2wHbJIdOBUCeVW5u3uqRl55%2BvvkaoZeeV8CEaP4fQxuPJA8zdBixL0Xom95FFvGJuBkvVCJRCmRJqtItv1xvqMXJpPcHP7CSQ%2Fufp7c27gtkRqS3yhnhP09YPJLVOQg1umcOTpdpqpWO3Rarq3M5rJC999LHcLY8XmdTf69n1eAVX4%2BI502RZNhEr6jjy6poSQdsNYLslPm%2B5TyW7m7t613CZ5unXzg43NOLXSOWWSKWi1qH9acDUjr126M1%2Fcyz9uQ9kpbF4izk%2FIwqDMFDzdh0uX%2FJ0hsHpZw1IPRV5ObIMtH7Ui0HKZU1bC%2FSdny3hiafWbqnLsHqBvV0Cz%2B0jiEgNbYqBLUD2Cyy9MstSeXP11QYPplQnTduWAaau%2FmctcXU%2Fh1Gmt6YsOk5HsMBm2wkhywVot5vOIs6bodjkyN4ua4xd%2FAwAA%2F%2F8BAAD%2F%2F3RpgemSBAAA HTTP/1.1
Host: honeymoondisappointed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Cookie: u_pl=20469230; uid_id2=1b492968-891c-4c40-ab73-807c2ba293e7:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 02 May 2024 14:23:12 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ca409248c98b0e19839fd3344716b4ec
Strict-Transport-Security: max-age=0; includeSubdomains

honeymoondisappointed.com/pixel/sbs?c=1

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
honeymoondisappointed.com/pixel/sbs?c=1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjecthoneymoondisappointed.com
Fingerprint4C:29:92:FB:67:9C:9B:21:4B:30:D2:66:01:94:59:B1:74:6B:38:19
ValidityMon, 29 Apr 2024 08:21:01 GMT - Sun, 28 Jul 2024 08:21:00 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: honeymoondisappointed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Cookie: u_pl=20469230; uid_id2=1b492968-891c-4c40-ab73-807c2ba293e7:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 May 2024 14:23:12 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

unseenreport.com/pxf.gif?uuid=1b492968-891c-4c40-ab73-807c2ba293e7&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=6a5a29f7d5d384f64b81c0126464bfd7&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14

192.243.59.20

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=1b492968-891c-4c40-ab73-807c2ba293e7&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=6a5a29f7d5d384f64b81c0126464bfd7&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=1b492968-891c-4c40-ab73-807c2ba293e7&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=6a5a29f7d5d384f64b81c0126464bfd7&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 May 2024 14:23:12 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c90648682914b1c1445ab9259129b34d
Strict-Transport-Security: max-age=0; includeSubdomains

unseenreport.com/pxf.gif?uuid=1b492968-891c-4c40-ab73-807c2ba293e7&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=8d6340b87f7318c06e5be9e94fae8e28&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14

192.243.59.20

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=1b492968-891c-4c40-ab73-807c2ba293e7&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=8d6340b87f7318c06e5be9e94fae8e28&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=1b492968-891c-4c40-ab73-807c2ba293e7&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=8d6340b87f7318c06e5be9e94fae8e28&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 02 May 2024 14:23:12 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ea478dc8f10e296631e86c63002ba6f4
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/script.js

188.114.96.1

200 OK

5.7 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/script.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
5.7 kB (5707 bytes)
Hash
4f5f05ab032dd8fc0db448fcf51a35e2
78f94f93fdb792d95ea3ac293ac1b8e3bc13d609
7fd8e9c0e5ca0c7123954a109fa8b7e8368c7e1262880925e2ac7b8c877a9e38

HTTP Headers

GET /sb/chat/mob/ssp/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://9xmovie.golf
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:11 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 08:25:08 GMT
etag: W/"62134c64-17e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o886UG%2FZoor3lG0CO%2BOShl9LPXM%2FzDS%2BZ1IORgwrPE%2BTLs%2F7stxQJsZg03FFW%2BWhUNhcRJBHIv%2FYDgUjkaxG%2Bk6%2B%2FcselKfx5vfto5hZw5k3D7lwxtzMX1QvMnDd6VdaryZQRYMokpHj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8aaf0ad4856a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pt.potawe.com/avb/straight/hardcore/undefined

93.93.51.189

200 OK

11 kB

URL GET HTTP/2
pt.potawe.com/avb/straight/hardcore/undefined
IP
93.93.51.189:443
ASN
#34655 JWE S.a r.l.

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98
Certificate
IssuerLet's Encrypt
Subjectawecre.com
Fingerprint46:DE:0A:87:F8:FF:63:F6:41:36:F5:EA:DC:0D:08:59:09:15:32:5E
ValidityMon, 01 Apr 2024 21:01:11 GMT - Sun, 30 Jun 2024 21:01:10 GMT

File type
gzip compressed data, max speed, from Unix
Size
11 kB (10697 bytes)
Hash
3219533ffc062b3a5bc248bf19a0697c
c54fc62a174903e91f405a22ea4aa6a68fb6cb14
e2191c3325227676ca8f9fbf3d4d660077ce339f611435e1ec9a1fd64883992e

HTTP Headers

GET /avb/straight/hardcore/undefined HTTP/1.1
Host: pt.potawe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20
Cookie: psui=c11170dca089cc3d7eb6d01a7f1a1068
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-ud-id: 8L6Y2/UVg
cache-control: no-cache
date: Thu, 02 May 2024 14:23:11 GMT
server: unknown
x-cache-status: R-MISS
set-cookie: psui=c11170dca089cc3d7eb6d01a7f1a1068; Path=/; Expires=Sat, 01-Jun-24 14:23:11 GMT; SameSite=None; Secure
content-encoding: gzip
X-Firefox-Spdy: h2

acscdn.com/script/ut.js?cb=1714659789812

172.67.165.20

200 OK

63 kB

URL GET HTTP/3
acscdn.com/script/ut.js?cb=1714659789812
IP
172.67.165.20:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectacscdn.com
Fingerprint55:5D:7F:12:65:2B:04:EA:49:29:92:63:3B:D1:C2:DF:C7:F6:4B:9E
ValiditySat, 27 Apr 2024 13:56:54 GMT - Fri, 26 Jul 2024 13:56:53 GMT

File type

Size
63 kB (62975 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /script/ut.js?cb=1714659789812 HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 02 May 2024 14:23:10 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPq4rLQfUzIb4PXABJF3kaL6QpNC2eEDt1dZIA_AICzJwRtEzQkHmfGBvBjJTgyllcLoFfCchk7ypw
x-goog-generation: 1714053300452258
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 62975
x-goog-hash: crc32c=f8d0YQ==, md5=vEgeNFwEtFNOCk5UoPLBxg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Thu, 02 May 2024 14:34:26 GMT
cache-control: public, max-age=3600
age: 2643
last-modified: Thu, 25 Apr 2024 13:55:00 GMT
etag: W/"bc481e345c04b4534e0a4e54a0f2c1c6"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jJbLeKadbmTm6txoDrbZ34Bex1SmWubnR05xuOJ6yagcCV0Q3osTYhonQlN4m39uxtjueGHn0SI405KpQpEbY9anOn7u15S7Q7w7Ky88pZUwewPkPTWrGbgs92iz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8aae7db7f56ab-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

waust.at/t.js

104.26.4.7

200 OK

29 kB

URL GET HTTP/2
waust.at/t.js
IP
104.26.4.7:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:3D:6E:A9:C7:6B:CD:4B:7B:04:51:4F:D1:D7:10:2D:12:92:F9:58
ValiditySun, 04 Jun 2023 00:00:00 GMT - Mon, 03 Jun 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (29322), with no line terminators
Size
29 kB (29322 bytes)
Hash
8fe8954e18b3eafdb2dcf03b218e88f3
17bd6b26816b4c9c7fb9b7552ccdca95c2443c9a
ff4c07f1e5cbcfdcfeabb37e8c1dc21d3edc5e3e20edd2d3da16ab5aa22bc600

HTTP Headers

GET /t.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:07 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:40 GMT
etag: W/"63c0412c-728a"
expires: Fri, 03 May 2024 13:52:38 GMT
cache-control: max-age=86400
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 1829
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bOPdLa5Dy9NUvXQZZEBkkBJCclwJ%2BKIv1%2FAQCfvsJXW%2F4lPSt7Hi0DGoikX1kwxX%2BxYXwM9xAoI%2FBVe8dcfreC11tg2NSULcIbFKIpJ4vsiWYeuv%2BpyLFZ2h"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8aad4fd6e5695-OSL
content-encoding: br
X-Firefox-Spdy: h2

youradexchange.com/script/banner.php?r=8270166&cbpage=https%3A%2F%2F9xmovie.golf%2Fdaasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb%2F&cbref=&cbdescription=9xmovies%2C%209xmovie%20Bollywood%20Movies%209xmovies.win%20Sexy%20Bhabhi%20Videos%209xmovie.win%20Hollywood%20Movie%20Hindi%20Dubbed%209xmovie.live%20New%20Movies%209xmovies4u%20Hot%20Web%20Series%20300mb%20movies&cbkeywords=&cbtitle=Daasi%20(2024)%20S01%201080p%20HDRip%20Hindi%20Web%20Series%20%5B1.7GB%5D%20-%209xmovies%20-%209xmovie&srs=ea6441446f3b804b3e2bfc261aac4a90&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&atv=48.1

104.21.91.188

200 OK

2.1 kB

URL GET HTTP/2
youradexchange.com/script/banner.php?r=8270166&cbpage=https%3A%2F%2F9xmovie.golf%2Fdaasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb%2F&cbref=&cbdescription=9xmovies%2C%209xmovie%20Bollywood%20Movies%209xmovies.win%20Sexy%20Bhabhi%20Videos%209xmovie.win%20Hollywood%20Movie%20Hindi%20Dubbed%209xmovie.live%20New%20Movies%209xmovies4u%20Hot%20Web%20Series%20300mb%20movies&cbkeywords=&cbtitle=Daasi%20(2024)%20S01%201080p%20HDRip%20Hindi%20Web%20Series%20%5B1.7GB%5D%20-%209xmovies%20-%209xmovie&srs=ea6441446f3b804b3e2bfc261aac4a90&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&atv=48.1
IP
104.21.91.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectyouradexchange.com
FingerprintD5:0B:42:43:E8:69:FA:76:AA:C8:B3:28:9A:EB:33:C4:6F:62:7A:2B
ValiditySun, 14 Apr 2024 01:48:20 GMT - Sat, 13 Jul 2024 01:48:19 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2158), with no line terminators
Size
2.1 kB (2092 bytes)
Hash
cd532f558f38bd0a47869ae674064ec5
7df3e08e5ac6085eb16f95fab0c6358183e0665d
0592272b50471d8995524c542bcc040d3f983f80cc8fe18a52a71b8162f1cbed

HTTP Headers

GET /script/banner.php?r=8270166&cbpage=https%3A%2F%2F9xmovie.golf%2Fdaasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb%2F&cbref=&cbdescription=9xmovies%2C%209xmovie%20Bollywood%20Movies%209xmovies.win%20Sexy%20Bhabhi%20Videos%209xmovie.win%20Hollywood%20Movie%20Hindi%20Dubbed%209xmovie.live%20New%20Movies%209xmovies4u%20Hot%20Web%20Series%20300mb%20movies&cbkeywords=&cbtitle=Daasi%20(2024)%20S01%201080p%20HDRip%20Hindi%20Web%20Series%20%5B1.7GB%5D%20-%209xmovies%20-%209xmovie&srs=ea6441446f3b804b3e2bfc261aac4a90&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&atv=48.1 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://9xmovie.golf/
Origin: https://9xmovie.golf
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:10 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3Pyc2toRYNn694k1MAp2mzNJVScTlkVv7HVzJrZrqSBljpXuIjL5Q0FeG8V%2BcA8buhgF1kgiJ4TrGfU%2FRU0go5s4n%2BZAPKRoF3e7LAU4ffEVNpJhcst8X1jtTEAhG7joPE%2BfNTg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d8aae88d8a5690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pt-static5.ptwmstcnt.com/npe/_common/script/incognito/di.min-v543991.js

93.93.51.200

200 OK

3.4 kB

URL GET HTTP/2
pt-static5.ptwmstcnt.com/npe/_common/script/incognito/di.min-v543991.js
IP
93.93.51.200:443
ASN
#34655 JWE S.a r.l.

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20
Certificate
IssuerLet's Encrypt
Subjectpt-static1.ptwmstcnt.com
Fingerprint73:C8:D9:F5:59:09:CC:44:FC:D9:C2:31:E2:1E:D8:6E:45:74:F1:43
ValidityThu, 21 Mar 2024 06:01:08 GMT - Wed, 19 Jun 2024 06:01:07 GMT

File type
JavaScript source, ASCII text, with very long lines (3437), with no line terminators
Size
3.4 kB (3399 bytes)
Hash
d8a934f2b60fa69c594c3246bf4e7bfa
6c7538c569a106d8d90a8398fd593c467ad9f1d0
368b9db56d1f4bb78ad74fc50bf80565fae3e35d442ada1de923ab418ce5d072

HTTP Headers

GET /npe/_common/script/incognito/di.min-v543991.js HTTP/1.1
Host: pt-static5.ptwmstcnt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pt.potawe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:10 GMT
content-type: application/javascript
last-modified: Thu, 02 May 2024 10:58:27 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"663371d3-d47"
access-control-allow-origin: *
server: unknown
x-cdn-node: sesto
x-cache-status: R-HIT
expires: Thu, 16 May 2024 14:23:10 GMT
cache-control: max-age=1209600
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A400%2C500%7CMaterial+Icons&ver=6.5.2

142.250.74.106

200 OK

4.9 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto%3A400%2C500%7CMaterial+Icons&ver=6.5.2
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
ASCII text, with very long lines (5052), with no line terminators
Size
4.9 kB (4917 bytes)
Hash
bb3a74411a4a34537b6b88c0e2bdc104
8680d0710ab9b08708d3c5427556f003a56e2a11
e0f0ee6fef24cd5413c51ffb8c6809a88d340b759fd8e13b4d8d705f84a525db

HTTP Headers

GET /css?family=Roboto%3A400%2C500%7CMaterial+Icons&ver=6.5.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 14:23:07 GMT
date: Thu, 02 May 2024 14:23:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

acscdn.com/script/aclib.js

172.67.165.20

200 OK

126 kB

URL GET HTTP/2
acscdn.com/script/aclib.js
IP
172.67.165.20:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectacscdn.com
Fingerprint55:5D:7F:12:65:2B:04:EA:49:29:92:63:3B:D1:C2:DF:C7:F6:4B:9E
ValiditySat, 27 Apr 2024 13:56:54 GMT - Fri, 26 Jul 2024 13:56:53 GMT

File type

Size
126 kB (125606 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /script/aclib.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:06 GMT
content-type: text/javascript
x-goog-generation: 1714389616107910
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 125606
x-goog-hash: crc32c=xTw75w==, md5=TCF5phnDVdTC7KGmT28/Bw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
x-guploader-uploadid: ABPtcPq3WDRiywUXy1I9epsgjBrZr10_kxsxD8tygBTr-xkVVMzaGeOnPwLfQ_UPT0AwhViwE90
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Thu, 02 May 2024 14:27:39 GMT
cache-control: public, max-age=3600
age: 3327
last-modified: Mon, 29 Apr 2024 11:20:16 GMT
etag: W/"4c2179a619c355d4c2eca1a64f6f3f07"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DotuQNEUG1SVpmmIBebLA0LsyCQR552t4WOtqm9bm%2ByAnYwgOZwrb7r0XulI%2F1mC761h7vI0b%2F7CYE1bRw8cBlmttZM5PqE2zfI6Kf2ss4i4wPByp5cLRTo38the"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8aad3dbb27131-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pt-static4.ptwmstcnt.com/npe/ba/avb/script/avb-main-v543991.js

93.93.51.200

200 OK

49 kB

URL GET HTTP/2
pt-static4.ptwmstcnt.com/npe/ba/avb/script/avb-main-v543991.js
IP
93.93.51.200:443
ASN
#34655 JWE S.a r.l.

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98
Certificate
IssuerLet's Encrypt
Subjectpt-static1.ptwmstcnt.com
Fingerprint73:C8:D9:F5:59:09:CC:44:FC:D9:C2:31:E2:1E:D8:6E:45:74:F1:43
ValidityThu, 21 Mar 2024 06:01:08 GMT - Wed, 19 Jun 2024 06:01:07 GMT

File type

Size
49 kB (49339 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /npe/ba/avb/script/avb-main-v543991.js HTTP/1.1
Host: pt-static4.ptwmstcnt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pt.potawe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:10 GMT
content-type: application/javascript
last-modified: Thu, 02 May 2024 10:58:27 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"663371d3-c0bb"
access-control-allow-origin: *
server: unknown
x-cdn-node: sesto
x-cache-status: R-HIT
expires: Thu, 16 May 2024 14:23:10 GMT
cache-control: max-age=1209600
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

142.250.74.106

200 OK

7.0 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
ASCII text, with very long lines (7193), with no line terminators
Size
7.0 kB (7004 bytes)
Hash
16b49a99486594c0b42d9bd7821deb2c
2fb46e5e86d6b37d4497cc04bfd89b3cb33a276a
3f3540952441e06ef81189cf63d46bac242804e386779dbb0cdd78ed10025c21

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 14:23:11 GMT
date: Thu, 02 May 2024 14:23:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

pt-static4.ptwmstcnt.com/npe/ba/avb/script/avb-main-v543991.js

93.93.51.200

200 OK

49 kB

URL GET HTTP/2
pt-static4.ptwmstcnt.com/npe/ba/avb/script/avb-main-v543991.js
IP
93.93.51.200:443
ASN
#34655 JWE S.a r.l.

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20
Certificate
IssuerLet's Encrypt
Subjectpt-static1.ptwmstcnt.com
Fingerprint73:C8:D9:F5:59:09:CC:44:FC:D9:C2:31:E2:1E:D8:6E:45:74:F1:43
ValidityThu, 21 Mar 2024 06:01:08 GMT - Wed, 19 Jun 2024 06:01:07 GMT

File type

Size
49 kB (49339 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /npe/ba/avb/script/avb-main-v543991.js HTTP/1.1
Host: pt-static4.ptwmstcnt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pt.potawe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:10 GMT
content-type: application/javascript
last-modified: Thu, 02 May 2024 10:58:27 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"663371d3-c0bb"
access-control-allow-origin: *
server: unknown
x-cdn-node: sesto
x-cache-status: R-HIT
expires: Thu, 16 May 2024 14:23:10 GMT
cache-control: max-age=1209600
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png

188.114.96.1

200 OK

6.0 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
PNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced
Size
6.0 kB (5982 bytes)
Hash
c489ce2c491a22ee37a55e26a92dfd73
2fa588ab09e94dd902e5bd24b48f98ad1949c9d6
1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd

HTTP Headers

GET /sb/chat/mob/ssp/1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:11 GMT
content-type: image/png
content-length: 5982
last-modified: Mon, 21 Feb 2022 08:25:06 GMT
etag: "62134c62-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 157487
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5%2BqR3JZDmz2UNCFQY9qcs22g50vYGgMNgClv%2BHOUmrmb7Whob172lKH%2FnzuU9H3GkEnrIaIMqvKNIm0%2BPefquXsn%2BySO3rJkUOp9tMH1w45BqL%2FdKsl%2BXUIehUPBHDR75DyaI%2FIjYdik"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8aaefe9a1b529-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

93.93.51.189

200 OK

12 kB

URL GET HTTP/2
pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98
IP
93.93.51.189:443
ASN
#34655 JWE S.a r.l.

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjectawecre.com
Fingerprint46:DE:0A:87:F8:FF:63:F6:41:36:F5:EA:DC:0D:08:59:09:15:32:5E
ValidityMon, 01 Apr 2024 21:01:11 GMT - Sun, 30 Jun 2024 21:01:10 GMT

File type
JavaScript source, ASCII text, with very long lines (804)
Size
12 kB (12041 bytes)
Hash
9273182d087e45dc3ece129b28e445e7
509200a1a3b98915291b0719d2c3e1237183cafe
6d574bcaa067b817d86d2303bc82c7846164d96dcb06962b130d9ee37b6b5555

HTTP Headers

GET /avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98 HTTP/1.1
Host: pt.potawe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-ud-id: jKbyK/KVQ
cache-control: no-cache
date: Thu, 02 May 2024 14:23:10 GMT
server: unknown
x-cache-status: R-MISS
set-cookie: psui=c11170dca089cc3d7eb6d01a7f1a1068; Path=/; Expires=Sat, 01-Jun-24 14:23:10 GMT; SameSite=None; Secure
content-encoding: gzip
X-Firefox-Spdy: h2

pt-static5.ptwmstcnt.com/npe/ba/avb/css/avb-animation-06-v543991.css

93.93.51.200

200 OK

18 kB

URL GET HTTP/2
pt-static5.ptwmstcnt.com/npe/ba/avb/css/avb-animation-06-v543991.css
IP
93.93.51.200:443
ASN
#34655 JWE S.a r.l.

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98
Certificate
IssuerLet's Encrypt
Subjectpt-static1.ptwmstcnt.com
Fingerprint73:C8:D9:F5:59:09:CC:44:FC:D9:C2:31:E2:1E:D8:6E:45:74:F1:43
ValidityThu, 21 Mar 2024 06:01:08 GMT - Wed, 19 Jun 2024 06:01:07 GMT

File type
ASCII text, with very long lines (17552), with no line terminators
Size
18 kB (17552 bytes)
Hash
e626bd914601f851f210907d60c51953
b4e75498dfa4a448680459c9eea2ea166db7fdbe
0f08bf7ff69dca23d0ad02159de15607c8f90962e495dec350ce798e806ac865

HTTP Headers

GET /npe/ba/avb/css/avb-animation-06-v543991.css HTTP/1.1
Host: pt-static5.ptwmstcnt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pt.potawe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:10 GMT
content-type: text/css
last-modified: Thu, 02 May 2024 10:58:27 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"663371d3-4490"
access-control-allow-origin: *
server: unknown
x-cdn-node: sesto
x-cache-status: R-HIT
expires: Thu, 16 May 2024 14:23:10 GMT
cache-control: max-age=1209600
content-encoding: gzip
X-Firefox-Spdy: h2

agrarianbrowse.com/pixel/purst?dl=0&th=0&sc=0&rs=2852&rd=2852&fd=1127&bv=24.4.6923&tmpl=70

172.240.108.84

200 OK

0 B

URL GET HTTP/1.1
agrarianbrowse.com/pixel/purst?dl=0&th=0&sc=0&rs=2852&rd=2852&fd=1127&bv=24.4.6923&tmpl=70
IP
172.240.108.84:443
ASN
#7979 SERVERS-COM

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjectagrarianbrowse.com
Fingerprint5C:E3:DC:E6:D1:6E:DA:7C:F7:7E:BE:3E:DA:4C:35:B6:B4:58:B3:96
ValidityTue, 30 Apr 2024 15:25:21 GMT - Mon, 29 Jul 2024 15:25:20 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=2852&rd=2852&fd=1127&bv=24.4.6923&tmpl=70 HTTP/1.1
Host: agrarianbrowse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 02 May 2024 14:23:10 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

acscdn.com/script/banner.js

172.67.165.20

200 OK

63 kB

URL GET HTTP/3
acscdn.com/script/banner.js
IP
172.67.165.20:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectacscdn.com
Fingerprint55:5D:7F:12:65:2B:04:EA:49:29:92:63:3B:D1:C2:DF:C7:F6:4B:9E
ValiditySat, 27 Apr 2024 13:56:54 GMT - Fri, 26 Jul 2024 13:56:53 GMT

File type

Size
63 kB (63013 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /script/banner.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 02 May 2024 14:23:09 GMT
content-type: text/javascript
x-goog-generation: 1714389693207586
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 63013
x-goog-hash: crc32c=fi3olg==, md5=Zd6s1MheN2EjwaEobFOyIQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
x-guploader-uploadid: ABPtcPokA-nYfLnt6-1nIW2SFFPL1Wx442RKOF5tzz1Gl9dN3yklq7QEJvMiPvHs8ZrDmzgtf7K1-x4ziw
expires: Thu, 02 May 2024 15:19:58 GMT
cache-control: public, max-age=3600
age: 191
last-modified: Mon, 29 Apr 2024 11:21:33 GMT
etag: W/"65deacd4c85e376123c1a1286c53b221"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ITkT1gzXaS%2FhgG65p9SXx0K96Xtzp3t4fRZLNnZfVDiPb7jz4QsL6Ndov9ds9gznw4TB0WfupvDNdVDuJ2ZBv6o1lJovVzTcpHtPEJra7HfJDERpRe%2BV1dvM8%2FLE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8aae57ffa56ab-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

9xmovie.golf/wp-includes/js/wp-emoji-release.min.js?ver=8c580885753489e0854bd8b07dc2c93f

104.21.35.237

200 OK

19 kB

URL GET HTTP/3
9xmovie.golf/wp-includes/js/wp-emoji-release.min.js?ver=8c580885753489e0854bd8b07dc2c93f
IP
104.21.35.237:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subject9xmovie.golf
Fingerprint56:B9:28:B8:A2:F3:0E:70:B3:DE:C6:4F:FA:88:25:BE:08:B2:2F:1E
ValidityTue, 09 Apr 2024 10:07:59 GMT - Mon, 08 Jul 2024 10:07:58 GMT

File type
JavaScript source, ASCII text, with very long lines (15752)
Size
19 kB (18726 bytes)
Hash
b976b651932bfd25b9ddb5b7693d88a7
7fcb7cb5c11227f9213b1e08a07d0212209e1432
4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=8c580885753489e0854bd8b07dc2c93f HTTP/1.1
Host: 9xmovie.golf
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 02 May 2024 14:23:10 GMT
content-type: text/javascript
etag: W/"4926-660d8ec0-1fa244a;br"
last-modified: Wed, 03 Apr 2024 17:15:44 GMT
vary: Accept-Encoding
x-served-by: 9xmovie.golf
cache-control: max-age=14400
cf-cache-status: HIT
age: 2216
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hgmKFGcY6L69dOPVVJ5KtjxkXbicCOBxigHZMwFUPejW%2B4G7mqY2rlGQlAzlj0Sv2gKQgTqxWm0IlBkm8dNWkUnMhQvTLSbj%2B%2FEiTg9rLzxHTfp83OhFJQXwYVvUHx8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d8aae7def80b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

t.dtscout.com/pv/?_a=v&_h=9xmovie.golf&_ss=40pvf6xpl0&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=6y99&_cb=_dtspv.c

141.101.120.11

200 OK

51 B

URL GET HTTP/2
t.dtscout.com/pv/?_a=v&_h=9xmovie.golf&_ss=40pvf6xpl0&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=6y99&_cb=_dtspv.c
IP
141.101.120.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectdtscout.com
Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21
ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT

File type
ASCII text, with no line terminators
Size
51 B (51 bytes)
Hash
43831826993788ae4776895d3552cce9
2493dddc0212b56a15fde3db1fc8863fc7867823
9f9e30d06ab4d917bf6717e090cfea8014a3dd29fd6b824ab616704782d2ac56

HTTP Headers

GET /pv/?_a=v&_h=9xmovie.golf&_ss=40pvf6xpl0&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=6y99&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Cookie: m=1; oa=1; df=1714659790
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:10 GMT
content-type: application/javascript
x-t: 0.164
x-c: 0
expires: Thu, 02 May 2024 14:23:09 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OTvhrr2NyhQm8bWYfLQO6%2Fhp70TgZicGFGWWWGgq2LaXSqXbTzE8Dx2NIqmwBgeELvN367L87M916GdA474oaGf8zqBfYphSs%2FRicrfmGMsASiTKrrNaLB1msQcqmok%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d8aaea692a4c86-HEL
content-encoding: br
X-Firefox-Spdy: h2

9xmovie.golf/wp-content/themes/9xmovie/style.css?ver=563739884

104.21.35.237

200 OK

123 kB

URL GET HTTP/3
9xmovie.golf/wp-content/themes/9xmovie/style.css?ver=563739884
IP
104.21.35.237:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subject9xmovie.golf
Fingerprint56:B9:28:B8:A2:F3:0E:70:B3:DE:C6:4F:FA:88:25:BE:08:B2:2F:1E
ValidityTue, 09 Apr 2024 10:07:59 GMT - Mon, 08 Jul 2024 10:07:58 GMT

File type

Size
123 kB (122855 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/themes/9xmovie/style.css?ver=563739884 HTTP/1.1
Host: 9xmovie.golf
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 02 May 2024 14:23:09 GMT
content-type: text/css
cache-control: public, max-age=43200
expires: Fri, 03 May 2024 02:23:07 GMT
etag: W/"1dfe7-6568daed-1fa2c3b;br"
last-modified: Thu, 30 Nov 2023 18:56:45 GMT
vary: Accept-Encoding
x-served-by: 9xmovie.golf
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1uek1QpksYpHg9L%2B0gJFiX5Th2axuJXY6BT%2BIjWOv4PE7XoRSyujukJiCd54uwuqf5gjU2CLrUcVGqMS%2BDrtcCkooM%2Bp9LMHWAN%2BoPHyo5dDsZZZORqdlt%2FU1KmC%2BTE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d8aad38e5f0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

honeymoondisappointed.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzuYigqDsbRHm4GFFM%2Bnu6XTPuIfFNUaCcbPsD%2FQm1VXVkzLVXU1V9%2FQkp%2BCC7MHD4F%2FQ802yQXeV3avgIpMFD4GFHU85mIt3Dwo5y4yDow%2Bq3nv1vYLvfe99NSzPiY%2BSnq1%2FovelUnR1rek2rn7medcaWzIr%2B41%2BO%2Fw8DK41TO%2B9Tth03258JNiuXvVdz3U912tsSCMS3V%2BdgpD5447X7LjNwG96awH65v%2B5LR1Y6oD3zskbkHyy%2FNy5DMnGyNIn68LuFjp%2F98O0VLTQBj1%2BfC%2FbzXSVIV2EiXGQZMfzamj7cuMZdHY0owvd%2B7cwlhPi%2FPIMcXY8J4m4dzjjGSuIDDF%2FFVVvDKHGkHQMpu9D8pcEYBw3t5GlD29qU9G9f1A6RSdk%2BeIvyGpCln%2B7jCz94YaS%2FcYdrcpC6syin9SQ%2FTFkd4y8PEGxvwRZnYAVX0LyF2T1YgtZerhtlYbkZ295cdDxO2F7pd3x2ErAAneFxlFrpe1GzI%2Bp32mJaCaQlGPIZAwlBqDWQTk90kGZOChzByk%2FazDP8yKXM%2Bq2O4y1eCTikLsejRKPem7YRsmmPQxQ5AMwNQAzB8jNAXblAKb8GXanhuUObEHQ4zUqQVBZgooSVJKgKgiqXn3ElfVt%2FZArW8be3Ptz36pHuugO6ZEuuiIjoGYAw%2Bthfk5enwrotO%2F9gV1x1gjpGvU7ScTXeKsdJGEQtz3men4YhEGc8AhW1pB2adbuvpyQd77%2BHrmckFcu%2BojpCaw6AZMOaPkmaFWD7tTYzx51%2BqnuSdGsZAaua%2BTFMoo9Z6jOyZXZBDe3n0Cw0%2Bu%2Ft2YGZmrkpsYX8jlBVz0Y3dYVObytK0uebueFTOU%2BnU73TkELcem7j8VepQ3fXLeDb99nU2AaPr4rbLFFMy6zriWPbkjOhdnQhgny06b9VMS3SrtzozRZmW%2Fd%2BmBjM82NsFbqbAw6XdQ%2FDZickNeu3J0t7tUftyHNGKaskZanZG6QegyWH8DmC%2F5WExi1qIlzB1VZj4wfLx6VJFBikdO4hv1PHi%2FikaHT31TWQ%2FsAXbMEWtxHltbomRo9VYOqAWx5aVTk5vT6r3MasVoaxcosHcbKqG9mMk%2Bvp7DyrBG1Wi4NO2teFFERxYHfTkKPU%2BoHoR%2BGtIXCTpLW8MXfAAAA%2F%2F8BAAD%2F%2F%2FS9VAGSBAAA

192.243.61.225

200 OK

0 B

URL GET HTTP/1.1
honeymoondisappointed.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzuYigqDsbRHm4GFFM%2Bnu6XTPuIfFNUaCcbPsD%2FQm1VXVkzLVXU1V9%2FQkp%2BCC7MHD4F%2FQ802yQXeV3avgIpMFD4GFHU85mIt3Dwo5y4yDow%2Bq3nv1vYLvfe99NSzPiY%2BSnq1%2FovelUnR1rek2rn7medcaWzIr%2B41%2BO%2Fw8DK41TO%2B9Tth03258JNiuXvVdz3U912tsSCMS3V%2BdgpD5447X7LjNwG96awH65v%2B5LR1Y6oD3zskbkHyy%2FNy5DMnGyNIn68LuFjp%2F98O0VLTQBj1%2BfC%2FbzXSVIV2EiXGQZMfzamj7cuMZdHY0owvd%2B7cwlhPi%2FPIMcXY8J4m4dzjjGSuIDDF%2FFVVvDKHGkHQMpu9D8pcEYBw3t5GlD29qU9G9f1A6RSdk%2BeIvyGpCln%2B7jCz94YaS%2FcYdrcpC6syin9SQ%2FTFkd4y8PEGxvwRZnYAVX0LyF2T1YgtZerhtlYbkZ295cdDxO2F7pd3x2ErAAneFxlFrpe1GzI%2Bp32mJaCaQlGPIZAwlBqDWQTk90kGZOChzByk%2FazDP8yKXM%2Bq2O4y1eCTikLsejRKPem7YRsmmPQxQ5AMwNQAzB8jNAXblAKb8GXanhuUObEHQ4zUqQVBZgooSVJKgKgiqXn3ElfVt%2FZArW8be3Ptz36pHuugO6ZEuuiIjoGYAw%2Bthfk5enwrotO%2F9gV1x1gjpGvU7ScTXeKsdJGEQtz3men4YhEGc8AhW1pB2adbuvpyQd77%2BHrmckFcu%2BojpCaw6AZMOaPkmaFWD7tTYzx51%2BqnuSdGsZAaua%2BTFMoo9Z6jOyZXZBDe3n0Cw0%2Bu%2Ft2YGZmrkpsYX8jlBVz0Y3dYVObytK0uebueFTOU%2BnU73TkELcem7j8VepQ3fXLeDb99nU2AaPr4rbLFFMy6zriWPbkjOhdnQhgny06b9VMS3SrtzozRZmW%2Fd%2BmBjM82NsFbqbAw6XdQ%2FDZickNeu3J0t7tUftyHNGKaskZanZG6QegyWH8DmC%2F5WExi1qIlzB1VZj4wfLx6VJFBikdO4hv1PHi%2FikaHT31TWQ%2FsAXbMEWtxHltbomRo9VYOqAWx5aVTk5vT6r3MasVoaxcosHcbKqG9mMk%2Bvp7DyrBG1Wi4NO2teFFERxYHfTkKPU%2BoHoR%2BGtIXCTpLW8MXfAAAA%2F%2F8BAAD%2F%2F%2FS9VAGSBAAA
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjecthoneymoondisappointed.com
Fingerprint4C:29:92:FB:67:9C:9B:21:4B:30:D2:66:01:94:59:B1:74:6B:38:19
ValidityMon, 29 Apr 2024 08:21:01 GMT - Sun, 28 Jul 2024 08:21:00 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzuYigqDsbRHm4GFFM%2Bnu6XTPuIfFNUaCcbPsD%2FQm1VXVkzLVXU1V9%2FQkp%2BCC7MHD4F%2FQ802yQXeV3avgIpMFD4GFHU85mIt3Dwo5y4yDow%2Bq3nv1vYLvfe99NSzPiY%2BSnq1%2FovelUnR1rek2rn7medcaWzIr%2B41%2BO%2Fw8DK41TO%2B9Tth03258JNiuXvVdz3U912tsSCMS3V%2BdgpD5447X7LjNwG96awH65v%2B5LR1Y6oD3zskbkHyy%2FNy5DMnGyNIn68LuFjp%2F98O0VLTQBj1%2BfC%2FbzXSVIV2EiXGQZMfzamj7cuMZdHY0owvd%2B7cwlhPi%2FPIMcXY8J4m4dzjjGSuIDDF%2FFVVvDKHGkHQMpu9D8pcEYBw3t5GlD29qU9G9f1A6RSdk%2BeIvyGpCln%2B7jCz94YaS%2FcYdrcpC6syin9SQ%2FTFkd4y8PEGxvwRZnYAVX0LyF2T1YgtZerhtlYbkZ295cdDxO2F7pd3x2ErAAneFxlFrpe1GzI%2Bp32mJaCaQlGPIZAwlBqDWQTk90kGZOChzByk%2FazDP8yKXM%2Bq2O4y1eCTikLsejRKPem7YRsmmPQxQ5AMwNQAzB8jNAXblAKb8GXanhuUObEHQ4zUqQVBZgooSVJKgKgiqXn3ElfVt%2FZArW8be3Ptz36pHuugO6ZEuuiIjoGYAw%2Bthfk5enwrotO%2F9gV1x1gjpGvU7ScTXeKsdJGEQtz3men4YhEGc8AhW1pB2adbuvpyQd77%2BHrmckFcu%2BojpCaw6AZMOaPkmaFWD7tTYzx51%2BqnuSdGsZAaua%2BTFMoo9Z6jOyZXZBDe3n0Cw0%2Bu%2Ft2YGZmrkpsYX8jlBVz0Y3dYVObytK0uebueFTOU%2BnU73TkELcem7j8VepQ3fXLeDb99nU2AaPr4rbLFFMy6zriWPbkjOhdnQhgny06b9VMS3SrtzozRZmW%2Fd%2BmBjM82NsFbqbAw6XdQ%2FDZickNeu3J0t7tUftyHNGKaskZanZG6QegyWH8DmC%2F5WExi1qIlzB1VZj4wfLx6VJFBikdO4hv1PHi%2FikaHT31TWQ%2FsAXbMEWtxHltbomRo9VYOqAWx5aVTk5vT6r3MasVoaxcosHcbKqG9mMk%2Bvp7DyrBG1Wi4NO2teFFERxYHfTkKPU%2BoHoR%2BGtIXCTpLW8MXfAAAA%2F%2F8BAAD%2F%2F%2FS9VAGSBAAA HTTP/1.1
Host: honeymoondisappointed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Cookie: u_pl=20469230; uid_id2=1b492968-891c-4c40-ab73-807c2ba293e7:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 02 May 2024 14:23:10 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b072e81838cd88da67c6078da2b9e37c
Strict-Transport-Security: max-age=0; includeSubdomains

pt-static5.ptwmstcnt.com/npe/_common/script/incognito/di.min-v543991.js

93.93.51.200

200 OK

3.4 kB

URL GET HTTP/2
pt-static5.ptwmstcnt.com/npe/_common/script/incognito/di.min-v543991.js
IP
93.93.51.200:443
ASN
#34655 JWE S.a r.l.

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98
Certificate
IssuerLet's Encrypt
Subjectpt-static1.ptwmstcnt.com
Fingerprint73:C8:D9:F5:59:09:CC:44:FC:D9:C2:31:E2:1E:D8:6E:45:74:F1:43
ValidityThu, 21 Mar 2024 06:01:08 GMT - Wed, 19 Jun 2024 06:01:07 GMT

File type
JavaScript source, ASCII text, with very long lines (3437), with no line terminators
Size
3.4 kB (3399 bytes)
Hash
d8a934f2b60fa69c594c3246bf4e7bfa
6c7538c569a106d8d90a8398fd593c467ad9f1d0
368b9db56d1f4bb78ad74fc50bf80565fae3e35d442ada1de923ab418ce5d072

HTTP Headers

GET /npe/_common/script/incognito/di.min-v543991.js HTTP/1.1
Host: pt-static5.ptwmstcnt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pt.potawe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:10 GMT
content-type: application/javascript
last-modified: Thu, 02 May 2024 10:58:27 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"663371d3-d47"
access-control-allow-origin: *
server: unknown
x-cdn-node: sesto
x-cache-status: R-HIT
expires: Thu, 16 May 2024 14:23:10 GMT
cache-control: max-age=1209600
content-encoding: gzip
X-Firefox-Spdy: h2

galleryn2.vcmdiawe.com/f8d2e11bd6c43618af00d6f28c91232a1c/89426c29027c1ac73543254f51e560b1.mp4?pstool=501_101&psid=adcash

93.93.51.190

206 Partial Content

311 kB

URL GET HTTP/2
galleryn2.vcmdiawe.com/f8d2e11bd6c43618af00d6f28c91232a1c/89426c29027c1ac73543254f51e560b1.mp4?pstool=501_101&psid=adcash
IP
93.93.51.190:443
ASN
#34655 JWE S.a r.l.

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V20
Certificate
IssuerSectigo Limited
Subject*.vcmdiawe.com
FingerprintCE:0E:FE:7C:F9:7E:6E:39:18:50:38:A4:A1:30:34:CA:86:47:16:2C
ValidityMon, 08 Apr 2024 00:00:00 GMT - Fri, 02 May 2025 23:59:59 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
311 kB (311296 bytes)
Hash
407d6518ad72332b6c201ec5fda5dfbf
cfff3f0c5f39009cf665acf3f500ba5c734295c2
38d4d3e9e899bb55d8eb04c31cecac3337b60f8150440c3c8557e5422e4d4f14

HTTP Headers

GET /f8d2e11bd6c43618af00d6f28c91232a1c/89426c29027c1ac73543254f51e560b1.mp4?pstool=501_101&psid=adcash HTTP/1.1
Host: galleryn2.vcmdiawe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://pt.potawe.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
date: Thu, 02 May 2024 14:23:11 GMT
content-type: video/mp4
content-length: 3054112
last-modified: Wed, 03 Mar 2021 12:24:32 GMT
x-rgw-object-type: Normal
etag: "97a5da89edaf01d9556d42614f71d38f"
access-control-allow-origin: *
x-content-type-options: nosniff
x-cache-source: Origin
x-cache-status: R-HIT
expires: Thu, 16 May 2024 14:23:11 GMT
server: unknown
x-cdn-node: sesto
cache-control: max-age=1209600
x-real-source: -
content-range: bytes 0-3054111/3054112
X-Firefox-Spdy: h2

galleryn0.vcmdiawe.com/f8d2e11bd6c43618af00d6f28c91232a1e/d837cda1643fcabc71799ab4bc5268b5.mp4?pstool=501_101&psid=adcash

93.93.51.190

206 Partial Content

262 kB

URL GET HTTP/2
galleryn0.vcmdiawe.com/f8d2e11bd6c43618af00d6f28c91232a1e/d837cda1643fcabc71799ab4bc5268b5.mp4?pstool=501_101&psid=adcash
IP
93.93.51.190:443
ASN
#34655 JWE S.a r.l.

Requested by
https://pt.potawe.com/avb/straight/hardcore/1_scene?targetCategory=girl&landingTarget=randomchat&width=300&height=250&psid=adcash&tags=&filters=&banner=06&pstool=501_101&site=jasmin&cobrandId=&psprogram=revs&campaign_id=&subAffId=171465979021030TNOTV415326358024V98
Certificate
IssuerSectigo Limited
Subject*.vcmdiawe.com
FingerprintCE:0E:FE:7C:F9:7E:6E:39:18:50:38:A4:A1:30:34:CA:86:47:16:2C
ValidityMon, 08 Apr 2024 00:00:00 GMT - Fri, 02 May 2025 23:59:59 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
262 kB (262144 bytes)
Hash
9f36aeacce6d059f2820e96bea4a6c14
0a323b7141d41e6cfe93e17ca6775f382f79c703
736d126b38665eb05e970e3653c22b4468d95cb4a2023255d5889189e706d98c

HTTP Headers

GET /f8d2e11bd6c43618af00d6f28c91232a1e/d837cda1643fcabc71799ab4bc5268b5.mp4?pstool=501_101&psid=adcash HTTP/1.1
Host: galleryn0.vcmdiawe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://pt.potawe.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
date: Thu, 02 May 2024 14:23:11 GMT
content-type: video/mp4
content-length: 2554999
last-modified: Tue, 14 Dec 2021 09:04:57 GMT
x-rgw-object-type: Normal
etag: "7161e075e60fbb4ea65680b3925b2f86"
access-control-allow-origin: *
x-content-type-options: nosniff
x-cache-source: Origin
x-cache-status: R-HIT
expires: Thu, 16 May 2024 14:23:11 GMT
server: unknown
x-cdn-node: sesto
cache-control: max-age=1209600
x-real-source: -
content-range: bytes 0-2554998/2554999
X-Firefox-Spdy: h2

104.21.91.188

200 OK

2.1 kB

URL GET HTTP/2
youradexchange.com/script/banner.php?r=8270166&cbpage=https%3A%2F%2F9xmovie.golf%2Fdaasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb%2F&cbref=&cbdescription=9xmovies%2C%209xmovie%20Bollywood%20Movies%209xmovies.win%20Sexy%20Bhabhi%20Videos%209xmovie.win%20Hollywood%20Movie%20Hindi%20Dubbed%209xmovie.live%20New%20Movies%209xmovies4u%20Hot%20Web%20Series%20300mb%20movies&cbkeywords=&cbtitle=Daasi%20(2024)%20S01%201080p%20HDRip%20Hindi%20Web%20Series%20%5B1.7GB%5D%20-%209xmovies%20-%209xmovie&srs=ea6441446f3b804b3e2bfc261aac4a90&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&atv=48.1
IP
104.21.91.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectyouradexchange.com
FingerprintD5:0B:42:43:E8:69:FA:76:AA:C8:B3:28:9A:EB:33:C4:6F:62:7A:2B
ValiditySun, 14 Apr 2024 01:48:20 GMT - Sat, 13 Jul 2024 01:48:19 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2158), with no line terminators
Size
2.1 kB (2092 bytes)
Hash
67bfc8d742ee0d0b012f0a2481bc04b6
f8b437ec6647fcd5cf512b9667552279c5d091e2
8163084163ce9e300ff18d01312d7480385c2432cd52f3f026b3e78ebca8a94e

HTTP Headers

GET /script/banner.php?r=8270166&cbpage=https%3A%2F%2F9xmovie.golf%2Fdaasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb%2F&cbref=&cbdescription=9xmovies%2C%209xmovie%20Bollywood%20Movies%209xmovies.win%20Sexy%20Bhabhi%20Videos%209xmovie.win%20Hollywood%20Movie%20Hindi%20Dubbed%209xmovie.live%20New%20Movies%209xmovies4u%20Hot%20Web%20Series%20300mb%20movies&cbkeywords=&cbtitle=Daasi%20(2024)%20S01%201080p%20HDRip%20Hindi%20Web%20Series%20%5B1.7GB%5D%20-%209xmovies%20-%209xmovie&srs=ea6441446f3b804b3e2bfc261aac4a90&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&atv=48.1 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://9xmovie.golf/
Origin: https://9xmovie.golf
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:10 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=onhvMSJ3xbM4DuSwvvyXPS75RM%2B%2FYMmyZmeGpnu5QSCMuRyAQS%2F6fts2A53tUP3vEbWw1Nt0mhwEhUcmQZgtocjbGe0F0GTC1ceUd0hHcEe1rTknakJF39ky9ueadVN2hKLHKwg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d8aae88da85690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/style.css

188.114.96.1

200 OK

4.6 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/style.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text, with very long lines (4886), with no line terminators
Size
4.6 kB (4617 bytes)
Hash
1230b98f01a549572edcd2bf3bdcb4ad
ac87a2a752ffb8b5167566183fddd531d7971be9
9a2954fc66ebbb9adf18c2ea4403d2a0a5dedf2928f9905e1fc656f5dc1b208d

HTTP Headers

GET /sb/chat/mob/ssp/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://9xmovie.golf
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:11 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-1209"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MnA8owW7LRC8CUhHS9p2xe4%2BIx4owTggmJkm3gxDyqnPx%2FDoN%2BIjTPiUWP89zvcDiaWYxbVWj8BejODh57QOK0WcUdx%2FD90fVcvp%2BRz2rv4xshWQPOWFZRoDOqWSjcpiTmAxD0lSA0Ou"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8aaefbc3a56a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css

188.114.96.1

200 OK

79 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
79 kB (79313 bytes)
Hash
fc638645a938f69e69360c75335ffd1a
143132fb8361c3ad0acf88cb70bf0b07c0ecc2d4
7ef76aab275d0221c68602d18f81b4285b280756f0f71d535ed8b5b889bc2f90

HTTP Headers

GET /sb/chat/mob/ssp/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://9xmovie.golf
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:11 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-135d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 100178
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T9fF6z1epMvDKyb0wYI0lnX9mjGcr5RPHi512T5BOg59mNiefZss%2Fon983E9q4CLyl02DpnH4kOJok1r%2FaKvSTV0zia4sY2QkoXrTM82Mm1Ya6BqKc1BjYVbY4d9PZrq7lHCT3hMe6zb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8aaefcc4756a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png

45.133.44.9

200 OK

14 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
14 kB (14496 bytes)
Hash
962ac416cce3fad636d4904386c8d3d4
811166fceb971353dc6a9ea3a153367f20b47592
ec6c8e1c030499a846897265d0c1f66dedc6ece17c1ea6006b700faf37e73555

HTTP Headers

GET /si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:11 GMT
content-type: image/png
content-length: 14496
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 01:05:10 GMT
etag: "656d25c6-38a0"
expires: Sat, 04 May 2024 14:23:11 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

fs1.extraimage.org/picupto/2024/05/01/Amber-Girls-School-2024-Hindi-S01-Amzn-Web-Series-1080p-HDRip-ESub-4GB-Download.jpg

104.21.233.195

200 OK

1.5 MB

URL GET HTTP/2
fs1.extraimage.org/picupto/2024/05/01/Amber-Girls-School-2024-Hindi-S01-Amzn-Web-Series-1080p-HDRip-ESub-4GB-Download.jpg
IP
104.21.233.195:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectextraimage.org
FingerprintAE:33:96:55:22:CA:85:63:A9:9E:FF:73:1C:B5:83:BD:86:29:43:BB
ValidityMon, 08 Apr 2024 21:55:29 GMT - Sun, 07 Jul 2024 21:55:28 GMT

File type

Size
1.5 MB (1516153 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /picupto/2024/05/01/Amber-Girls-School-2024-Hindi-S01-Amzn-Web-Series-1080p-HDRip-ESub-4GB-Download.jpg HTTP/1.1
Host: fs1.extraimage.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:07 GMT
content-type: image/jpeg
content-length: 1516153
last-modified: Wed, 01 May 2024 10:22:58 GMT
etag: "172279-61761deded9e5"
x-powered-by: PleskLin
ms-author-via: DAV
cache-control: max-age=14400
cf-cache-status: HIT
age: 2432
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4jJ6lDa8Kn3CJ1V9sZ%2FkOz6CSkkJiGTHqqZABr290Gx5DV6UoSLBqRzIC9OwP1ygCUSFI2ntW%2FA5UFAeehs8zfIUS8dx88EZ67IW3VJ8AQZ6JAiyKKGtX5VK%2FaXO3VsNuiqJBH0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8aad50a9c7717-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html

45.133.44.3

200 OK

3.0 kB

URL GET HTTP/2
cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html
IP
45.133.44.3:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerLet's Encrypt
Subjectcdn.barscreative1.com
FingerprintF6:54:F4:B9:EB:AD:1E:FA:8F:76:B9:75:20:9B:41:57:32:37:94:E3
ValiditySun, 10 Mar 2024 03:01:32 GMT - Sat, 08 Jun 2024 03:01:31 GMT

File type
HTML document, ASCII text, with very long lines (3229), with no line terminators
Size
3.0 kB (2977 bytes)
Hash
0b579b1f5697d55d3bc0856975d08243
e68a8e8bc08f86086744aba736df40ca7bea6d01
8ac4909eb5c0efc3278c66a43990535925fb271226f96261415df027fe40cb0c

HTTP Headers

GET /sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://9xmovie.golf
DNT: 1
Connection: keep-alive
Referer: https://9xmovie.golf/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:10 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Tue, 29 Mar 2022 08:27:42 GMT
etag: W/"6242c2fe-ba1"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Thu, 02 May 2024 15:23:10 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js

188.114.96.1

200 OK

90 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xmovie.golf/daasi-2024-s01-1080p-hdrip-hindi-web-series-1-7gb/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
90 kB (89492 bytes)
Hash
561acb3e541133bbdd2c0c19f8ee35a1
ffd1353cf3f77d25f801c84d8208613eb0d3d548
9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc

HTTP Headers

GET /sb/chat/mob/ssp/1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 02 May 2024 14:23:11 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 08:25:09 GMT
etag: W/"62134c65-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 165935
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=md7i76cNmDv7s2HV7l9ix7C5VjNbH%2BypiTaJy0EGNt9YrxxHJMIh4mAkqGcSXFZAjiosOWBtiAji5FwxwOAElhyWQVuCltPEH6u29eO6mA%2FYw0pdpldWMbvW8jn5ZKphXypSzuynbRzm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d8aaefe998b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (40)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML