Report - cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody/

Report Overview

Visited public
2023-12-12 06:47:55
Tags
URL
cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody/
Finishing URL
cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
IP / ASN
188.114.97.1
#13335 CLOUDFLARENET
Title
Ver Los Simpson 32 x 4 Online en HD | Cuevana 3

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
proftrafficcounter.com	unknown	2023-11-16	2023-11-21 09:55:14	2023-12-10 19:57:57	435 B	418 B	35.157.130.60
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-11 08:59:17	428 B	1.3 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-11 10:04:41	1.1 kB	33 kB	216.58.207.227
friendshipmale.com	unknown	2022-10-21	2022-10-21 14:15:25	2023-12-11 18:42:25	818 B	173 kB	104.21.234.32
absolutelytowns.com	unknown	2023-03-29	2023-03-29 03:44:52	2023-12-04 21:07:42	446 B	16 kB	192.243.59.20
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15 17:46:22	2023-12-11 15:25:16	3.0 kB	314 kB	172.64.108.10
fartherpensionerassure.com	unknown	unknown	No data	No data	501 B	467 B	192.243.59.13
images.dmca.com	11903	2000-05-18	2012-06-19 01:24:47	2023-12-11 05:12:08	921 B	5.8 kB	194.242.11.186
banquetunarmedgrater.com	unknown	2022-08-04	2022-08-04 17:12:50	2023-12-10 19:57:57	421 B	839 B	104.21.86.121
installedleapeddoing.com	unknown	unknown	No data	No data	8.5 kB	35 kB	192.243.59.20
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-12-11 07:16:37	439 B	29 kB	104.17.24.14
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-11 10:10:55	430 B	90 kB	142.250.74.104
cdn.yourwebbars.com	62037	2020-08-21	2021-01-29 18:47:27	2023-12-10 21:33:06	497 B	1.2 kB	104.26.6.19
cuevana3.ms	unknown	2023-03-09	2023-09-01 05:43:53	2023-12-07 08:44:27	15 kB	912 kB	188.114.97.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-12	medium	absolutelytowns.com	Sinkholed
2023-12-11	medium	installedleapeddoing.com	Sinkholed
2023-12-11	medium	installedleapeddoing.com	Sinkholed
2023-12-11	medium	installedleapeddoing.com	Sinkholed
2023-12-12	medium	fartherpensionerassure.com	Sinkholed
2023-12-11	medium	installedleapeddoing.com	Sinkholed
2023-12-11	medium	installedleapeddoing.com	Sinkholed
2023-12-11	medium	installedleapeddoing.com	Sinkholed
2023-12-11	medium	installedleapeddoing.com	Sinkholed
2023-12-11	medium	installedleapeddoing.com	Sinkholed
2023-12-11	medium	installedleapeddoing.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (18)

	URL	From	Size	First Seen	Last Seen
	cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/	ScriptElement	18 B	2023-03-12	2024-08-21
Pretty URL cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 15:26 Last Seen2024-08-21 08:11 Times Seen42 Hash cae4f80a9320c8a64f6b0f49bce6b1d4 9d7b3ddb1c52061b270c054a3dc71f53d17a1189 f8f53bb779f4a8a96dfb1a1372bf8153e558aad3299a69b67840c3b4ec154b9f Loading...

	cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/	ScriptElement	1.3 kB	2023-03-13	2024-08-21
Pretty URL cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 11:57 Last Seen2024-08-21 08:11 Times Seen33 Hash 122e58a8934c3e5c55dd88d3a886b032 78eb98358fc42307bba8c4f9088033bd676a9309 9ce41da6ed518730d495d20c434ff9b99a8332bc77c3ff2cc025e6c7f1426ff9 Loading...

	friendshipmale.com/sfp.js	ScriptElement	86 kB	2023-11-23	2024-08-20
Pretty URL friendshipmale.com/sfp.js IP 104.21.234.32 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-23 18:35 Last Seen2024-08-20 18:08 Times Seen6307 Hash 924e967bca1d599992556a8d139b1c5a 222b09dbf164ddc03d39100fd0524a22018d28b2 ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95 Loading...

	cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/	ScriptElement	392 B	2023-03-12	2024-08-21
Pretty URL cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 15:26 Last Seen2024-08-21 08:11 Times Seen33 Hash 7df1543309be61571e11a6208fbbb47f b0744f5305c1e3ebaa348c58febf8dd2fd2c9810 b90aa5e8bf3427f2d2a9482cd701d3eed8360c4a61ad6602acdddc6caa476117 Loading...

	cuevana3.ms/wp-content/themes/cuevana3/js/public.js	ScriptElement	11 kB	2023-09-17	2024-08-21
Pretty URL cuevana3.ms/wp-content/themes/cuevana3/js/public.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-17 00:32 Last Seen2024-08-21 06:39 Times Seen41 Hash 4f019197db9f487d3b34ef0b8f588a1c c21b86bb07a63a469c41e0158605c60fc6610aa0 3a98d831b24b054518e1ab8f5a17b95ea1b03ffdacb2a13117c914d6548a0d5e Loading...

	unknown	DomTimer	8 B	2023-04-13	2024-08-21
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2023-04-13 10:47 Last Seen2024-08-21 08:11 Times Seen34 Hash 7e58b89b75a381e05760894fefbc8a2f 863f8677faa11c26b24843df65304be928f25243 f7ab624c4f45737432f855613e6f64d4992fc5f2800bfd49ddd03cef6a63bfc8 Loading...

	unknown	ScriptElement	13 kB	2023-08-24	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-24 18:45 Last Seen2024-08-21 08:11 Times Seen42 Hash b19967e415b9fb3def32c6a89157128f f4df27dbce4ac67a357206088f0f80e861622c12 f316265eeceaccc728c7f823c3548bceecdc65c4d7e770fdba6012e8ced932bb Loading...

	unknown	ScriptElement	262 B	2023-04-13	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-13 10:47 Last Seen2024-08-21 08:11 Times Seen33 Hash b9b46257ab162aa58829e03dc7218c96 ae6bda315d54dbf49ffd642955086d2c191dee97 226885a2a04a66bd2b9fc5d0b78512ea92cfc2fd97790953df04e58246ca46f8 Loading...

	www.googletagmanager.com/gtag/js?id=G-W33LXXDJJN	ScriptElement	267 kB	2023-12-12	2023-12-12
Pretty URL www.googletagmanager.com/gtag/js?id=G-W33LXXDJJN IP 142.250.74.104 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-12 07:48 Last Seen2023-12-12 07:48 Times Seen1 Hash cfc95e8ea4d5bc396deb3d58d66d7281 96bc23f79283c54469452b1fad9eac14c9b98f2b 023ff79242671f43e14a16455a8497f8703293c57e5c3bcb957110eb7a2ca364 Loading...

	absolutelytowns.com/df/5d/4b/df5d4b87ade2e7a182431d779e05accb.js	ScriptElement	42 kB	2023-12-12	2023-12-12
Pretty URL absolutelytowns.com/df/5d/4b/df5d4b87ade2e7a182431d779e05accb.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-12 07:48 Last Seen2023-12-12 07:48 Times Seen1 Hash ae8506984bd3bdd76237c7524d06b0cc 57d12914e259c4afc1e374136a74b44fa4f3a600 ff7de59c7f808c0e4d68b8a2376ec867db215bfc5597eaa90295bc2a7b132996 Loading...

	cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/	ScriptElement	138 B	2024-08-20	2024-08-20
Pretty URL cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:03 Last Seen2024-08-20 16:03 Times Seen3 Hash bc812ceca83f45ccf07f470c7b61a797 f8814ce587e398a8108057acf441c69bd0b3cd8f 80533e1ac86119e55a96b65861b284729c68f9436d3480828abd0ce71f4f03e0 Loading...

	images.dmca.com/Badges/DMCABadgeHelper.min.js	ScriptElement	465 B	2023-03-07	2025-05-15
Pretty URL images.dmca.com/Badges/DMCABadgeHelper.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-15 19:07 Times Seen2206 Hash bac6fb686027b93b6565e1b1e5e8e213 e585bdd95488444f0ce2888d8281dbdaf73ca2ea e8021f1a9dad409f7e699457ac334653bf800464df69900237c4de1c29e275d0 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.6.1/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-05-16
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.6.1/jquery.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28 Last Seen2025-05-16 02:21 Times Seen14499 Hash 00727d1d5d9c90f7de826f1a4a9cc632 ea61688671d0c3044f2c5b2f2c4af0a6620ac6c2 a3cf00c109d907e543bc4f6dbc85eb31068f94515251347e9e57509b52ee3d74 Loading...

	installedleapeddoing.com/40/aa/46/40aa46c39c7690a74e15aea32b1f2ffc.js	ScriptElement	62 kB	2023-12-12	2023-12-12
Pretty URL installedleapeddoing.com/40/aa/46/40aa46c39c7690a74e15aea32b1f2ffc.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-12 07:48 Last Seen2023-12-12 07:48 Times Seen1 Hash 903fd637f5d5c0712a6dff14ec9cdaec d0ff0f9688af74b8372a54b9ac7636a417e8f60e c3200a87af33b1d73574fe01e97d4d84c797ccfd10168fa907b27b5454b3f54e Loading...

	unknown	ScriptElement	4.1 kB	2023-12-03	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 20:12 Last Seen2024-08-20 16:54 Times Seen14 Hash cb692ed1d976c6aa63353ee208082f90 8c5c6762418f547a99bfce527b3e13b46ad505f2 b287d2a412b9cc741999834f45791bf0363c72c2242cd3cc6f1465d27bc9b1ee Loading...

	cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/	ScriptElement	186 B	2023-03-12	2024-08-21
Pretty URL cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 15:26 Last Seen2024-08-21 08:11 Times Seen42 Hash 853809442d2ee492305b473101bdfa78 d7fa9162732dba7c5d4d59129d39fe9b09c540ea a1db286b260c5dd2881a114d7745c5a3901dee07e566a43db3be67e2c929d5af Loading...

	unknown	DomTimer	9 B	2023-04-13	2024-08-21
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2023-04-13 10:47 Last Seen2024-08-21 08:11 Times Seen33 Hash 3d5188036cc58813c9c7b7623699b154 ded5e1227d35667f469972fa16980e12b1c67230 a16d61d78c36bb6999bd389e6a5ce7caeb8b224aed26744977babb05cbb01d32 Loading...

	banquetunarmedgrater.com/advertisers.js	ScriptElement	0 B	0001-01-01	2025-05-16
Pretty URL banquetunarmedgrater.com/advertisers.js IP 104.21.86.121 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-16 05:11 Times Seen4694615 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (56)

URL IP Response Size

cuevana3.ms/wp-content/themes/cuevana3/images/logo.webp

188.114.97.1

200 OK

2.6 kB

URL GET HTTP/3
cuevana3.ms/wp-content/themes/cuevana3/images/logo.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
RIFF (little-endian) data, Web/P image - data
Size
2.6 kB (2580 bytes)
Hash
30b814035469eb7240f2a21f460193b2
a74ef745e6b3c866efd4101df3072ed1be823019
d72c1a3fccad0292b2dbdde71578e6885a92ea4f9c29cf1e9f923dffacce0604

HTTP Headers

GET /wp-content/themes/cuevana3/images/logo.webp HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:28 GMT
content-type: image/webp
content-length: 2580
last-modified: Fri, 01 Sep 2023 00:44:12 GMT
etag: "64f133dc-a14"
age: 4704
x-cache: HIT
x-cache-hits: 52
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=52wSMSzyPnwOlxE%2FEypomiGhblZ8FGu7%2FFmvt%2FHaVyFfo8jR5NHYWOOZE1qAD8X7lSPM12GVBzPiPAM8FUxqdWty7wICEXquYH9D0SX4A8MMf4sML6mXYtFA0m9ITA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 834404263f56b51e-OSL
alt-svc: h3=":443"; ma=86400

cuevana3.ms/img/RzZ3Ni9keVRia3ZJWEEvVko0QXFEQkpndVovakJsdnp4bThNYkYxVVZjYzVVQVNRQ2hZOUxJOHd4c2hMQUhHYg.webp

188.114.97.1

200 OK

4.4 kB

URL GET HTTP/3
cuevana3.ms/img/RzZ3Ni9keVRia3ZJWEEvVko0QXFEQkpndVovakJsdnp4bThNYkYxVVZjYzVVQVNRQ2hZOUxJOHd4c2hMQUhHYg.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 92x138, Scaling: [none]x[none], YUV color, decoders should clamp - data
Size
4.4 kB (4362 bytes)
Hash
412d6ca7838cd294d2bd085f571fcb2b
9b5fa13982edbb0a6efc5fa246c9e5986d32cd0c
edf30b047aa38ff9d674211af4004c00a1d18df7cde199148a13bbe49791a73f

HTTP Headers

GET /img/RzZ3Ni9keVRia3ZJWEEvVko0QXFEQkpndVovakJsdnp4bThNYkYxVVZjYzVVQVNRQ2hZOUxJOHd4c2hMQUhHYg.webp HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: image/webp
content-length: 4362
age: 16
x-cache: HIT
x-cache-hits: 6
cache-control: max-age=14400
cf-cache-status: HIT
last-modified: Tue, 12 Dec 2023 06:47:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=18u6gH6LpeQVl393%2BDa2ZfrwWHAei2fS97ZKavq4UOP2X9htsdQYZcWYhXBY2tK%2B063cRXHbi458%2BLTBvpU7%2FxkNtlgZUvbhUpaFO1oFmm7xxcSvDGp8iTofrhxy%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 834404263f58b51e-OSL
alt-svc: h3=":443"; ma=86400

cuevana3.ms/img/YkFKdjE2bUNHMmJoNkMrWUMrYy82Y09hL3V0OGxpRktvaDBLTlhpcjVZNVREWVBXZkphMTZZUkhhblhPbXZHUw.webp

188.114.97.1

200 OK

11 kB

URL GET HTTP/3
cuevana3.ms/img/YkFKdjE2bUNHMmJoNkMrWUMrYy82Y09hL3V0OGxpRktvaDBLTlhpcjVZNVREWVBXZkphMTZZUkhhblhPbXZHUw.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 185x278, Scaling: [none]x[none], YUV color, decoders should clamp - data
Size
11 kB (10722 bytes)
Hash
01ef5ba2e5822e26fd37e110e3eae1df
7e0fbe440098908c29cc1f1cbe20c2d6b087575b
b2c5a3ef2a3159361d4d26da55b48912cb6c76b14a2f2f0439a06ce0dd81fb8e

HTTP Headers

GET /img/YkFKdjE2bUNHMmJoNkMrWUMrYy82Y09hL3V0OGxpRktvaDBLTlhpcjVZNVREWVBXZkphMTZZUkhhblhPbXZHUw.webp HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: image/webp
content-length: 10722
age: 16
x-cache: HIT
x-cache-hits: 1
cache-control: max-age=14400
cf-cache-status: HIT
last-modified: Tue, 12 Dec 2023 06:47:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DGPHY6SlcI%2BKHEdyFj%2BJbjOgm%2F2MC0vQ%2BON4%2BVSQivk82%2BUPSbBprf2C4WCw8LkIEa7EwGvw46ruT1DKQQNtLJ7%2Be34X7V8qMIhBOyyXcK5HaKO23Q9YO2M99xj%2BzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 834404263f59b51e-OSL
alt-svc: h3=":443"; ma=86400

cuevana3.ms/img/ZWpTQjhGVll0OEJRTm5hRk9HOU82SUxxRTV3d21YemxMMFY5dTVrSjNTZjYzNXA4Uk9BMW9rUHFGc1dhNitiMg.webp

188.114.97.1

200 OK

7.2 kB

URL GET HTTP/3
cuevana3.ms/img/ZWpTQjhGVll0OEJRTm5hRk9HOU82SUxxRTV3d21YemxMMFY5dTVrSjNTZjYzNXA4Uk9BMW9rUHFGc1dhNitiMg.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 185x278, Scaling: [none]x[none], YUV color, decoders should clamp - data
Size
7.2 kB (7174 bytes)
Hash
db55ca5e423bdae770e7871c6b46cf77
4818c79c7ddd93d9217e16bc2dc2ef8d44f6f1da
9687021f7325e4ed4fc6e68c08307d09e330d801a6e7caccf055dc788c04ecfa

HTTP Headers

GET /img/ZWpTQjhGVll0OEJRTm5hRk9HOU82SUxxRTV3d21YemxMMFY5dTVrSjNTZjYzNXA4Uk9BMW9rUHFGc1dhNitiMg.webp HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: image/webp
content-length: 7174
age: 16
x-cache: HIT
x-cache-hits: 1
cache-control: max-age=14400
cf-cache-status: HIT
last-modified: Tue, 12 Dec 2023 06:47:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vO3Q5aPtmhroH9OoPfTUcNeLoCQ6Hro9tlPOysOdqb%2B%2F8X85dIE6kCjDhPYHGMIIPhUWW%2F0r6eYMTtnHiDFERNk6v8KcP8KD0euMMqM78ekChuPi1SFCIYxrXNXQGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 834404263f5db51e-OSL
alt-svc: h3=":443"; ma=86400

cuevana3.ms/img/azR4amVlRHFlS2hoV3lLdjlOUE5GVnkrNlNGSXYySFVwMUdWTjk3MWZaOXlqWU5uZDZTNFZZR0REbncrZ0NodQ.webp

188.114.97.1

200 OK

17 kB

URL GET HTTP/3
cuevana3.ms/img/azR4amVlRHFlS2hoV3lLdjlOUE5GVnkrNlNGSXYySFVwMUdWTjk3MWZaOXlqWU5uZDZTNFZZR0REbncrZ0NodQ.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 780x439, Scaling: [none]x[none], YUV color, decoders should clamp - data
Size
17 kB (16760 bytes)
Hash
7b3b5a9e566d9143896372dd5758d72f
64d46a07aa102e9b5e48a9f701fa996bb704c446
1f898c2507233ce3075a944a2d9aab7b9c572ac8f6e421f170dc78cf0a1a063f

HTTP Headers

GET /img/azR4amVlRHFlS2hoV3lLdjlOUE5GVnkrNlNGSXYySFVwMUdWTjk3MWZaOXlqWU5uZDZTNFZZR0REbncrZ0NodQ.webp HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: image/webp
content-length: 16760
age: 16
x-cache: HIT
x-cache-hits: 4
cache-control: max-age=14400
cf-cache-status: HIT
last-modified: Tue, 12 Dec 2023 06:47:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KdMoOGQwIe4dsiKjzuPr%2B%2BHWP3LDcUA2L1e7DkBjKgkIhfWfFNqqMPLtxEExLlIFfTk0xetFyfBlLLxjo7EJZX2hNzlm8TOjoNr5z7EKaogd0jFhihA1PCWTWJlYJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 834404263f60b51e-OSL
alt-svc: h3=":443"; ma=86400

cuevana3.ms/img/Ky9TM1JWTFVSVkFNSWNkQzBUNjEwUm9PRngzZ2I0dTN6K1ZGT3hucEltU1MzZG1YRGRmRWlXWW1wL0JXeHNnMQ.webp

188.114.97.1

200 OK

3.5 kB

URL GET HTTP/3
cuevana3.ms/img/Ky9TM1JWTFVSVkFNSWNkQzBUNjEwUm9PRngzZ2I0dTN6K1ZGT3hucEltU1MzZG1YRGRmRWlXWW1wL0JXeHNnMQ.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 92x138, Scaling: [none]x[none], YUV color, decoders should clamp - data
Size
3.5 kB (3506 bytes)
Hash
7898882a8d35015726411ffec1bb25b1
92ce9fc57d7b731f4e0a6ae6c0e4003c2a8de7b2
1073263e3a5fc3890b95505025475b94706e83230ba97c0f2a9de330e0d315c0

HTTP Headers

GET /img/Ky9TM1JWTFVSVkFNSWNkQzBUNjEwUm9PRngzZ2I0dTN6K1ZGT3hucEltU1MzZG1YRGRmRWlXWW1wL0JXeHNnMQ.webp HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: image/webp
content-length: 3506
age: 16
x-cache: HIT
x-cache-hits: 339
cache-control: max-age=14400
cf-cache-status: HIT
last-modified: Tue, 12 Dec 2023 06:47:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oUl46lNv0qJrulTO5WBhUtTU554i%2B7Mi8rHaBF7v2arUUzJW1C3Eo%2B%2B7Dy%2FpUvLfU3WKU9z1oOBcrkQVXzX8MjbONVBYwurf74YMOv9ChOk1r9DnjmfLWm3nU0OryQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 834404263f66b51e-OSL
alt-svc: h3=":443"; ma=86400

cuevana3.ms/img/Z1NyUFlvMy81RVllbUFydGhyc29oRVhmcnFXeEh1YjF0QjZtTE8vcXhNZ0dxd25PNzJOMmgrNXJyVTZ2YTNXUw.webp

188.114.97.1

200 OK

5.2 kB

URL GET HTTP/3
cuevana3.ms/img/Z1NyUFlvMy81RVllbUFydGhyc29oRVhmcnFXeEh1YjF0QjZtTE8vcXhNZ0dxd25PNzJOMmgrNXJyVTZ2YTNXUw.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 185x278, Scaling: [none]x[none], YUV color, decoders should clamp - data
Size
5.2 kB (5160 bytes)
Hash
e8a59f8b8bb49e9fd186cdf1fa506296
14d0feb7ebea359f2cd0ce6e16823078b1e3c6cd
b6a988afd2e3937e9356cf97f367900e406cc8d866c372a81f358dd7bc42aaa1

HTTP Headers

GET /img/Z1NyUFlvMy81RVllbUFydGhyc29oRVhmcnFXeEh1YjF0QjZtTE8vcXhNZ0dxd25PNzJOMmgrNXJyVTZ2YTNXUw.webp HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: image/webp
content-length: 5160
age: 16
x-cache: HIT
x-cache-hits: 11
cache-control: max-age=14400
cf-cache-status: HIT
last-modified: Tue, 12 Dec 2023 06:47:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pjRsdgBbeGGEgU50fO5sgFSBz8ZgKaLiMeiB98e62cEawX9VO1BJMeDZxtoTBj3gkm7UtxW8hDGydB0%2FKV5SSTygusnsDjk9xS6%2F%2BjiKoXjPBFAlrUzubnt5gyiC2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 834404263f5bb51e-OSL
alt-svc: h3=":443"; ma=86400

cuevana3.ms/img/eTJISUtLakMxVjh0ZGFtN2RwTjVydDNCcUI3elNsVW5jKzBmdytObVFvK1JlN0dFNmlseWZ3OEl3dnlEM0V0eQ.webp

188.114.97.1

200 OK

2.5 kB

URL GET HTTP/3
cuevana3.ms/img/eTJISUtLakMxVjh0ZGFtN2RwTjVydDNCcUI3elNsVW5jKzBmdytObVFvK1JlN0dFNmlseWZ3OEl3dnlEM0V0eQ.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 92x138, Scaling: [none]x[none], YUV color, decoders should clamp - data
Size
2.5 kB (2476 bytes)
Hash
9269a39178bd2b9b90186d54a2ef5bb8
7871dd01a4fb37d317a1aa77db621d16fd8e45ba
7429e6a75dc56af01cc7aa14beee9d456cbc65e5e46d9e4f978885940a465e23

HTTP Headers

GET /img/eTJISUtLakMxVjh0ZGFtN2RwTjVydDNCcUI3elNsVW5jKzBmdytObVFvK1JlN0dFNmlseWZ3OEl3dnlEM0V0eQ.webp HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: image/webp
content-length: 2476
age: 16
x-cache: HIT
x-cache-hits: 340
cache-control: max-age=14400
cf-cache-status: HIT
last-modified: Tue, 12 Dec 2023 06:47:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JDYqIgHFoECK8Fk%2F79IJfJY%2BkkZabhuRiBHh%2B5QzZmvvxDAIlwUT2wo1JDwa6Dy5b4LwnMq1UI5SbB6lrvHVmNP9Ygccc2U%2BGU3TqQ1EMbsdZq4Vd%2FmzKdiIy3G3jQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 834404263f63b51e-OSL
alt-svc: h3=":443"; ma=86400

cuevana3.ms/img/Q29wZHFwWER5dklpc1NmalJuNDhTMVJqTE5MM0g3Zjl0T0ZHL1Iyd2RpTDRwVjk4Vkx4MnRJNEZXMTlWaEh2Kw.webp

188.114.97.1

200 OK

1.3 kB

URL GET HTTP/3
cuevana3.ms/img/Q29wZHFwWER5dklpc1NmalJuNDhTMVJqTE5MM0g3Zjl0T0ZHL1Iyd2RpTDRwVjk4Vkx4MnRJNEZXMTlWaEh2Kw.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 92x138, Scaling: [none]x[none], YUV color, decoders should clamp - data
Size
1.3 kB (1300 bytes)
Hash
2860387aad77858ca28ff4becda5add4
7ae0e49be1f443a817d8c6ba8a8fd57df39cb130
48be95e7ee3de9a89aa6d4cec64c8be879a40169785f70b466f2b034d8160411

HTTP Headers

GET /img/Q29wZHFwWER5dklpc1NmalJuNDhTMVJqTE5MM0g3Zjl0T0ZHL1Iyd2RpTDRwVjk4Vkx4MnRJNEZXMTlWaEh2Kw.webp HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: image/webp
content-length: 1300
age: 16
x-cache: HIT
x-cache-hits: 156
cache-control: max-age=14400
cf-cache-status: HIT
last-modified: Tue, 12 Dec 2023 06:47:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CGKaGHO0yIs3ggfhVqfmr0LGCXqxT%2FI6M6ZA32VPOFRyf9pYTPHCppfHHkW8zGy590hWHTQNPPO230n54rJ4uPc06pFNy9eXklbUHMIId2bk0RRsQjpc7pav04zA9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 834404264f7db51e-OSL
alt-svc: h3=":443"; ma=86400

cuevana3.ms/img/VWdPS3ZScDdSc08vMlZsblpvS0N2d3Nwbm1PSXBVSWpKeThsRnowNlZqQUNDbDBUZ0IxWk5YbHJIeGpxQS8xVg.webp

188.114.97.1

200 OK

3.0 kB

URL GET HTTP/3
cuevana3.ms/img/VWdPS3ZScDdSc08vMlZsblpvS0N2d3Nwbm1PSXBVSWpKeThsRnowNlZqQUNDbDBUZ0IxWk5YbHJIeGpxQS8xVg.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 92x138, Scaling: [none]x[none], YUV color, decoders should clamp - data
Size
3.0 kB (3012 bytes)
Hash
3b0c96eb26008581fb51fd1ed813e6c2
8421036795f4f6ee12ebe63047776fe706a94d5c
d50a0f421980384a168cc8f7d9cc0c4f2810dd8f29b81f90b2fd6f638b9c2c4a

HTTP Headers

GET /img/VWdPS3ZScDdSc08vMlZsblpvS0N2d3Nwbm1PSXBVSWpKeThsRnowNlZqQUNDbDBUZ0IxWk5YbHJIeGpxQS8xVg.webp HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: image/webp
content-length: 3012
age: 16
x-cache: HIT
x-cache-hits: 334
cache-control: max-age=14400
cf-cache-status: HIT
last-modified: Tue, 12 Dec 2023 06:47:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RHpXymZ%2BC28gDAfYjQpRjYMvSPpVSJ95YfWsfuqNp4Av3lQRAHcYQgv1QvjVpg0AmCKq%2FfGeCGYqKBiYtiY34GfYUIOzSu0A0M9OvM8XVbIT5rKipesGshYwLEyMYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 834404264f77b51e-OSL
alt-svc: h3=":443"; ma=86400

cuevana3.ms/img/L3B5K2Q3SUg2T3BEaGtxYlFvc1lUb3Z0TzljYjRrdDdTUVdFcWhTbTNxVVJZV1VMSWI1bS9CL2hFWUVVc1lzcQ.webp

188.114.97.1

200 OK

3.4 kB

URL GET HTTP/3
cuevana3.ms/img/L3B5K2Q3SUg2T3BEaGtxYlFvc1lUb3Z0TzljYjRrdDdTUVdFcWhTbTNxVVJZV1VMSWI1bS9CL2hFWUVVc1lzcQ.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 92x138, Scaling: [none]x[none], YUV color, decoders should clamp - data
Size
3.4 kB (3378 bytes)
Hash
bac6a4f04cea6658f2e9bbea9de41c27
17ed0f39672dbe8eaa69a0e500112fcd4471fd9c
645077da1f0b2d5143a4f1de014b341d4bfb4fc4bb89c611c07c148b37d87034

HTTP Headers

GET /img/L3B5K2Q3SUg2T3BEaGtxYlFvc1lUb3Z0TzljYjRrdDdTUVdFcWhTbTNxVVJZV1VMSWI1bS9CL2hFWUVVc1lzcQ.webp HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: image/webp
content-length: 3378
age: 16
x-cache: HIT
x-cache-hits: 301
cache-control: max-age=14400
cf-cache-status: HIT
last-modified: Tue, 12 Dec 2023 06:47:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vdhGo2%2FsV%2BF4NsflgwF3N0FI656MPl%2FkAKSA7v9b51PKt7uu04dtFnY3hzV5CoU2yiWE7HkxmxTIQxxglDIr0miFaK7Sj0pthnwieK8ZviPxWxoIfgWcU7xeIwE74Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 834404264f7ab51e-OSL
alt-svc: h3=":443"; ma=86400

cuevana3.ms/wp-content/themes/cuevana3/images/footer_bg.jpg

188.114.97.1

200 OK

351 kB

URL GET HTTP/3
cuevana3.ms/wp-content/themes/cuevana3/images/footer_bg.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3 - data
Size
351 kB (351081 bytes)
Hash
71b32acbe0613a158280634e3778b632
f6647d651b1a09829460e0e06f1cb735637167a0
ca1eb223de32ca413d0231bb9821f9fad110b697f3b553ddf2bb7df1452ee91c

HTTP Headers

GET /wp-content/themes/cuevana3/images/footer_bg.jpg HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: image/jpeg
content-length: 351081
last-modified: Fri, 01 Sep 2023 00:44:11 GMT
etag: "64f133db-55b69"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
age: 647707
x-cache: HIT
x-cache-hits: 7
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LRakiq6pip0iQDz729868k4STYr9DL5XlQURG3P1QnYmIPCdUByXXCzkhXgOPUTWqhNVZ87s3FwTryl9v4XBAqK4OngWskYKac2Sw3%2BOIvjC6jpL970zu0LkkAcRmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 834404265f8ab51e-OSL
alt-svc: h3=":443"; ma=86400

images.dmca.com/Badges/dmca-badge-w150-5x1-02.png?ID=9b3ac0d3-8a70-49fb-a684-a04bbf20d68f

194.242.11.186

200 OK

3.8 kB

URL GET HTTP/2
images.dmca.com/Badges/dmca-badge-w150-5x1-02.png?ID=9b3ac0d3-8a70-49fb-a684-a04bbf20d68f
IP
194.242.11.186:443
ASN
#34989 ServeTheWorld AS

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerLet's Encrypt
Subjectimages.dmca.com
FingerprintC0:DA:5C:DA:63:7A:9C:8A:10:3C:34:EE:1C:90:F9:22:3B:68:28:FA
ValiditySat, 09 Dec 2023 22:17:07 GMT - Fri, 08 Mar 2024 22:17:06 GMT

File type
PNG image data, 150 x 30, 8-bit/color RGBA, interlaced - data
Size
3.8 kB (3784 bytes)
Hash
132c8019e8631424fd07c0ebe359c86e
9a6795f8391eb10df151902888f340aab12ae3e8
0d1496a11018f739cf5ed1666482c6a11c3e7d4bb9e4b442ae2116ac670edef2

HTTP Headers

GET /Badges/dmca-badge-w150-5x1-02.png?ID=9b3ac0d3-8a70-49fb-a684-a04bbf20d68f HTTP/1.1
Host: images.dmca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: image/png
content-length: 3784
server: BunnyCDN-NO1-830
cdn-pullzone: 1574055
cdn-uid: c136c664-112d-4533-8247-f90f6849ab39
cdn-requestcountrycode: NO
cache-control: public, max-age=31536000
etag: "b927ac3aace6d11:0"
last-modified: Mon, 25 Jul 2016 19:39:16 GMT
x-powered-by: ASP.NET
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/27/2023 01:07:33
cdn-edgestorageid: 830
link: <https://dmca-images.azurewebsites.net/Badges/dmca-badge-w150-5x1-02.png?ID=80cd1fcb-2a85-4ea6-a01e-41b50e75f123>; rel="canonical"
cdn-status: 200
cdn-requestid: bf0fdbf8d9e6b1794ecb1f4230435213
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.6.1/jquery.min.js

104.17.24.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.6.1/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65447)
Size
28 kB (27990 bytes)
Hash
00727d1d5d9c90f7de826f1a4a9cc632
ea61688671d0c3044f2c5b2f2c4af0a6620ac6c2
a3cf00c109d907e543bc4f6dbc85eb31068f94515251347e9e57509b52ee3d74

HTTP Headers

GET /ajax/libs/jquery/3.6.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 27990
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "63091225-6d56"
last-modified: Fri, 26 Aug 2022 18:34:13 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 969042
expires: Sun, 01 Dec 2024 06:47:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XCSyzBNolfGxZy3Ap6aH54kJTPYg41a6ikEK6zLeBG9nSHKqmg8mbz6wJWNbVOhSx4VniQ3F%2FBF%2BHyheEan%2FV6kQ1FtwD534D2PFUl3hXwgs0wLeYaCZ0nZCMfa3nWFU1Q%2B8eCd1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 83440426bc55b505-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cuevana3.ms/wp-content/themes/cuevana3/fonts/montserrat-v13-latin-regular.woff2

188.114.97.1

200 OK

19 kB

URL GET HTTP/3
cuevana3.ms/wp-content/themes/cuevana3/fonts/montserrat-v13-latin-regular.woff2
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
Web Open Font Format (Version 2), TrueType, length 19172, version 1.0 - data
Size
19 kB (19172 bytes)
Hash
bc3aa95dca08f5fee5291e34959c27bc
7b7c670ef2f0ba7fc0ce6437e523ccbdc847fde2
8767f01caa430c5bd4e3b008a8e9dfe022156a4e91a23c394fdcb05c267f1b94

HTTP Headers

GET /wp-content/themes/cuevana3/fonts/montserrat-v13-latin-regular.woff2 HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/wp-content/themes/cuevana3/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: font/woff2
content-length: 19172
last-modified: Fri, 01 Sep 2023 00:44:04 GMT
etag: "64f133d4-4ae4"
access-control-allow-origin: *
age: 16
x-cache: HIT
x-cache-hits: 126
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=shV7Eux0u09AibKz%2Bbi2zQbK0BEK73Z4FXPCF%2FGZnB6MrIBbj67Njl0FZbZsqlez2ohxdknWQyv3Uh5ld8lfNjb4vB440kwU2HbxHNQkn4BCjj5dP3OJkjO7oX%2B5lg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83440427c8c3b51e-OSL
alt-svc: h3=":443"; ma=86400

cuevana3.ms/wp-includes/css/dist/block-library/style.min.css

188.114.97.1

200 OK

89 kB

URL GET HTTP/3
cuevana3.ms/wp-includes/css/dist/block-library/style.min.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
ASCII text, with very long lines (53449)
Size
89 kB (89414 bytes)
Hash
03c0f2128c8dd615b1691c168f1d4456
defa44bed1f35ec899cfd358ca911390bca53e67
67447c3656caad630373253691f3e8f64467eafd6e7305c9b0e98111b0b41694

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"64f13e94-19824"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
age: 1390071
x-cache: HIT
x-cache-hits: 9
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ER8fEZ9EHfwUGgFJUwDaVIyZAlZB1RtTMxTzKZ02QsZf3j%2BdMG4U%2BbEPRSXOM8rGq2poMbLOg8E1l3yYpveP4Iah1%2BT5h4XgFMnqNWsYCO17ZHMoBfMuc94ZlMa3eg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 834404263f53b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cuevana3.ms/wp-content/themes/cuevana3/fonts/montserrat-v13-latin-700.woff2

188.114.97.1

200 OK

20 kB

URL GET HTTP/3
cuevana3.ms/wp-content/themes/cuevana3/fonts/montserrat-v13-latin-700.woff2
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
Web Open Font Format (Version 2), TrueType, length 19480, version 1.0 - data
Size
20 kB (19480 bytes)
Hash
39d93cf678c740f9f6b2b1cfde34bee3
0d98d755bbbdfbb0943665c2c2a644005952e4cd
4545eb1dec25fe868d19dc292d417d8a9e41c0276d75a4eaf524a9db21aa705a

HTTP Headers

GET /wp-content/themes/cuevana3/fonts/montserrat-v13-latin-700.woff2 HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/wp-content/themes/cuevana3/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: font/woff2
content-length: 19480
last-modified: Fri, 01 Sep 2023 00:44:04 GMT
etag: "64f133d4-4c18"
access-control-allow-origin: *
age: 16
x-cache: HIT
x-cache-hits: 583
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lVHEiKuNNLfO13J3GH%2BRbYPGHaosFR93%2BtPmuAHZzviwJnrsBXomdhhYD1SUq8yJBs%2F%2B7UJz5wDisgoHynqOCPkkBZM7p32WvjacLvZpP%2F9pSuSiUxaa0JrWNLWVxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83440427c8c9b51e-OSL
alt-svc: h3=":443"; ma=86400

cuevana3.ms/wp-content/themes/cuevana3/images/favicon.png

188.114.97.1

200 OK

922 B

URL GET HTTP/3
cuevana3.ms/wp-content/themes/cuevana3/images/favicon.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced - data
Size
922 B (922 bytes)
Hash
cab140c24e494218bec19bffe71c6f42
403234592d8f936ec0bfb91c8d93c87a45865b47
2fe58fd952335081704e8ebf10605cdc0b510c0571e19d720e1484d96abbd23e

HTTP Headers

GET /wp-content/themes/cuevana3/images/favicon.png HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: image/png
content-length: 922
last-modified: Fri, 01 Sep 2023 00:44:11 GMT
etag: "64f133db-39a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
age: 1631213
x-cache: HIT
x-cache-hits: 6
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v8GDker5fTVRaAlUy1mStmGqnCA%2FNmwiJFRRk%2FyEbfvLoCfWhgla%2F5igoq2%2FW6ZaxigqZWms0ybCz%2FKUsKuKbhiGNvTxqk6Inx2ZQzjI5wt9tKHIgShM4z73NyuUSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83440427e8e0b51e-OSL
alt-svc: h3=":443"; ma=86400

cuevana3.ms/wp-content/themes/cuevana3/images/anime_online.webp

188.114.97.1

200 OK

23 kB

URL GET HTTP/3
cuevana3.ms/wp-content/themes/cuevana3/images/anime_online.webp
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 364x120, Scaling: [none]x[none], YUV color, decoders should clamp - data
Size
23 kB (23264 bytes)
Hash
d088b0d56cad219a9d1bd51e6bfa43ab
178a2be46529a0356d4ebc8c1ecaa1a9a873b9c9
e3f5518dd569b799f5f5def473fbbd7951a804d8af17c75cc21cca721aa9ab6e

HTTP Headers

GET /wp-content/themes/cuevana3/images/anime_online.webp HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: image/webp
content-length: 23264
last-modified: Fri, 01 Sep 2023 00:44:09 GMT
etag: "64f133d9-5ae0"
age: 4705
x-cache: HIT
x-cache-hits: 77
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YctF1intov1lJeBNyav%2FDifjraqLTQFr8ax8KfiQtpHqh%2FEi3ttMbW56K93vFPn23HvP0GSw%2BRamurah2vMs9SBVuhMPBL856PU3FH9R9uAGo%2Fgrg4R4bZlnY75s%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8344042a0a93b51e-OSL
alt-svc: h3=":443"; ma=86400

cuevana3.ms/wp-content/themes/cuevana3/images/telegram.png

188.114.97.1

200 OK

778 B

URL GET HTTP/3
cuevana3.ms/wp-content/themes/cuevana3/images/telegram.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
PNG image data, 24 x 24, 16-bit gray+alpha, non-interlaced - data
Size
778 B (778 bytes)
Hash
3bb639fae35ddb64016ffa52469e0357
84109e2c2c276b963591b85b305c2a515201dcf0
8c0343b84abfb949c4c6054f9e829d9dc9998383d4c6b019879ede5a39811b03

HTTP Headers

GET /wp-content/themes/cuevana3/images/telegram.png HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: image/png
content-length: 778
last-modified: Fri, 01 Sep 2023 00:44:15 GMT
etag: "64f133df-30a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
age: 1602808
x-cache: HIT
x-cache-hits: 3
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0B74CSRNJW6cpCutPhzhLyotCV%2FNrWEsAiBR1HYpyDEEyC7LGlhRE0so5LUAcAP1J%2FcQE%2FSaGSYKN0jnnJVWk8PvsS3EavqaLZ%2B7bLFHDi17Um1%2FN5K9Ug%2BOQIF8uA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8344042a0a8cb51e-OSL
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=G-W33LXXDJJN

142.250.74.104

200 OK

90 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-W33LXXDJJN
IP
142.250.74.104:443
ASN
#15169 GOOGLE

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT

File type
ASCII text, with very long lines (3651)
Size
90 kB (89876 bytes)
Hash
cfc95e8ea4d5bc396deb3d58d66d7281
96bc23f79283c54469452b1fad9eac14c9b98f2b
023ff79242671f43e14a16455a8497f8703293c57e5c3bcb957110eb7a2ca364

HTTP Headers

GET /gtag/js?id=G-W33LXXDJJN HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 12 Dec 2023 06:47:29 GMT
expires: Tue, 12 Dec 2023 06:47:29 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89876
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cuevana3.ms/wp-content/themes/cuevana3/fonts/montserrat-v13-latin-regular.woff2

188.114.97.1

200 OK

19 kB

URL GET HTTP/3
cuevana3.ms/wp-content/themes/cuevana3/fonts/montserrat-v13-latin-regular.woff2
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
Web Open Font Format (Version 2), TrueType, length 19172, version 1.0 - data
Size
19 kB (19172 bytes)
Hash
bc3aa95dca08f5fee5291e34959c27bc
7b7c670ef2f0ba7fc0ce6437e523ccbdc847fde2
8767f01caa430c5bd4e3b008a8e9dfe022156a4e91a23c394fdcb05c267f1b94

HTTP Headers

GET /wp-content/themes/cuevana3/fonts/montserrat-v13-latin-regular.woff2 HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/wp-content/themes/cuevana3/style.css
Cookie: _ga_W33LXXDJJN=GS1.1.1702363650.1.0.1702363650.0.0.0; _ga=GA1.1.277966027.1702363650
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: font/woff2
content-length: 19172
last-modified: Fri, 01 Sep 2023 00:44:04 GMT
etag: "64f133d4-4ae4"
access-control-allow-origin: *
age: 16
x-cache: HIT
x-cache-hits: 126
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WfsleCzapWD0hl0dkJeqQjVji6H2nNe1bZfROsHrJKN9NO9K5Fu6c1fuQaFgjENsvkPi8jiBhdDhcZL2JnvjgNny9Aupl8kBSX6xGL%2BZOPfzy8LpWZ2AsobC6Wj%2BQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8344042c1c0fb51e-OSL
alt-svc: h3=":443"; ma=86400

cuevana3.ms/wp-content/themes/cuevana3/fonts/montserrat-v13-latin-700.woff2

188.114.97.1

200 OK

20 kB

URL GET HTTP/3
cuevana3.ms/wp-content/themes/cuevana3/fonts/montserrat-v13-latin-700.woff2
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
Web Open Font Format (Version 2), TrueType, length 19480, version 1.0 - data
Size
20 kB (19480 bytes)
Hash
39d93cf678c740f9f6b2b1cfde34bee3
0d98d755bbbdfbb0943665c2c2a644005952e4cd
4545eb1dec25fe868d19dc292d417d8a9e41c0276d75a4eaf524a9db21aa705a

HTTP Headers

GET /wp-content/themes/cuevana3/fonts/montserrat-v13-latin-700.woff2 HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/wp-content/themes/cuevana3/style.css
Cookie: _ga_W33LXXDJJN=GS1.1.1702363650.1.0.1702363650.0.0.0; _ga=GA1.1.277966027.1702363650
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: font/woff2
content-length: 19480
last-modified: Fri, 01 Sep 2023 00:44:04 GMT
etag: "64f133d4-4c18"
access-control-allow-origin: *
age: 16
x-cache: HIT
x-cache-hits: 583
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LEKSrS6xj1qS1vIZUFhFXaIuT0FytW3vlWMwYywMLCvEZ3DovUJyZthfd3l4IFX%2BLNLaVxnsatubOIt0iIwYJgcH9Uq60Z0YrFXgIR9M2DR4YUM6NQVSPaqaWbnY5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8344042c1c10b51e-OSL
alt-svc: h3=":443"; ma=86400

absolutelytowns.com/df/5d/4b/df5d4b87ade2e7a182431d779e05accb.js

192.243.59.20

200 OK

15 kB

URL GET HTTP/1.1
absolutelytowns.com/df/5d/4b/df5d4b87ade2e7a182431d779e05accb.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerLet's Encrypt
Subject*.absolutelytowns.com
FingerprintD3:42:00:62:C9:BA:26:F1:7C:2E:9D:DB:DD:95:83:ED:E9:B6:9E:E6
ValidityFri, 24 Nov 2023 06:08:12 GMT - Thu, 22 Feb 2024 06:08:11 GMT

File type
ASCII text, with very long lines (42293), with no line terminators
Size
15 kB (15257 bytes)
Hash
ae8506984bd3bdd76237c7524d06b0cc
57d12914e259c4afc1e374136a74b44fa4f3a600
ff7de59c7f808c0e4d68b8a2376ec867db215bfc5597eaa90295bc2a7b132996

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /df/5d/4b/df5d4b87ade2e7a182431d779e05accb.js HTTP/1.1
Host: absolutelytowns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 12 Dec 2023 06:47:29 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1d89362417cd8fe3c3e7df2e85c78fb0
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

proftrafficcounter.com/stats

35.157.130.60

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
35.157.130.60:443
ASN
#16509 AMAZON-02

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
53c8d803127980f845289dde18cb8c35
12fd513d10bb9ce6a333c6ce8cdfa06a34df65e0
c903eeed7b2e12dd244c365598930851b9b94594fe3c180518cf8fb1b18f162d

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cuevana3.ms
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 06:47:30 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://cuevana3.ms
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=30d09cbd-1f96-4b80-9877-bb85498d9c8f:2:1; expires=Fri, 09 Dec 2033 06:47:30 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

installedleapeddoing.com/40/aa/46/40aa46c39c7690a74e15aea32b1f2ffc.js

192.243.59.20

200 OK

25 kB

URL GET HTTP/1.1
installedleapeddoing.com/40/aa/46/40aa46c39c7690a74e15aea32b1f2ffc.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerLet's Encrypt
Subjectinstalledleapeddoing.com
Fingerprint7F:94:50:6A:16:7E:84:3E:52:90:FE:7A:7D:15:66:F5:9E:34:13:31
ValidityWed, 06 Dec 2023 08:05:08 GMT - Tue, 05 Mar 2024 08:05:07 GMT

File type
ASCII text, with very long lines (62383)
Size
25 kB (24677 bytes)
Hash
903fd637f5d5c0712a6dff14ec9cdaec
d0ff0f9688af74b8372a54b9ac7636a417e8f60e
c3200a87af33b1d73574fe01e97d4d84c797ccfd10168fa907b27b5454b3f54e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /40/aa/46/40aa46c39c7690a74e15aea32b1f2ffc.js HTTP/1.1
Host: installedleapeddoing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 12 Dec 2023 06:47:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_cf-2870_1=0; expires=Thu, 14 Dec 2023 08:47:30 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4e8193f4beb2d82026ba7c21c074a418
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

installedleapeddoing.com/sbar.json?key=df5d4b87ade2e7a182431d779e05accb&uuid=30d09cbd-1f96-4b80-9877-bb85498d9c8f%3A2%3A1

192.243.59.20

200 OK

4.1 kB

URL GET HTTP/1.1
installedleapeddoing.com/sbar.json?key=df5d4b87ade2e7a182431d779e05accb&uuid=30d09cbd-1f96-4b80-9877-bb85498d9c8f%3A2%3A1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerLet's Encrypt
Subjectinstalledleapeddoing.com
Fingerprint7F:94:50:6A:16:7E:84:3E:52:90:FE:7A:7D:15:66:F5:9E:34:13:31
ValidityWed, 06 Dec 2023 08:05:08 GMT - Tue, 05 Mar 2024 08:05:07 GMT

File type
JSON data - , ASCII text, with very long lines (6034), with no line terminators
Size
4.1 kB (4071 bytes)
Hash
28c7a1bba16edac8b86bd7bc6541c942
f962793a3fcb67a3527d25b07aebf1552294630f
fcb8f765cd31178598e8301d84aa78e3ecce598f682a5cd585d50058838d6da9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sbar.json?key=df5d4b87ade2e7a182431d779e05accb&uuid=30d09cbd-1f96-4b80-9877-bb85498d9c8f%3A2%3A1 HTTP/1.1
Host: installedleapeddoing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cuevana3.ms
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 12 Dec 2023 06:47:30 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://cuevana3.ms
Access-Control-Allow-Origin: https://cuevana3.ms
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=18817105; expires=Wed, 13 Dec 2023 06:47:30 GMT; secure; SameSite=None
uid_id2=30d09cbd-1f96-4b80-9877-bb85498d9c8f:2:1; expires=Tue, 19 Dec 2023 06:47:30 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 13 Dec 2023 06:47:30 GMT; secure; SameSite=None
uncs=1; expires=Wed, 13 Dec 2023 06:47:30 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 13 Dec 2023 06:47:30 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 13 Dec 2023 06:47:30 GMT; secure; SameSite=None
slecdf5d4b87ade2e7a182431d779e05accb=[4819891]; expires=Tue, 12 Dec 2023 06:47:35 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b21919dc801007f57bff76b8c7ca2b0d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

installedleapeddoing.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skVRd9lS%2FfQoSBERe6UGshOCOmU9VdPd3lLNRxjARjEmdGs%2FX9qs4zr%2BsV71V1dbIKDsiAmx7cuKycTiY4juLgWkY6biQgpF1IFuZvEIRZinTS0HgXde%2B5pxbnnPu%2B2CvOSIiCnq5%2FaHaU1nSxWQv8KxsqFaZ0%2FuodPwxqwXV%2FQ6XXout%2Bf%2FKxvTfDoFkLrvrvS75lFutBGARhEPpLysrE9BfPWajsURzW4qAW1WthM0Lf%2Fhe7woOjHkTvjDwHJcb%2F3%2Fz1MRQfIe3%2BcFO6rdxkb7zXLTTNjUVPHH6cbqWmTNGdjYn1kKSH079h3JiQr%2Bdg0sOpA5je%2FsQBmBoT748QLD2cygTrHVwoZRoyBRPPouyNIPUIio7AzV0ocUIALrC6hrT7YNXYkm5fsHTCjsn807%2BhyjGZ%2F%2FN5pN3vb2jV928bXeTKpA79pILqj6A6I2TFEfIdD6o8As8%2FhxK%2FkcWnK0i7%2B2tOGyhx%2BmojEEHMmVgIk%2FjaQsTawULcbrUWGGs3o7gtYt5OziNSagSVjKDlANTNoXAeCuWhSDwUmYeuOPVpM06CoJWwpNFoR5zzRoPzZvuaaIpG1E4CFHziYYA8G4DrAbjdRWZ3saXunyx%2BB1v8DLdZwQkPLifoiQqlJCgdQUkJSkVQ5gRlrzoQ2tVd9UBoV7Bw2uvT3qiGJu%2Fs0QOTd2RKQO1gLzsjlyf5ea%2F4H2FLnvoiaYqItVtUyLps0bBdjxqhaLViGTQp5wxOVVBuDtR52FFj8vIz%2FyBTJ69tgNEjOH0ErjzQ4iXQctiqB6Cbw6gdYCd9mEmtXD2q5QbCVMjyeeTb3p4%2BIy%2Be33D5yx8h%2BTGZFritkNkKn6lfCDr63vCWKcn%2BLVM68ngty1VX7dDJfW%2FnNJfeww%2FkdmmsWL7pBt%2B8wyfEZHx0R7p8haZCpR1Hvr2hhJB2yVguyU%2FLbkOy9cJt3ihsWmQr6%2B8uLXczK51TJh2BqpNPn4CrMbn0enX%2Bcq%2BcXYWyI9iiQreYKVXmCDzbhctmO2cIrJ5hlnkoi2po62y21IpAyxmmrIKTx29fvvTJ%2FAtfFWDy%2BMlfF9yeu4eO9UDzu0i7FXq2Qk9XoHoAV%2FxvmGf2%2BK3fG%2BcFpr0h09bbZ9rq%2BxfROnXqy2YSJDKoS5bELGnRQMRJFDMah7LFmjRE7sayPzf3LwAAAP%2F%2FAQAA%2F%2F8d6UKRkQQAAA%3D%3D

192.243.59.20

200 OK

7 B

URL GET HTTP/1.1
installedleapeddoing.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skVRd9lS%2FfQoSBERe6UGshOCOmU9VdPd3lLNRxjARjEmdGs%2FX9qs4zr%2BsV71V1dbIKDsiAmx7cuKycTiY4juLgWkY6biQgpF1IFuZvEIRZinTS0HgXde%2B5pxbnnPu%2B2CvOSIiCnq5%2FaHaU1nSxWQv8KxsqFaZ0%2FuodPwxqwXV%2FQ6XXout%2Bf%2FKxvTfDoFkLrvrvS75lFutBGARhEPpLysrE9BfPWajsURzW4qAW1WthM0Lf%2Fhe7woOjHkTvjDwHJcb%2F3%2Fz1MRQfIe3%2BcFO6rdxkb7zXLTTNjUVPHH6cbqWmTNGdjYn1kKSH079h3JiQr%2Bdg0sOpA5je%2FsQBmBoT748QLD2cygTrHVwoZRoyBRPPouyNIPUIio7AzV0ocUIALrC6hrT7YNXYkm5fsHTCjsn807%2BhyjGZ%2F%2FN5pN3vb2jV928bXeTKpA79pILqj6A6I2TFEfIdD6o8As8%2FhxK%2FkcWnK0i7%2B2tOGyhx%2BmojEEHMmVgIk%2FjaQsTawULcbrUWGGs3o7gtYt5OziNSagSVjKDlANTNoXAeCuWhSDwUmYeuOPVpM06CoJWwpNFoR5zzRoPzZvuaaIpG1E4CFHziYYA8G4DrAbjdRWZ3saXunyx%2BB1v8DLdZwQkPLifoiQqlJCgdQUkJSkVQ5gRlrzoQ2tVd9UBoV7Bw2uvT3qiGJu%2Fs0QOTd2RKQO1gLzsjlyf5ea%2F4H2FLnvoiaYqItVtUyLps0bBdjxqhaLViGTQp5wxOVVBuDtR52FFj8vIz%2FyBTJ69tgNEjOH0ErjzQ4iXQctiqB6Cbw6gdYCd9mEmtXD2q5QbCVMjyeeTb3p4%2BIy%2Be33D5yx8h%2BTGZFritkNkKn6lfCDr63vCWKcn%2BLVM68ngty1VX7dDJfW%2FnNJfeww%2FkdmmsWL7pBt%2B8wyfEZHx0R7p8haZCpR1Hvr2hhJB2yVguyU%2FLbkOy9cJt3ihsWmQr6%2B8uLXczK51TJh2BqpNPn4CrMbn0enX%2Bcq%2BcXYWyI9iiQreYKVXmCDzbhctmO2cIrJ5hlnkoi2po62y21IpAyxmmrIKTx29fvvTJ%2FAtfFWDy%2BMlfF9yeu4eO9UDzu0i7FXq2Qk9XoHoAV%2FxvmGf2%2BK3fG%2BcFpr0h09bbZ9rq%2BxfROnXqy2YSJDKoS5bELGnRQMRJFDMah7LFmjRE7sayPzf3LwAAAP%2F%2FAQAA%2F%2F8d6UKRkQQAAA%3D%3D
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerLet's Encrypt
Subjectinstalledleapeddoing.com
Fingerprint7F:94:50:6A:16:7E:84:3E:52:90:FE:7A:7D:15:66:F5:9E:34:13:31
ValidityWed, 06 Dec 2023 08:05:08 GMT - Tue, 05 Mar 2024 08:05:07 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skVRd9lS%2FfQoSBERe6UGshOCOmU9VdPd3lLNRxjARjEmdGs%2FX9qs4zr%2BsV71V1dbIKDsiAmx7cuKycTiY4juLgWkY6biQgpF1IFuZvEIRZinTS0HgXde%2B5pxbnnPu%2B2CvOSIiCnq5%2FaHaU1nSxWQv8KxsqFaZ0%2FuodPwxqwXV%2FQ6XXout%2Bf%2FKxvTfDoFkLrvrvS75lFutBGARhEPpLysrE9BfPWajsURzW4qAW1WthM0Lf%2Fhe7woOjHkTvjDwHJcb%2F3%2Fz1MRQfIe3%2BcFO6rdxkb7zXLTTNjUVPHH6cbqWmTNGdjYn1kKSH079h3JiQr%2Bdg0sOpA5je%2FsQBmBoT748QLD2cygTrHVwoZRoyBRPPouyNIPUIio7AzV0ocUIALrC6hrT7YNXYkm5fsHTCjsn807%2BhyjGZ%2F%2FN5pN3vb2jV928bXeTKpA79pILqj6A6I2TFEfIdD6o8As8%2FhxK%2FkcWnK0i7%2B2tOGyhx%2BmojEEHMmVgIk%2FjaQsTawULcbrUWGGs3o7gtYt5OziNSagSVjKDlANTNoXAeCuWhSDwUmYeuOPVpM06CoJWwpNFoR5zzRoPzZvuaaIpG1E4CFHziYYA8G4DrAbjdRWZ3saXunyx%2BB1v8DLdZwQkPLifoiQqlJCgdQUkJSkVQ5gRlrzoQ2tVd9UBoV7Bw2uvT3qiGJu%2Fs0QOTd2RKQO1gLzsjlyf5ea%2F4H2FLnvoiaYqItVtUyLps0bBdjxqhaLViGTQp5wxOVVBuDtR52FFj8vIz%2FyBTJ69tgNEjOH0ErjzQ4iXQctiqB6Cbw6gdYCd9mEmtXD2q5QbCVMjyeeTb3p4%2BIy%2Be33D5yx8h%2BTGZFritkNkKn6lfCDr63vCWKcn%2BLVM68ngty1VX7dDJfW%2FnNJfeww%2FkdmmsWL7pBt%2B8wyfEZHx0R7p8haZCpR1Hvr2hhJB2yVguyU%2FLbkOy9cJt3ihsWmQr6%2B8uLXczK51TJh2BqpNPn4CrMbn0enX%2Bcq%2BcXYWyI9iiQreYKVXmCDzbhctmO2cIrJ5hlnkoi2po62y21IpAyxmmrIKTx29fvvTJ%2FAtfFWDy%2BMlfF9yeu4eO9UDzu0i7FXq2Qk9XoHoAV%2FxvmGf2%2BK3fG%2BcFpr0h09bbZ9rq%2BxfROnXqy2YSJDKoS5bELGnRQMRJFDMah7LFmjRE7sayPzf3LwAAAP%2F%2FAQAA%2F%2F8d6UKRkQQAAA%3D%3D HTTP/1.1
Host: installedleapeddoing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Cookie: u_pl=18817105; uid_id2=30d09cbd-1f96-4b80-9877-bb85498d9c8f:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdf5d4b87ade2e7a182431d779e05accb=[4819891]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 12 Dec 2023 06:47:31 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8f9ef366f85ff51584f325e34681671f
Strict-Transport-Security: max-age=0; includeSubdomains

banquetunarmedgrater.com/advertisers.js

104.21.86.121

200 OK

0 B

URL GET HTTP/2
banquetunarmedgrater.com/advertisers.js
IP
104.21.86.121:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectbanquetunarmedgrater.com
Fingerprint92:8E:AD:72:AC:AD:3B:21:99:CD:21:A0:9F:BD:F2:AF:0D:98:D8:57
ValidityThu, 09 Nov 2023 11:40:15 GMT - Wed, 07 Feb 2024 11:40:14 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 06:47:31 GMT
content-type: application/javascript
content-length: 0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=172800
x-request-id: 980f353f105db50b06b1ad18186533a4
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 12 Dec 2023 06:47:30 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SvlkG2RkTj%2BGjD%2BAZpAri8oDPucYj6UIwB5Iu2ZwEfII5K1R80gmcvAuyAeGo44Uplzpa7Kp52%2FMXmXu9Dx0Ud37EhAnfSDuXiNHpFbfc5q8Av4ScEmqemkctAb969ytThQplbi7MzGwh2A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83440432ea28b4f7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.yourwebbars.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/index.html

104.26.6.19

200 OK

408 B

URL GET HTTP/2
cdn.yourwebbars.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/index.html
IP
104.26.6.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49
ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
HTML document text - HTML document, ASCII text
Size
408 B (408 bytes)
Hash
0b31b4787428aed1758340498c5adc2d
099eeca7d57afb5f7da277ed67501452af84038a
7fa2dfa1fa8324a91aefb94372941496775b5da5060ca503565fea68dbec69e6

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cuevana3.ms
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 06:47:31 GMT
content-type: text/html
last-modified: Thu, 19 Oct 2023 15:25:25 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u9ljCJ3TPeHGYttwy1eb2UPmqma%2Br5NJs3IBg5FSsIoBKpB54bAM30krqY%2BRxriqbwlPsf9DtpB7A%2Fb6B%2B2YNyxdkyv5Gqwd4iYd0xrY2cozEeuDd%2BF7VNa6giPdoHLBovnvdpc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83440432cf94569c-OSL
content-encoding: br
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/img/close.png

172.64.108.10

200 OK

9.0 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/img/close.png
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
PNG image data, 497 x 496, 8-bit/color RGBA, non-interlaced - data
Size
9.0 kB (8952 bytes)
Hash
b080cbdd5cc827b5a659a45676c079d4
3502ad6743a3a42dd92ee3cea142616356f47359
c89d28b4be45a7af77493e8f6c76894a7ba86469e5b6733e6ca3cb33eaabcd8f

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 12 Dec 2023 06:47:31 GMT
content-type: image/png
content-length: 8952
last-modified: Thu, 19 Oct 2023 15:25:30 GMT
etag: "65314a6a-22f8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2676204
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LJnNA7WmJFwHZn6GhJ3JQY3SFVZwo8%2B9NewjQbSvpwT8DdeK1GhiZ4I1DM2F2eFnrshAhtLaGbCjlqYUYXZToP3Tb%2Bq9PSFi7f25eJJN828OD0gxdjmLYnWREt3N2zINAbJR2ctBGNbI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83440433d84d1d8a-FRA
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/img/bg.jpg

172.64.108.10

200 OK

197 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/img/bg.jpg
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3 - data
Size
197 kB (196572 bytes)
Hash
0f268ac97ce309645d705ae25e03383b
4c1462adfe8488d6f43f5a56a36b6302a29ac054
9d809e2358a07890e0a8683526070118f7c1056f25e30aee0fdfd020d6377bad

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/img/bg.jpg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 12 Dec 2023 06:47:31 GMT
content-type: image/jpeg
content-length: 196572
last-modified: Thu, 19 Oct 2023 15:25:32 GMT
etag: "65314a6c-2ffdc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1209296
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4zugzAD2ozwoTW5ZFxKYYF9L6TSgRYkSc3VIOabr4Bn09PVOUh5568lcGB%2BqAfhUmkJGRVSWEACBR483WY3LXYRQZjCKKcU%2BA4QDiCvQErLOXeRuZVoPKJhOa8Ch9rSY0pcIrk9wwDrL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83440433d84f1d8a-FRA
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fartherpensionerassure.com/pixel/purst?dl=0&th=0&sc=0&rs=2410&rd=2410&fd=615&bv=23.12.v.2&tmpl=136

192.243.59.13

200 OK

0 B

URL GET HTTP/1.1
fartherpensionerassure.com/pixel/purst?dl=0&th=0&sc=0&rs=2410&rd=2410&fd=615&bv=23.12.v.2&tmpl=136
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerLet's Encrypt
Subjectfartherpensionerassure.com
FingerprintC1:5A:7A:68:DE:D0:79:E8:3F:36:DF:1C:96:CF:4B:22:70:8D:9E:D7
ValidityMon, 27 Nov 2023 07:39:03 GMT - Sun, 25 Feb 2024 07:39:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=2410&rd=2410&fd=615&bv=23.12.v.2&tmpl=136 HTTP/1.1
Host: fartherpensionerassure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 12 Dec 2023 06:47:31 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

142.250.74.106

200 OK

694 B

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT

File type
ASCII text
Size
694 B (694 bytes)
Hash
cb2c9df74facee436bb99358b04d9bab
4bf65a78e6a0566051b5b47b75e8b0deac478071
e40dbc6da95b47d932014e5a93f35b13a341a37ea6fe7559dca041dc77271cd6

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 12 Dec 2023 06:47:31 GMT
date: Tue, 12 Dec 2023 06:47:31 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

installedleapeddoing.com/pixel/sbls?bv=23.49.4947&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fglobal%2Fcustom-banner%2F1%2Fjs%2Fscript.js&l=3670&fd=341

173.233.137.36

200 OK

0 B

URL GET HTTP/1.1
installedleapeddoing.com/pixel/sbls?bv=23.49.4947&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fglobal%2Fcustom-banner%2F1%2Fjs%2Fscript.js&l=3670&fd=341
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerLet's Encrypt
Subjectinstalledleapeddoing.com
Fingerprint7F:94:50:6A:16:7E:84:3E:52:90:FE:7A:7D:15:66:F5:9E:34:13:31
ValidityWed, 06 Dec 2023 08:05:08 GMT - Tue, 05 Mar 2024 08:05:07 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=23.49.4947&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fglobal%2Fcustom-banner%2F1%2Fjs%2Fscript.js&l=3670&fd=341 HTTP/1.1
Host: installedleapeddoing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Cookie: u_pl=18817105; uid_id2=30d09cbd-1f96-4b80-9877-bb85498d9c8f:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdf5d4b87ade2e7a182431d779e05accb=[4819891]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 12 Dec 2023 06:47:31 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
installedleapeddoing.com/pixel/sbls?bv=23.49.4947&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fglobal%2Fcustom-banner%2F1%2Fcss%2Fanimate.css&l=79249&fd=351
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerLet's Encrypt
Subjectinstalledleapeddoing.com
Fingerprint7F:94:50:6A:16:7E:84:3E:52:90:FE:7A:7D:15:66:F5:9E:34:13:31
ValidityWed, 06 Dec 2023 08:05:08 GMT - Tue, 05 Mar 2024 08:05:07 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=23.49.4947&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fglobal%2Fcustom-banner%2F1%2Fcss%2Fanimate.css&l=79249&fd=351 HTTP/1.1
Host: installedleapeddoing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Cookie: u_pl=18817105; uid_id2=30d09cbd-1f96-4b80-9877-bb85498d9c8f:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdf5d4b87ade2e7a182431d779e05accb=[4819891]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 12 Dec 2023 06:47:31 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0 - data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cuevana3.ms
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:57:34 GMT
expires: Fri, 06 Dec 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 438597
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0 - data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cuevana3.ms
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:46:25 GMT
expires: Fri, 06 Dec 2024 15:46:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 399666
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

installedleapeddoing.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skVRd9lS%2FfQoSBERe6UGshOCOmU9VdPV3tLNRxjARjEmdGs%2FX9qs4zr%2BsV71V1dbIKDsiAmx7cuKycTiY4juLgWkY6biQgpF1IFuZvEIRZinTS0HgXde%2B5pxbnnPu%2B2CvOSIiCnq5%2FaHaU1nSxWQv8KxsqFaZ0%2FuodPwxqwXV%2FQ6XXout%2Bf%2FKxvTfDoFkLrvrvS75lFutBGARhEPpLysrE9BfPWajsUTustYNaVK%2BFzQh9%2B1%2FsCg%2BOehC9M%2FIclBj%2Ff%2FPXx1B8hLT7w03ptnKTvfFet9A0NxY9cfhxupWaMkV3NibWQ5IeTv%2BGcWNCvp6DSQ%2BnDmB6%2BxMHYGpMvD9CsPRwKhOsd3ChlGnIFEw8i7I3gtQjKDoCN3ehxAkBuMDqGtLug1VjS7p9wdIJOybzT%2F%2BGKsdk%2Fs%2FnkXa%2Fv6FV379tdJErkzr0kwqqP4LqjJAVR8h3PKjyCDz%2FHEr8RhafriDt7q85baDE6auNQARtzsRCmLSvLUQsDhbacau1wFjcjNqxaPM4OY9IqRFUMoKWA1A3h8J5KJSHIvFQZB664tSnzXYSBK2EJY1GHHHOGw3Om%2FE10RSNKE4CFHziYYA8G4DrAbjdRWZ3saXunyx%2BB1v8DLdZwQkPLifoiQqlJCgdQUkJSkVQ5gRlrzoQ2tVd9UBoV7Bw2uvT3qiGJu%2Fs0QOTd2RKQO1gLzsjlyf5ea%2F4H2FLnvoiaYqIxS0qZF22aBjXo0YoWq22DJqUcwanKig3B%2Bo87KgxefmZf5Cpk9c2wOgRnD4CVx5o8RJoOWzVA9DNYRQH2EkfZlIrV49quYEwFbJ8Hvm2t6fPyIvnN1z%2B8kdIfkymBW4rZLbCZ%2BoXgo6%2BN7xlSrJ%2Fy5SOPF7LctVVO3Ry39s5zaX38AO5XRorlm%2B6wTfv8AkxGR%2FdkS5foalQaceRb28oIaRdMpZL8tOy25BsvXCbNwqbFtnK%2BrtLy93MSueUSUeg6uTTJ%2BBqTC69Xp2%2F3CtnV6HsCLao0C1mSpU5As924bLZzhkCq2eYZR7KohraOpsttSLQcoYpq%2BDk8duXL30y%2F8JXBZg8fvLXBbfn7qFjPdD8LtJuhZ6t0NMVqB7AFf8b5pk9fuv3xnmBaW%2FItPX2mbb6%2FkW0Tp36zTCSMYtbXAgmuQhb9UbcCIK6EFGrLcM2cjeW%2Fbm5fwEAAP%2F%2FAQAA%2F%2F8J4cx3kQQAAA%3D%3D

173.233.137.36

200 OK

7 B

URL GET HTTP/1.1
installedleapeddoing.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skVRd9lS%2FfQoSBERe6UGshOCOmU9VdPV3tLNRxjARjEmdGs%2FX9qs4zr%2BsV71V1dbIKDsiAmx7cuKycTiY4juLgWkY6biQgpF1IFuZvEIRZinTS0HgXde%2B5pxbnnPu%2B2CvOSIiCnq5%2FaHaU1nSxWQv8KxsqFaZ0%2FuodPwxqwXV%2FQ6XXout%2Bf%2FKxvTfDoFkLrvrvS75lFutBGARhEPpLysrE9BfPWajsUTustYNaVK%2BFzQh9%2B1%2FsCg%2BOehC9M%2FIclBj%2Ff%2FPXx1B8hLT7w03ptnKTvfFet9A0NxY9cfhxupWaMkV3NibWQ5IeTv%2BGcWNCvp6DSQ%2BnDmB6%2BxMHYGpMvD9CsPRwKhOsd3ChlGnIFEw8i7I3gtQjKDoCN3ehxAkBuMDqGtLug1VjS7p9wdIJOybzT%2F%2BGKsdk%2Fs%2FnkXa%2Fv6FV379tdJErkzr0kwqqP4LqjJAVR8h3PKjyCDz%2FHEr8RhafriDt7q85baDE6auNQARtzsRCmLSvLUQsDhbacau1wFjcjNqxaPM4OY9IqRFUMoKWA1A3h8J5KJSHIvFQZB664tSnzXYSBK2EJY1GHHHOGw3Om%2FE10RSNKE4CFHziYYA8G4DrAbjdRWZ3saXunyx%2BB1v8DLdZwQkPLifoiQqlJCgdQUkJSkVQ5gRlrzoQ2tVd9UBoV7Bw2uvT3qiGJu%2Fs0QOTd2RKQO1gLzsjlyf5ea%2F4H2FLnvoiaYqIxS0qZF22aBjXo0YoWq22DJqUcwanKig3B%2Bo87KgxefmZf5Cpk9c2wOgRnD4CVx5o8RJoOWzVA9DNYRQH2EkfZlIrV49quYEwFbJ8Hvm2t6fPyIvnN1z%2B8kdIfkymBW4rZLbCZ%2BoXgo6%2BN7xlSrJ%2Fy5SOPF7LctVVO3Ry39s5zaX38AO5XRorlm%2B6wTfv8AkxGR%2FdkS5foalQaceRb28oIaRdMpZL8tOy25BsvXCbNwqbFtnK%2BrtLy93MSueUSUeg6uTTJ%2BBqTC69Xp2%2F3CtnV6HsCLao0C1mSpU5As924bLZzhkCq2eYZR7KohraOpsttSLQcoYpq%2BDk8duXL30y%2F8JXBZg8fvLXBbfn7qFjPdD8LtJuhZ6t0NMVqB7AFf8b5pk9fuv3xnmBaW%2FItPX2mbb6%2FkW0Tp36zTCSMYtbXAgmuQhb9UbcCIK6EFGrLcM2cjeW%2Fbm5fwEAAP%2F%2FAQAA%2F%2F8J4cx3kQQAAA%3D%3D
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerLet's Encrypt
Subjectinstalledleapeddoing.com
Fingerprint7F:94:50:6A:16:7E:84:3E:52:90:FE:7A:7D:15:66:F5:9E:34:13:31
ValidityWed, 06 Dec 2023 08:05:08 GMT - Tue, 05 Mar 2024 08:05:07 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skVRd9lS%2FfQoSBERe6UGshOCOmU9VdPV3tLNRxjARjEmdGs%2FX9qs4zr%2BsV71V1dbIKDsiAmx7cuKycTiY4juLgWkY6biQgpF1IFuZvEIRZinTS0HgXde%2B5pxbnnPu%2B2CvOSIiCnq5%2FaHaU1nSxWQv8KxsqFaZ0%2FuodPwxqwXV%2FQ6XXout%2Bf%2FKxvTfDoFkLrvrvS75lFutBGARhEPpLysrE9BfPWajsUTustYNaVK%2BFzQh9%2B1%2FsCg%2BOehC9M%2FIclBj%2Ff%2FPXx1B8hLT7w03ptnKTvfFet9A0NxY9cfhxupWaMkV3NibWQ5IeTv%2BGcWNCvp6DSQ%2BnDmB6%2BxMHYGpMvD9CsPRwKhOsd3ChlGnIFEw8i7I3gtQjKDoCN3ehxAkBuMDqGtLug1VjS7p9wdIJOybzT%2F%2BGKsdk%2Fs%2FnkXa%2Fv6FV379tdJErkzr0kwqqP4LqjJAVR8h3PKjyCDz%2FHEr8RhafriDt7q85baDE6auNQARtzsRCmLSvLUQsDhbacau1wFjcjNqxaPM4OY9IqRFUMoKWA1A3h8J5KJSHIvFQZB664tSnzXYSBK2EJY1GHHHOGw3Om%2FE10RSNKE4CFHziYYA8G4DrAbjdRWZ3saXunyx%2BB1v8DLdZwQkPLifoiQqlJCgdQUkJSkVQ5gRlrzoQ2tVd9UBoV7Bw2uvT3qiGJu%2Fs0QOTd2RKQO1gLzsjlyf5ea%2F4H2FLnvoiaYqIxS0qZF22aBjXo0YoWq22DJqUcwanKig3B%2Bo87KgxefmZf5Cpk9c2wOgRnD4CVx5o8RJoOWzVA9DNYRQH2EkfZlIrV49quYEwFbJ8Hvm2t6fPyIvnN1z%2B8kdIfkymBW4rZLbCZ%2BoXgo6%2BN7xlSrJ%2Fy5SOPF7LctVVO3Ry39s5zaX38AO5XRorlm%2B6wTfv8AkxGR%2FdkS5foalQaceRb28oIaRdMpZL8tOy25BsvXCbNwqbFtnK%2BrtLy93MSueUSUeg6uTTJ%2BBqTC69Xp2%2F3CtnV6HsCLao0C1mSpU5As924bLZzhkCq2eYZR7KohraOpsttSLQcoYpq%2BDk8duXL30y%2F8JXBZg8fvLXBbfn7qFjPdD8LtJuhZ6t0NMVqB7AFf8b5pk9fuv3xnmBaW%2FItPX2mbb6%2FkW0Tp36zTCSMYtbXAgmuQhb9UbcCIK6EFGrLcM2cjeW%2Fbm5fwEAAP%2F%2FAQAA%2F%2F8J4cx3kQQAAA%3D%3D HTTP/1.1
Host: installedleapeddoing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Cookie: u_pl=18817105; uid_id2=30d09cbd-1f96-4b80-9877-bb85498d9c8f:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdf5d4b87ade2e7a182431d779e05accb=[4819891]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 12 Dec 2023 06:47:31 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 82fe19dcddb481539ea3ba9e69b44342
Strict-Transport-Security: max-age=0; includeSubdomains

installedleapeddoing.com/pixel/sbs?c=1

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
installedleapeddoing.com/pixel/sbs?c=1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerLet's Encrypt
Subjectinstalledleapeddoing.com
Fingerprint7F:94:50:6A:16:7E:84:3E:52:90:FE:7A:7D:15:66:F5:9E:34:13:31
ValidityWed, 06 Dec 2023 08:05:08 GMT - Tue, 05 Mar 2024 08:05:07 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: installedleapeddoing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Cookie: u_pl=18817105; uid_id2=30d09cbd-1f96-4b80-9877-bb85498d9c8f:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdf5d4b87ade2e7a182431d779e05accb=[4819891]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 12 Dec 2023 06:47:31 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/fonts/gP1RrxsjcxVyin9l9nj2hTd52.woff2

172.64.108.10

200 OK

17 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/fonts/gP1RrxsjcxVyin9l9nj2hTd52.woff2
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17360, version 1.0 - data
Size
17 kB (17360 bytes)
Hash
70322c317b1f4e2e17dbc6b672f95f5f
f3dff7c50e1aea33814c6aeeca177ae3ff900bfc
3877b522181765adf66ba89bd68d288ecb9f2483b441baab3424646b0c7aaa0a

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/fonts/gP1RrxsjcxVyin9l9nj2hTd52.woff2 HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cuevana3.ms
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 12 Dec 2023 06:47:31 GMT
content-type: application/octet-stream
content-length: 17360
last-modified: Thu, 19 Oct 2023 15:25:28 GMT
etag: "65314a68-43d0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=buB8jbe5o1fwhpPi20IhHHHGxhghRzmLuDdBPK0CPTUVHwpkiGV4nH0PXAfFMhvk4M5V90Q%2B1kU46axej9%2BipnuMOOCjRvuaL6Zj8rHU7hViGbLXdSQweLAoRzegt6nOokG9%2BgsSrcWu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 834404364aa91d8a-FRA
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/css/animate.css

172.64.108.10

200 OK

79 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/css/animate.css
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
ASCII text
Size
79 kB (79249 bytes)
Hash
e1d8acd5ee9d1a90ea09313cbd8f2b02
8a8327b115d1356715e63270d1ce6d46124c7b1a
3028c87fc798ac3741f02079034e6c23462afc0c5e6c8d321188ce3716c8472a

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cuevana3.ms
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 06:47:31 GMT
content-type: text/css
last-modified: Thu, 19 Oct 2023 15:30:49 GMT
etag: W/"65314ba9-13591"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gh1YnO8YK3LldBhp4ao%2Bna1wzYlLPgaqNXzrw1QDo3qohEsC%2BoQLQY%2BFxTPm28vWvOe0PtLhvW8%2FKZulmmZVKO6ReU2ssr%2FpqDnbPGzHkQEbcyDlWvXLVZyr6IpMxL3J12PSsWafYw2V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8344043398071d8a-FRA
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

images.dmca.com/Badges/DMCABadgeHelper.min.js

194.242.11.186

200 OK

465 B

URL GET HTTP/2
images.dmca.com/Badges/DMCABadgeHelper.min.js
IP
194.242.11.186:443
ASN
#34989 ServeTheWorld AS

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerLet's Encrypt
Subjectimages.dmca.com
FingerprintC0:DA:5C:DA:63:7A:9C:8A:10:3C:34:EE:1C:90:F9:22:3B:68:28:FA
ValiditySat, 09 Dec 2023 22:17:07 GMT - Fri, 08 Mar 2024 22:17:06 GMT

File type
ASCII text, with very long lines (496), with no line terminators
Size
465 B (465 bytes)
Hash
c5b49c326309174e4524057288a39582
ac4ac0cc06b4c4a13a28b06cac06399ba7168136
4ccaace87bdde15a0a00e832c3a814a1cd21a951bbc109300ede5b0f961a5610

HTTP Headers

GET /Badges/DMCABadgeHelper.min.js HTTP/1.1
Host: images.dmca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 1574055
cdn-uid: c136c664-112d-4533-8247-f90f6849ab39
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
etag: W/"26b181f16d28d51:0"
last-modified: Fri, 21 Jun 2019 20:14:34 GMT
x-powered-by: ASP.NET
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:58:07
cdn-edgestorageid: 830
link: <https://dmca-images.azurewebsites.net/Badges/DMCABadgeHelper.min.js>; rel="canonical"
cdn-status: 200
cdn-requestid: 7e9784b5e0831c5babdb1eefcf5562f3
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

friendshipmale.com/sfp.js

104.21.234.32

200 OK

86 kB

URL GET HTTP/3
friendshipmale.com/sfp.js
IP
104.21.234.32:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type

Size
86 kB (85468 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:30 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: c6b530a79a33adbd9979026fa9392543
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 12 Dec 2023 06:47:30 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qYqWTBRsOH0HGVgyRTbNY9zKyhb5zBA0R%2Fg6%2Bfro20KeCAc0bRCRoAu1CZsUzv6DPtyQlCLYveZTMMUZcRG1lQ7QW%2Fuw5CYx9XHCpn%2Br7%2BQJQ1sUTGSgjIQWtCp69ABG32qKFOI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83440431c833d92e-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cuevana3.ms/js/jquery/1702363649568plwnhqi0ytcbq4ewqs2f8.js?_=1702363649516

188.114.97.1

200 OK

13 kB

URL GET HTTP/3
cuevana3.ms/js/jquery/1702363649568plwnhqi0ytcbq4ewqs2f8.js?_=1702363649516
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type

Size
13 kB (13077 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js/jquery/1702363649568plwnhqi0ytcbq4ewqs2f8.js?_=1702363649516 HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-cache: MISS
x-cache-hits: 0
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Tue, 12 Dec 2023 06:47:29 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ezDMDzjVOgrLGmFh1np7XnHPH2vOHh6diSRifnLi9TADsbXbXrw8OEDivCp%2Fnwde1Mxjo65lSOeR%2B0mPTVEw5KnGPRL%2FlN06X0n7DXjiASfjHhMCCIzBYkKyF5twDg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 83440428694eb51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cuevana3.ms/wp-content/themes/cuevana3/fonts/fa-solid-900.woff2

188.114.97.1

200 OK

75 kB

URL GET HTTP/3
cuevana3.ms/wp-content/themes/cuevana3/fonts/fa-solid-900.woff2
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
Web Open Font Format (Version 2), TrueType, length 75356, version 330.15794 - data
Size
75 kB (75356 bytes)
Hash
2cd2be177470d5096992572176bbe76e
1793dd7561aca64d9751506879d919ade7efe325
8d86fae5265d97fb99e40108128776ef137a0f05e4147895820add73c26c05b1

HTTP Headers

GET /wp-content/themes/cuevana3/fonts/fa-solid-900.woff2 HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/wp-content/themes/cuevana3/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: font/woff2
content-length: 75356
last-modified: Fri, 01 Sep 2023 00:44:04 GMT
etag: "64f133d4-1265c"
access-control-allow-origin: *
age: 16
x-cache: HIT
x-cache-hits: 587
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oUNYa8j7I%2FcFjYeir9hq6wS4X70eak6mMa09a2idH76CavJYq%2B5cdFB8VzK6ZQo4a28eb2LqzNYap6R6NYvCDYE3tWPuY6QiR1elk76b%2BQSLjX3eP%2BwnYYy3Hc0vaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83440427c8c5b51e-OSL
alt-svc: h3=":443"; ma=86400

cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody/

188.114.97.1

301 Moved Permanently

34 kB

URL User Request GET HTTP/2
cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody/
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type

Size
34 kB (34196 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /serie/los-simpson/temporada-32/episodio-4-silody/ HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Tue, 12 Dec 2023 06:47:28 GMT
content-type: text/html; charset=UTF-8
location: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
age: 217600
x-cache: HIT
x-cache-hits: 16
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MN%2BwsU4wh1mXs7mXQTrlTEwoCPIPu01FwM3PAefpOLLLIQ%2FD3o4vtc4aiiU9mTlvW%2BAP3JWLLqTz4hhLf0TL%2FT0TpgZLLIRsEL1mqn%2Ba1FvbxmWt4jR0yrB3O7GjHg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 834404229fd35693-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

installedleapeddoing.com/pixel/sbls?bv=23.49.4947&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fglobal%2Fcustom-banner%2F1%2Findex.html&l=1433&fd=31

173.233.137.36

200 OK

0 B

URL GET HTTP/1.1
installedleapeddoing.com/pixel/sbls?bv=23.49.4947&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fglobal%2Fcustom-banner%2F1%2Findex.html&l=1433&fd=31
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerLet's Encrypt
Subjectinstalledleapeddoing.com
Fingerprint7F:94:50:6A:16:7E:84:3E:52:90:FE:7A:7D:15:66:F5:9E:34:13:31
ValidityWed, 06 Dec 2023 08:05:08 GMT - Tue, 05 Mar 2024 08:05:07 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=23.49.4947&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fglobal%2Fcustom-banner%2F1%2Findex.html&l=1433&fd=31 HTTP/1.1
Host: installedleapeddoing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Cookie: u_pl=18817105; uid_id2=30d09cbd-1f96-4b80-9877-bb85498d9c8f:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdf5d4b87ade2e7a182431d779e05accb=[4819891]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 12 Dec 2023 06:47:31 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cuevana3.ms/?stats=9426&type=2&1702363649576

188.114.97.1

200 OK

11 B

URL GET HTTP/3
cuevana3.ms/?stats=9426&type=2&1702363649576
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
11 B (11 bytes)
Hash
e4be1fbda3b7ff89b28134b8c7325fff
9bd3a445810b80032e3d856bff4253caf83d5bf7
9a399c52f994e2dcc77d2b13d8e2113812a027dc35895e4fb4a7c2cf42369611

HTTP Headers

GET /?stats=9426&type=2&1702363649576 HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
age: 0
x-cache: MISS
x-cache-hits: 0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b7WbPY8U%2Bsv538NgtLTLId7E0x1PBUAs9zYriY5FWYIe1q8mtypuB6vlcBIpjkCc%2BRKtoPvaVqqrkp2Q6rw6xnV6G8qh954WxD4QxfFDd%2B5pl9qcSsFno%2Fn6m6%2B9jg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 834404287957b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
installedleapeddoing.com/pixel/sbls?bv=23.49.4947&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fglobal%2Fcustom-banner%2F1%2Fcss%2Fstyle.css&l=3413&fd=267
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerLet's Encrypt
Subjectinstalledleapeddoing.com
Fingerprint7F:94:50:6A:16:7E:84:3E:52:90:FE:7A:7D:15:66:F5:9E:34:13:31
ValidityWed, 06 Dec 2023 08:05:08 GMT - Tue, 05 Mar 2024 08:05:07 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=23.49.4947&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgames%2Fhentai-heroes%2Fglobal%2Fcustom-banner%2F1%2Fcss%2Fstyle.css&l=3413&fd=267 HTTP/1.1
Host: installedleapeddoing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Cookie: u_pl=18817105; uid_id2=30d09cbd-1f96-4b80-9877-bb85498d9c8f:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdf5d4b87ade2e7a182431d779e05accb=[4819891]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 12 Dec 2023 06:47:31 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cuevana3.ms/wp-content/themes/cuevana3/style.css

188.114.97.1

200 OK

121 kB

URL GET HTTP/3
cuevana3.ms/wp-content/themes/cuevana3/style.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type
ASCII text, with very long lines (440)
Size
121 kB (121260 bytes)
Hash
79717372b40f5b9360462809ebf8457e
4137f554b9c44bfe3a91d2630d90a444d2ac1ec2
503b3bca578e6a4b097a5c1f1294470a8f6deb14755c05422ab79af2827535ab

HTTP Headers

GET /wp-content/themes/cuevana3/style.css HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"64f13375-1d9ac"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
age: 1189468
x-cache: HIT
x-cache-hits: 20
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KNVG4yNyoSARCqu7Y%2F%2Fvxa15nrLRM1LW2h3KTcBSe9EmiC92ZosHcLeVHT1cq%2BAbnnd9WwkrhDPL5tKMTmU%2FLeWi1hC9wEZDcbubFz1EvidjGhHTtma5WgmZPnn%2BKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 834404263f4fb51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/js/script.js

172.64.108.10

200 OK

3.9 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/js/script.js
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
Unicode text, UTF-8 text, with very long lines (4040), with no line terminators
Size
3.9 kB (3900 bytes)
Hash
e085c571f117a4eae4e8047a950db243
a91b4001f77215894b218743c25b4d685904f959
dc7438a0aec50e1ed44bc7f6cbda0da34f29205fbb36bbb530f5df5d3850a660

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cuevana3.ms
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 06:47:31 GMT
content-type: application/javascript
last-modified: Thu, 19 Oct 2023 15:25:32 GMT
etag: W/"65314a6c-f3c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6CoKXjyCJWisl8IXgzxN1%2FCH%2FCwX%2F80PbTpE9GnaRXRTepLfosbtovydiqTmSDGRoqZoTuayHVoUpEMTQND1WpfZBvOC%2FbLAeRbiVeXT%2FMT5rX0BP8up%2FUOkqxB6qZE0rBK3JFZUOrhA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8344043388021d8a-FRA
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cuevana3.ms/wp-content/themes/cuevana3/js/public.js

188.114.97.1

200 OK

11 kB

URL GET HTTP/3
cuevana3.ms/wp-content/themes/cuevana3/js/public.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type

Size
11 kB (11398 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/themes/cuevana3/js/public.js HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:29 GMT
content-type: application/javascript
last-modified: Fri, 01 Sep 2023 00:44:19 GMT
vary: Accept-Encoding
etag: W/"64f133e3-2c86"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
age: 1685645
x-cache: HIT
x-cache-hits: 6
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tGdUNlLg1QX%2BrS7XEWQ3JSAcOAiXgxsT4%2B81%2BIpx1qz%2F5opHE0dHCB47mNeX9uQxxPR14ZuZatbGagN98k64g5yFKZjEc8VqkLbqs4wg1bVS0vC9ZEtQ1mNt7KfuWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 834404265f8bb51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

friendshipmale.com/sfp.js

104.21.234.32

200 OK

86 kB

URL GET HTTP/2
friendshipmale.com/sfp.js
IP
104.21.234.32:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type

Size
86 kB (85468 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 06:47:30 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 28ae9db80edda5d8204bcdc1ef5c881a
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 12 Dec 2023 06:47:30 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HkWpCb3KVwMinYL%2FrtNyImL6pFcJo8h9rzNxpVSv9nGTh4dT0EPALawu4GjqEgFMrPCXFzQ%2Fjm%2FKYq9Rgdr9xxjzKUnuK7cQk9Uf60kjwGO3PKItmZuXN%2FMC%2BlMjyQjSd7Usblw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8344042ddb88d8fe-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/css/style.css

172.64.108.10

200 OK

3.4 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/css/style.css
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
ASCII text, with very long lines (3588), with no line terminators
Size
3.4 kB (3413 bytes)
Hash
9f41060a94dfdae2b9e3e7af3fbafd0d
e08ee5f1feddbd7f0e0b68e945509a0029cc7f60
f28e8574ddbdb7d40301ecd44c1eec3324a40024536bca957e3d09ebd288721a

HTTP Headers

GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cuevana3.ms
DNT: 1
Connection: keep-alive
Referer: https://cuevana3.ms/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 12 Dec 2023 06:47:31 GMT
content-type: text/css
last-modified: Thu, 19 Oct 2023 15:30:48 GMT
etag: W/"65314ba8-d55"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BuCJmmG94ZXCPR0XMOl%2Fz7A%2BiAcOt5kYyhYXGxqiEX1HqG7J0fiP4wGMVpTj5VPdCn9j9BNmBUT0FYkT7Ksd4U69esFthAkdjLP%2FQXsTXWi1iuAwdqWTIC%2F7CoUnjkNc2dY9DhWXxELN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83440433b83c1d8a-FRA
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/

188.114.97.1

200 OK

34 kB

URL User Request GET HTTP/3
cuevana3.ms/serie/los-simpson/temporada-32/episodio-4-silody-2/
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectcuevana3.ms
Fingerprint46:98:37:0D:8E:6C:8A:B6:09:A2:AC:CB:8E:04:54:97:A4:AC:1E:FF
ValidityMon, 30 Oct 2023 02:27:10 GMT - Sun, 28 Jan 2024 02:27:09 GMT

File type

Size
34 kB (34196 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /serie/los-simpson/temporada-32/episodio-4-silody-2/ HTTP/1.1
Host: cuevana3.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 12 Dec 2023 06:47:28 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
age: 92089
x-cache: HIT
x-cache-hits: 27
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wUt2HZ3zdbwGeTwxMLUUugSkimmt32UMT0cyAmWbFhgz9G4%2BSyGbylxe%2BTWWNUJetpDoBGTUe%2BLNkArEz2T0w2YYmnRLXJ5y35DTHmulaSBzDXyLHUis8vn4rfpXxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 834404235d8eb51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations